Pentesting IoT devices (Part 1: Static Analysis)
https://blog.mindedsecurity.com/2018/09/pentesting-iot-devices-part-1-static.html
#iot
@sec_nerd_en
https://blog.mindedsecurity.com/2018/09/pentesting-iot-devices-part-1-static.html
#iot
@sec_nerd_en
DDoS attack from Anonymous Catalonia cripples Bank of Spain website
The official website of Banco de España (Bank of Spain), which is the central bank of the country, was hit by a Distributed Denial of Service (DDoS) attack on Sunday. The attack potentially disrupted the website’s operations and it became inaccessible at the beginning of the week. The attack, reportedly, has been claimed by the notorious hackers collective Anonymous Catalonia.
https://www.hackread.com/ddos-attack-anonymous-catalonia-cripples-bank-of-spain-website/
#ddos
#anonymous
@sec_nerd_en
The official website of Banco de España (Bank of Spain), which is the central bank of the country, was hit by a Distributed Denial of Service (DDoS) attack on Sunday. The attack potentially disrupted the website’s operations and it became inaccessible at the beginning of the week. The attack, reportedly, has been claimed by the notorious hackers collective Anonymous Catalonia.
https://www.hackread.com/ddos-attack-anonymous-catalonia-cripples-bank-of-spain-website/
#ddos
#anonymous
@sec_nerd_en
HackRead
DDoS attack from Anonymous Catalonia cripples Bank of Spain website
They did it for #OpCatalonia.
nmap-bootstrap-xsl
A Nmap XSL implementation with Bootstrap.
https://github.com/honze-net/nmap-bootstrap-xsl
#nmap
@sec_nerd_en
A Nmap XSL implementation with Bootstrap.
https://github.com/honze-net/nmap-bootstrap-xsl
#nmap
@sec_nerd_en
IDOR: Insecure Direct Object Reference
https://www.gracefulsecurity.com/idor-insecure-direct-object-reference/
#idor
#pentest
#web
@sec_nerd_en
https://www.gracefulsecurity.com/idor-insecure-direct-object-reference/
#idor
#pentest
#web
@sec_nerd_en
https://insights.sei.cmu.edu/cert/2018/08/when-aslr-is-not-really-aslr---the-case-of-incorrect-assumptions-and-bad-defaults.html
#ASLR
#Pentesting
#ASLR
#Pentesting
SEI Blog
When
As a vulnerability analyst at the CERT Coordination Center, I am interested not only in software vulnerabilities themselves, but also exploits and exploit mitigations....
#Heap #exploitation Intro Series: Used and Abused -> UaF (#Linux)
https://sensepost.com/blog/2017/linux-heap-exploitation-intro-series-used-and-abused-use-after-free/
@sec_nerd_en
https://sensepost.com/blog/2017/linux-heap-exploitation-intro-series-used-and-abused-use-after-free/
@sec_nerd_en
Sensepost
SensePost | Linux heap exploitation intro series: used and abused – use after free
Leaders in Information Security
RemoteRecon
RemoteRecon provides the ability to execute post-exploitation capabilities against a remote host, without having to expose your complete toolkit/agent.
https://github.com/xorrior/Remo
RemoteRecon provides the ability to execute post-exploitation capabilities against a remote host, without having to expose your complete toolkit/agent.
https://github.com/xorrior/Remo
EDM proxy for infecting files on-the-fly
Offensive Proxy server
POC for infecting PE files, ZIP files, Office documents on the fly during a HTTP MitM.
https://github.com/LeonardoNve/edm
#wtf
#mitm
#windows
@sec_nerd_en
Offensive Proxy server
POC for infecting PE files, ZIP files, Office documents on the fly during a HTTP MitM.
https://github.com/LeonardoNve/edm
#wtf
#mitm
#windows
@sec_nerd_en
GitHub
LeonardoNve/edm
Encima De la Mosca HTTP proxy POC for infecting files on-the-fly and SSLstrip2 - LeonardoNve/edm
https://www.nytimes.com/2018/09/09/world/europe/sergei-skripal-russian-spy-poisoning.html
#Skripal_case
#Spy_stories
#Skripal_case
#Spy_stories
NY Times
A Spy Story: Sergei Skripal Was a Little Fish. He Had a Big Enemy. (Published 2018)
Sergei Skripal and Vladimir Putin, Soviet men of the same age, were raised to wage war against the West. After the Soviet Union collapsed, one rose. And one fell.
Penetration Testing/Security Cheatsheets a huge list.
https://raw.githubusercontent.com/n00py/ReadingList/master/gunsafe.txt
#pentest
@sec_nerd_en
https://raw.githubusercontent.com/n00py/ReadingList/master/gunsafe.txt
#pentest
@sec_nerd_en
Use PowerShell to Find the History of USB Flash Drive Usage
https://blogs.technet.microsoft.com/heyscriptingguy/2012/05/18/use-powershell-to-find-the-history-of-usb-flash-drive-usage/
#windows
#ps
#enum
@sec_nerd_en
https://blogs.technet.microsoft.com/heyscriptingguy/2012/05/18/use-powershell-to-find-the-history-of-usb-flash-drive-usage/
#windows
#ps
#enum
@sec_nerd_en
Droidefense Engine
Advance Android Malware Analysis Framework
https://github.com/droidefense/engine
#android
#malware
@sec_nerd_en
Advance Android Malware Analysis Framework
https://github.com/droidefense/engine
#android
#malware
@sec_nerd_en
How does a #Bitcoin Transaction work? {Infographic}
#blockchain #fintech #BTC #CyberSecurity #DLT #innovation #cryptocurrency #infosec #disruption #Security #Crypto
@sec_nerd_en
#blockchain #fintech #BTC #CyberSecurity #DLT #innovation #cryptocurrency #infosec #disruption #Security #Crypto
@sec_nerd_en