C2Matix

— Google Calc Table

Visual Studio Code and GitHub Copilot

https://code.visualstudio.com/blogs/2023/03/30/vscode-copilot

I built a Zero Day with undetectable exfiltration using only ChatGPT prompts

https://www.forcepoint.com/blog/x-labs/zero-day-exfiltration-using-chatgpt-prompts

Writing an Interpreter in Go

BurpGPT

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type:

— https://github.com/aress31/burpgpt

50 Methods For Lsass Dump(RTC0002)

https://redteamrecipe.com/50-Methods-For-Dump-LSASS/

Img raw:

https://raw.githubusercontent.com/elementalsouls/DumpLSASS/main/50_Methods%20for%20LSASS%20Dump.png

Почему сегодня я не сертифицируюсь (почти)

Через 10-20 лет ИИ выпилит штатных и нештатных специалистов из свои насиженных мест. Многие потеряют работу и у дел останется только тот, кто сможет предложить нечто лучшее или иное, чем сможет предложить ИИ.

Сегодня многие изучая различные технологии - тратят свое жизненное время и деньги на изучение того, что будет неактуально через пару лет.

Здесь есть повод задуматься над тем, на что конкретно ты, конкретно здесь и сейчас тратишь свою жизнь.

Прежде чем тратить время, к примеру, на изучение методологий поиска уязвимостей в коде, задумайся, уже сегодня это делает ИИ, за 10 долларов в месяц.

Не трать время впустую.

#note #create_own_technologies

Awesome Bug Bounty Tools

— https://github.com/vavkamil/awesome-bugbounty-tools

#tool

Malicious Microsoft Teams Invite: NTLM Relay and Drive By Download Attack

— https://medium.com/@bobbyrsec/malicious-microsoft-teams-invite-ntlm-relay-and-drive-by-download-attack-265821e3da9e

Understanding Azure logging capabilities in depth

— https://mortenknudsen.net/?p=1433

Learn Git & GitHub

friendly Git course to integrate Git and GitHub and manage versions of your projects using Git branches:

— https://www.codecademy.com/learn/learn-git

10+ Unique Flask Projects with Source Code – 2023

— https://machinelearningprojects.net/flask-projects/

Python for Beginners (free course)

10 hours, 90 days of access:

— https://www.simplilearn.com/learn-python-basics-free-course-skillup

Lightweight Netflow collector

— https://github.com/vmxdev/xenoeye/

Cybersecurity Career Path

Offensive, Defensive, Researcher, Engineer, Officer:

— https://github.com/rezaduty/cybersecurity-career-path

Hacking Your Cloud: Tokens Edition 2.0

Office and Microsoft 365 tokens can add some interesting dynamics to Azure and Microsoft 365 services penetration testing. There are a few different ways of getting JWT tokens… These methods are useful when attempting to bypass MFA restrictions and access cloud workloads that are unrestricted by location in conditional access. Most enterprises only restrict access to cloud workloads with MFA in conditional access..:

— https://www.trustedsec.com/blog/hacking-your-cloud-tokens-edition-2-0/

Improve Onboarding through the Magic of Storytelling

4 simple steps for team lead for convenient new technical employe adaptation

— https://aminrb.me/blog/onboarding-storytelling/

30 Cool, Easy & Fun Python Projects with Source Code [2023]

— https://hackr.io/blog/python-projects

Intro to Data Structures & Algorithms

Free course from Udacity. This course will introduce you to common data structures and algorithms in Python:

— https://www.udacity.com/course/data-structures-and-algorithms-in-python--ud513

Linux Kernel: Spectre v2 SMT mitigations problem

— https://github.com/google/security-research/security/advisories/GHSA-mj4w-6495-6crx

CISA - Shifting the Balance of Cybersecurity Risk: Principles and Approaches for Security-byDesign and -Default

— https://www.cisa.gov/sites/default/files/2023-04/principles_approaches_for_security-by-design-default_508_0.pdf