3️⃣This dumping process took around 2.5 minutes. The dump matched the "BIOS ROM file" which I extracted from the Z170-AR-ASUS-3801.CAP (downloaded from ASUS' website) using UEFITool.

Note: This board uses the ASM1142 USB 3.0 chip which has its own over current (OC) detection. I couldn't find the BoardView for my Z170-AR 1.03 motherboard and hence I had to pause the hardware debugging process at this point.

Next, switching to the SW sides of things, I was able to patch the ASUS BIOS using UEFITool, GHIDRA, Cutter (Rizin GUI), and WinHex to bypass this USB OC error message (and the subsequent PC hang)!

binwalk -eM bios.rom # bios.rom is extracted from UEFItool.

[user@random _flash-me.rom.extracted]$ find . -type f -exec strings {} \; | grep "USB Device"
USB Device Over Current Status Detected !!

4️⃣I wrote the modded BIOS back using the following command,

$ sudo ./flashrom --programmer ch341a_spi -v 1402_modded_working.rom
flashrom v1.2-169-g10d71d9 on Linux 5.8.0-33-lowlatency (x86_64)
flashrom is free software, get the source code at https://flashrom.org

Using clock_gettime for delay loops (clk_id: 1, resolution: 1ns).
Found Winbond flash chip "W25Q128.V" (16384 kB, SPI) on ch341a_spi.
Verifying flash... VERIFIED.
...
After patching the BIOS, I was able to boot into the system! After logging in, I was able to confirm that ASM1142 chip is generating those OC (Over Current) signals.

$ sudo dmesg | grep over-cu
[ 1.082715] usb usb4-port2: over-current condition
[ 1.086705] usb usb3-port2: over-current condition
$ lspci
...
00:14.0 USB controller: Intel Corporation 100 Series/C230 Series Chipset Family USB 3.0 xHCI Controller (rev 31)
02:00.0 USB controller: ASMedia Technology Inc. ASM1142 USB 3.1 Host Controller
03:00.0 PCI bridge: ASMedia Technology Inc. ASM1083/1085 PCIe to PCI Bridge (rev 04)
This controller can be disabled with the following command.

$ echo -n "0000:02:00.0" | sudo tee /sys/bus/pci/drivers/xhci_hcd/unbind
Here is a Linux hack to ignore the misbehaving ASM1142 USB 3.0 controller on bootup.

$ cat /etc/rc.local
#!/bin/bash

# "Fix" "2:00.0 USB controller: ASMedia Technology Inc. ASM1142 USB 3.1 Host Controller"
echo -n "0000:02:00.0" | sudo tee -a /sys/bus/pci/drivers/xhci_hcd/unbind

exit 0
This made the system pretty usable again. Victory!?

🦑Be Ethical, Use it for learning purposes !!!

Ref: Hacking Notes
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑LeakedDBParser :

A tool to parse leaked databases in CSV-like or SQL format.

>> LeakedDBParser

git clone https://github.com/hegusung/LeakedDBParser.git
./leakeddbparser.py <hashfile> [-o <output_file>] [-n max_lines] {csv|sql} [csv or sql options]

>> CSV Format Options

1️⃣. -c: Select columns and apply checks.
- Syntax: -c <column_number>,<condition>
- Example:

     -c 1,2=40,?3
     

- Includes columns 1 and 2 in the output if:
- Column 2 has a length of 40.
- Column 3 exists.

2️⃣. --no-header: Ignore the first line of the CSV file.

>> SQL Format Options

3️⃣. --list-tables: List the tables and their columns in the SQL dump.
- Example:

     ./leakeddbparser.py sqldump.sql sql --list-tables
     

4️⃣. --dump <table_name>: Export a specific table.
- Can use -c to select specific columns.

5️⃣. Column Selection (-c):
- Syntax: -c <column_numbers>
- Example:

     ./leakeddbparser.py sqldump.sql -o export_user_hash.txt sql --dump users -c 3,5
     

- Exports columns 3 and 5 from the users table to the file export_user_hash.txt.

@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑10 Cybersecurity Marketing Strategies To Grow Your Business:

1. Create A Product-Led SEO & Content Marketing Strategy

2. Get Targeted Media Coverage With Strategic PR

3. Build Authority With Anonymous Case Studies

4. Invest In PPC Campaigns For Faster Growth

5. Build Your Tribe With Email Marketing

6. Secure Your Cybersecurity Firm’s Online Reputation

7. Generate Social Proof On Review Aggregator Sites

8. Grow Your Social Media Influence

9. Drive Traffic From Reddit & Quora

10. Start A Podcast To Offer In-depth Advice

Ref: Chris Greer
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑"If you place a simple app into public cloud, what would you need to do to make sure everything is secured?"

I am getting a lot of different answers. Some recall authentication and authorization.

Some are talking about Web Firewall.

Some give me much more detail on network segmentation.

All this is great, but I missed somehow a holistic picture of this security aspects in Solution Design.

As you know, a picture worth a thousand words, so I put all things together into one generic picture.

There are a lot more nuances, for sure, but I think this diagram could be a good starting point in understanding a security.

Ref: Dmitrijs Lebedevs
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Certified Ethical Hacker (CEHv12)

With 1,000+ unique questions across 8 practice exams, this set will challenge you and ensure you’re ready for the CEHv12.
• CEHv12 Practice Exam 1: https://lnkd.in/dVeQUwiw
• CEHv12 Practice Exam 2: https://lnkd.in/d5ShM5AZ
• CEHv12 Practice Exam 3: https://lnkd.in/da8nkDn5
• CEHv12 Practice Exam 4: https://lnkd.in/dbPbn4x8
• CEHv12 Practice Exam 5: https://lnkd.in/ddsQ6DnM
• CEHv12 Practice Exam 6: https://lnkd.in/dVHf_TjH
• CEHv12 Practice Exam 7: https://lnkd.in/dST4u_MX
• CEHv12 Practice Exam 8: https://lnkd.in/d9Nue9QP

☁️ Certified Cloud Security Professional (CCSP)

Challenge yourself with 1,000+ exam-level questions. Complete these, and you’ll be fully prepared for the CCSP exam!
• ISC2 CCSP Practice Exam 1: https://lnkd.in/dekjyfPa
• ISC2 CCSP Practice Exam 2: https://lnkd.in/dy5bp8FP
• ISC2 CCSP Practice Exam 3: https://lnkd.in/d_3txHnb
• ISC2 CCSP Practice Exam 4: https://lnkd.in/dRbCYydv
• ISC2 CCSP Practice Exam 5: https://lnkd.in/ddXJZMfZ
• ISC2 CCSP Practice Exam 6: https://lnkd.in/ddv4aJ6M
• ISC2 CCSP Practice Exam 7: https://lnkd.in/dJ_4KcuJ
• ISC2 CCSP Practice Exam 8: https://lnkd.in/dAv2x-Ef

🔐 Systems Security Certified Practitioner (SSCP)

Test your knowledge and strengthen your understanding of all SSCP domains with these practice exams.
• SSCP Practice Exam 1: https://lnkd.in/dUKdvsxD
• SSCP Practice Exam 2: https://lnkd.in/dvXAzPtH
• SSCP Practice Exam 3: https://lnkd.in/deJQCyzA
• SSCP Practice Exam 4: https://lnkd.in/dGcumayJ
• SSCP Practice Exam 5: https://lnkd.in/ddfSty77
• SSCP Practice Exam 6: https://lnkd.in/dqeDi6jJ
• SSCP Practice Exam 7: https://lnkd.in/drWV3DHg
• SSCP Practice Exam 8: https://lnkd.in/diCvQMUS

Additional Practice Exams You Might Be Interested In:

• Security+ SY0-701: https://lnkd.in/dc7NTdvd
• CISSP: https://lnkd.in/dK4YNCM2
• ISC2 CC: https://certpreps.com/CC
• CISM: https://lnkd.in/d9x3_Djr
• CISA: https://lnkd.in/d-8BccxW
• AWS CLF-C02: https://lnkd.in/dHd_Nxgi
• Azure Fundamentals (AZ-900): https://lnkd.in/d4Zm9r-N
• CYSA+: https://lnkd.in/dfcGKsPt
• CCNA: https://certpreps.com/ccna
• A+: https://lnkd.in/dWDV5prF


Ref: Shahzad MS
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Smtp server and mail list system for sending unlimited emails and text messages:

Mail Demon is a robust and efficient tool for sending bulk emails and text messages. Its design focuses on high performance, simplicity, and secure delivery, leveraging .NET 6.0+ and integration with frameworks like MimeKit and MailKit. It includes built-in security features such as SPF validation and integrates seamlessly with IPBan for added protection against brute force attacks.

>> Features
- High Performance: Optimized for low memory and CPU usage, capable of sending thousands of messages per second.
- Security: Supports SPF, DKIM, and DMARC records for secure email delivery.
- SMTP Features: Includes support for extensions like STARTTLS, AUTH PLAIN, and SMTPUTF8.
- Mail List Management: Integrated website for managing mailing lists, templates, and subscriber interactions.
- Database Support: SQLite by default, with SQL Server support as an option.
- Cross-platform Compatibility: Runs on Linux and Windows servers.

>> Setup Instructions

>> General Prerequisites
1. Install .NET 6.0+ runtime or publish as a self-contained executable.
2. Update `appsettings.json` with your configurations:
- SMTP settings.
- User credentials (avoid default settings).
- SSL certificates (recommended: Let’s Encrypt).

>># Building Mail Demon
1. Download and open the project in Visual Studio/VS Code.
2. Set the release configuration.
3. Publish the project.
4. Transfer the binaries to your server.

>> Linux Service Configuration
1. Place binaries in /opt/MailDemon.
2. Create a service file (/lib/systemd/system/MailDemon.service):

   [Unit]
   Description=Mail Demon Service
   After=network.target

   [Service]
   WorkingDirectory=/opt/MailDemon
   ExecStart=/usr/bin/dotnet /opt/MailDemon/MailDemon.dll
   Restart=on-failure

   [Install]
   WantedBy=multi-user.target
   

3. Enable and start the service:

   sudo systemctl daemon-reload
   sudo systemctl enable MailDemon
   sudo systemctl start MailDemon
   systemctl status MailDemon
   

>># DNS Configuration
1. SPF Record: v=spf1 mx -all
2. MX Record: Point to your domain's email server.
3. A/AAAA Record: Map to your server's IP address.
4. DMARC Record: Refer to [DMARC wiki](https://en.wikipedia.org/wiki/DMARC).
5. DKIM: Set up DKIM keys for email authentication.
6. Reverse DNS: Ensure your IP address resolves to your mail server domain.

>> Mail List Management
1. Enable Web Interface:
- Set enableWeb to true in appsettings.json.
- Configure authority, admin credentials, and reCAPTCHA keys.
2. Create and Manage Lists:
- Log in at /MailDemonLogin.
- Define lists and templates.
- Customize templates using Razor syntax.

3. Sending Emails:
- Assign a subject using <!-- Subject: ... --> in templates.
- Send bulk emails using the integrated mail list interface.

4. Magic Templates for Default Behaviors:
- SubscribeInitial: Sign-up form.
- SubscribeConfirm: Confirmation email.
- SubscribeWelcome: Welcome email.

>> Database Management
- Default: SQLite (MailDemon.db).
- Optional: SQL Server (configure in appsettings.json).

>> Known Issues
- Hotmail and Outlook Certificates: Add problematic domains to appsettings.json if invalid SSL certificates are encountered.

This streamlined tool is ideal for managing notifications, announcements, and bulk messaging tasks with ease.

@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑is your windows slow ?
Free Optimizer apps:

https://github.com/hellzerg/optimizer

https://github.com/Threelon/Windows-Optimizer

https://github.com/azurejoga/Aurora-Windows-Optimizer

https://www.iolo.com

https://www.glarysoft.com

https://www.ccleaner.com

https://www.tweaking.com/content/page/windows_repair_all_in_one.html

https://www.defencebyte.com

https://macpaw.com/cleanmypc

🦑Exploit: index : ghostpdl.git
CVE-2024-46951

See bug report for details.

Diffstat
-rw-r--r--  psi/zcolor.c  3  
1 files changed, 3 insertions, 0 deletions
diff --git a/psi/zcolor.c b/psi/zcolor.c
index d4e7a4438..d3384d75d 100644
--- a/psi/zcolor.c
+++ b/psi/zcolor.c
@@ -5276,6 +5276,9 @@ static int patterncomponent(i_ctx_t * i_ctx_p, ref *space, int *n)
             code = array_get(imemory, pImpl, 0, &pPatInst);
             if (code < 0)
                 return code;
+
+            if (!r_is_struct(&pPatInst) || (!r_has_stype(&pPatInst, imemory, st_pattern1_instance) && !r_has_stype(&pPatInst, imemory, st_pattern2_instance)))
+                return_error(gs_error_typecheck);
             cc.pattern = r_ptr(&pPatInst, gs_pattern_instance_t);
             if (pattern_instance_uses_base_space(cc.pattern))
                 *n = n_comps;

@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Simulate Attack with Atomic Red Team:

What is Atomic Red Teams?
According to their Github pages, Atomic Red Team is a library of tests mapped to the MITRE ATT&CK framework. Security teams can use Atomic Red Team to quickly, portably, and reproducibly test their environments.

Prerequisites

>Virtual Machine with NAT Connection (Dont Use your Real Own PC).

>Windows Operating System (in this tutorial we are using Win10 Pro).

>Disabled Antivirus and Exclusion The

>EDR Script Onboarding
(If you want to deploy with local script deployment)

🦑Powershell to execute the command
Step-By-Step:

Login to your VM. Prepare the Environment first with disabling the Antivirus. Right Click Windows PowerShell > Run As Admin PowerShell

1️⃣

Set-ExecutionPolicy Bypass -Scope CurrentUser

ExecutionPolicy Bypass

3️⃣ Disable Microsoft Defender Antivirus

Open Windows Defender > Disable Real-Time Protection, Tamper Protection, Auto Sample Submission, and Cloud Delivered Protection

4️⃣Create an Empty Folder at “C:\AtomicRedTeam\”.

You can Choose 2 Method for Exclude folder.

5️⃣ Exclusion Folder with Command :

Add-MpPreference -ExclusionPath C:\AtomicRedTeam\

Or Use GUI : Windows Security > Exclusions > C:\AtomicRedTeam\

6️⃣To disable Microsoft Defender Antivirus permanently on Windows 10, use these steps:

a. Open Start > search gpedit.msc or Edit Group Policy.

b. Browse the following path: Computer Configuration > Administrative Templates > Windows Components > Microsoft Defender Antivirus

c. Double-click the “Turn off Microsoft Defender Antivirus” policy.

d. Choose Enable Radio Button > Apply.