Forwarded from Exploiting Crew (Pr1vAt3)
This media is not supported in your browser
VIEW IN TELEGRAM
π¦8 Popular Network Protocols
π¦Top CPUs for cracking in 2024:
1. AMD Ryzen 9 7950X3D β Best for gaming with 3D V-Cache technology.
2. Intel Core i9-14900K β High performance for multitasking and gaming.
3. AMD Ryzen 7 7800X3D β Great balance between performance and price.
4. Intel Core i7-14700K β A top choice for budget-conscious users.
5. AMD Ryzen 9 7900X β Excellent for content creation and heavy workloads.
β β β Uππ»βΊπ«Δπ¬πβ β β β
1. AMD Ryzen 9 7950X3D β Best for gaming with 3D V-Cache technology.
2. Intel Core i9-14900K β High performance for multitasking and gaming.
3. AMD Ryzen 7 7800X3D β Great balance between performance and price.
4. Intel Core i7-14700K β A top choice for budget-conscious users.
5. AMD Ryzen 9 7900X β Excellent for content creation and heavy workloads.
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦ Tesla car Hacking and control it remotely + installisation:
https://github.com/teslamotors/vehicle-command
https://github.com/teslamotors/vehicle-command
Forwarded from Exploiting Crew (Pr1vAt3)
bitcoin-bruteforce-main.zip
8.6 KB
Forwarded from UNDERCODE COMMUNITY (UNDERCODER)
Secure BTC wallet- A to Z.pdf
108.5 KB
Forwarded from Exploiting Crew (Pr1vAt3)
This media is not supported in your browser
VIEW IN TELEGRAM
π¦ skimmer!
A skimmer is a sneaky device placed over legitimate card readersβlike ATMs or payment terminalsβthat steals your card info. Sometimes, thereβs a PIN pad overlay too, recording every keystroke you make. Scary, right?
π How to Spot a Skimmer:
1. Check for loose or bulky parts on the card reader.
2. Wiggle the card slotβif it moves, be suspicious.
3. Look for mismatched colors or anything that looks βoff.β
4. Always cover your hand when entering your PIN.
Remember, these thieves thrive on speed and stealth. Stay sharp, stay secure!
source: Nathan House
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
A skimmer is a sneaky device placed over legitimate card readersβlike ATMs or payment terminalsβthat steals your card info. Sometimes, thereβs a PIN pad overlay too, recording every keystroke you make. Scary, right?
π How to Spot a Skimmer:
1. Check for loose or bulky parts on the card reader.
2. Wiggle the card slotβif it moves, be suspicious.
3. Look for mismatched colors or anything that looks βoff.β
4. Always cover your hand when entering your PIN.
Remember, these thieves thrive on speed and stealth. Stay sharp, stay secure!
source: Nathan House
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from Exploiting Crew (Pr1vAt3)
π¦105 Windows SIEM Use Cases
1.Failed Login Attempts - Event ID: 4625
2.Account Lockouts - Event ID: 4740
3.Successful Login Outside Business Hours - Event ID: 4624
4.New User Creation - Event ID: 4720
5.Privileged Account Usage - Event ID: 4672
6.User Account Changes - Event IDs: 4722, 4723, 4724, 4725, 4726
7.Logon from Unusual Locations - Event ID: 4624 (with geolocation analysis)
8.Password Changes - Event ID: 4723 (change attempt), 4724 (successful reset)
9.Group Membership Changes - Event IDs: 4727, 4731, 4735, 4737
10.Suspicious Logon Patterns - Event ID: 4624 (anomalous logons)
11.Excessive Logon Failures - Event ID: 4625
12.Disabled Account Activity - Event ID: 4725
13.Dormant Account Usage - Event ID: 4624 (rarely used accounts)
14.Service Account Activity - Event IDs: 4624, 4672
15.RDP Access Monitoring - Event ID: 4624 (with RDP-specific filtering)
16.Lateral Movement Detection - Event ID: 4648 (network logons)
17.File and Folder Access - Event ID: 4663
18.Unauthorised File Sharing - Event IDs: 5140, 5145
19.Registry Changes - Event IDs: 4657
20.Application Installation and Removal - Event IDs: 11707, 1033
21.USB Device Usage - Event IDs: 20001, 20003 (from Device Management logs)
22.Windows Firewall Changes - Event IDs: 4946, 4947, 4950, 4951
23.Scheduled Task Creation - Event ID: 4698
24.Process Execution Monitoring - Event ID: 4688
25.System Restart or Shutdown - Event IDs: 6005, 6006, 1074
26.Event Log Clearing - Event ID: 1102
27.Malware Execution or Indicators - Event IDs: 4688, 1116 (from Windows Defender)
28.Active Directory Changes - Event IDs: 5136, 5141
29.Shadow Copy Deletion - Event ID: 524 (with VSSAdmin logs)
30.Network Configuration Changes - Event IDs: 4254, 4255, 10400
31.Execution of Suspicious Scripts - Event ID: 4688 (process creation with script interpreter)
32.Service Installation or Modification - Event ID: 4697
33.Clearing of Audit Logs - Event ID: 1102
34.Software Restriction Policy Violation - Event ID: 865
35.Excessive Account Enumeration - Event IDs: 4625, 4776
36.Attempt to Access Sensitive Files - Event ID: 4663
37.Unusual Process Injection - Event ID: 4688 (with EDR or Sysmon data)
38.Driver Installation - Event IDs: 7045 (Service Control Manager)
39.Modification of Scheduled Tasks - Event ID: 4699
40.Unauthorised GPO Changes - Event ID: 5136
41.Suspicious PowerShell Activity - Event ID: 4104 (from PowerShell logs)
42.Unusual Network Connections - Event ID: 5156 (network filtering platform)
43.Unauthorised Access to Shared Files - Event ID: 5145
44.DNS Query for Malicious Domains - Event ID: 5158 (DNS logs required)
45.LDAP Search Abuse - Event ID: 4662
46.Process Termination Monitoring - Event ID: 4689
47.Failed Attempts to Start a Service - Event ID: 7041
48.Audit Policy Changes - Event IDs: 4719, 1102
49.Time Change Monitoring - Event IDs: 4616, 520
50.BitLocker Encryption Key Changes - Event ID: 5379
ref: Shahaz Mz
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
1.Failed Login Attempts - Event ID: 4625
2.Account Lockouts - Event ID: 4740
3.Successful Login Outside Business Hours - Event ID: 4624
4.New User Creation - Event ID: 4720
5.Privileged Account Usage - Event ID: 4672
6.User Account Changes - Event IDs: 4722, 4723, 4724, 4725, 4726
7.Logon from Unusual Locations - Event ID: 4624 (with geolocation analysis)
8.Password Changes - Event ID: 4723 (change attempt), 4724 (successful reset)
9.Group Membership Changes - Event IDs: 4727, 4731, 4735, 4737
10.Suspicious Logon Patterns - Event ID: 4624 (anomalous logons)
11.Excessive Logon Failures - Event ID: 4625
12.Disabled Account Activity - Event ID: 4725
13.Dormant Account Usage - Event ID: 4624 (rarely used accounts)
14.Service Account Activity - Event IDs: 4624, 4672
15.RDP Access Monitoring - Event ID: 4624 (with RDP-specific filtering)
16.Lateral Movement Detection - Event ID: 4648 (network logons)
17.File and Folder Access - Event ID: 4663
18.Unauthorised File Sharing - Event IDs: 5140, 5145
19.Registry Changes - Event IDs: 4657
20.Application Installation and Removal - Event IDs: 11707, 1033
21.USB Device Usage - Event IDs: 20001, 20003 (from Device Management logs)
22.Windows Firewall Changes - Event IDs: 4946, 4947, 4950, 4951
23.Scheduled Task Creation - Event ID: 4698
24.Process Execution Monitoring - Event ID: 4688
25.System Restart or Shutdown - Event IDs: 6005, 6006, 1074
26.Event Log Clearing - Event ID: 1102
27.Malware Execution or Indicators - Event IDs: 4688, 1116 (from Windows Defender)
28.Active Directory Changes - Event IDs: 5136, 5141
29.Shadow Copy Deletion - Event ID: 524 (with VSSAdmin logs)
30.Network Configuration Changes - Event IDs: 4254, 4255, 10400
31.Execution of Suspicious Scripts - Event ID: 4688 (process creation with script interpreter)
32.Service Installation or Modification - Event ID: 4697
33.Clearing of Audit Logs - Event ID: 1102
34.Software Restriction Policy Violation - Event ID: 865
35.Excessive Account Enumeration - Event IDs: 4625, 4776
36.Attempt to Access Sensitive Files - Event ID: 4663
37.Unusual Process Injection - Event ID: 4688 (with EDR or Sysmon data)
38.Driver Installation - Event IDs: 7045 (Service Control Manager)
39.Modification of Scheduled Tasks - Event ID: 4699
40.Unauthorised GPO Changes - Event ID: 5136
41.Suspicious PowerShell Activity - Event ID: 4104 (from PowerShell logs)
42.Unusual Network Connections - Event ID: 5156 (network filtering platform)
43.Unauthorised Access to Shared Files - Event ID: 5145
44.DNS Query for Malicious Domains - Event ID: 5158 (DNS logs required)
45.LDAP Search Abuse - Event ID: 4662
46.Process Termination Monitoring - Event ID: 4689
47.Failed Attempts to Start a Service - Event ID: 7041
48.Audit Policy Changes - Event IDs: 4719, 1102
49.Time Change Monitoring - Event IDs: 4616, 520
50.BitLocker Encryption Key Changes - Event ID: 5379
ref: Shahaz Mz
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from Exploiting Crew (Pr1vAt3)
π¦ AI-powered ethical hacking :
: Features
- Natural Language Processing : Executes commands based on user input, translating intent into action seamlessly.
- Command Search Engine : Facilitates the search for services, ports, or specific terms, providing curated command suggestions to identify vulnerabilities.
Β» Supported Ethical Hacking Tools :
1. NMAP : Network discovery and security auditing.
2. OWASP ZAP (Full Scan Only) : Web application security scanner.
3. Crackmapexec : Network information gathering.
4. Nuclei : Template-based fast scanning with zero false positives.
Β» Compatibility
- Optimized for Linux : Fully functional on Linux platforms.
- Limited/No Support : Functionality on Windows or macOS is not guaranteed.
System Requirements
Non-Docker Installation
- Storage : 50GB
- RAM : 16GB minimum
- GPU : 8GB recommended for optimal performance.
Β» Dependencies
- Linux (Debian-based) :
- Installations:
- Git-based exploitdb:
Β»Installation
Docker Installation
1. Pulling the image :
2. Running without GPU :
3. Running with GPU :
4. Autonomous mode :
- Default vulnerability scan:
- Custom NMAP vulnerability scan:
PIP Installation
1. Install:
2. Run:
3. For elevated privileges:
Β» Linux Post-Installation
1. Add the installation path to your
Nebula-Watcher (Optional Component)
PIP Installation
Docker Installation
1. Pull the image:
2. Run:
Customize diagram name:
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
: Features
- Natural Language Processing : Executes commands based on user input, translating intent into action seamlessly.
- Command Search Engine : Facilitates the search for services, ports, or specific terms, providing curated command suggestions to identify vulnerabilities.
Β» Supported Ethical Hacking Tools :
1. NMAP : Network discovery and security auditing.
2. OWASP ZAP (Full Scan Only) : Web application security scanner.
3. Crackmapexec : Network information gathering.
4. Nuclei : Template-based fast scanning with zero false positives.
Β» Compatibility
- Optimized for Linux : Fully functional on Linux platforms.
- Limited/No Support : Functionality on Windows or macOS is not guaranteed.
System Requirements
Non-Docker Installation
- Storage : 50GB
- RAM : 16GB minimum
- GPU : 8GB recommended for optimal performance.
Β» Dependencies
- Linux (Debian-based) :
- Installations:
sudo apt -y install exploitdb libreadline-dev wget nmap crackmapexec nuclei
- Git-based exploitdb:
sudo git clone https://gitlab.com/exploit-database/exploitdb.git /opt/exploitdb
sudo ln -sf /opt/exploitdb/searchsploit /usr/local/bin/searchsploit
Β»Installation
Docker Installation
1. Pulling the image :
docker pull berylliumsec/nebula:latest
2. Running without GPU :
docker run --rm -it berylliumsec/nebula:latest
3. Running with GPU :
docker run --rm --gpus all -v "$(pwd)":/app/unified_models_no_zap -it berylliumsec/nebula:latest
4. Autonomous mode :
- Default vulnerability scan:
docker run --rm --gpus all -v "$(pwd)/targets.txt":/app/targets.txt -v "$(pwd)"/unified_models:/app/unified_models -it nebula:latest --autonomous_mode True --targets_list /app/targets.txt
- Custom NMAP vulnerability scan:
docker run --rm --gpus all -v "$(pwd)/targets.txt":/app/targets.txt -v "$(pwd)"/unified_models:/app/unified_models -it nebula:latest --autonomous_mode True --nmap_vuln_scan_command="nmap -Pn -sV --exclude-ports 21 --script=vulscan/vulscan.nse" --targets_list /app/targets.txt
PIP Installation
1. Install:
pip install nebula-ai
2. Run:
nebula
3. For elevated privileges:
sudo pip install nebula-ai
sudo nebula
Β» Linux Post-Installation
1. Add the installation path to your
.zshrc:export PATH="$HOME/.local/bin:$PATH"
Nebula-Watcher (Optional Component)
PIP Installation
pip3 install nebula-watcher
Docker Installation
1. Pull the image:
docker pull berylliumsec/nebula_watcher:latest
2. Run:
docker run --network host -v /path/to/nmap_results:/app/results -v /path/to/output:/app/output berylliumsec/nebula_watcher:latest
Customize diagram name:
docker run --network host -v /path/to/nmap_results:/app/results -v /path/to/output:/app/output berylliumsec/nebula_watcher:latest python3 nebula_watcher.py --diagram_name /app/your_diagram_name
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from Exploiting Crew (Pr1vAt3)
π¦ Bitcoin Core Integration and Development:
>> What is Bitcoin Core?
Bitcoin Core is the reference implementation of Bitcoin, connecting to the peer-to-peer Bitcoin network. Its primary functions include:
- Downloading and fully validating blocks and transactions.
- Serving as a wallet.
- Providing an optional graphical user interface (GUI).
Binary versions are available for immediate use at [Bitcoin Core Downloads](https://bitcoincore.org/en/download/).
>> Licensing
Bitcoin Core is licensed under the MIT License, allowing free use and modification. Details can be found in the
>> Development Process
- Master Branch: Continuously built and tested but may not always be stable.
- Release Branches and Tags: Created regularly to mark stable releases.
- GUI Development: Exclusively managed in the [bitcoin-core/gui repository](https://github.com/bitcoin-core/gui). This repository mirrors the monotree's master branch and does not have release branches or tags.
>># Contribution
Developers can follow the workflow in
>> Testing and Quality Assurance
>># Automated Testing:
1. Unit Tests: Recommended for all new code and improvements to existing code. Use
2. Regression and Integration Tests: Written in Python, executed with:
3. CI Systems: Automatically test pull requests across Windows, Linux, and macOS platforms.
>># Manual Testing:
- Requires a reviewer distinct from the code author, particularly for substantial or high-risk changes.
- Adding a clear test plan in pull request descriptions is encouraged for complex changes.
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
>> What is Bitcoin Core?
Bitcoin Core is the reference implementation of Bitcoin, connecting to the peer-to-peer Bitcoin network. Its primary functions include:
- Downloading and fully validating blocks and transactions.
- Serving as a wallet.
- Providing an optional graphical user interface (GUI).
Binary versions are available for immediate use at [Bitcoin Core Downloads](https://bitcoincore.org/en/download/).
>> Licensing
Bitcoin Core is licensed under the MIT License, allowing free use and modification. Details can be found in the
COPYING file or at the [MIT License site](https://opensource.org/licenses/MIT).>> Development Process
- Master Branch: Continuously built and tested but may not always be stable.
- Release Branches and Tags: Created regularly to mark stable releases.
- GUI Development: Exclusively managed in the [bitcoin-core/gui repository](https://github.com/bitcoin-core/gui). This repository mirrors the monotree's master branch and does not have release branches or tags.
>># Contribution
Developers can follow the workflow in
CONTRIBUTING.md. Additional insights and guidelines are in doc/developer-notes.md.>> Testing and Quality Assurance
>># Automated Testing:
1. Unit Tests: Recommended for all new code and improvements to existing code. Use
ctest to compile and run unit tests.2. Regression and Integration Tests: Written in Python, executed with:
build/test/functional/test_runner.py
3. CI Systems: Automatically test pull requests across Windows, Linux, and macOS platforms.
>># Manual Testing:
- Requires a reviewer distinct from the code author, particularly for substantial or high-risk changes.
- Adding a clear test plan in pull request descriptions is encouraged for complex changes.
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
Bitcoin Core
Download - Bitcoin
Forwarded from Exploiting Crew (Pr1vAt3)
π¦100% FREE classes for a pathway into cybersecurity and ethical hacking
Foundations:
Help Desk
β‘οΈTCM Security Academy β Practical Help Desk (https://lnkd.in/geDEvt6d)
β‘οΈProfessor Messer β 220-1101 and 220-1102 A+ Courses (https://lnkd.in/gKjJsSPz & https://lnkd.in/gMW3hMsv)
Networking
β‘οΈProfessor Messer β N10-009 Network+ Course (https://lnkd.in/g8mYZaMm)
β‘οΈCisco Networking Academy β Packet Tracer (https://lnkd.in/guGibYx6)
Linux
β‘οΈTCM Security Academy β Linux 100: Fundamentals (https://lnkd.in/gEGHzxw3)
β‘οΈLinux Journey (https://linuxjourney.com/)
β‘οΈOverTheWire β Bandit (https://lnkd.in/gRwPsump)
Programming
β‘οΈTCM Security β Programming 100: Fundamentals (https://lnkd.in/gWZe2JRj)
β‘οΈFreeCodeCamp (https://lnkd.in/gbaHhV34)
β‘οΈCodecademy (https://lnkd.in/gxAHnTFD)
Security Essentials
β‘οΈProfessor Messer β SY0-701 Security+ Course (https://lnkd.in/gfCCMJqQ)
Hacking Essentials
β‘οΈEthical Hacking in 15 Hours Part 1 (https://lnkd.in/gWump_cZ)
β‘οΈEthical Hacking in 15 Hours Part 2 (https://lnkd.in/gH9_Ap7F)
β‘οΈTryHackMe (https://tryhackme.com/)
Active Directory Hacking
β‘οΈHow to Build an Active Directory Hacking Lab (https://lnkd.in/g_9wjzhz)
β‘οΈHacking Active Directory for Beginners (https://lnkd.in/gaewN7nU)
Web Application Hacking
β‘οΈPortSwigger Web Security Academy (https://lnkd.in/gvx6NgcZ)
β‘οΈHacker101 (https://www.hacker101.com/)
β‘οΈBugcrowd University (https://lnkd.in/g_aPUcD8)
Ref: Heath Adams
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
Foundations:
Help Desk
β‘οΈTCM Security Academy β Practical Help Desk (https://lnkd.in/geDEvt6d)
β‘οΈProfessor Messer β 220-1101 and 220-1102 A+ Courses (https://lnkd.in/gKjJsSPz & https://lnkd.in/gMW3hMsv)
Networking
β‘οΈProfessor Messer β N10-009 Network+ Course (https://lnkd.in/g8mYZaMm)
β‘οΈCisco Networking Academy β Packet Tracer (https://lnkd.in/guGibYx6)
Linux
β‘οΈTCM Security Academy β Linux 100: Fundamentals (https://lnkd.in/gEGHzxw3)
β‘οΈLinux Journey (https://linuxjourney.com/)
β‘οΈOverTheWire β Bandit (https://lnkd.in/gRwPsump)
Programming
β‘οΈTCM Security β Programming 100: Fundamentals (https://lnkd.in/gWZe2JRj)
β‘οΈFreeCodeCamp (https://lnkd.in/gbaHhV34)
β‘οΈCodecademy (https://lnkd.in/gxAHnTFD)
Security Essentials
β‘οΈProfessor Messer β SY0-701 Security+ Course (https://lnkd.in/gfCCMJqQ)
Hacking Essentials
β‘οΈEthical Hacking in 15 Hours Part 1 (https://lnkd.in/gWump_cZ)
β‘οΈEthical Hacking in 15 Hours Part 2 (https://lnkd.in/gH9_Ap7F)
β‘οΈTryHackMe (https://tryhackme.com/)
Active Directory Hacking
β‘οΈHow to Build an Active Directory Hacking Lab (https://lnkd.in/g_9wjzhz)
β‘οΈHacking Active Directory for Beginners (https://lnkd.in/gaewN7nU)
Web Application Hacking
β‘οΈPortSwigger Web Security Academy (https://lnkd.in/gvx6NgcZ)
β‘οΈHacker101 (https://www.hacker101.com/)
β‘οΈBugcrowd University (https://lnkd.in/g_aPUcD8)
Ref: Heath Adams
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
lnkd.in
LinkedIn
This link will take you to a page thatβs not on LinkedIn