Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @_cablethief
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @_cablethief
-
Prikvačeni tweet
Published a little write up on the wpa_sycophant tool I created for relaying PEAP last year. https://sensepost.com/blog/2019/peap-relay-attacks-with-wpa_sycophant/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Yay got a blackhat asia talk accepted :D. https://www.blackhat.com/asia-20/briefings/schedule/index.html#wi-fi-brokering-18260 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Michael Kruger proslijedio/la je Tweet
I’ve been waiting for this for most of the year. Craig Koorn built a BloodHound for AWS IAM & related elements. Which finally just got a public release. Hugely useful for securing your AWS environments. https://github.com/FSecureLABS/awspx … cc
@0xdabbad00Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Michael Kruger proslijedio/la je Tweet
My close personal friend has been working on a tool to more accurately visualise effective access within AWS. We've found awspx to be really useful internally, we hope you do too. https://labs.f-secure.com/tools/awspx/
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Woops, add a "--network host" to that else you try connect to your containers network without a port forward.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Colleague needs to build and run a docker container while using capped internet. I suggested he build and run his docker on a jump box to save bandwidth. XD Dockerless docker.pic.twitter.com/PuVBZxTb3y
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Pretty cool episode from
@Freakonomics, I didn't realise that girl scouts had a cyber security badge :Dhttp://freakonomics.com/podcast/girl-scouts/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Made a docker for doing SSH tunneling rather than setting up a new sshd and config every time. "Tried" to make it secure as well so you don't get pwned back if someone tries to log into you. https://hub.docker.com/r/cablethief/sshaft …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Michael Kruger proslijedio/la je Tweet
we are absolutely getting 5g and it is absolutely going to kill people https://grist.org/article/5g-networks-could-throw-weather-forecasting-into-chaos/ …pic.twitter.com/OZf7KBEZNd
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
For a once off: sudo sysctl net.ipv4.ip_unprivileged_port_start=0 For permanence add to sysctl.d config: sudo vim /etc/sysctl.d/allow_user_lower_ports.conf and add net.ipv4.ip_unprivileged_port_start=0
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Apparently well known, but in case you don't know, Linux provides a way to disable the privileged nature of sub 1024 ports. This allows you to run listeners, services, etc on sub 1024 ports without root/sudo. For a single user system where I spin up random services its perfect.pic.twitter.com/rj2xCfoLm3
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Created a small script to toggle unmanage interfaces (And reloads NetworkManagers config) so that NetworkManager is less annoying when its your turn with the interface. https://github.com/Cablethief/NetworkUnmanager …pic.twitter.com/50cnivVNrN
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Updated berate_ap with support for wpa_sycophant to make wireless relaying a bit easier. Some other new things are adding the certificate subj in command by
@R4g3D_, some WPA attack flags, Mana taxonomy, and coloured Mana output. :D https://github.com/sensepost/berate_ap …https://github.com/sensepost/wpa_sycophant …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Two simple scripts and an explanation for sharing internet with a interface and creating a quick RADIUS server using hostapd-mana. https://gist.github.com/Cablethief/9b75affb1d6f1a14fd989329b179cb87 … I am torn on whether this should be a gist or a git /:
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Michael Kruger proslijedio/la je Tweet
Yeah! I'm really honoured to be offering our brand new Wi-Fi hacking course
@_ringzer0 at The Excaliber in Vegas on 3-6 Aug 2019. If Wi-Fi isn't your thing, check out the badass courses from the other trainers.https://twitter.com/sensepost/status/1116396812896800768 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Michael Kruger proslijedio/la je Tweet
If you want to extract the certificates used in EAP (TLS/PEAP/TTLS etc.) interaction, you can use this https://gist.github.com/singe/40bda2a1772aaf4903515cc4e436afe5 … Useful for closing them with https://github.com/sensepost/apostille … especially when going after macOS/iOS clients (who will present the cert details & ask the user).https://twitter.com/MarkRaatsWiFi/status/1098655602987851776 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Michael Kruger proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Michael Kruger proslijedio/la je Tweet
PoC for CVE-2019-6340, the
#drupal 8 REST unauthenticated RCE based on https://www.ambionics.io/blog/drupal8-rce …. Caching heavily messes with this one it seems, so the PoC tries to find usable nodes that are not cached. Tested with the drupal:8.6.9 docker container. https://gist.github.com/leonjza/d0ab053be9b06fa020b66f00358e3d88 …pic.twitter.com/WFJJO6kTLm
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Michael Kruger proslijedio/la je Tweet
Third part of the domain fronting series, this time looking at Cloudflare and ESNI: https://digi.ninja/blog/cloudflare_example.php … While it may not technicly be domain fronting, it is close enough for me.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.