PowerHammer: Exfiltrating Data from Air-Gapped Computers through Power Lines
https://ift.tt/2HfAtAy
Submitted April 15, 2018 at 09:46PM by tiger6700
via reddit https://ift.tt/2JOhX0G
https://ift.tt/2HfAtAy
Submitted April 15, 2018 at 09:46PM by tiger6700
via reddit https://ift.tt/2JOhX0G
Python API for Zero Day Phishing Detection Based on Computer Vision
https://ift.tt/2JN7kLB
Submitted April 15, 2018 at 10:32PM by jekapats
via reddit https://ift.tt/2qzzfpt
https://ift.tt/2JN7kLB
Submitted April 15, 2018 at 10:32PM by jekapats
via reddit https://ift.tt/2qzzfpt
GitHub
phishai/phish-ai-api
phish-ai-api - Official python API for Phish.AI public and private API to detect zero-day phishing websites
Google Authenticator as a service. A bad idea?
Yesterday my tablet went into bootloop and took my Google Authenticator secrets with it. It turned out, it was not really possible to extract any data from it, as it was not rooted. Fortunately I had most of my recovery codes safe, but now I have to go over all the services and reset the access, some of them (Tumblr) does not provide backup codes. So I went online to see if there's any google-authenticator-like online services, but I couldn't find any. Why is that? Nobody wants to take responsibility for those codes? Or I was looking in the wrong places?
Submitted April 15, 2018 at 10:28PM by MammothMKIV
via reddit https://ift.tt/2GZAmtv
Yesterday my tablet went into bootloop and took my Google Authenticator secrets with it. It turned out, it was not really possible to extract any data from it, as it was not rooted. Fortunately I had most of my recovery codes safe, but now I have to go over all the services and reset the access, some of them (Tumblr) does not provide backup codes. So I went online to see if there's any google-authenticator-like online services, but I couldn't find any. Why is that? Nobody wants to take responsibility for those codes? Or I was looking in the wrong places?
Submitted April 15, 2018 at 10:28PM by MammothMKIV
via reddit https://ift.tt/2GZAmtv
reddit
Google Authenticator as a service. A bad idea? • r/security
Yesterday my tablet went into bootloop and took my Google Authenticator secrets with it. It turned out, it was not really possible to extract any...
List of Open Source & Commercial Adversary Emulation Tools
https://ift.tt/2GYv2Ti
Submitted April 16, 2018 at 12:40AM by songya
via reddit https://ift.tt/2qyod3K
https://ift.tt/2GYv2Ti
Submitted April 16, 2018 at 12:40AM by songya
via reddit https://ift.tt/2qyod3K
PenTestIT
List of Adversary Emulation Tools - PenTestIT
This post is the most comprehensive attempt at listing open source and commercial adversary emulation tools such as CALDERA, APT Simulator, Invoke-Adversary, Metta, Red Team Automation, Infection Monkey, Cobalt Strike, Immunity Adversary Simulation, etc.
Hide message inside a string, using non printable charaters. Useful for fingerprinting texts.
https://ift.tt/2H4j7Dv
Submitted April 16, 2018 at 01:32AM by Deadlybeef
via reddit https://ift.tt/2HBD3OV
https://ift.tt/2H4j7Dv
Submitted April 16, 2018 at 01:32AM by Deadlybeef
via reddit https://ift.tt/2HBD3OV
GitHub
offdev/zwsp-steg-js
zwsp-steg-js - Zero-Width Space Steganography, encodes/decodes hidden messages as non printable/readable characters.
Five Pentesting Tools and Techniques (That Every Sysadmin Should Know)
https://ift.tt/2ELmeyd
Submitted April 16, 2018 at 01:29AM by regul8_
via reddit https://ift.tt/2EO8jHu
https://ift.tt/2ELmeyd
Submitted April 16, 2018 at 01:29AM by regul8_
via reddit https://ift.tt/2EO8jHu
Medium
Five Pentesting Tools and Techniques (That Every Sysadmin Should Know)
Step into the mind of a pentester.
BSidesSF 2018 - Rise of CoinMiners presentation slides.
https://ift.tt/2qyGrmB
Submitted April 16, 2018 at 01:10AM by GelosSnake
via reddit https://ift.tt/2EO4P86
https://ift.tt/2qyGrmB
Submitted April 16, 2018 at 01:10AM by GelosSnake
via reddit https://ift.tt/2EO4P86
Early Bird Code Injection Technique - Injected Code Runs before the EP of main thread - avoids detection by anti-malware hooks [Video and Article]
https://ift.tt/2vd4eNL
Submitted April 16, 2018 at 06:40AM by TechLord2
via reddit https://ift.tt/2EOAGFz
https://ift.tt/2vd4eNL
Submitted April 16, 2018 at 06:40AM by TechLord2
via reddit https://ift.tt/2EOAGFz
Cyberbit
New 'Early Bird' Code Injection Technique Discovered - Cyberbit
Cyberbit malware researchers discovered a new code injection technique that allows execution of malicious code before the entry point of the main thread of a process, hence – it can bypass security product hooks if they are not placed before the main thread…
Steganography with EDM
https://ift.tt/2EFTczR
Submitted April 16, 2018 at 07:53AM by mekura3ohfizzle
via reddit https://ift.tt/2EOl9FY
https://ift.tt/2EFTczR
Submitted April 16, 2018 at 07:53AM by mekura3ohfizzle
via reddit https://ift.tt/2EOl9FY
RPZ - Response Policy Zones Intro - Turning your DNS into a DNS Firewall
https://ift.tt/2H33ArF
Submitted April 16, 2018 at 10:56AM by cleanbrowsing
via reddit https://ift.tt/2IYAJkD
https://ift.tt/2H33ArF
Submitted April 16, 2018 at 10:56AM by cleanbrowsing
via reddit https://ift.tt/2IYAJkD
MITRE’s Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK™) - Updates April 2018 with "Initial Access" addition
https://ift.tt/2JPlbRq
Submitted April 16, 2018 at 11:34AM by 2xyo
via reddit https://ift.tt/2J0ttoD
https://ift.tt/2JPlbRq
Submitted April 16, 2018 at 11:34AM by 2xyo
via reddit https://ift.tt/2J0ttoD
Sg-3100 Pfsense Security Gateway Appliance
https://ift.tt/2H3x3BO
Submitted April 16, 2018 at 12:46PM by amicanetworks
via reddit https://ift.tt/2qClRAO
https://ift.tt/2H3x3BO
Submitted April 16, 2018 at 12:46PM by amicanetworks
via reddit https://ift.tt/2qClRAO
shop.amicatech.co.uk
SG-3100 pfSense® Security Gateway Appliance - pfSense - Hardware
The SG-3100 pfSense Security Gateway Appliance can be configured as a firewall, LAN or WAN router, VPN appliance, DHCP Server, DNS Server, and IDS/IPS with optional packages to deliver a high performance, high throughput front-line security archi
Real-time detection of consumer IoT devices participating in DDoS attacks
https://ift.tt/2HpdR0B
Submitted April 16, 2018 at 01:27PM by Iot_Security
via reddit https://ift.tt/2qBMpSZ
https://ift.tt/2HpdR0B
Submitted April 16, 2018 at 01:27PM by Iot_Security
via reddit https://ift.tt/2qBMpSZ
Help Net Security
Real-time detection of consumer IoT devices participating in DDoS attacks - Help Net Security
Could we detect compromised consumer IoT devices participating in a DDoS attack in real-time and do someting about it? A group of researchers Princeton University have presented some encouraging results showing that the first part of that equation can be…
Facebook knows about you, even if you’re not on Facebook
https://ift.tt/2EPnWyt
Submitted April 16, 2018 at 01:36PM by Olivia_Charles
via reddit https://ift.tt/2qCbJc8
https://ift.tt/2EPnWyt
Submitted April 16, 2018 at 01:36PM by Olivia_Charles
via reddit https://ift.tt/2qCbJc8
GraptechPedia
Facebook knows about you, even if you’re not on Facebook
Facebook’s founder and chief executive Mark Zuckerberg faced two days of grilling before US politicians this week, following concerns over how his company deals with people’s data. But the data Facebook has on people who are not signed up to the social media…
I wrote a few security tips for Java developers, hope you find it helpful
https://ift.tt/2H14l0d
Submitted April 16, 2018 at 02:27PM by dor12345
via reddit https://ift.tt/2HDB7Wo
https://ift.tt/2H14l0d
Submitted April 16, 2018 at 02:27PM by dor12345
via reddit https://ift.tt/2HDB7Wo
Medium
10 tips to power-up your Java security
10 simple but effective tips to code java more securely
UPnProxy: Blackhat Proxies via NAT Injections
https://ift.tt/2GMIv4q
Submitted April 16, 2018 at 03:25PM by gcbirzan
via reddit https://ift.tt/2HEr2bI
https://ift.tt/2GMIv4q
Submitted April 16, 2018 at 03:25PM by gcbirzan
via reddit https://ift.tt/2HEr2bI
AMD Gaming Evolved (Raptr - Plays.tv) Remote File Execution (CVE-2018-6546)
https://ift.tt/2viW06H
Submitted April 16, 2018 at 05:10PM by securifera
via reddit https://ift.tt/2qAtCaE
https://ift.tt/2viW06H
Submitted April 16, 2018 at 05:10PM by securifera
via reddit https://ift.tt/2qAtCaE
Securifera
AMD Gaming Evolved (Raptr - Plays.tv) Remote File Execution – Securifera
Background
For anyone running an AMD GPU from a few years back, you've probably come across a piece of software installed on your computer from Raptr, Inc. If you don't remember installing it, it's because for several years it was installed silently along…
For anyone running an AMD GPU from a few years back, you've probably come across a piece of software installed on your computer from Raptr, Inc. If you don't remember installing it, it's because for several years it was installed silently along…
Hackers stole a casino's high-roller database through a thermometer in the lobby fish tank
https://ift.tt/2H5Wiiw
Submitted April 16, 2018 at 06:35PM by speckz
via reddit https://ift.tt/2JNqlNS
https://ift.tt/2H5Wiiw
Submitted April 16, 2018 at 06:35PM by speckz
via reddit https://ift.tt/2JNqlNS
Business Insider
Hackers stole a casino's high-roller database through a thermometer in the lobby fish tank
Hacking internet of things devices is a growing problem for companies, the CEO of Darktrace told a conference this week.
Security In 5: Episode 217 - Firefox Can Now Isolate Your Facebook Identity From Being Tracked
https://ift.tt/2EQaPNB
Submitted April 16, 2018 at 06:31PM by BinaryBlog
via reddit https://ift.tt/2JOM6wR
https://ift.tt/2EQaPNB
Submitted April 16, 2018 at 06:31PM by BinaryBlog
via reddit https://ift.tt/2JOM6wR
Libsyn
Security In Five Podcast: Episode 217 - Firefox Can Now Isolate Your Facebook Identity From Being Tracked
Mozilla is not a fan of Facebook's privacy position. Recently they pulled all advertising off Facebook and now have released a plug-in for Firefox to isolate your Facebook identity. This will make it much harder for Facebook to track you outside of Facebook.…
teamviewer logs
https://imgur.com/2s8NoDO can someone please tell me if the fields in this section of the teamviewer log file refer to my PC or the remote PC?
Submitted April 16, 2018 at 06:21PM by FrancisAsks
via reddit https://ift.tt/2EQ2QQG
https://imgur.com/2s8NoDO can someone please tell me if the fields in this section of the teamviewer log file refer to my PC or the remote PC?
Submitted April 16, 2018 at 06:21PM by FrancisAsks
via reddit https://ift.tt/2EQ2QQG
reddit
teamviewer logs • r/security
https://imgur.com/2s8NoDO can someone please tell me if the fields in this section of the teamviewer log file refer to my PC or the remote PC?
CloudFront Hijacking
https://ift.tt/2EFiiit
Submitted April 16, 2018 at 08:27PM by speckz
via reddit https://ift.tt/2qAAw0g
https://ift.tt/2EFiiit
Submitted April 16, 2018 at 08:27PM by speckz
via reddit https://ift.tt/2qAAw0g
Disloops
CloudFront Hijacking – disloops
I started this blog to share some of the admin and security projects I work on. Hopefully one of these posts will be the article that you were looking for.