Malware News
15.1K subscribers
1.63K photos
7 videos
130 files
7.97K links
The latest NEWS about malwares, DFIR, hacking, security issues, thoughts and ...

Partner channel: @cveNotify

For ads: https://telega.io/c/malwr
Download Telegram
List of IP ranges owned by AWS, Google, OVH, Microsoft, and much more. For security researchers, easier mass web scanning - Created by Pyr0cc
๐Ÿ—ฃZeusRoot

Here's another useful set of scripts and data:

https://github.com/dpsystems/login-shield

This is an IP-based blacklist of known IP space of both rogue ISPs, foreign countries and VPN space that is used with iptables to block any login ports on your computer. We're using it on a few servers and it's blocked 99% of the unauthorized logins.
๐Ÿ‘คmabu

This list is also very convenient for phishing website hosting :D
๐Ÿ‘คHellcleaver

Microsoft publishes theirs because azure is all dynamic public IPโ€™s for their PaaS services so without knowing Microsoftโ€™s Ip blocks you have to make wide open firewall rules.

Now you only have to leave your PaaS open to all of Microsoft and their customer base.

Super secure.
๐Ÿ‘คResidentKernel


๐ŸŽ–@malwr
Android Keylogger Injector
๐Ÿ—ฃbarakadua131


๐ŸŽ–@malwr
HID Attack using 1.5$ Arduino Rubber Ducky-ish
๐Ÿ—ฃjithins1610

A lot of people donโ€™t trust these cause the price but theyโ€™re a charm and so. Much. God. Damn. Fun.
๐Ÿ‘คmaximus1218

Pro tip though, get several Digisparks. Thereโ€™s probably a 20% chance they wonโ€™t work
๐Ÿ‘คmcbergstedt

The dollar sign goes first
๐Ÿ‘คLegitimateCrepe


๐ŸŽ–@malwr
10 Years of Linux Security - A Report Card
๐Ÿ—ฃcitypw

Keep in mind that grsecurity's business model relies on painting Linux, and in particular Linux security, in a negative light.

I'm not saying that makes any of this information invalid by itself, but it's worth considering the source.
๐Ÿ‘คawkisopen

I see words in that PDF but barely understand anything it's saying. Context is key.

This was clearly written by an engineer who had no idea whether or not the audience would understand the presentation.
๐Ÿ‘คToasterToasts

Well, that could have benefited from some explanation of acronyms.

Most of the recommendations seemed to be process or attitude things. How about recommending some simplification, throwing away old code even if it still mostly works ? I'm mostly talking about user-space code. Could we get rid of the init structure and commit to systemd ? Get rid of some old encryption and hashing and VPN modules, force people onto the new stuff ? Have DNS specified in 1 place instead of 5 ?
๐Ÿ‘คbilldietrich1


๐ŸŽ–@malwr