@Phantasm_Lab – Telegram
@Phantasm_Lab
@Phantasm_Lab
2.56K subscribers
712 photos
34 videos
671 files
2.71K links
- Red x Blue Security
- Bug Bounty 💷 💵
- Exploitable tools
- Programming Languages
- Malware Analysis

🇺🇸 🇧🇷 🇪🇸

since 2017 ©


Parceiros:
@TIdaDepressaoOficial @acervoprivado @ReneGadesx @G4t3w4y
Download Telegram
About
Blog
Apps
Platform
Join
@Phantasm_Lab
2.56K subscribers
@Phantasm_Lab
#CSS #Keylogger #DOM

CSS Keylogger - old is new again

This is "well known" research that resurfaces every other year. Let me tell you a story how I have heard about this in 2012 and putting it into perspective.

https://www.youtube.com/watch?v=oJ6t7AImTdE


🕴 https://github.com/maxchehab/CSS-Keylogging
🕴 @Phantasm_Lab
YouTube
CSS Keylogger - old is new again
This is "well known" research that resurfaces every other year. Let me tell you a story how I have heard about this in 2012 and putting it into perspective.

Research "Scriptless Attacks –
Stealing the Pie Without Touching the Sill" (2012):
+ Paper: htt…
857 views[L]uŧh1er | Pirate$ocks5
@Phantasm_Lab
#SSH #Logs #Honeypot

Fake sshd that logs ip addresses, usernames, and passwords.

This program listens for incoming ssh connections and logs the ip address, username, and password used. This was written to gather rudimentary intelligence on brute force attacks.

https://github.com/x0rz/ssh-honeypot

🕴 @Phantasm_Lab
GitHub
GitHub - x0rz/ssh-honeypot: Fake sshd that logs ip addresses, usernames, and passwords.
Fake sshd that logs ip addresses, usernames, and passwords. - GitHub - x0rz/ssh-honeypot: Fake sshd that logs ip addresses, usernames, and passwords.
839 views[L]uŧh1er | Pirate$ocks5
@Phantasm_Lab
https://www.udemy.com/ethical-hacking-with-metasploit-the-penetration-testing-tool/?couponCode=METASPLOIT_LOVER&pmtag=FBY1010&siteID=VkwVKCHWj2A-3xh2L_qtyMIEfZfdwAFi_g&LSNPUBID=VkwVKCHWj2A
711 viewsS4fh1R
@Phantasm_Lab
https://www.udemy.com/kotlinandroid/?couponCode=KOTLINUNLIMITED
Udemy
Kotlin for Android O Development: From Beginner to Advanced
Learn coding and designing Android apps with Kotlin while building real app examples like Instagram and Foursquare clone
840 viewsS4fh1R
@Phantasm_Lab
https://www.udemy.com/how-do-hackers-hack/?couponCode=FREEEE
747 viewsS4fh1R
@Phantasm_Lab
O Wireshark é um programa que analisa o tráfego de rede, e o organiza por protocolos. As funcionalidades do Wireshark são parecidas com o tcpdump mas com uma interface GUI, com mais informação!
786 viewsDan
@Phantasm_Lab
Wireshark DNS.pdf
344.9 KB
Modulo DNS
853 viewsDan
@Phantasm_Lab
Wireshark HTTP.pdf
200.1 KB
Modulo HTTP
843 viewsDan
@Phantasm_Lab
Wireshark TCP.pdf
360.1 KB
Modulo TCP
859 viewsDan
@Phantasm_Lab
Wireshark UDP.pdf
41.7 KB
Modulo UDP
882 viewsDan
@Phantasm_Lab
#mitm #exploitation Bettercap É um canivete suíço para ataques de rede e monitoramento... https://www.bettercap.org/
806 viewsDan
@Phantasm_Lab
#mitm #exploitation Xerosploit é um kit de ferramentas de teste de penetração e ataque main the midle... https://github.com/LionSec/xerosploit
907 viewsDan
@Phantasm_Lab
O Web Console é um aplicativo baseado na web que permite executar comandos de shell em um servidor diretamente de um navegador (SSH baseado na Web). http://web-console.org/
1K viewsDan
@Phantasm_Lab
#footprint #automation #security SpiderFoot automatiza o OSINT para descobrir tudo o que é possível sobre seu alvo... http://www.spiderfoot.net/documentation/
774 viewsDan
@Phantasm_Lab
possui diversas API Keys entre elas, Shodan, Honeypot Checker, MalwarePatrol, Censys.io
852 viewsDan
@Phantasm_Lab
Bspwm configuration

http://telegra.ph/Bspwm-configuration-02-27
https://github.com/laps3int

🕴 @Phantasm_Lab
🕴 @laps3_int
Telegraph
Bspwm configuration
Configure bspwm on ArchLinux: ----------------------------------------- sudo pacman -S bspwm sxhkdrc mkdir -p .config/bspwm mkdir -p .config/sxhkd ---------------------------------------- Download the dotfiles here: https://github.com/laps3int/Dotfiles Move…
774 views[L]uŧh1er, edited  
@Phantasm_Lab
demo_bspwm.mkv
2.8 MB
818 views[L]uŧh1er
@Phantasm_Lab
Forwarded from The Bug Bounty Hunter
Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords
https://github.com/Viralmaniar/Passhunt
GitHub
GitHub - Viralmaniar/Passhunt: Passhunt is a simple tool for searching of default credentials for network devices, web applications…
Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords. - Viralmaniar/Passhunt
33 views[L]uŧh1er
@Phantasm_Lab
Forwarded from Matheus
https://epocanegocios.globo.com/Tecnologia/noticia/2018/03/governo-alemao-ainda-esta-tentando-controlar-ciberataque-contra-sua-rede.html
epocanegocios.globo.com
Governo alemão ainda está tentando controlar ciberataque contra sua rede
Os hackers teriam conseguido acessar, em pelo menos um caso, informações relevantes do Ministério das Relações Exteriores e, provavelmente, de outros departamentos de segurança do Estado
657 views[L]uŧh1er
@Phantasm_Lab
Forwarded from Matheus
http://www.tvi24.iol.pt/internacional/alemanha/governo-alemao-alvo-de-ataque-informatico
tvi24
Governo alemão alvo de ataque informático
Há suspeitas de que esteja envolvido o grupo de hacking russo APT28. Autoridades dizem que ainda é prematuro retirar essa conclusão, mas também assumem que esse grupo tem ligações à espionagem
618 views[L]uŧh1er
@Phantasm_Lab
Forwarded from Matheus
650 views[L]uŧh1er