@a37f5b.bsky.social
Reposted
here's a framebuffer graphics demo (this has no practical purpose and I can't prove I'm not just like, playing a youtube video or something)
June 5, 2025 at 4:26 PM
here's a framebuffer graphics demo (this has no practical purpose and I can't prove I'm not just like, playing a youtube video or something)
Reposted
New from 404 Media: the Signal clone the Trump administration uses was just hacked. TeleMessage makes a modified version of Signal that archives messages for government agencies, Waltz used it. A hacker got some users' messages, group chats. Hugely significant breach www.404media.co/the-signal-c...
The Signal Clone the Trump Admin Uses Was Hacked
TeleMessage, a company that makes a modified version of Signal that archives messages for government agencies, was hacked.
www.404media.co
May 4, 2025 at 10:01 PM
New from 404 Media: the Signal clone the Trump administration uses was just hacked. TeleMessage makes a modified version of Signal that archives messages for government agencies, Waltz used it. A hacker got some users' messages, group chats. Hugely significant breach www.404media.co/the-signal-c...
Reposted
Security firm Spur has released a list of 2,400 IP addresses linked to Astrill, a VPN service often used by North Korean IT workers to hide their location
spur.us/astrill-vpn-...
spur.us/astrill-vpn-...
Astrill VPN and Remote Worker Fraud - Spur
In our ongoing efforts to help organizations protect against fraud and abuse, we're excited to announce the free release of a comprehensive list of IP
spur.us
December 26, 2024 at 4:09 PM
Security firm Spur has released a list of 2,400 IP addresses linked to Astrill, a VPN service often used by North Korean IT workers to hide their location
spur.us/astrill-vpn-...
spur.us/astrill-vpn-...
github.com
December 20, 2024 at 2:40 AM
Reposted
Microsoft just released a tool that lets you convert Office files to Markdown. Never thought I'd see the day.
Google also added Markdown export to Google Docs a few months ago.
github.com/microsoft/markitdown
Google also added Markdown export to Google Docs a few months ago.
github.com/microsoft/markitdown
GitHub - microsoft/markitdown: Python tool for converting files and office documents to Markdown.
Python tool for converting files and office documents to Markdown. - microsoft/markitdown
github.com
December 13, 2024 at 8:25 PM
Microsoft just released a tool that lets you convert Office files to Markdown. Never thought I'd see the day.
Google also added Markdown export to Google Docs a few months ago.
github.com/microsoft/markitdown
Google also added Markdown export to Google Docs a few months ago.
github.com/microsoft/markitdown
Reposted
Nearest Neighbor Attack: Hackers Breach Organizations via Wi-Fi from Russia
Nearest Neighbor Attack: Hackers Breach Organizations via Wi-Fi from Russia
Russian state-sponsored hacking group GruesomeLarch (also known as APT28 or Fancy Bear) has demonstrated a sophisticated new attack technique dubbed the "Nearest Neighbor Attack," which allows remote hackers to breach organizations by exploiting Wi-Fi networks of neighboring businesses.
cybersecuritynews.com
November 23, 2024 at 3:56 AM
Nearest Neighbor Attack: Hackers Breach Organizations via Wi-Fi from Russia
Reposted
Here’s how to do stuff with Bluesky that you could not on X.
#medtech #bcsm #medsky #Xodus
www.theverge.com/24295933/blu...
#medtech #bcsm #medsky #Xodus
www.theverge.com/24295933/blu...
Here’s some cool stuff you can do with Bluesky
It’s not just an Alf pics repository.
www.theverge.com
November 18, 2024 at 2:33 AM
Here’s how to do stuff with Bluesky that you could not on X.
#medtech #bcsm #medsky #Xodus
www.theverge.com/24295933/blu...
#medtech #bcsm #medsky #Xodus
www.theverge.com/24295933/blu...
Reposted
Hello Monday, and hello #OSINT enthusiasts! Here is your short, weekly overview of hopefully interesting topics from the world of open source investigations:
H/T: @kirbstr.bsky.social @cqcore.bsky.social @bellingcat.com
sector035.nl/articles/202...
H/T: @kirbstr.bsky.social @cqcore.bsky.social @bellingcat.com
sector035.nl/articles/202...
Week in OSINT 202417
This week's episode of WiO covers topics from cruise ships to custom search, and from sins to secrets!
Now that I've got the very
sector035.nl
April 29, 2024 at 6:11 AM
Hello Monday, and hello #OSINT enthusiasts! Here is your short, weekly overview of hopefully interesting topics from the world of open source investigations:
H/T: @kirbstr.bsky.social @cqcore.bsky.social @bellingcat.com
sector035.nl/articles/202...
H/T: @kirbstr.bsky.social @cqcore.bsky.social @bellingcat.com
sector035.nl/articles/202...
Reposted
More Bluesky tools - deck.blue is like tweetdeck, but for bluesky
deck.blue
Get the most out of Bluesky with a multi-column layout
deck.blue
November 8, 2024 at 10:42 AM
More Bluesky tools - deck.blue is like tweetdeck, but for bluesky
Reposted
We have now hit 16 million users. We're looking like we might onboard another million today, we'll see. Regardless we'll be far past 16.5 million I'm quite certain.
November 14, 2024 at 6:03 PM
We have now hit 16 million users. We're looking like we might onboard another million today, we'll see. Regardless we'll be far past 16.5 million I'm quite certain.
Reposted
I'm watching some folks reverse engineer the xz backdoor, sharing some *preliminary* analysis with permission.
The hooked RSA_public_decrypt verifies a signature on the server's host key by a fixed Ed448 key, and then passes a payload to system().
It's RCE, not auth bypass, and gated/unreplayable.
The hooked RSA_public_decrypt verifies a signature on the server's host key by a fixed Ed448 key, and then passes a payload to system().
It's RCE, not auth bypass, and gated/unreplayable.
This might be the best executed supply chain attack we've seen described in the open, and it's a nightmare scenario: malicious, competent, authorized upstream in a widely used library.
Looks like this got caught by chance. Wonder how long it would have taken otherwise.
Looks like this got caught by chance. Wonder how long it would have taken otherwise.
Woah. Backdoor in liblzma targeting ssh servers.
www.openwall.com/lists/oss-se...
It has everything: malicious upstream, masterful obfuscation, detection due to performance degradation, inclusion in OpenSSH via distro patches for systemd support…
Now I’m curious what it does in RSA_public_decrypt
www.openwall.com/lists/oss-se...
It has everything: malicious upstream, masterful obfuscation, detection due to performance degradation, inclusion in OpenSSH via distro patches for systemd support…
Now I’m curious what it does in RSA_public_decrypt
March 30, 2024 at 5:13 PM
I'm watching some folks reverse engineer the xz backdoor, sharing some *preliminary* analysis with permission.
The hooked RSA_public_decrypt verifies a signature on the server's host key by a fixed Ed448 key, and then passes a payload to system().
It's RCE, not auth bypass, and gated/unreplayable.
The hooked RSA_public_decrypt verifies a signature on the server's host key by a fixed Ed448 key, and then passes a payload to system().
It's RCE, not auth bypass, and gated/unreplayable.
Reposted
Interesting way to use LEGBA (github.com/evilsocket/l...) #bruteforce tool from twitter.com/evilsocket - enumeration valid emails for G Suite domain.
Read more about LEGBA:
www.evilsocket.net/2023/11/02/E...
Read more about LEGBA:
www.evilsocket.net/2023/11/02/E...
November 3, 2023 at 12:32 AM
Interesting way to use LEGBA (github.com/evilsocket/l...) #bruteforce tool from twitter.com/evilsocket - enumeration valid emails for G Suite domain.
Read more about LEGBA:
www.evilsocket.net/2023/11/02/E...
Read more about LEGBA:
www.evilsocket.net/2023/11/02/E...
Reposted
Somehow I didn't know this existed until today github.com/google/trill...
GitHub - google/trillian: A transparent, highly scalable and cryptographically verifiable data store...
A transparent, highly scalable and cryptographically verifiable data store. - GitHub - google/trillian: A transparent, highly scalable and cryptographically verifiable data store.
github.com
October 29, 2023 at 9:17 AM
Somehow I didn't know this existed until today github.com/google/trill...
Reposted
Today I updated my tool collection once again (over 60+ links from tweets over the last seven months).
Total now:
1284 links
138 sections
more than 250 000 visits
3.7K stars
435 forks
Almost 2,5 years of work (since April 2021)
github.com/cipher387/os...
#osint #socmint #geoint
Total now:
1284 links
138 sections
more than 250 000 visits
3.7K stars
435 forks
Almost 2,5 years of work (since April 2021)
github.com/cipher387/os...
#osint #socmint #geoint
September 12, 2023 at 11:52 PM
Today I updated my tool collection once again (over 60+ links from tweets over the last seven months).
Total now:
1284 links
138 sections
more than 250 000 visits
3.7K stars
435 forks
Almost 2,5 years of work (since April 2021)
github.com/cipher387/os...
#osint #socmint #geoint
Total now:
1284 links
138 sections
more than 250 000 visits
3.7K stars
435 forks
Almost 2,5 years of work (since April 2021)
github.com/cipher387/os...
#osint #socmint #geoint
Reposted
We just published our detailed analysis of CVE-2023-2868, a shell command injection vulnerability in the #Barracuda Secure Email Gateway appliance. Big props to my co-worker Curtis Fielding for putting all this together!
#infosec #vulnerability #exploit #PoC #rapid7
#infosec #vulnerability #exploit #PoC #rapid7
CVE-2023-2868 | AttackerKB
On May 30, 2023, Barracuda Networks published an advisory for CVE-2023-2868, an easily exploitable remote command injection vulnerability affecting several ver…
attackerkb.com
July 5, 2023 at 7:48 PM
We just published our detailed analysis of CVE-2023-2868, a shell command injection vulnerability in the #Barracuda Secure Email Gateway appliance. Big props to my co-worker Curtis Fielding for putting all this together!
#infosec #vulnerability #exploit #PoC #rapid7
#infosec #vulnerability #exploit #PoC #rapid7