Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @AffableKraut
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @AffableKraut
-
Prikvačeni tweet
Want to learn to hunt for some
#magecart infrastructure? Then you've come to the right place. Going to walk you through how to do it, from the very start to the end. /thread (probably 30-35 tweets, so hope you're interested)Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Think of the time saved each year if Github would improve their search even a little bit. That it is unable to do even the most basic code searches properly is just baffling, let alone thinking I care about the last date it indexed a file, versus when that file was last modified
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Can't decide: normally bypassing auth to log in to an app is bad, but what if you can't really access any data or perform any meaningful actions? Like, it's not optimal, but is it actually bad or does it just make you look dumb?
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Affable Kraut proslijedio/la je Tweet
Edward Snowden and the Insider Threat - Steven Bay - ESW #170 https://youtu.be/nbnSSiVUSSw featuring:
@maldermania@securityweeklyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Affable Kraut proslijedio/la je Tweet
I've transformed the expressions from my "Top Base64 Encodings" learning aid into a YARA and Sigma rule and published them in the respective repos Learning Aid https://gist.github.com/Neo23x0/6af876ee72b51676c82a2db8d2cd3639 … YARA https://github.com/Neo23x0/signature-base/blob/master/yara/gen_powershell_susp.yar#L204 … Sigma https://github.com/Neo23x0/sigma/blob/master/rules/windows/process_creation/win_powershell_frombase64string.yml …pic.twitter.com/5C5MRGGFaL
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Affable Kraut proslijedio/la je Tweet
Some didn’t want to use the
@NSAgov charging station last year at@shmoocon. Wonder if I would get takers for these?pic.twitter.com/ar0N9WSn5d
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Affable Kraut proslijedio/la je Tweet
Group-IB's Cyber Investigations Team helps take down a #cybergang responsible for the infection of hundreds of websites all over the world. More details about the operation here-> https://www.group-ib.com/media/night-fury …#JSSniffers#Magecartpic.twitter.com/s3TmdzXTQo
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Affable Kraut proslijedio/la je Tweet
#SuccessGan Magento hackers still operate magecart[.]net despite 3 arrests on Dec 20th. File syncdb.exe is actually a text file with stolen UK cards, last modified Jan 7th.pic.twitter.com/rDTWIVWZU1
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Affable Kraut proslijedio/la je Tweet
i am truly devastated to announce that the y2k bug is now officially classified as a feature
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Affable Kraut proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Affable Kraut proslijedio/la je Tweet
Indonesian police arrests 3 Magecart hackers who ran skimming operation since 2017. They recently registered "magecart[.]net" for payment interception. https://sansec.io/labs/2020/01/25/magecart-hackers-arrested/ …pic.twitter.com/kIp3m8IIwi
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Follow up here, as
@jknsCo was able to get a copy
:https://twitter.com/AffableKraut/status/1221102738701942784 …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
If you're looking to poke around at that last bit, I'd recommend dropping a breakpoint or debugger; on line 358. The "a" array that is created has interesting stuff in it: 5/5pic.twitter.com/Z6X7sIrj7J
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Running that creates a second chunk of code, which is here: https://gist.github.com/krautface/f81907440cdf1d2f43024bff62593900 … And here is the prettified version of it with the deobfuscation function prepended: https://gist.github.com/krautface/c22b0fe8e84d7128b46a81693ac4745c … 4/x
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
For those interested, here's the code. It's multilayered, with the second layer needing the obfuscation function from the first. Here's a copy of the first layer: https://gist.github.com/krautface/7a2f2e054e3b186dbea3ba056b841f57 … 3/x
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Interestingly a version of the skimmer code itself has been seen before. I wrote some details up here: https://twitter.com/AffableKraut/status/1185070871691616256 … At the end of that thread
@unmaskparasites added some of their infrastructure and linked a tweet form@ecomscan which has even more. 2/5Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Thanks to some nice work by
@jknsCo (see here: https://twitter.com/jknsCo/status/1221031002564370432 … ) a copy of the skimmer was grabbed. 1/5https://twitter.com/AffableKraut/status/1220829048823336962 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Affable Kraut proslijedio/la je Tweet
Joint press conference by Indonesian National Police &
#INTERPOL on Operation Night Fury led by INTERPOL’s#ASEAN Desk, sharing the successful arrest of 3 suspects involved in JS-sniffer campaign compromising e-commerce websites to steal credit card or online payment informationpic.twitter.com/2C12fvZ92X
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Affable Kraut proslijedio/la je Tweet
Spotted new malicious domains inc jquery[.]us & hotjar[.]us in the wild (spoiler: nothing to do with jQuery or Hotjar!). Payloads only delivered under specific circumstances & include code to hide itself to anyone looking for it. Several UK ecommerce sites infected
#magecartpic.twitter.com/2boyzsFMTj
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Digital Skimmer/
#magecart related arrests in Indonesia https://cyberthreat.id/read/4904/Retas-E-Commerce-Luar-Hacker-Indonesia-Beli-Tools-di-Sini … https://cyberthreat.id/read/4892/Polri-Tangkap-Tiga-Hacker-Malware-JS-Sniffer-Asal-Indonesia … Play stupid games, win stupid prizes.Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Affable Kraut proslijedio/la je Tweet
Retas E-Commerce Luar, Hacker Indonesia Beli Tools di Sini https://cyberthreat.id/read/4904/Retas-E-Commerce-Luar-Hacker-Indonesia-Beli-Tools-di-Sini …
#malware#penjahatsiber#ancamansiber#serangansiber#hackingtools#e-commerce#tokoonline#magecart#hacker # jsniffer#javascriptsnifferHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.