Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
UNDERCODE NEWS
AI and GDPR: A Balancing Act - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from Exploiting Crew (Pr1vAt3)
This media is not supported in your browser
VIEW IN TELEGRAM
Forwarded from Exploiting Crew (Pr1vAt3)
This media is not supported in your browser
VIEW IN TELEGRAM
π¦Extracting information remotely from Microsoft Remote Desktop Web Access (RDWA) with RDWAtool
π Microsoft Remote Desktop Web Access (RDWA) applications are often overlooked yet can be a treasure trove of information for attackers. RDWAtool is a Python-based all-in-one tool designed to analyze and test RDWA instances for vulnerabilities while extracting valuable insights.
π What can RDWAtool do?
1οΈβ£ Extract useful Information in black box remotely:
- FQDN of the remote server to map the environment.
- Internal AD domain name derived from the FQDN.
- Remote Windows Server version for targeted exploitation.
In brute mode:
> Free <
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
π Microsoft Remote Desktop Web Access (RDWA) applications are often overlooked yet can be a treasure trove of information for attackers. RDWAtool is a Python-based all-in-one tool designed to analyze and test RDWA instances for vulnerabilities while extracting valuable insights.
π What can RDWAtool do?
1οΈβ£ Extract useful Information in black box remotely:
- FQDN of the remote server to map the environment.
- Internal AD domain name derived from the FQDN.
- Remote Windows Server version for targeted exploitation.
In spray mode:
rdwatool spray -tu https://rds.podalirius.net/RDWeb/Pages/en-US/login.aspx
In brute mode:
rdwatool brute -tu https://rds.podalirius.net/RDWeb/Pages/en-US/login.aspx
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
Daring Duo Conduct Spacewalk: Upgrading the International Space Station
https://undercodenews.com/daring-duo-conduct-spacewalk-upgrading-the-international-space-station/
@Undercode_News
https://undercodenews.com/daring-duo-conduct-spacewalk-upgrading-the-international-space-station/
@Undercode_News
UNDERCODE NEWS
Daring Duo Conduct Spacewalk: Upgrading the International Space Station - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
#Samsung's 2025 TV Lineup Leaks Ahead of CES 2025 Launch
https://undercodenews.com/samsungs-2025-tv-lineup-leaks-ahead-of-ces-2025-launch/
@Undercode_News
https://undercodenews.com/samsungs-2025-tv-lineup-leaks-ahead-of-ces-2025-launch/
@Undercode_News
UNDERCODE NEWS
Samsung's 2025 TV Lineup Leaks Ahead of CES 2025 Launch - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
#Gemini API Competition: A Showcase of Innovation
https://undercodenews.com/gemini-api-competition-a-showcase-of-innovation/
@Undercode_News
https://undercodenews.com/gemini-api-competition-a-showcase-of-innovation/
@Undercode_News
UNDERCODE NEWS
Gemini API Competition: A Showcase of Innovation - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from Exploiting Crew (Pr1vAt3)
This media is not supported in your browser
VIEW IN TELEGRAM
Forwarded from Exploiting Crew (Pr1vAt3)
π¦π° Cost Savings: SSE vs. SASE Simplified!
π Organizations leveraging Palo Alto Networks experience significant ROI through unified management and simplified operationsβall within a single pane of glass.
Streamline your security strategy while accelerating growth!
Whatβs the Difference?
π SSE (Security Service Edge):
Focuses on securing access to apps and data for remote and on-premises users.
Core features: SWG, CASB, and ZTNA for seamless, secure connectivity.
π SASE (Secure Access Service Edge):
Combines networking (SD-WAN) and security services in a single cloud-delivered solution.
Perfect for securing distributed users and sites with optimal performance.
Why Choose Palo Alto Networks?
βοΈ Unified platform for better visibility and control.
βοΈ Simplified operations with scalable solutions for all use cases.
βοΈ Future-ready security with proven innovation.
Letβs make security smarter, faster, and simplerβtogether!
Ref: Dhari A.Dhari A.
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
π Organizations leveraging Palo Alto Networks experience significant ROI through unified management and simplified operationsβall within a single pane of glass.
Streamline your security strategy while accelerating growth!
Whatβs the Difference?
π SSE (Security Service Edge):
Focuses on securing access to apps and data for remote and on-premises users.
Core features: SWG, CASB, and ZTNA for seamless, secure connectivity.
π SASE (Secure Access Service Edge):
Combines networking (SD-WAN) and security services in a single cloud-delivered solution.
Perfect for securing distributed users and sites with optimal performance.
Why Choose Palo Alto Networks?
βοΈ Unified platform for better visibility and control.
βοΈ Simplified operations with scalable solutions for all use cases.
βοΈ Future-ready security with proven innovation.
Letβs make security smarter, faster, and simplerβtogether!
Ref: Dhari A.Dhari A.
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
π± Conquering Your Chaos: Top To-Do List Apps for #Android
https://undercodenews.com/conquering-your-chaos-top-to-do-list-apps-for-android/
@Undercode_News
https://undercodenews.com/conquering-your-chaos-top-to-do-list-apps-for-android/
@Undercode_News
UNDERCODE NEWS
Conquering Your Chaos: Top To-Do List Apps for Android - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
β‘οΈ The 5 Stages of #Digital Twin Development: A Comprehensive Guide
https://undercodenews.com/the-5-stages-of-digital-twin-development-a-comprehensive-guide/
@Undercode_News
https://undercodenews.com/the-5-stages-of-digital-twin-development-a-comprehensive-guide/
@Undercode_News
UNDERCODE NEWS
The 5 Stages of Digital Twin Development: A Comprehensive Guide - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
Lingering Trust? US Organizations Still Using Kaspersky Despite Ban
https://undercodenews.com/lingering-trust-us-organizations-still-using-kaspersky-despite-ban/
@Undercode_News
https://undercodenews.com/lingering-trust-us-organizations-still-using-kaspersky-despite-ban/
@Undercode_News
UNDERCODE NEWS
Lingering Trust? US Organizations Still Using Kaspersky Despite Ban - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE TESTING
Honeypot_full_+images.pdf
2.4 MB
Forwarded from UNDERCODE TESTING
π¦ Honeypot Integration with Elastic Stack - A Practical Guide π‘
In this project , i have integrated Honeypot (trap for hackers) with the ELK Stack to monitor the real-time alerts and advanced threat hunting. π΅οΈββοΈ
π§ Key Steps:
1οΈβ£ Honeypot Setup: Deployed multiple honeypot services to capture malicious activity. (Requires a public IP π)
2οΈβ£ ELK Stack Installation: The Elastic Stack plays a pivotal role in collecting, storing, and visualizing the data from the T-Pot honeypot. π
3οΈβ£ Data Filtration & Visualization: Filtered and visualized attack data in Kibana for actionable insights. ππ
Note : This project can be extended to capture the IOCβs like users can add their own threat intelligence databases and can use python scripts to train the machine learning models for future use .πFor instance , a MISP instance can be setup to store the IOC's from this honeypot.
Ref: HAMZA JAMEEL
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
In this project , i have integrated Honeypot (trap for hackers) with the ELK Stack to monitor the real-time alerts and advanced threat hunting. π΅οΈββοΈ
π§ Key Steps:
1οΈβ£ Honeypot Setup: Deployed multiple honeypot services to capture malicious activity. (Requires a public IP π)
2οΈβ£ ELK Stack Installation: The Elastic Stack plays a pivotal role in collecting, storing, and visualizing the data from the T-Pot honeypot. π
3οΈβ£ Data Filtration & Visualization: Filtered and visualized attack data in Kibana for actionable insights. ππ
Note : This project can be extended to capture the IOCβs like users can add their own threat intelligence databases and can use python scripts to train the machine learning models for future use .πFor instance , a MISP instance can be setup to store the IOC's from this honeypot.
Ref: HAMZA JAMEEL
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
β‘οΈ ModernBERT: A Powerful and Efficient #Update to Encoder-Only Models
https://undercodenews.com/modernbert-a-powerful-and-efficient-update-to-encoder-only-models/
@Undercode_News
https://undercodenews.com/modernbert-a-powerful-and-efficient-update-to-encoder-only-models/
@Undercode_News
UNDERCODE NEWS
ModernBERT: A Powerful and Efficient Update to Encoder-Only Models - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
β‘οΈ Sandisk Unveils New Branding, Poised for Solo Flight as a Flash Memory Leader
https://undercodenews.com/sandisk-unveils-new-branding-poised-for-solo-flight-as-a-flash-memory-leader/
@Undercode_News
https://undercodenews.com/sandisk-unveils-new-branding-poised-for-solo-flight-as-a-flash-memory-leader/
@Undercode_News
UNDERCODE NEWS
Sandisk Unveils New Branding, Poised for Solo Flight as a Flash Memory Leader - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from Exploiting Crew (Pr1vAt3)
π¦ ShellSweep: Detecting Web Shells Made Easy for Defenders π
π What is ShellSweep?
ShellSweep is a suite of open-source tools designed to detect web shells using entropy analysis, static code checks, and heuristic methods. From incident response to threat hunting, ShellSweep helps defenders identify suspicious files quickly and efficiently.
π Why Defenders Need ShellSweep
β Test Your Coverage: Validate analytic detection for file mods, process executions, and suspicious behavior from web shells.
β Tuning & Training: Scan web servers, analyze entropy baselines, and tune detection to YOUR environment.
β Lightweight & Customizable: Works locally, supports PowerShell, Python, and Lua. Full control with zero dependency on external services.
π ShellSweep: The foundation.
- Detects web shells using entropy-based analysis.
- Scans key extensions (.asp, .aspx, .php, .jsp) for high-entropy anomalies.
- Outputs file paths, entropy values, and hashes.
ππ ShellSweepPlus: Enhanced detection.
- Dynamic entropy thresholds.
- Multi-layered detection: Entropy, StdDev, Mixed Mode, and Heuristics.
- Static code analysis to spot malicious patterns.
- JSON outputs for structured results & further analysis.
πππ ShellSweepX: Next-level, centralized detection.
- Combines entropy analysis, machine learning, and YARA rule matching.
- Cross-platform (PowerShell, Python, Bash).
- API integration for automated scans and result management.
- Web interface for visualizing and managing detections.
β¨ Perfect for Incident Responders & Threat Hunters
π‘ Deploy ShellSweep tools in test or production environments.
π Load up your preferred web shells, simulate uploads, and refine detection rules.
π Detect new or obfuscated threats. Identify gaps. Tune your defenses.
π§° ShellSweep: ShellSweeping the Evil!
Ref: Michael H.Michael H.
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
π What is ShellSweep?
ShellSweep is a suite of open-source tools designed to detect web shells using entropy analysis, static code checks, and heuristic methods. From incident response to threat hunting, ShellSweep helps defenders identify suspicious files quickly and efficiently.
π Why Defenders Need ShellSweep
β Test Your Coverage: Validate analytic detection for file mods, process executions, and suspicious behavior from web shells.
β Tuning & Training: Scan web servers, analyze entropy baselines, and tune detection to YOUR environment.
β Lightweight & Customizable: Works locally, supports PowerShell, Python, and Lua. Full control with zero dependency on external services.
π ShellSweep: The foundation.
- Detects web shells using entropy-based analysis.
- Scans key extensions (.asp, .aspx, .php, .jsp) for high-entropy anomalies.
- Outputs file paths, entropy values, and hashes.
ππ ShellSweepPlus: Enhanced detection.
- Dynamic entropy thresholds.
- Multi-layered detection: Entropy, StdDev, Mixed Mode, and Heuristics.
- Static code analysis to spot malicious patterns.
- JSON outputs for structured results & further analysis.
πππ ShellSweepX: Next-level, centralized detection.
- Combines entropy analysis, machine learning, and YARA rule matching.
- Cross-platform (PowerShell, Python, Bash).
- API integration for automated scans and result management.
- Web interface for visualizing and managing detections.
β¨ Perfect for Incident Responders & Threat Hunters
π‘ Deploy ShellSweep tools in test or production environments.
π Load up your preferred web shells, simulate uploads, and refine detection rules.
π Detect new or obfuscated threats. Identify gaps. Tune your defenses.
π§° ShellSweep: ShellSweeping the Evil!
Ref: Michael H.Michael H.
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - splunk/ShellSweep: ShellSweeping the evil.
ShellSweeping the evil. Contribute to splunk/ShellSweep development by creating an account on GitHub.
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
China Accuses US of Cyberespionage
https://undercodenews.com/china-accuses-us-of-cyberespionage/
@Undercode_News
https://undercodenews.com/china-accuses-us-of-cyberespionage/
@Undercode_News
UNDERCODE NEWS
China Accuses US of Cyberespionage - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
π Zomato's Packaging Charges Spark Debate, Footballer Steps In
https://undercodenews.com/zomatos-packaging-charges-spark-debate-footballer-steps-in/
@Undercode_News
https://undercodenews.com/zomatos-packaging-charges-spark-debate-footballer-steps-in/
@Undercode_News
UNDERCODE NEWS
Zomato's Packaging Charges Spark Debate, Footballer Steps In - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦