Download all files for free
Update your account status to premium
Symantec researchers report details about the activities of a cybercrime group they track as Bluebottle, revealing significant similarities to the TTP gang OPERA1ER.
As the researchers found out, Bluebottle hackers used a signed Windows driver to attack banks in French-speaking countries. At the same time, the actions and goals correspond to the OPERA1ER profile, which were attributed to at least 35 successful attacks in the period from 2018 to 2020.
🫠 Social Engineering. MFA-fatigue (MFA Fatigue).
• MFA Fatigue is one of the social engineering methods used by attackers to bypass multi—factor authentication, causing an endless stream of push requests sent to the account owner's mobile device. If the victim accepts the request, the attacker will successfully complete the authorization.
👁 Anonymity in a modern metropolis.
The anonymity of private life and savings is something without which individual freedom cannot exist.
👨🏻💻 A complete guide to attacks on Internet of Things devices.
• Internet connection gives many of the home devices new useful features, but security in the IoT world often works on the principle of "come in who wants, take what you want."
🔄 Reverse search. Methods of searching for information on images and auxiliary tools.
• If we are faced with the task of identifying a person or object from a photograph, then we can solve it using various methods and auxiliary tools.
👨🏻💻 Mimikatz. Application guide.
• Benjamin Delpy originally created Mimikatz as a proof of concept to demonstrate to Microsoft the vulnerability to attacks of their authentication protocols. Instead, he inadvertently created one of the most widely used and downloaded hacking tools in the last 20 years.
🔖 S.E. Note. Mind Maps for every taste.
• A collection of various MindMaps for Pentesters, Information Security specialists and Bug Bounty Hunters. The cards will help in learning new material or when performing certain work / tasks. Add to bookmarks:
🕵️♂️ OSINT. Useful resources from cyb_detective.
• There are a lot of significant specialists and enthusiasts in the field of #OSINT, one of them is @cyb_detective, which maintains and constantly keeps up-to-date various lists with useful tools, resources and other necessary information for everyone interested in the OSINT topic.
Social Engineering: registration for a hundred bucks.
• A fan of the TV series "Breaking Bad" created 20 phishing darknet marketplaces and charged gullible "hackers" 100 bucks for registration.
👨🏻💻 Awesome Memory Forensics.
The main task in digital forensics is to collect information, namely, to obtain images of hard drives, RAM and network connection dumps.
We use a tool for parsing websites
I found the Puppeteer library for you, it is supported by the Chrome Devtools team. The library runs an instance of Chrome/Chromium and provides a set of high-level APIs.
Checking the code
The Codec service is an automated code verification infrastructure for DevOps that integrates with GitHub, Bitbucket and GitLab (even with its own hosting). In addition to standard languages, it also analyzes Ansible, Terraform, CloudFormation, Kubernetes and others. (free and open source)
Spain
Portugal
