*छत्रपति संभाजी महाराज जी की जयंती की हार्दिक शुभकामनाएं।*🚩

​​badsecrets

A library for detecting known secrets across many web frameworks.

https://github.com/blacklanternsecurity/badsecrets

Details:
https://blog.blacklanternsecurity.com/p/introducing-badsecrets

#cybersecurity #infosec #pentesting

​​Kovid Rootkit

A full-feature LKM intended for use against Linux kernel v5+.

https://github.com/carloslack/KoviD

#infosec #pentesting #redteam

​​Nimbo-C2

Nimbo-C2 agent supports x64 Windows & Linux. It's written in Nim, with some usage of .NET on Windows (by dynamically loading the CLR to the process). Nim is powerful, but interacting with Windows is much easier and robust using Powershell, hence this combination is made. The Linux agent is slimer and capable only of basic commands, including ELF loading using the memfd technique.

https://github.com/itaymigdal/Nimbo-C2

#infosec #pentesting #redteam

10+ PK government websites h*-cked.
A perfect payback to pk from #indiancybertroops

https://cmdu.gob(.pk)/

https://forensic.sindhpolice.gov (.pk)/index.php

https://mppbeta.sindhpolice.gov (.pk)/

https://legal.sindhpolice.gov (.pk)/

https://demo.cmdu.gob (.pk)/

https://pphi.cmdu.gob (.pk)/

https://ekacheri.cmdu.gob (.pk)/

https://hubportal.cmdu.gob (.pk)/

https://rds.cmdu.gob (.pk)/

https://test.cmdu.gob (.pk)/

https://expl.kp.gov (.pk)/

A new blog on Advance Snort Introduction Detection and Prevention System

https://techofide.com/blogs/mastering-snort-an-intrusion-detection-and-prevention-system-step-by-step-guide/

Join our group for more cyber security content.

t.me/ethicalhackingtechofide

MagSpoof

A portable device that can spoof/emulate any magnetic stripe, credit card or hotel card "wirelessly", even on standard magstripe (non-NFC/RFID) readers. It can disable Chip&PIN and predict AMEX card numbers with 100% accuracy.

𝘽𝙪𝙜 𝙏𝙮𝙥𝙚: DOM based XSS

Link: https://youtu.be/gQ_gmgjEbJ0


Please Share your Views 🙏🏻☺️ & Subscribe to our YouTube channel for more Videos.


Really Thank you for your Support😊🙌

WebSocket Pentration Testing

HTML5 has introduced many new powerful APIs, one of the more interesting components being websockets. These highlight a trend in web application development to remove or reduce the overhead of HTTP. Websockets are a direct TCP connection between the client browser and the webserver.

Read Article: https://bit.ly/WebSocket_PentrationTesting

@crackcodes

XSS where you can inject the payload within the image file name and alert!.

𝙇𝙞𝙣𝙠:
https://twitter.com/thecybertix/status/1658343842943496192?t=oDKM3yzg1SgmXFxPjIoLGA&s=19

Malware is a type of software that is designed to cause harm to a computer or its users. It can be used to steal personal information, damage files, or even take control of a computer.

Read Full Article

https://trickypenguin.ink/what-is-malware-and-how-to-protect-against-malware-attacks/

#malware #botnets #torjan

💥 PoC for CVE-2023-32233(tested under Ubuntu 23.04)

Once the PoC is started on a vulnerable system, it may leave that system in an unstable state with corrupted kernel memory. We strongly recommend to test the PoC on a dedicated system to avoid potential data corruptions.

Download: https://system32.ink/news-feed/p/367/

Especially when it comes to Bug Bounty hunting, reconnaissance is one of the most valuable things to do. There are still "easy wins“ out there which can be found, if you have a good strategy when it comes to reconnaissance. 

In this Blogpost I want to explain, how I am normally performing reconnaissance during Pentests and for Bug Bounties.

Read Full Article

How to save all post in private from public channel
Using bot
Post credit @its_me_dollar
@Deadlymalwarexpbot

g's hacker's ( its a bad day for me but —❤️
‼️Here we go again

Microsoft is scanning the inside of password-protected zip files for malware
read_more

#hacker_bano_chutiya_nhe 😤
#fuck_Microsoft 😂