OSINT: User Privacy in Linux
π₯ Telegram: https://t.me/hackinarticles
In this article, we are going to discuss why telemetry can be seen as a potential threat to privacy, even when used for legitimate purposes. We will also explore methods to make the system more secure than before.
π‘οΈ Secure OS Installation
ποΈ Removing the packages
βοΈ Settings in Ubuntu
π Disable diagnostics reporting
π Disable lock screen notifications
π Disable tracking of recent files
π« Turning off the problem reporting
π Turning off the screen blank
π Disable automatic screen locking
𧨠Permanently delete option
ποΈ Show hidden files
π§Ή BleachBit
π KeePassXC
π¦ Virus Scanner
βοΈ Metadata removal
π¦ Firefox profilemaker
π¦ Flatpak
π LibreWolf
ποΈ VeraCrypt
π Tor Browser
π‘οΈ Proton VPN
𧬠NextDNS
π Conclusion
π₯ Telegram: https://t.me/hackinarticles
In this article, we are going to discuss why telemetry can be seen as a potential threat to privacy, even when used for legitimate purposes. We will also explore methods to make the system more secure than before.
π‘οΈ Secure OS Installation
ποΈ Removing the packages
βοΈ Settings in Ubuntu
π Disable diagnostics reporting
π Disable lock screen notifications
π Disable tracking of recent files
π« Turning off the problem reporting
π Turning off the screen blank
π Disable automatic screen locking
𧨠Permanently delete option
ποΈ Show hidden files
π§Ή BleachBit
π KeePassXC
π¦ Virus Scanner
βοΈ Metadata removal
π¦ Firefox profilemaker
π¦ Flatpak
π LibreWolf
ποΈ VeraCrypt
π Tor Browser
π‘οΈ Proton VPN
𧬠NextDNS
π Conclusion
β€2
Bug Bounty Training Program (Online)
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Hurry up, get enrolled yourself with IGNITE TECHNOLOGIESβ fully exclusive Training Program βBug Bounty.β
βοΈ Table of Content
π Introduction to WAPT & OWASP Top 10
π οΈ Pentest Lab Setup
π Information Gathering & Reconnaissance
π» Netcat for Pentester
βοΈ Configuration Management Testing
π Cryptography
π Authentication
π Session Management
π Local File Inclusion
π Remote File Inclusion
π Path Traversal
π£ OS Command Injection
π Open Redirect
π€ Unrestricted File Upload
π PHP Web Shells
π HTML Injection
π Cross-Site Scripting (XSS)
π Client-Side Request Forgery
π SQL Injection
π XXE Injection
π Bonus Section
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Hurry up, get enrolled yourself with IGNITE TECHNOLOGIESβ fully exclusive Training Program βBug Bounty.β
βοΈ Table of Content
π Introduction to WAPT & OWASP Top 10
π οΈ Pentest Lab Setup
π Information Gathering & Reconnaissance
π» Netcat for Pentester
βοΈ Configuration Management Testing
π Cryptography
π Authentication
π Session Management
π Local File Inclusion
π Remote File Inclusion
π Path Traversal
π£ OS Command Injection
π Open Redirect
π€ Unrestricted File Upload
π PHP Web Shells
π HTML Injection
π Cross-Site Scripting (XSS)
π Client-Side Request Forgery
π SQL Injection
π XXE Injection
π Bonus Section
β€3
Red Team Dorks Mindmap
π΄β«Full HD: https://github.com/Ignitetechnologies/Mindmap/blob/main/Red%20Team%20Dorks/Red%20Team%20Dorks%20UHD.png
π΄β«Full HD: https://github.com/Ignitetechnologies/Mindmap/blob/main/Red%20Team%20Dorks/Red%20Team%20Dorks%20UHD.png
AD Hardening Risks Explained Through Restaurant Scenarios
β΄ Twitter: https://x.com/hackinarticles
Secure your Active Directory kitchen with these bite-sized analogies:
β’ Credential Stealer
Scenario: Dishwasher steals the head chefβs keys β Accesses the wine cellar.
Risk: Stolen credentials grant unauthorized access to critical systems.
Defense: Never log in with admin credentials on workstations.
β’ Public Pwn (MS14-068)
Scenario: Customer forges a VIP pass β Gets kitchen control.
Risk: Kerberos flaw escalates to Domain Admin in minutes.
Defense: Patch KB3011780 + automate compliance checks.
β’ Leaked in Kitchen (GPP Passwords)
Scenario: Recipes with secret ingredients left on the counter.
Risk: Group Policy Preferences expose passwords in SYSVOL.
Defense: Delete groups.xml, install KB2962486, audit GPPs.
β’ DCSync Attack
Scenario: Impostor poses as health inspector β Demands all recipes.
Risk: Attackers mimic Domain Controllers to steal password hashes.
Defense: Restrict "Replicating Directory Changes" rights.
β’ LLMNR Poisoning
Scenario: Fake waiter intercepts orders β Serves poisoned dishes.
Risk: Spoofed network responses steal NTLM hashes.
Defense: Disable LLMNR/NBT-NS via Group Policy.
β’ AS-REP Roasting
Scenario: No ID check at the door β Burglars walk in freely.
Risk: Kerberos pre-authentication bypassed for hash theft.
Defense: Enforce pre-auth for all accounts.
β’ Vulnerable GPO Abuse
Scenario: Dishwasher edits kitchen rules β Adds backdoor access.
Risk: Malicious Group Policies deploy malware.
Defense: Audit GPO permissions with BloodHound.
β’ Pass-the-Ticket Attack
Scenario: Stolen meal voucher reused β Free dinners forever.
Risk: Kerberos tickets reused for lateral movement.
Defense: Monitor TGT anomalies, reset compromised passwords.
β΄ Twitter: https://x.com/hackinarticles
Secure your Active Directory kitchen with these bite-sized analogies:
β’ Credential Stealer
Scenario: Dishwasher steals the head chefβs keys β Accesses the wine cellar.
Risk: Stolen credentials grant unauthorized access to critical systems.
Defense: Never log in with admin credentials on workstations.
β’ Public Pwn (MS14-068)
Scenario: Customer forges a VIP pass β Gets kitchen control.
Risk: Kerberos flaw escalates to Domain Admin in minutes.
Defense: Patch KB3011780 + automate compliance checks.
β’ Leaked in Kitchen (GPP Passwords)
Scenario: Recipes with secret ingredients left on the counter.
Risk: Group Policy Preferences expose passwords in SYSVOL.
Defense: Delete groups.xml, install KB2962486, audit GPPs.
β’ DCSync Attack
Scenario: Impostor poses as health inspector β Demands all recipes.
Risk: Attackers mimic Domain Controllers to steal password hashes.
Defense: Restrict "Replicating Directory Changes" rights.
β’ LLMNR Poisoning
Scenario: Fake waiter intercepts orders β Serves poisoned dishes.
Risk: Spoofed network responses steal NTLM hashes.
Defense: Disable LLMNR/NBT-NS via Group Policy.
β’ AS-REP Roasting
Scenario: No ID check at the door β Burglars walk in freely.
Risk: Kerberos pre-authentication bypassed for hash theft.
Defense: Enforce pre-auth for all accounts.
β’ Vulnerable GPO Abuse
Scenario: Dishwasher edits kitchen rules β Adds backdoor access.
Risk: Malicious Group Policies deploy malware.
Defense: Audit GPO permissions with BloodHound.
β’ Pass-the-Ticket Attack
Scenario: Stolen meal voucher reused β Free dinners forever.
Risk: Kerberos tickets reused for lateral movement.
Defense: Monitor TGT anomalies, reset compromised passwords.
ADCS ESC15 - Exploiting Template Schema v1
β΄ Twitter: https://x.com/hackinarticles
The ESC15 vulnerability (EKUwu), affects Active Directory Certificate Services (AD CS), allowing attackers to inject unauthorized EKUs (e.g., Client Authentication) into Schema Version 1 templates.
π Overview of the ESC15 Attack
π What is Schema Version 1?
π Prerequisites
π§ͺ Lab Setup
π― Enumeration & Exploitation
π§ Post Exploitation
π‘οΈ Mitigation
β΄ Twitter: https://x.com/hackinarticles
The ESC15 vulnerability (EKUwu), affects Active Directory Certificate Services (AD CS), allowing attackers to inject unauthorized EKUs (e.g., Client Authentication) into Schema Version 1 templates.
π Overview of the ESC15 Attack
π What is Schema Version 1?
π Prerequisites
π§ͺ Lab Setup
π― Enumeration & Exploitation
π§ Post Exploitation
π‘οΈ Mitigation
β€1
π₯ OSCP+/CTF Exam Practice Training (Online) π₯ β Register Now! π
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Join IGNITE TECHNOLOGIESβ exclusive "Capture the Flag" Training Program and enhance your skills with the following modules:
π§ Introduction
π Information Gathering
𧱠Vulnerability Scanning
π Windows Privilege Escalation
π§ Linux Privilege Escalation
π‘οΈ Client-Side Attacks
π Web Application Attacks
𧬠Password Attacks
π§ Tunneling & Pivoting
π° Active Directory Attacks
π£ Exploiting Public Exploits
π Report Writing
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Join IGNITE TECHNOLOGIESβ exclusive "Capture the Flag" Training Program and enhance your skills with the following modules:
π§ Introduction
π Information Gathering
𧱠Vulnerability Scanning
π Windows Privilege Escalation
π§ Linux Privilege Escalation
π‘οΈ Client-Side Attacks
π Web Application Attacks
𧬠Password Attacks
π§ Tunneling & Pivoting
π° Active Directory Attacks
π£ Exploiting Public Exploits
π Report Writing
β€2
Zero-Day CVEs (2023) Mindmap
π΄β«Full HD: https://github.com/Ignitetechnologies/Mindmap/blob/main/Zero-Day%20CVEs%20(2023)/Zero-Day%20CVEs%20(2023)%20UHD.png
π΄β«Full HD: https://github.com/Ignitetechnologies/Mindmap/blob/main/Zero-Day%20CVEs%20(2023)/Zero-Day%20CVEs%20(2023)%20UHD.png
β€1
OT Cybersecurity in 5 Bite-Sized Scenarios
β΄ Twitter: Share this thread
1. No Incident Plan
Kitchen fire β Staff panics
β Fix: OT-specific response drills
2. Weak Architecture
Open kitchen β Rats everywhere
β Fix: Segment IT/OT networks
3. Blind Monitoring
No cameras β Thieves steal freely
β Fix: ICS-aware sensors (e.g., Dragos)
4. Risky Remote Access
Backdoor open β Hackers walk in
β Fix: MFA + time-limited access
5. Ignored Vulnerabilities
Rotten food β Customers sick
β Fix: Patch "NOW" threats first
Stats:
Only 29% secure remote access
61% monitor networks properly
β΄ Twitter: Share this thread
1. No Incident Plan
Kitchen fire β Staff panics
β Fix: OT-specific response drills
2. Weak Architecture
Open kitchen β Rats everywhere
β Fix: Segment IT/OT networks
3. Blind Monitoring
No cameras β Thieves steal freely
β Fix: ICS-aware sensors (e.g., Dragos)
4. Risky Remote Access
Backdoor open β Hackers walk in
β Fix: MFA + time-limited access
5. Ignored Vulnerabilities
Rotten food β Customers sick
β Fix: Patch "NOW" threats first
Stats:
Only 29% secure remote access
61% monitor networks properly
π₯1
A Detailed Guide on Certipy
β΄ Twitter: https://x.com/hackinarticles
In this Certipy Active Directory Exploitation guide, we explore how to use Certipyβan offensive and defensive toolkit designed for Active Directory Certificate Services (AD CS)βto enumerate misconfigurations and abuse CA templates.
π Overview of Certipy
ποΈ ADCS Key Concepts
π Prerequisites
π΅οΈ Finding Vulnerable Templates
π§Ύ Examining Account Privileges
π§ Manipulating Accounts
π Requesting Certificates
π Authenticating via Certificate
π₯ Managing Shadow Credentials
π οΈ Modifying Templates & CA
π Forging & Relaying Certificates
π‘οΈ Mitigation
β΄ Twitter: https://x.com/hackinarticles
In this Certipy Active Directory Exploitation guide, we explore how to use Certipyβan offensive and defensive toolkit designed for Active Directory Certificate Services (AD CS)βto enumerate misconfigurations and abuse CA templates.
π Overview of Certipy
ποΈ ADCS Key Concepts
π Prerequisites
π΅οΈ Finding Vulnerable Templates
π§Ύ Examining Account Privileges
π§ Manipulating Accounts
π Requesting Certificates
π Authenticating via Certificate
π₯ Managing Shadow Credentials
π οΈ Modifying Templates & CA
π Forging & Relaying Certificates
π‘οΈ Mitigation
β€1π1π₯1