Red Team Tutorial: Design and setup of C2 traffic redirectors
https://ditrizna.medium.com/design-and-setup-of-c2-traffic-redirectors-ec3c11bd227d
@Engineer_Computer
https://ditrizna.medium.com/design-and-setup-of-c2-traffic-redirectors-ec3c11bd227d
@Engineer_Computer
Medium
Red Team Tutorial: Design and setup of C2 traffic redirectors
This article describes the Command & Control (C2) infrastructure design and provides a step-by-step setup of the C2 redirector.
The Red Team Playground is a #Dockerized vulnerable testing lab for learning and practicing #RedTeam concepts.
Docker network containing many vulnerable targets for practicing Red Teaming concepts (initial access, priv esc, persistence, lateral, C2, evasion, etc).
https://github.com/minispooner/red-team-playground
@Engineer_Computer
Docker network containing many vulnerable targets for practicing Red Teaming concepts (initial access, priv esc, persistence, lateral, C2, evasion, etc).
https://github.com/minispooner/red-team-playground
@Engineer_Computer
GitHub
GitHub - minispooner/red-team-playground: Docker network containing many vulnerable targets for practicing Red Teaming concepts…
Docker network containing many vulnerable targets for practicing Red Teaming concepts (initial access, priv esc, persistence, lateral, C2, evasion, etc). - minispooner/red-team-playground
WebApp Security
Offensive security
OWASP Web Application Pentesting Checklist
https://github.com/Hari-prasaanth/Web-App-Pentest-Checklist
@Engineer_Computer
Offensive security
OWASP Web Application Pentesting Checklist
https://github.com/Hari-prasaanth/Web-App-Pentest-Checklist
@Engineer_Computer
GitHub
GitHub - Hari-prasaanth/Web-App-Pentest-Checklist: A OWASP Based Checklist With 500+ Test Cases
A OWASP Based Checklist With 500+ Test Cases. Contribute to Hari-prasaanth/Web-App-Pentest-Checklist development by creating an account on GitHub.
👍1
Threat Research
Exploiting the PS4 and PS5 through a game save (Intro)
https://mccaulay.co.uk/mast1c0re-introduction-exploiting-the-ps4-and-ps5-through-a-gamesave
]-> Part 1 - Modifying PS2 game save files:
https://mccaulay.co.uk/mast1c0re-part-1-modifying-ps2-game-save-files
]-> Part 2 - Arbitrary PS2 code execution:
https://mccaulay.co.uk/mast1c0re-part-2-arbitrary-ps2-code-execution
]-> Part 3 - Escaping the emulator:
https://mccaulay.co.uk/mast1c0re-part-3-escaping-the-emulator
@Engineer_Computer
Exploiting the PS4 and PS5 through a game save (Intro)
https://mccaulay.co.uk/mast1c0re-introduction-exploiting-the-ps4-and-ps5-through-a-gamesave
]-> Part 1 - Modifying PS2 game save files:
https://mccaulay.co.uk/mast1c0re-part-1-modifying-ps2-game-save-files
]-> Part 2 - Arbitrary PS2 code execution:
https://mccaulay.co.uk/mast1c0re-part-2-arbitrary-ps2-code-execution
]-> Part 3 - Escaping the emulator:
https://mccaulay.co.uk/mast1c0re-part-3-escaping-the-emulator
@Engineer_Computer
👍2
tools
Offensive security
GPT-empowered penetration testing tool
https://github.com/GreyDGL/PentestGPT
@Engineer_Computer
Offensive security
GPT-empowered penetration testing tool
https://github.com/GreyDGL/PentestGPT
@Engineer_Computer
GitHub
GitHub - GreyDGL/PentestGPT: Automated Penetration Testing Agentic Framework Powered by Large Language Models
Automated Penetration Testing Agentic Framework Powered by Large Language Models - GreyDGL/PentestGPT
👍1
🔥 New SLP protocol vulnerability (CVE-2023-29552) could be weaponized for massive DoS amplification attacks with an amplification factor of up to 2,200.
Learn more: https://thehackernews.com/2023/04/new-slp-vulnerability-could-let.html
More than 2,000 global organizations and 54,000 SLP instances are said to be affected.
@Engineer_Computer
Learn more: https://thehackernews.com/2023/04/new-slp-vulnerability-could-let.html
More than 2,000 global organizations and 54,000 SLP instances are said to be affected.
@Engineer_Computer
وبگاه شاباک هم هک شد
یک گروه هکری به نام «آنانیموس سودان» از هک وبگاههای سازمان بنادر و سازمان اطلاعات و امنیت داخلی رژیم صهیونیستی خبر داد.روزنامه «یدیعوت آحارانوت» نوشته این حملات باعث از کار افتادن سرورها شده اما ادعا کرده اطلاعاتی به سرقت نرفته است.
دیروز نیز وبگاههای موساد و سازمان تأمین اجتماعی رژیم صهیونیستی هدف حمله هکری این گروه قرار گرفتند.
@Engineer_Computer
یک گروه هکری به نام «آنانیموس سودان» از هک وبگاههای سازمان بنادر و سازمان اطلاعات و امنیت داخلی رژیم صهیونیستی خبر داد.روزنامه «یدیعوت آحارانوت» نوشته این حملات باعث از کار افتادن سرورها شده اما ادعا کرده اطلاعاتی به سرقت نرفته است.
دیروز نیز وبگاههای موساد و سازمان تأمین اجتماعی رژیم صهیونیستی هدف حمله هکری این گروه قرار گرفتند.
@Engineer_Computer
Malware analysis
1. VirusTotal Code Insight: Empowering threat analysis with generative AI
https://blog.virustotal.com/2023/04/introducing-virustotal-code-insight.html
2. Raspberry Robin: Anti-Evasion How-to & Exploit Analysis
https://research.checkpoint.com/2023/raspberry-robin-anti-evasion-how-to-exploit-analysis
@Engineer_Computer
1. VirusTotal Code Insight: Empowering threat analysis with generative AI
https://blog.virustotal.com/2023/04/introducing-virustotal-code-insight.html
2. Raspberry Robin: Anti-Evasion How-to & Exploit Analysis
https://research.checkpoint.com/2023/raspberry-robin-anti-evasion-how-to-exploit-analysis
@Engineer_Computer
Virustotal
Introducing VirusTotal Code Insight: Empowering threat analysis with generative AI
At the RSA Conference 2023 today, we are excited to unveil VirusTotal Code Insight, a cutting-edge feature that leverages artificial intelli...
exploit
1. CVE-2023-21987, CVE-2023-21991:
Oracle VirtualBox (Core) Vulnerabilities
https://qriousec.github.io/post/vbox-pwn2own-2023
2. CVE-2023-1389:
TP-Link Archer/Qrious Security - WAN-side entry
https://www.zerodayinitiative.com/blog/2023/4/21/tp-link-wan-side-vulnerability-cve-2023-1389-added-to-the-mirai-botnet-arsenal
@Engineer_Computer
1. CVE-2023-21987, CVE-2023-21991:
Oracle VirtualBox (Core) Vulnerabilities
https://qriousec.github.io/post/vbox-pwn2own-2023
2. CVE-2023-1389:
TP-Link Archer/Qrious Security - WAN-side entry
https://www.zerodayinitiative.com/blog/2023/4/21/tp-link-wan-side-vulnerability-cve-2023-1389-added-to-the-mirai-botnet-arsenal
@Engineer_Computer
Qrious Secure
Analysis of VirtualBox CVE-2023-21987 and CVE-2023-21991
Introduction Hi, I am Trung (xikhud). Last month, I joined Qrious Secure team as a new member, and my first target was to find and reproduce the security bugs that @bienpnn used at the Pwn2Own Vancouver 2023 to escape the VirtualBox VM.
Since VirtualBox is…
Since VirtualBox is…
Bug Bounty Platforms
• Crowdsourcing
◦ Bugcrowd: https://www.bugcrowd.com/
◦ Hackerone: https://www.hackerone.com/
◦ Intigriti: https://www.intigriti.com/
◦ YesWeHack: https://www.yeswehack.com/
◦ OpenBugBounty: https://www.openbugbounty.org/
• Individual Programs
◦ Meta: https://www.facebook.com/whitehat
◦ Google: https://about.google/appsecurity/
Bug Bounty Report Format
• Title
◦ The first impression is the last impression, the security engineer looks at the title first and he should be able to identify the issue.
◦ Write about what kind of functionality you can able to abuse or what kind of protection you can bypass. Write in just one line.
◦ Include the Impact of the issue in the title if possible.
• Description
◦ This component provides details of the vulnerability, you can explain the vulnerability here, write about the paths, endpoints, error messages you got while testing. You can also attach HTTP requests, vulnerable source code.
• Steps to Reproduce
◦ Write the stepwise process to recreate the bug. It is important for an app owner to be able to verify what you've found and understand the scenario.
◦ You must write each step clearly in-order to demonstrate the issue. that helps security engineers to triage fast.
• Proof of Concept
◦ This component is the visual of the whole work. You can record a demonstration video or attach screenshots.
• Impact
◦ Write about the real-life impact, How an attacker can take advantage if he/she successfully exploits the vulnerability.
◦ What type of possible damages could be done? (avoid writing about the theoretical impact)
◦ Should align with the business objective of the organization
@Engineer_Computer
• Crowdsourcing
◦ Bugcrowd: https://www.bugcrowd.com/
◦ Hackerone: https://www.hackerone.com/
◦ Intigriti: https://www.intigriti.com/
◦ YesWeHack: https://www.yeswehack.com/
◦ OpenBugBounty: https://www.openbugbounty.org/
• Individual Programs
◦ Meta: https://www.facebook.com/whitehat
◦ Google: https://about.google/appsecurity/
Bug Bounty Report Format
• Title
◦ The first impression is the last impression, the security engineer looks at the title first and he should be able to identify the issue.
◦ Write about what kind of functionality you can able to abuse or what kind of protection you can bypass. Write in just one line.
◦ Include the Impact of the issue in the title if possible.
• Description
◦ This component provides details of the vulnerability, you can explain the vulnerability here, write about the paths, endpoints, error messages you got while testing. You can also attach HTTP requests, vulnerable source code.
• Steps to Reproduce
◦ Write the stepwise process to recreate the bug. It is important for an app owner to be able to verify what you've found and understand the scenario.
◦ You must write each step clearly in-order to demonstrate the issue. that helps security engineers to triage fast.
• Proof of Concept
◦ This component is the visual of the whole work. You can record a demonstration video or attach screenshots.
• Impact
◦ Write about the real-life impact, How an attacker can take advantage if he/she successfully exploits the vulnerability.
◦ What type of possible damages could be done? (avoid writing about the theoretical impact)
◦ Should align with the business objective of the organization
@Engineer_Computer
Bugcrowd
#1 Crowdsourced Cybersecurity Platform | Bugcrowd
Bugcrowd teams with elite security researchers to reduce risk & improve security ROI through our bug bounty, pen testing, & vulnerability disclosure programs.
Media is too big
VIEW IN TELEGRAM
چگونه یک ژورنال مناسب برای ارسال مقاله انتخاب کنیم
#Journal #Paper #Writing #Submit
#Research #ResearchTools #Research_Tools
@Engineer_Computer
#Journal #Paper #Writing #Submit
#Research #ResearchTools #Research_Tools
@Engineer_Computer
🔅 ژورنال ISI ایرانی
Iranian Journal of Science and Technology
https://www.springer.com/engineering/electronics/journal/40998
https://ijste.shirazu.ac.ir/
This journal aims to promote the growth of Iranian scientific research in all branches of electrical engineering and its related disciplines and to provide a medium for bringing the fruits of this research to the attention of the world’s scientific communities. The focus is on frontier topics in the theoretical, mathematical, numerical, experimental and scientific developments in electrical engineering as well as applications of established techniques to new domains.
Coverage includes Bio-mechanics, Wave Propagation, Communication Theory, Signal Processing, image processing, Artificial Neural Networks, Data Mining and Machine Learning, and more.
Fully indexed and included in ISI
▫️IF: 1.890 (2021)
▫️1.723 (2021) Five year impact factor
▫️36 days Submission to first decision (Median)
▫️Print ISSN 2228-6179
▫️Electronic ISSN 2364-1827
#ISI #Journal #DM #ISSN #Iranian
@Engineer_Computer
Iranian Journal of Science and Technology
https://www.springer.com/engineering/electronics/journal/40998
https://ijste.shirazu.ac.ir/
This journal aims to promote the growth of Iranian scientific research in all branches of electrical engineering and its related disciplines and to provide a medium for bringing the fruits of this research to the attention of the world’s scientific communities. The focus is on frontier topics in the theoretical, mathematical, numerical, experimental and scientific developments in electrical engineering as well as applications of established techniques to new domains.
Coverage includes Bio-mechanics, Wave Propagation, Communication Theory, Signal Processing, image processing, Artificial Neural Networks, Data Mining and Machine Learning, and more.
Fully indexed and included in ISI
▫️IF: 1.890 (2021)
▫️1.723 (2021) Five year impact factor
▫️36 days Submission to first decision (Median)
▫️Print ISSN 2228-6179
▫️Electronic ISSN 2364-1827
#ISI #Journal #DM #ISSN #Iranian
@Engineer_Computer
SpringerLink
Iranian Journal of Science and Technology, Transactions of Electrical Engineering
The Iranian Journal of Science and Technology, Transactions of Electrical Engineering is a hub for the promotion and dissemination of Iranian research in all ...
Media is too big
VIEW IN TELEGRAM
جلسه نهم
Windows Forensics Analysis I :
Digital Forensics and Advanced Data Triage
مباحث مطرح شده :
- File Timeline - ADS Zone.Identifier
یه مقداری از رفرنس رسمی سنز هم اشکال گرفتیم که توضیح دادم
@Engineer_Computer
Windows Forensics Analysis I :
Digital Forensics and Advanced Data Triage
مباحث مطرح شده :
- File Timeline - ADS Zone.Identifier
یه مقداری از رفرنس رسمی سنز هم اشکال گرفتیم که توضیح دادم
@Engineer_Computer
Media is too big
VIEW IN TELEGRAM
جلسه دهم
Windows Forensics Analysis I :
Digital Forensics and Advanced Data Triage
مباحث مطرح شده :
- Volume Shadow Copy (VSC)
@Engineer_Computer
Windows Forensics Analysis I :
Digital Forensics and Advanced Data Triage
مباحث مطرح شده :
- Volume Shadow Copy (VSC)
@Engineer_Computer
This media is not supported in your browser
VIEW IN TELEGRAM
محققین یک شرکت تحقیقاتی موفق به کشف تکنیکی شدند که سارقین با استفاده از اون قادر به دورزدن سیستم امنیتی بسیار از ماشینها و باز کردن درب و روشن کردن ماشین هستند. در این ویدیو دو نفر بکمک همین تکنیک یک تویوتا RAV4 رو سرقت کردند. جزئیات فنی در لینک مقاله
https://kentindell.github.io/2023/04/03/can-injection/
محققینی که این تحقیق رو انجام دادند اعلام کردند که سایتهایی رو پیدا کردند که تجهیزات لازم برای سرقت ماشینهای زیر با استفاده از این تکنیک رو بفروش میرسونند.
Jeep, Maserati, Honda, Renault, Jaguar, Fiat, Peugeot, Nissan, Ford, BMW, Volkswagen, Chrysler, Cadillac, GMC, and Toyota
@Engineer_Computer
https://kentindell.github.io/2023/04/03/can-injection/
محققینی که این تحقیق رو انجام دادند اعلام کردند که سایتهایی رو پیدا کردند که تجهیزات لازم برای سرقت ماشینهای زیر با استفاده از این تکنیک رو بفروش میرسونند.
Jeep, Maserati, Honda, Renault, Jaguar, Fiat, Peugeot, Nissan, Ford, BMW, Volkswagen, Chrysler, Cadillac, GMC, and Toyota
@Engineer_Computer
#لینوکس
برای افزایش سایز LVM Group توی لینوکس به دستورات زیر به ترتیب نیاز دارید:
df -h
fdisk -l
fdisk /dev/sda
fdisk -l
pvdisplay
pvcreate /dev/sda3
pvdisplay
vgdisplay
vgdisplay | grep Name
vgextend [LVMGroup_NAME] /dev/sda3
vgdisplay
lvdisplay | grep Path
lvextend -l +100%FREE /dev/[LVMGroup_NAME]/home
lvdisplay
resize2fs /dev/[LVMGroup_NAME]/home
df -lh
توی کیس من حجم /home پر شده بود، شما ممکنه بخواید /root رو افزایش بدید، طبق نیازتون تغییرش بدید اون قسمت رو
@Engineer_Computer
برای افزایش سایز LVM Group توی لینوکس به دستورات زیر به ترتیب نیاز دارید:
df -h
fdisk -l
fdisk /dev/sda
fdisk -l
pvdisplay
pvcreate /dev/sda3
pvdisplay
vgdisplay
vgdisplay | grep Name
vgextend [LVMGroup_NAME] /dev/sda3
vgdisplay
lvdisplay | grep Path
lvextend -l +100%FREE /dev/[LVMGroup_NAME]/home
lvdisplay
resize2fs /dev/[LVMGroup_NAME]/home
df -lh
توی کیس من حجم /home پر شده بود، شما ممکنه بخواید /root رو افزایش بدید، طبق نیازتون تغییرش بدید اون قسمت رو
@Engineer_Computer