DNS Measurement, Troubleshooting and Security Auditing Toolset
Поставляется как питон скрипт, который можно использовать из venv, есть готовые бинари для линуха, макоси, виндовозы в разделе releases, есть докер сборка:
https://github.com/farrokhi/dnsdiag
Поставляется как питон скрипт, который можно использовать из venv, есть готовые бинари для линуха, макоси, виндовозы в разделе releases, есть докер сборка:
https://github.com/farrokhi/dnsdiag
GitHub
GitHub - farrokhi/dnsdiag: DNS Measurement, Troubleshooting and Security Auditing Toolset
DNS Measurement, Troubleshooting and Security Auditing Toolset - farrokhi/dnsdiag
Build a Go Webserver on HTTP/2 using Letsencrypt
https://marcofranssen.nl/build-a-go-webserver-on-http-2-using-letsencrypt
https://tutorialedge.net/golang/creating-simple-web-server-with-golang/
https://marcofranssen.nl/build-a-go-webserver-on-http-2-using-letsencrypt
https://tutorialedge.net/golang/creating-simple-web-server-with-golang/
marcofranssen.nl
Build a Go Webserver on HTTP/2 using Letsencrypt | Marco Franssen
Pretty often I see developers struggle with setting up a webserver running on https. Now some might argue, why to run a webserver on https during development? The reason for that is simple. If you would like to benefit from HTTP/2 features like server push…
How to search for Open Amazon s3 Buckets and their contents — https://buckets.grayhatwarfare.com
https://grayhatwarfare.medium.com/how-to-search-for-open-amazon-s3-buckets-and-their-contents-https-buckets-grayhatwarfare-com-577b7b437e01
https://buckets.grayhatwarfare.com/results/test
https://grayhatwarfare.medium.com/how-to-search-for-open-amazon-s3-buckets-and-their-contents-https-buckets-grayhatwarfare-com-577b7b437e01
https://buckets.grayhatwarfare.com/results/test
Service Level Agreements (SLA) and what they mean
https://calibreone.com.au/service-level-agreements/
https://calibreone.com.au/service-level-agreements/
DNS Basics and Building Simple DNS Server in Go | by Mohan Prasath | Medium
https://medium.com/@openmohan/dns-basics-and-building-simple-dns-server-in-go-6cb8e1cfe461
https://medium.com/@openmohan/dns-basics-and-building-simple-dns-server-in-go-6cb8e1cfe461
Medium
DNS Basics and Building Simple DNS Server in Go
This is my experience on prototyping a DNS server in Golang. After going through this blog you will have a nice idea on how DNS works…
Cybersecurity Awareness training
Free from AWS
https://learnsecurity.amazon.com/
P.S. Прикольно, есть на разных языках включая русский
Free from AWS
https://learnsecurity.amazon.com/
P.S. Прикольно, есть на разных языках включая русский
RPC Firewall
DCSync attack? over RPC. Remote DCOM? over RPC. WMIC? over RPC. SharpHound? over RPC. PetitPotam? over RPC. PsExec? over RPC. ZeroLogon? over RPC... well, you get the idea :)
https://github.com/zeronetworks/rpcfirewall
DCSync attack? over RPC. Remote DCOM? over RPC. WMIC? over RPC. SharpHound? over RPC. PetitPotam? over RPC. PsExec? over RPC. ZeroLogon? over RPC... well, you get the idea :)
https://github.com/zeronetworks/rpcfirewall
GitHub
GitHub - zeronetworks/rpcfirewall
Contribute to zeronetworks/rpcfirewall development by creating an account on GitHub.
Обход блокировки экрана от Apple и проведение безконтактных платежей
Исследование на эту тему:
https://practical_emv.gitlab.io/
Исследование на эту тему:
https://practical_emv.gitlab.io/
Free Tool Scans Web Servers for Vulnerability to HTTP Header-Smuggling Attacks
https://www.darkreading.com/application-security/free-tool-scans-web-servers-for-vulnerability-to-http-header-smuggling-attacks
https://www.darkreading.com/application-security/free-tool-scans-web-servers-for-vulnerability-to-http-header-smuggling-attacks
Darkreading
Free Tool Scans Web Servers for Vulnerability to HTTP Header-Smuggling Attacks
A researcher will release an open source tool at Black Hat Europe next week that roots out server weaknesses to a sneaky type of attack.
Reverse-engineering Broadcom wireless chipsets
https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html
https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html
Quarkslab
Reverse-engineering Broadcom wireless chipsets - Quarkslab's blog
Broadcom is one of the major vendors of wireless devices worldwide. Since these chips are so widespread they constitute a high value target to attackers and any vulnerability found in them should be considered to pose high risk. In this blog post I provide…
How to Create JavaScript Copy to Clipboard
https://www.foolishdeveloper.com/2021/11/javanoscript-copy-to-clipboard.html?m=1
https://www.foolishdeveloper.com/2021/11/javanoscript-copy-to-clipboard.html?m=1
Foolish Developer
How to Create JavaScript Copy to Clipboard
JavaScript Copy to Clipboard helps to copy any text. In this article I have shown how Copy to Clipboard is made using html css and javanoscript.
catching_transparent_phish.pdf
4.3 MB
Catching Transparent Phish:
Analyzing and Detecting MITM Phishing Toolkits
Analyzing and Detecting MITM Phishing Toolkits
ccs21_dns_poisoning.pdf
642.2 KB
DNS Cache Poisoning Attack: Resurrections with Side Channels
Ransomware_Attackers_Don_t_Take_Holidays.pdf
4.3 MB
Ransomware Attackers Don’t Take Holidays
…
how well do organizations understand the risk from ransomware attacks, especially those that occur during the weekends and holidays, and how prepared are they to address this risk? be careful on oming holidays.. report from Cybereason company
…
…
how well do organizations understand the risk from ransomware attacks, especially those that occur during the weekends and holidays, and how prepared are they to address this risk? be careful on oming holidays.. report from Cybereason company
…
GHSL-2021-1031: Information leak in Qualcomm npu driver - CVE-2021-1969
https://securitylab.github.com/advisories/GHSL-2021-1031-npu/
https://securitylab.github.com/advisories/GHSL-2021-1031-npu/
GitHub Security Lab
GHSL-2021-1031: Information leak in Qualcomm npu driver - CVE-2021-1969
Information leak in Qualcomm npu driver due to use of uninitialized variable
BrazKing Android Malware Upgraded and Targeting Brazilian Banks
https://securityintelligence.com/posts/brazking-android-malware-upgraded-targeting-brazilian-banks/
https://securityintelligence.com/posts/brazking-android-malware-upgraded-targeting-brazilian-banks/
Security Intelligence
BrazKing Android Malware Upgraded and Targeting Brazilian Banks
IBM Trusteer researchers found the BrazKing Android malware has new tactics. See how it infects and hides in phones that use Brazilian banking apps.