NEW BOT Телеграм, страница

How Russian Trolls Collected Americans' Personal Information

The Kremlin-backed Internet Research Agency, a.k.a. the Troll Factory, used fake social media accounts before and after the 2016 U.S. election to collect sensitive personal information on Americans, a Wall Street Journal investigation has found. Shelby Holliday explains how the Russian schemes worked.

https://www.youtube.com/watch?v=heXp2tyDl6k

YouTube

How Russian Trolls Collected Americans' Personal Information

The Kremlin-backed Internet Research Agency, a.k.a. the Troll Factory, used fake social media accounts before and after the 2016 U.S. election to collect sensitive personal information on Americans, a Wall Street Journal investigation has found. Shelby Holliday…

736 views09:59

@Phantasm_Lab

https://www.udemy.com/wifi-hacking-from-a-penetration-testers-perspective/?couponCode=TEXPERTS_GIVEAWAY

Udemy

WiFi Penetration Testing (Ethical Hacking) From Scratch

Learn how to hack many different forms of WiFi from a penetration testers perspective

671 views18:27

@Phantasm_Lab

Hackers invadem sites da SSP, Polícia Civil e do Corpo de Bombeiros

Só a PM escapou por estar fora do ar; quem tentava acessar as páginas era surpreendido com uma mensagem de que os endereços estavam em manutenção

http://imirante.com/oestadoma/noticias/2018/03/20/hackers-invadem-sites-da-ssp-policia-civil-e-do-corpo-de-bombeiros.shtml

Jornal O Estado do Maranhão

Hackers invadem sites da SSP, Polícia Civil e do Corpo de Bombeiros

Só a PM escapou por estar fora do ar; quem tentava acessar as páginas era surpreendido com uma mensagem de que os endereços estavam em manutenção

718 views21:51

@Phantasm_Lab

#Perfil #HackerOne #Series

Ajay Kulal (hackerhero)

Reputation: 1489

https://hackerone.com/hackerhero

HackerOne

HackerOne profile - hackerhero

780 views23:35

@Phantasm_Lab

Forwarded from Full Python Alchemist

Security Weekly #416 - Python for Pentesters

Dan joins us in-studio for a tech segment on some python noscripts he has written.

https://www.youtube.com/watch?v=nukEMdt5ehs

🐍 @FullPythonAlchemist

YouTube

Security Weekly #416 - Python for Pentesters

Dan joins us in-studio for a tech segment on some python noscripts he has written.

Check out the wiki for links to his github and Twitter.

http://wiki.securityweekly.com/wiki/index.php/Episode416#Tech_Segment:_Dan_McInerney_-_6:05PM-6:35PM

27 views22:02

@Phantasm_Lab

Linux Privilege Escalation - Tradecraft

After getting a shell on a server you may or may not have root access. To gain privileged access to a Linux system it may take performing more analysis of the system to find escalation issues. In this episode of Tradecraft Security Weekly Beau Bullock (@dafthack) provides a methodology for performing various privilege escalation techniques against Linux-based systems.

https://www.youtube.com/watch?v=oYHAi0cgur4

YouTube

Linux Privilege Escalation - Tradecraft Security Weekly #22

After getting a shell on a server you may or may not have root access. To gain privileged access to a Linux system it may take performing more analysis of the system to find escalation issues. In this episode of Tradecraft Security Weekly Beau Bullock (@dafthack)…

721 views22:17

@Phantasm_Lab

Three different priv escalation methods - Pentest Limited's BSides Edinburgh

Abusing cron, mysql, and previous breach to gain root privileges.
BSides Edinburgh boot2root.

https://www.youtube.com/watch?v=VglowrbEnCI

YouTube

Three different priv escalation methods - Pentest Limited's BSides Edinburgh

Abusing cron, mysql, and previous breach to gain root privileges.

BSides Edinburgh boot2root.

https://maze.pentest-challenge.co.uk/
https://maze.pentest-challenge.co.uk/downloads/bsidesedi17.ova

886 views22:22

@Phantasm_Lab

https://youtu.be/ykCBnYHcqjY

YouTube

DevOps or DevSecOps? - Application Security Weekly #10

Does DevOps handle security, or does it need to be DevSecOps? Maybe your not doing DevOps if you’re not doing security. This week Paul and Keith discuss the debate between the two!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode10

Visit…

721 views19:11

@Phantasm_Lab

Forwarded from Crypto links (One Time Pad ⊕)

https://youtu.be/QMR6QY2GfAA

46 views22:33

@Phantasm_Lab

https://www.udemy.com/data-visualization-analysis-in-python-d3js-html-css/?couponCode=FREENOW

787 views08:25

@Phantasm_Lab

Intelbras Telefone IP TIP200 LITE - Local File Disclosure

https://www.exploit-db.com/exploits/44317/

🕴🏽 @Phantasm_Lab

1.16K views20:49

@Phantasm_Lab

DNS hijacking using cloud providers - Frans Rosén

A few years ago, Frans and his team posted an article on Detectify Labs regarding domain hijacking using services like AWS, Heroku and GitHub. These issues still remains and are still affecting a lot of companies. Jonathan Claudius from Mozilla even calls “Subdomain takeover” “the new XSS”. Since then, many tools have popped up to spot these sorts of vulnerabilities. Frans will go through both the currently disclosed and the non-disclosed ways to take control over domains and will share the specific techniques involved.

https://www.youtube.com/watch?v=HhJv8CU-RIk

🕴🏽 @Phantasm_Lab

1.1K views08:12

@Phantasm_Lab

https://youtu.be/CIvDzwxaZxM

🕴 @Phantasm_Lab

838 viewsedited 05:49

@Phantasm_Lab

https://www.udemy.com/ruby-python-java/?couponCode=EASTER_WEEKEND

Udemy

Master Ruby, Python and Java

Learn Programming and OOP by building projects, be a confident developer with Ruby, Java, Python

826 views14:54

@Phantasm_Lab

Forwarded from The Bug Bounty Hunter

blind XXE in autodiscover parser https://hackerone.com/reports/315837

HackerOne

Mail.ru disclosed on HackerOne: blind XXE in autodiscover parser

Server side XXE in autodiscover.xml (user's mail configuration discovery for external domains) client code.

29 views22:42

@Phantasm_Lab

18 Extensions For Turning Firefox Into a Penetration Testing Tool

Firefox is a popular web browser from Mozilla. Popularity of Firefox is not only because it’s a good web browser, it also supports add-ons to enhance the functionality. Mozilla has a website add-on section that has thousands of useful add-ons in different categories. Some of these add-ons are useful for penetration testers and security analysts. These penetration testing add-ons helps in performing different kinds of attacks, and modify request headers direct from the browser. This way, it reduces the use of a separate tool for most of the penetration testing related tasks.

http://resources.infosecinstitute.com/use-firefox-browser-as-a-penetration-testing-tool-with-these-add-ons/

🕴 @Phantasm_Lab

Infosecinstitute

18 extensions for turning Firefox into a Penetration testing tool | Infosec

786 views22:40

@Phantasm_Lab

https://www.udemy.com/gruntjs-automate-web-development-tasks-and-save-your-time/?couponCode=FREEGRUNT5

Udemy

GRUNT js: Automate web development tasks and save your time

Save time automating web development tasks like compressing CSS/JS files on fly. Set Grunt and enjoy your free time!

686 views23:31

@Phantasm_Lab

Intel, Slack, Spectre, & NASA - Application Security Weekly #11

https://youtu.be/FCg_90E66OU

🕴 @Phantasm_Lab