🦑SSO (Single Sign-On) Explained.

SSO can be thought of as a master key to open all different locks. It allows a user to log in to different systems using a single set of credentials.

In a time where we are accessing more applications than ever before, this is a big help to mitigate password fatigue and streamlines user experience.

To fully understand the SSO process, 𝗹𝗲𝘁’𝘀 𝘁𝗮𝗸𝗲 𝗮 𝗹𝗼𝗼𝗸 𝗮𝘁 𝗵𝗼𝘄 𝗮 𝘂𝘀𝗲𝗿 𝘄𝗼𝘂𝗹𝗱 𝗹𝗼𝗴 𝗶𝗻𝘁𝗼 𝗟𝗶𝗻𝗸𝗲𝗱𝗜𝗻 𝘂𝘀𝗶𝗻𝗴 𝗚𝗼𝗼𝗴𝗹𝗲 𝗮𝘀 𝘁𝗵𝗲 𝗶𝗱𝗲𝗻𝘁𝗶𝘁𝘆 𝗽𝗿𝗼𝘃𝗶𝗱𝗲𝗿:

1️⃣ 𝗨𝘀𝗲𝗿 𝗿𝗲𝗾𝘂𝗲𝘀𝘁𝘀 𝗮𝗰𝗰𝗲𝘀𝘀

First, the user would attempt to access the Service Provider (LinkedIn). At this point, a user would be presented with login options, and in this example, they would select "Sign in with Google".

2️⃣ 𝗔𝘂𝘁𝗵𝗲𝗻𝘁𝗶𝗰𝗮𝘁𝗶𝗼𝗻 𝗿𝗲𝗾𝘂𝗲𝘀𝘁

From here, the Service Provider (LinkedIn) will redirect the user to the Identity Provider (Google) with an authentication request.

3️⃣ 𝗜𝗱𝗣 𝗰𝗵𝗲𝗰𝗸𝘀 𝗳𝗼𝗿 𝗮𝗰𝘁𝗶𝘃𝗲 𝘀𝗲𝘀𝘀𝗶𝗼𝗻

Once the Identity Provider (Google) has received the request, it will check for an active session. If it doesn't find one, authentication will be requested.

4️⃣𝗨𝘀𝗲𝗿 𝘀𝘂𝗯𝗺𝗶𝘁𝘀 𝗰𝗿𝗲𝗱𝗲𝗻𝘁𝗶𝗮𝗹𝘀

At this stage, the user will submit their login credentials (username and password) to the Identity Provider (IdP).

5️⃣ 𝗜𝗱𝗣 𝘃𝗲𝗿𝗶𝗳𝗶𝗲𝘀 𝗰𝗿𝗲𝗱𝗲𝗻𝘁𝗶𝗮𝗹𝘀

The Identity Provider will then verify the submitted credentials against its User Directory (database). If the credentials are correct, the IdP will create an authentication token or assertion.

6️⃣ 𝗜𝗱𝗣 𝘀𝗲𝗻𝗱𝘀 𝘁𝗼𝗸𝗲𝗻 𝘁𝗼 𝗦𝗲𝗿𝘃𝗶𝗰𝗲 𝗣𝗿𝗼𝘃𝗶𝗱𝗲𝗿

Once the token or assertion has been created, the IdP sends it back to the Service Provider confirming the user's identity. The user is now authenticated and can access the Service Provier (LinkedIn).

7️⃣ 𝗔𝗰𝗰𝗲𝘀𝘀 𝗴𝗿𝗮𝗻𝘁𝗲𝗱 𝘂𝘀𝗶𝗻𝗴 𝗲𝘅𝗶𝘀𝘁𝗶𝗻𝗴 𝘀𝗲𝘀𝘀𝗶𝗼𝗻

Since the Identity Provider has established a session, when the user goes to access a different Service Provider (eg; GitHub), they won't need to re-enter their credentials. Future service providers will request authentication from the Identity Provider, recognize the existing session, and grant access to the user based on the previously authenticated session.

SSO workflows like the above operate on SSO protocols, which are a set of rules that govern how the IdP and SP communicate and trust each other. Common protocols include Security Assertion Markup Language (SAML), OpenID Connect, and OAuth.

ref: Sayed Jillani
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Scammers Actually Conduct Phishing Calls

- Secure yourself

ref: instagram
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Python Remote Administration Tool (RAT)

☠️This feature list outlines a Python-based Remote Administration Tool (RAT) with extensive functionality across Windows, macOS, and Linux. Here's a detailed breakdown of the core features and their implications:

>> Cross-Platform Support
- Core Utilities
- Command and file auto-completion: Enhances usability, streamlining interactions.
- Antivirus detection: Useful for evasion tactics or reconnaissance.
- Display monitor control: Provides surveillance or energy management options.
- File/Directory manipulation: Hiding or unhiding files adds stealth capabilities.
- Hosts file modification: Potential for blocking or redirecting network traffic.
- Environment variables access: Useful for reconnaissance and configuration.
- Keylogger: Logs keystrokes with options to manage logs.
- Target machine info: Location and system details provide situational awareness.
- Python script execution: Flexibility for custom tasks.
- Screenshots: Remote visual access to the system's desktop.
- VM detection: Helps evade analysis environments.
- File transfer: Enables exfiltration or delivery of additional payloads.
- Password hash dumping: Attempts to extract sensitive authentication details.
- Payload disguise: Adds stealth by masquerading as legitimate applications.

>> Windows-Specific Features
- Credential Harvesting
- User/password dialog: Captures user input for credentials.
- Chrome password dumping: Extracts stored browser passwords.
- System Control
- Log clearing: Obscures tracks by erasing event logs.
- Service control: Manipulates RDP, UAC, and Windows Defender.
- File timestamp editing: Alters evidence of file access or modification.
- Custom popups: Creates distractions or elicits user input.
- Hardware Interaction
- Webcam snapshots: Spies on users via their webcam.
- Drive info: Provides details about connected drives.
- Registry summary: Fetches system configuration details.

>> macOS-Specific Features
- Credential Harvesting
- Similar password dialog as Windows.
- System Customization
- Changes login text, potentially confusing or misleading users.
- Webcam snapshots: Monitors users like the Windows version.

>> macOS/Linux Features
- SSH pivoting: Leverages the target system to access other hosts.
- Sudo command execution: Elevates privilege level for administrative tasks.
- Bruteforce user password: Exploits weak password practices.
- Webcam snapshots: Unverified functionality on Linux.

>> Transport and Encryption
- AES encryption secures host-target communication, with keys shared manually between systems for authentication.

>> Payload Installation
- NSIS installers (Windows): Packages payloads with elevation utilities.
- Makeself installers (macOS/Linux): Simplifies deployment and persistence.

>> Setup and Dependencies
- The project uses Python 2.7, various libraries like PyCrypto, Requests, and platform-specific tools like PyInstaller, PyObjC, and py2exe.


🦑 Here are the commands for setting up and running Stitch from the specified GitHub repository:

>> Installation Commands
1. For Windows:

   pip install -r win_requirements.txt
   

2. For macOS:

   pip install -r osx_requirements.txt
   

3. For Linux:

   pip install -r lnx_requirements.txt
   

>> Execution Commands
1. Run using Python:

   python main.py
   

2. Run as an executable (if permissions are set):

   ./main.py
   

🦑Be Ethical, Use it for learning purposes !!!
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑UEFI BIOS Hacking Notes:

I started my Desktop System after a couple of weeks, and found that the ASUS Z170-AR 1.03 motherboard was failing to POST successfully with the following error message:

1️⃣USB Device Over Current Status Detected !!
System Will Shut Down After 15 Seconds.
(November-2020): After downloading the BoardView file for a similar motherboard, I learned about the various OC (over current) detection sub-circuits present on the motherboard. I systematically checked the reference voltages present at all (4) of those voltage dividers and found them to be 3.26+ volts. Note: These voltage dividers ("sensors") are directly connected to the Mobo's PCH.

I also carried out the following debugging steps:

All of the USB ports were providing +5v and were able to detect the keyboard during BIOS POST (Caps Lock responded). They all seemed to be OK.

The single USB-C port on this mobo was also providing power to charge things just fine.

I connected the USB keyboard to the PS2 port but the BIOS was disabling all inputs when this 'USB OC' problem is detected.

All of the USB devices were subsequently disconnected for safety.

The cables for the front-panel USB connectors were disconnected as well.

However, the BIOS error about 'USB OC' persisted. I then dumped the BIOS from the W25Q128FV BIOS chip (thankfully present in DIP-8 form factor) using flashrom on Linux with CH341A Mini USB BIOS Programmer hardware.

3️⃣This dumping process took around 2.5 minutes. The dump matched the "BIOS ROM file" which I extracted from the Z170-AR-ASUS-3801.CAP (downloaded from ASUS' website) using UEFITool.

Note: This board uses the ASM1142 USB 3.0 chip which has its own over current (OC) detection. I couldn't find the BoardView for my Z170-AR 1.03 motherboard and hence I had to pause the hardware debugging process at this point.

Next, switching to the SW sides of things, I was able to patch the ASUS BIOS using UEFITool, GHIDRA, Cutter (Rizin GUI), and WinHex to bypass this USB OC error message (and the subsequent PC hang)!

binwalk -eM bios.rom # bios.rom is extracted from UEFItool.

[user@random _flash-me.rom.extracted]$ find . -type f -exec strings {} \; | grep "USB Device"
USB Device Over Current Status Detected !!

4️⃣I wrote the modded BIOS back using the following command,

$ sudo ./flashrom --programmer ch341a_spi -v 1402_modded_working.rom
flashrom v1.2-169-g10d71d9 on Linux 5.8.0-33-lowlatency (x86_64)
flashrom is free software, get the source code at https://flashrom.org

Using clock_gettime for delay loops (clk_id: 1, resolution: 1ns).
Found Winbond flash chip "W25Q128.V" (16384 kB, SPI) on ch341a_spi.
Verifying flash... VERIFIED.
...
After patching the BIOS, I was able to boot into the system! After logging in, I was able to confirm that ASM1142 chip is generating those OC (Over Current) signals.

$ sudo dmesg | grep over-cu
[ 1.082715] usb usb4-port2: over-current condition
[ 1.086705] usb usb3-port2: over-current condition
$ lspci
...
00:14.0 USB controller: Intel Corporation 100 Series/C230 Series Chipset Family USB 3.0 xHCI Controller (rev 31)
02:00.0 USB controller: ASMedia Technology Inc. ASM1142 USB 3.1 Host Controller
03:00.0 PCI bridge: ASMedia Technology Inc. ASM1083/1085 PCIe to PCI Bridge (rev 04)
This controller can be disabled with the following command.

$ echo -n "0000:02:00.0" | sudo tee /sys/bus/pci/drivers/xhci_hcd/unbind
Here is a Linux hack to ignore the misbehaving ASM1142 USB 3.0 controller on bootup.

$ cat /etc/rc.local
#!/bin/bash

# "Fix" "2:00.0 USB controller: ASMedia Technology Inc. ASM1142 USB 3.1 Host Controller"
echo -n "0000:02:00.0" | sudo tee -a /sys/bus/pci/drivers/xhci_hcd/unbind

exit 0
This made the system pretty usable again. Victory!?

🦑Be Ethical, Use it for learning purposes !!!

Ref: Hacking Notes
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑LeakedDBParser :

A tool to parse leaked databases in CSV-like or SQL format.

>> LeakedDBParser

git clone https://github.com/hegusung/LeakedDBParser.git
./leakeddbparser.py <hashfile> [-o <output_file>] [-n max_lines] {csv|sql} [csv or sql options]

>> CSV Format Options

1️⃣. -c: Select columns and apply checks.
- Syntax: -c <column_number>,<condition>
- Example:

     -c 1,2=40,?3
     

- Includes columns 1 and 2 in the output if:
- Column 2 has a length of 40.
- Column 3 exists.

2️⃣. --no-header: Ignore the first line of the CSV file.

>> SQL Format Options

3️⃣. --list-tables: List the tables and their columns in the SQL dump.
- Example:

     ./leakeddbparser.py sqldump.sql sql --list-tables
     

4️⃣. --dump <table_name>: Export a specific table.
- Can use -c to select specific columns.

5️⃣. Column Selection (-c):
- Syntax: -c <column_numbers>
- Example:

     ./leakeddbparser.py sqldump.sql -o export_user_hash.txt sql --dump users -c 3,5
     

- Exports columns 3 and 5 from the users table to the file export_user_hash.txt.

@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑10 Cybersecurity Marketing Strategies To Grow Your Business:

1. Create A Product-Led SEO & Content Marketing Strategy

2. Get Targeted Media Coverage With Strategic PR

3. Build Authority With Anonymous Case Studies

4. Invest In PPC Campaigns For Faster Growth

5. Build Your Tribe With Email Marketing

6. Secure Your Cybersecurity Firm’s Online Reputation

7. Generate Social Proof On Review Aggregator Sites

8. Grow Your Social Media Influence

9. Drive Traffic From Reddit & Quora

10. Start A Podcast To Offer In-depth Advice

Ref: Chris Greer
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑"If you place a simple app into public cloud, what would you need to do to make sure everything is secured?"

I am getting a lot of different answers. Some recall authentication and authorization.

Some are talking about Web Firewall.

Some give me much more detail on network segmentation.

All this is great, but I missed somehow a holistic picture of this security aspects in Solution Design.

As you know, a picture worth a thousand words, so I put all things together into one generic picture.

There are a lot more nuances, for sure, but I think this diagram could be a good starting point in understanding a security.

Ref: Dmitrijs Lebedevs
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑 Certified Ethical Hacker (CEHv12)

With 1,000+ unique questions across 8 practice exams, this set will challenge you and ensure you’re ready for the CEHv12.
• CEHv12 Practice Exam 1: https://lnkd.in/dVeQUwiw
• CEHv12 Practice Exam 2: https://lnkd.in/d5ShM5AZ
• CEHv12 Practice Exam 3: https://lnkd.in/da8nkDn5
• CEHv12 Practice Exam 4: https://lnkd.in/dbPbn4x8
• CEHv12 Practice Exam 5: https://lnkd.in/ddsQ6DnM
• CEHv12 Practice Exam 6: https://lnkd.in/dVHf_TjH
• CEHv12 Practice Exam 7: https://lnkd.in/dST4u_MX
• CEHv12 Practice Exam 8: https://lnkd.in/d9Nue9QP

☁️ Certified Cloud Security Professional (CCSP)

Challenge yourself with 1,000+ exam-level questions. Complete these, and you’ll be fully prepared for the CCSP exam!
• ISC2 CCSP Practice Exam 1: https://lnkd.in/dekjyfPa
• ISC2 CCSP Practice Exam 2: https://lnkd.in/dy5bp8FP
• ISC2 CCSP Practice Exam 3: https://lnkd.in/d_3txHnb
• ISC2 CCSP Practice Exam 4: https://lnkd.in/dRbCYydv
• ISC2 CCSP Practice Exam 5: https://lnkd.in/ddXJZMfZ
• ISC2 CCSP Practice Exam 6: https://lnkd.in/ddv4aJ6M
• ISC2 CCSP Practice Exam 7: https://lnkd.in/dJ_4KcuJ
• ISC2 CCSP Practice Exam 8: https://lnkd.in/dAv2x-Ef

🔐 Systems Security Certified Practitioner (SSCP)

Test your knowledge and strengthen your understanding of all SSCP domains with these practice exams.
• SSCP Practice Exam 1: https://lnkd.in/dUKdvsxD
• SSCP Practice Exam 2: https://lnkd.in/dvXAzPtH
• SSCP Practice Exam 3: https://lnkd.in/deJQCyzA
• SSCP Practice Exam 4: https://lnkd.in/dGcumayJ
• SSCP Practice Exam 5: https://lnkd.in/ddfSty77
• SSCP Practice Exam 6: https://lnkd.in/dqeDi6jJ
• SSCP Practice Exam 7: https://lnkd.in/drWV3DHg
• SSCP Practice Exam 8: https://lnkd.in/diCvQMUS

Additional Practice Exams You Might Be Interested In:

• Security+ SY0-701: https://lnkd.in/dc7NTdvd
• CISSP: https://lnkd.in/dK4YNCM2
• ISC2 CC: https://certpreps.com/CC
• CISM: https://lnkd.in/d9x3_Djr
• CISA: https://lnkd.in/d-8BccxW
• AWS CLF-C02: https://lnkd.in/dHd_Nxgi
• Azure Fundamentals (AZ-900): https://lnkd.in/d4Zm9r-N
• CYSA+: https://lnkd.in/dfcGKsPt
• CCNA: https://certpreps.com/ccna
• A+: https://lnkd.in/dWDV5prF


Ref: Shahzad MS
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Smtp server and mail list system for sending unlimited emails and text messages:

Mail Demon is a robust and efficient tool for sending bulk emails and text messages. Its design focuses on high performance, simplicity, and secure delivery, leveraging .NET 6.0+ and integration with frameworks like MimeKit and MailKit. It includes built-in security features such as SPF validation and integrates seamlessly with IPBan for added protection against brute force attacks.

>> Features
- High Performance: Optimized for low memory and CPU usage, capable of sending thousands of messages per second.
- Security: Supports SPF, DKIM, and DMARC records for secure email delivery.
- SMTP Features: Includes support for extensions like STARTTLS, AUTH PLAIN, and SMTPUTF8.
- Mail List Management: Integrated website for managing mailing lists, templates, and subscriber interactions.
- Database Support: SQLite by default, with SQL Server support as an option.
- Cross-platform Compatibility: Runs on Linux and Windows servers.

>> Setup Instructions

>> General Prerequisites
1. Install .NET 6.0+ runtime or publish as a self-contained executable.
2. Update `appsettings.json` with your configurations:
- SMTP settings.
- User credentials (avoid default settings).
- SSL certificates (recommended: Let’s Encrypt).

>># Building Mail Demon
1. Download and open the project in Visual Studio/VS Code.
2. Set the release configuration.
3. Publish the project.
4. Transfer the binaries to your server.

>> Linux Service Configuration
1. Place binaries in /opt/MailDemon.
2. Create a service file (/lib/systemd/system/MailDemon.service):

   [Unit]
   Description=Mail Demon Service
   After=network.target

   [Service]
   WorkingDirectory=/opt/MailDemon
   ExecStart=/usr/bin/dotnet /opt/MailDemon/MailDemon.dll
   Restart=on-failure

   [Install]
   WantedBy=multi-user.target
   

3. Enable and start the service:

   sudo systemctl daemon-reload
   sudo systemctl enable MailDemon
   sudo systemctl start MailDemon
   systemctl status MailDemon
   

>># DNS Configuration
1. SPF Record: v=spf1 mx -all
2. MX Record: Point to your domain's email server.
3. A/AAAA Record: Map to your server's IP address.
4. DMARC Record: Refer to [DMARC wiki](https://en.wikipedia.org/wiki/DMARC).
5. DKIM: Set up DKIM keys for email authentication.
6. Reverse DNS: Ensure your IP address resolves to your mail server domain.

>> Mail List Management
1. Enable Web Interface:
- Set enableWeb to true in appsettings.json.
- Configure authority, admin credentials, and reCAPTCHA keys.
2. Create and Manage Lists:
- Log in at /MailDemonLogin.
- Define lists and templates.
- Customize templates using Razor syntax.

3. Sending Emails:
- Assign a subject using <!-- Subject: ... --> in templates.
- Send bulk emails using the integrated mail list interface.

4. Magic Templates for Default Behaviors:
- SubscribeInitial: Sign-up form.
- SubscribeConfirm: Confirmation email.
- SubscribeWelcome: Welcome email.

>> Database Management
- Default: SQLite (MailDemon.db).
- Optional: SQL Server (configure in appsettings.json).

>> Known Issues
- Hotmail and Outlook Certificates: Add problematic domains to appsettings.json if invalid SSL certificates are encountered.

This streamlined tool is ideal for managing notifications, announcements, and bulk messaging tasks with ease.

@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁