HexWalk 1.4.0 , Hex Analyzer new release for Windows/Mac/Linux, new release with Byte Patterns (header color tags + YAML format)
π£gcarmix1
Can I compare two or more files so it would highlight same patterns even if they're shifted?
π€1mrpeter
Does HexWalk do everything that 010 editor does?
π€WindyDaysAreWindy
π@malwr
π£gcarmix1
Can I compare two or more files so it would highlight same patterns even if they're shifted?
π€1mrpeter
Does HexWalk do everything that 010 editor does?
π€WindyDaysAreWindy
π@malwr
GitHub
GitHub - gcarmix/HexWalk: Hex Viewer/Editor/Analyzer compatible with Linux/Windows/MacOS
Hex Viewer/Editor/Analyzer compatible with Linux/Windows/MacOS - gcarmix/HexWalk
The List of Hacker Search Engines for Penetration Testing, Vulnerability Assessments, Red Team Operations, Bug Bounty, etc.
https://github.com/RocketGod-git/Flipper\_Zero/blob/1df6c171c9687e2722559cb13fc31061cd8d3faf/badusb/BadUSB-FalsePhilosopher/Misc/Cheat\_Sheets/Awesome-hacker-search-engines/README.md
https://preview.redd.it/f77nay5vtocb1.png?width=945&format=png&auto=webp&s=2e88eac6d3fe099d9760583dee1105b45ae9dc72
https://preview.redd.it/2ur1bcxvtocb1.png?width=930&format=png&auto=webp&s=6d43321c464c294a4f28c1bf204127319d963d9d
π£AJ_GOAT_3476
π@malwr
https://github.com/RocketGod-git/Flipper\_Zero/blob/1df6c171c9687e2722559cb13fc31061cd8d3faf/badusb/BadUSB-FalsePhilosopher/Misc/Cheat\_Sheets/Awesome-hacker-search-engines/README.md
https://preview.redd.it/f77nay5vtocb1.png?width=945&format=png&auto=webp&s=2e88eac6d3fe099d9760583dee1105b45ae9dc72
https://preview.redd.it/2ur1bcxvtocb1.png?width=930&format=png&auto=webp&s=6d43321c464c294a4f28c1bf204127319d963d9d
π£AJ_GOAT_3476
π@malwr
GitHub
Flipper_Zero/badusb/BadUSB-FalsePhilosopher/Misc/Cheat_Sheets/Awesome-hacker-search-engines/README.md at 1df6c171c9687e2722559β¦
My SD Drive for Flipper Zero. Contribute to RocketGod-git/Flipper_Zero development by creating an account on GitHub.
Prominent Threat Actor Accidentally Infects Own Computer with Info-Stealer
π£Malwarebeasts
π@malwr
π£Malwarebeasts
π@malwr
Hudson Rock
Hudson Rock - Infostealer Intelligence Solutions
Powered by Hudson Rock's continuously augmented cybercrime database, composed of millions of machines compromised by Infostealers in global malware spreading campaigns.
Biden-β Harris Administration Announces Cybersecurity Labeling Program for Smart Devices to Protect American Consumers
π£digicat
A) this will result in another new unnecessary government agency
B) the list of companies voluntarily committing to the program are all massive orgs, smaller agile and innovative orgs won't be able to compete
C) do the basics better, there's no need for this
π€crawdad101
I think this is a great idea but who's going to be in charge of this?
The Gov doesn't have enough people to independently review every single smart device that comes to market. So is it left on companies to self certify that they meet the requirements?
If it's self certification then what happens if a company fraudulently claims they meet the requirements when they don't? Are there penalties?
π€AnApexBread
π@malwr
π£digicat
A) this will result in another new unnecessary government agency
B) the list of companies voluntarily committing to the program are all massive orgs, smaller agile and innovative orgs won't be able to compete
C) do the basics better, there's no need for this
π€crawdad101
I think this is a great idea but who's going to be in charge of this?
The Gov doesn't have enough people to independently review every single smart device that comes to market. So is it left on companies to self certify that they meet the requirements?
If it's self certification then what happens if a company fraudulently claims they meet the requirements when they don't? Are there penalties?
π€AnApexBread
π@malwr
The White House
Biden-β Harris Administration Announces Cybersecurity Labeling Program for Smart Devices to Protect American Consumers
Leading electronics and appliance manufacturers and retailers make voluntary commitments to increase cybersecurity on smart devices, help consumers choose
Streamlining Websocket Pentesting with wsrepl
π£nibblesec
Nice work!
π€ilimanjf
I'm the author of this tool. As the blog post describes, I created it to address my own frustrations during engagements. If you've ever encountered challenges while testing websockets, I'd love to hear your thoughts.
π€execveat
π@malwr
π£nibblesec
Nice work!
π€ilimanjf
I'm the author of this tool. As the blog post describes, I created it to address my own frustrations during engagements. If you've ever encountered challenges while testing websockets, I'd love to hear your thoughts.
π€execveat
π@malwr
Doyensec
Streamlining Websocket Pentesting with wsrepl
In an era defined by instant gratification, where life zips by quicker than a teenagerβs TikTok scroll, WebSockets have evolved into the heartbeat of web applications. Theyβre the unsung heroes in data streaming and bilateral communication, serving up everythingβ¦
VirusTotal Leak Data of 5,600 registered users
Better change those passwords.
Link here)
π£hawaii_brian
I feel like I see data leaks of passwords all the time. What makes it so common?
How are they supposed to be stored? Hashed and salted?
π€TheAnxiousPianist
"Usersβ names and e-mail addresses have been leaked, but passwords havenβt."
I have 2FA enabled but updated my password anyhow, making it longer and more complex.
π€fmtheilig
Community notes about to get real interesting
π€GoodEbening
π@malwr
Better change those passwords.
Link here)
π£hawaii_brian
I feel like I see data leaks of passwords all the time. What makes it so common?
How are they supposed to be stored? Hashed and salted?
π€TheAnxiousPianist
"Usersβ names and e-mail addresses have been leaked, but passwords havenβt."
I have 2FA enabled but updated my password anyhow, making it longer and more complex.
π€fmtheilig
Community notes about to get real interesting
π€GoodEbening
π@malwr
Help Net Security
VirusTotal leaked data of 5,600 registered users
VirusTotal has suffered a data leak, which exposed the names and email addresses of 5600 of its registered users.
π1π±1
Detecting Fileless PowerShell operations
I am currently doing an internship where I am pen testing a proprietary incident response/memory forensics tool. I am new to pentesting/forensics in general. One of the things I am thinking about trying is using IEX in PowerShell to download/run things. Does this leave any kind of artifacts?
What would you be checking for in something like this?
I am planning on using atomic red team or caldera. I have noticed that with ART that the PowerShell commands you run are unique to that program and probably would not be a typical PowerShell command so perhaps not the best way to find out what PowerShell is actually doing but it seemed the easiest way to start testing quickly.
π£Ghostnineone
Depending on the setup of the target organisation, using powershell on the target will leave logs in the "Windows PowerShell.evtx" logs in decoded form, and if more logging are in place, "powershell transcripts" or "sysmon" logs may exist, other than logs, artifacts like Prefetch, ShimCache or AmCache can provide more evidence of powershell execution.
π€OverZeeR
You can usually find PowerShell in the event logs.
π€smc0881
π@malwr
I am currently doing an internship where I am pen testing a proprietary incident response/memory forensics tool. I am new to pentesting/forensics in general. One of the things I am thinking about trying is using IEX in PowerShell to download/run things. Does this leave any kind of artifacts?
What would you be checking for in something like this?
I am planning on using atomic red team or caldera. I have noticed that with ART that the PowerShell commands you run are unique to that program and probably would not be a typical PowerShell command so perhaps not the best way to find out what PowerShell is actually doing but it seemed the easiest way to start testing quickly.
π£Ghostnineone
Depending on the setup of the target organisation, using powershell on the target will leave logs in the "Windows PowerShell.evtx" logs in decoded form, and if more logging are in place, "powershell transcripts" or "sysmon" logs may exist, other than logs, artifacts like Prefetch, ShimCache or AmCache can provide more evidence of powershell execution.
π€OverZeeR
You can usually find PowerShell in the event logs.
π€smc0881
π@malwr
Reddit
From the computerforensics community on Reddit
Explore this post and more from the computerforensics community
β€1
The Tool List of IoT(Internet of Things) Device Search Engines
Internet Of Things (IoT) devices search engines
[Shodan](https://www.shodan.io/)
Criminal IP
[Airport webcams](http://airportwebcams.net/)
Insecam
[Lookr](https://www.lookr.com/)
Earthcam
[Openstreetcam](https://www.openstreetcam.org/map/)
Opentopia
[Pictimo](https://www.pictimo.com/)
Thingful
[Webcam.nl (NL)](https://webcam.nl/live_streaming/)
Webcams.travel
[Worldcam](https://worldcam.eu/)
censys
These tools can be utilized for discovering exposed IoT devices and detecting their vulnerabilities, open ports, etc.
Source: https://osint.link/
π£talentSA112200
π@malwr
Internet Of Things (IoT) devices search engines
[Shodan](https://www.shodan.io/)
Criminal IP
[Airport webcams](http://airportwebcams.net/)
Insecam
[Lookr](https://www.lookr.com/)
Earthcam
[Openstreetcam](https://www.openstreetcam.org/map/)
Opentopia
[Pictimo](https://www.pictimo.com/)
Thingful
[Webcam.nl (NL)](https://webcam.nl/live_streaming/)
Webcams.travel
[Worldcam](https://worldcam.eu/)
censys
These tools can be utilized for discovering exposed IoT devices and detecting their vulnerabilities, open ports, etc.
Source: https://osint.link/
π£talentSA112200
π@malwr
Shodan
Search engine of Internet-connected devices. Create a free account to get started.