dedsyn4ps3, to windows
@dedsyn4ps3@fosstodon.org avatar

The newest project is finally ready for its public debut! Inspired by a tool on for XFCE desktops, Nix-Incognito was developed to provide a similar mechanism for masking a user's GNOME desktop to better blend in with surrounding PC's during engagements!

Although it's meant for use on systems, it can easily be compiled and ran on any device running . Support for other DE's is in the works! 🙌 🤘 😎

https://github.com/dedSyn4ps3/nix-incognito

tanepiper, to security
@tanepiper@tane.codes avatar

Wanna cyber? We've got a whole bunch of new roles at IKEA
(Based out of Delft or Malmö)

Security Specialist - Cloud - Azure & AWS: https://smrtr.io/jRq3Z

Security Specialist - Endpoint - AV/EDR- MS Defender - https://smrtr.io/jRdK4

Security Engineer - Detection and Incident Response- SIEM - https://smrtr.io/jXdQZ

Security Specialist - Email Expertise - https://smrtr.io/jW-rL

kushal, (edited ) to linux
@kushal@toots.dgplug.org avatar

What are the good / (s) out there focused on ? Please boost for more reach.

Viss, to Engineering
@Viss@mastodon.social avatar

We had a customer shift their assessment date out 2 months, so our march is available if there's anyone out there who needs assessment/architecture/engineering/redteam/bluteam work on short notice

scottlink, to random

Anyone got link(s) to current articles on wifi pentesting? In particular, why can I get handshakes from known ssids, but the handshakes for hidden ssids don't seem to be usable to tooling used to extract hashes. Is there a newer tool I'm not in the loop on? I also tried out mdk4 to work out the name of a hidden ssid. Is that old and busted? I there new hotness?

wuzzi23, to llm

👉Put together a video about ASCII Smuggling. Hope it's interesting, tried to keep it short and concise.

Test your LLM apps for this new issue and also think about other areas this TTP applies to to build mitigations and catch hidden text in plain sight.

Special Unicode characters have been a common source for security feature bypasses.

https://m.youtube.com/watch?v=7z8weQnEbsc

r1cksec, to infosec

New cheatsheets pushed 🕵️‍♂️​

https://github.com/r1cksec/cheatsheets

Including:

A nice writeup about a XSS vulnerability found on chess.com♟️​
https://skii.dev/rook-to-xss

This tool can be used as a framework for CI/CD security analysis :github:​
https://github.com/CycodeLabs/raven

A great post about Process Injection in the context of Kernel Triggered Memory Scans :hacked:​
https://www.r-tec.net/r-tec-blog-process-injection-avoiding-kernel-triggered-memory-scans.html

netbiosX, to random

Persistence - Windows Setup Script https://pentestlab.blog/2024/02/05/persistence-windows-setup-script/

ChickenPwny, to BugBounty

=D it takes all the nuclei output makes it pretty now.

checkout my tool https://github.com/PolitoInc/EGOAlpha

@jerry behold the tool i made xD

cafou, to OSINT French
@cafou@raru.re avatar

An OSINT tool to search fast for accounts by username across 581 sites.

https://github.com/p1ngul1n0/blackbird

YourAnonRiots, to infosec Japanese
@YourAnonRiots@mstdn.social avatar

Test Socket Walkthrough | Python Tutorial | Hakin9

https://youtube.com/watch?v=A7PNCrjVDLg

YourAnonRiots, to infosec Japanese
@YourAnonRiots@mstdn.social avatar

GPT Hacking Compendium

https://hakin9.org/product/gpt-hacking-compendium/

JohnsNotHere, to infosec

It's about time I gave something back to the community. Hopefully this helps some and folks!

https://elitesec.io/blog/build-pentest-dropbox/

YourAnonRiots, to infosec Japanese
@YourAnonRiots@mstdn.social avatar

Introduction to Kismet | Kismet Wireless: Network Monitoring and Analysis | Hakin9

https://youtube.com/watch?v=NWpvswSlcKw

wuzzi23, to llm

👉Check out ASCII Smuggler 🔥

I built a simple tool to create and find hidden Unicode Tag messages inside text.

This can be used to hide prompt injection instructions in text in plain sight invisible to users.

https://embracethered.com/blog/posts/2024/hiding-and-finding-text-with-unicode-tags/

timb_machine, to linux

Last trip of the 2023 was to ATT&CKCon 4.0 to talk about my work with @mitreattack on Linux techniques. Recording can be found here: https://www.youtube.com/watch?v=PCw3Wa9GBP4&list=PLkTApXQou_8If8_fwdCKVnwHr0WaEnfSH&index=29

&ck, , , ,

aircooledcafe, to iOS

Anyone have instructions for getting nmap working from iSH on iOS/iPadOS, followed the instructions on their site and they are not working.

I sm still getting the following error after creating users and adding them to wheel:

route_dst_netlink: cannot create AF_NETLINK socket: Invalid argument

edermi, to random

Bloodhound finally gets experimental support for some ADCS use cases. Looking forward to see more! https://support.bloodhoundenterprise.io/hc/en-us/articles/21699533716635-2024-01-04-Release-Notes-v5-4-0-

SecureOwl, to infosec

🔒 Delve into the gripping tales of true cybersecurity challenges in the InfoSec Diaries – where real-world incidents, investigations, and penetrating test discoveries come to life.

📘 Discover these compelling stories, now available in Paperback, Kindle, and Audiobook formats.

Uncover the truth behind cybersecurity with the InfoSec Diaries: https://www.infosecdiaries.com/

null0perat0r, to Cybersecurity

Great research on how a Bitwarden vault could be opened without password or biometrics via it's Windows Hello implementation.

https://blog.redteam-pentesting.de/2024/bitwarden-heist/

Viss, (edited ) to architecture
@Viss@mastodon.social avatar

we're running a half-off promo through January at Phobos Group for our RTG services! (the 1hr and 2hr offerings)

If you need an hour or two consult for redteam or blueteam related work, or could find a second set of eyes helpful in the short term, we're here to help!

https://phobos.io/rtg

buherator, to random
@buherator@infosec.place avatar

My little Xmas gift to

https://github.com/v-p-b/SEPDisabler

r1cksec, to infosec

A nice and understandable blog post on how to create a shortcut file that will be executed once given keys are pressed🕵️‍♂️​

https://cocomelonc.github.io/persistence/2023/12/10/malware-pers-23.html

0xor0ne, to infosec

Analysis of the execution flow of a MSF Meterpreter payload

Slides: https://attl4s.github.io/assets/pdf/Understanding_a_Payloads_Life.pdf

image/jpeg
image/jpeg
image/jpeg

simplenomad, to blogging
@simplenomad@rigor-mortis.nmrc.org avatar

GitLab is hiring for a position, the position is somewhat unique in that experience, , and even speaking would help land this job. Feel free to boost to get many eyes on it. And if we know each other I could put in a good word for you.

https://boards.greenhouse.io/gitlab/jobs/7056513002

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • everett
  • Durango
  • mdbf
  • magazineikmin
  • InstantRegret
  • rosin
  • modclub
  • Youngstown
  • slotface
  • thenastyranch
  • cubers
  • kavyap
  • DreamBathrooms
  • JUstTest
  • khanakhh
  • GTA5RPClips
  • osvaldo12
  • ngwrru68w68
  • normalnudes
  • cisconetworking
  • Leos
  • ethstaker
  • tester
  • tacticalgear
  • provamag3
  • anitta
  • lostlight
  • All magazines
    •