@Phantasm_Lab – Telegram
@Phantasm_Lab
@Phantasm_Lab
2.56K subscribers
712 photos
34 videos
671 files
2.71K links
- Red x Blue Security
- Bug Bounty 💷 💵
- Exploitable tools
- Programming Languages
- Malware Analysis

🇺🇸 🇧🇷 🇪🇸

since 2017 ©


Parceiros:
@TIdaDepressaoOficial @acervoprivado @ReneGadesx @G4t3w4y
Download Telegram
About
Blog
Apps
Platform
Join
@Phantasm_Lab
2.56K subscribers
@Phantasm_Lab
Hard Coded username and password in registry

I was using a tool called RegShot to take a snap shot of the registry before and after installation in order to see what changes were being made in the registry and I discovered hard-coded credentials

https://hackerone.com/reports/291200

🕴🏼 @Phantasm_Lab
HackerOne
Kaspersky disclosed on HackerOne: Hard Coded username and password...
I was using a tool called RegShot to take a snap shot of the registry before and after installation in order to see what changes were being made in the registry and I discovered hard-coded...
641 views
@Phantasm_Lab
Media is too big
VIEW IN TELEGRAM
636 views
@Phantasm_Lab
Hardcoded Credentials Stored in Registry Kaspersky Lab

https://medium.com/@bluedangerforyou/hardcoded-credentials-stored-in-registry-kaspersky-lab-849ee7ea19e0
Medium
Hardcoded Credentials Stored in Registry Kaspersky Lab
I was using a tool called RegShot to take a snap shot of the registry before and after installation in order to see what changes were…
792 views
@Phantasm_Lab
https://www.udemy.com/linux-administration-commend-line-complete-guide/?couponCode=YOU_LT_P000
Udemy
Linux Administration +Linux Command Line+Linux Server 3 in 1
Learn Linux Administration , Linux Command Line, Linux Server admin, Red Hat Linux, CentOS - Get Linux Certification
749 views
@Phantasm_Lab
#Perfil #HackerOne #Series

exploitprotocol

Reputation: 6363 Rank: 34th

https://hackerone.com/exploitprotocol

🕴🏽 @Phantasm_Lab
HackerOne
HackerOne profile - exploitprotocol
Aditya is an application security consultant with over 5 years of experience. He has experience and expertise in web, mobile applications, OSINT, External Network Pentest. He is the author of some...
634 views
@Phantasm_Lab
Forwarded from Netsec
Python exploit for Remote Code Execution on GPON home routers (CVE-2018-10562)
https://ift.tt/2rv6HOj

Submitted May 10, 2018 at 04:46AM by Prav123
via reddit https://ift.tt/2jMJOCK
GitHub
f3d0x0/GPON
Python exploit for Remote Code Executuion on GPON home routers (CVE-2018-10562). Initially disclosed by VPNMentor (https://www.vpnmentor.com/blog/critical-vulnerability-gpon-router/), kudos for the...
33 views
@Phantasm_Lab
Hacking Brasil

Hacking Brasil é o título de um projeto que visa compartilhar de forma gratuita conteúdos sobre segurança cibernética e outras tecnologias. Pense corretamente sobre Hacking.

t.me/HackingBr4sil
703 viewsedited  
@Phantasm_Lab
What's up Hong Kong ?

https://youtu.be/jJkuCzgg7fo

🕴 @Phantasm_Lab
YouTube
What's up Hong Kong?
During our last visit to Hong Kong, not only did we take a lot of awesome pictures, but we also made a video that was shot a few hours before our flight to Tokyo. The venue is the very heart of Hong Kong, a skyscraper with a huge billboard.

It was a real…
1.55K viewsedited  
@Phantasm_Lab
https://www.udemy.com/python-36-basico/?couponCode=LEARNVRL
Udemy
Python Courses, Training, and Tutorials | Learn Python Online Today
Start learning Python today. Find the best Python programming course for your level and needs, from Python for web development to Python for data science.
739 views
@Phantasm_Lab
https://www.udemy.com/mastering-data-analysis-with-python-pandas-matplotlib/?couponCode=HOSSAM1000
Udemy
Online Courses - Anytime, Anywhere | Udemy
Udemy is the world's largest destination for online courses. Discover an online course on Udemy.com and start learning a new skill today.
634 views
@Phantasm_Lab
#Guide #SecurityModern #WebApplications
3.16K views
@Phantasm_Lab
The Tangled Web - A Guide to Security Web Applications

the field of information security appears to be a mature, well-defined, and accomplished branch of computer science. Resident experts eagerly assert the importance of their area of expertise by pointing to large sets of neatly cataloged security flaws, invariably attributed to security-illiterate developers, while their fellow theoreticians note how all these problems would have been prevented by adhering to this year’s hottest security methodology.

🕴🏽 @Phantasm_Lab
3.36K viewsedited  
@Phantasm_Lab
The Tagled Web A Guide to Securing Modern Web Applications.pdf
4 MB
4.32K views
@Phantasm_Lab
https://www.udemy.com/the-complete-ethical-hacking-masterclass/?couponCode=TCHMF18
Udemy
The Complete Penetration Testing Bootcamp
Learn Penetration Testing The Right Way! Learn All The Ethical Hacking & Penetration Testing Techniques Used By Hackers
669 views
@Phantasm_Lab
Forwarded from Cursagram
Curso Básico de PHP 7

📅| Lançamento: 2017
⚖️| Tamanho: 98 mb
🗂| Formato: mp4
⭐️| Qualidade: 480p/HD
©| EspecializaTi
👥| Hope Assistência Técnica
⚠️| Denunciar Postagem

🎓 Matricule-se 🎓
48 views
@Phantasm_Lab
Forwarded from Hacking Brasil
Complete Guide to Shodan
Collect. Analyze. Visualize. Make Internet Intelligence Work
for You.
52 views
@Phantasm_Lab
Forwarded from Hacking Brasil
shodan.pdf
4.6 MB
73 views
@Phantasm_Lab
Forwarded from Hacking Brasil
Só porque alguns pacotes estão disponíveis para instalar diretamente do Ubuntu Software Center não os torna seguros. Isto é provado por uma recente descoberta de malware em alguns pacotes instantâneos da loja Ubuntu Snaps.
https://hackingbrasil.wordpress.com/2018/05/14/malware-encontrado-no-ubuntu-snap-store/
Hacking Brasil
Malware encontrado no Ubuntu Snap Store
Só porque alguns pacotes estão disponíveis para instalar diretamente do Ubuntu Software Center não os torna seguros. Isto é provado por uma recente descoberta de malware em alguns pacotes instantân…
60 views
@Phantasm_Lab
Forwarded from AlcyJones
Começando AGORA ... SecurityCast #55 - Proteção Legal de Dados Pessoais no Mundo Digital

Neste SecurityCast vamos conhecer como o mundo vem se posicionando frente ao constante monitoramento que sofremos com empresas coletando todo e qualquer dado sobre nós. Atualmente, a Europa deu um passo muito importante para impedir essas práticas com o EU General Data Protection Regulation (GDPR). Mas ainda fica uma questão: a lei é capaz de fornecer essa proteção?

https://www.youtube.com/watch?v=PIT1T2qzpFA
YouTube
[SecurityCast] WebCast #55 - Protecao Legal de Dados Pessoais no Mundo Digital
Neste SecurityCast vamos conhecer como o mundo vem se posicionando frente ao constante monitoramento que sofremos com empresas coletando todo e qualquer dado...
631 views
@Phantasm_Lab
Forwarded from @Phantasm_Lab
BSidesSF 2018 - Blue Team Fundamentals

Noob friendly! While new technical vulnerabilities are found continuously, malicious actors often rely on tried and true methods to exploit. These exploits are surprisingly uncomplicated. In this talk, we’ll share attempts we’ve seen from malicious actors. We’ll break down actual attacks and share what’s been most effective in mitigating credential stuffing, phishing, and common RCE attempts. At the end of this talk, you’ll walk away with simple takeaways to raise the cost to attackers for these simple attacks.
Categoria Ciência e tecnologia

https://youtu.be/4Di34iv388A
YouTube
BSidesSF 2018 - Blue Team Fundamentals (Benjamin Hering)
Benjamin Hering - Blue Team Fundamentals Noob friendly! While new technical vulnerabilities are found continuously, malicious actors often rely on tried and ...
45 views
@Phantasm_Lab
Seginfocast #53 – Livro Contagem Regressiva até Zero Day

https://seginfo.com.br/2018/03/01/seginfocast-52-livro-contagem-regressiva-ate-zero-day/
SegInfo - Portal, Podcast e Evento sobre Segurança da Informação
Seginfocast #53 – Livro Contagem Regressiva até Zero Day
SegInfocast #53 – Faça o download aqui. (52:45 min, 38 MB) Neste episódio, Paulo Sant’anna recebe Alan Oliveira, que é um dos tradutores do livro Countdown to Zero Day: Stuxnet and the Launch of th…
744 viewsedited