d@n3n
138.9K views | +63 today
Follow
 
Scooped by Danen Raas
onto d@n3n
Scoop.it!

Tomb :: File Encryption on Linux

Tomb :: File Encryption on Linux | d@n3n | Scoop.it

Tomb is an 100% free and open source system for file encryption on Linux. It simply makes dm-crypt and cryptsetup usable in a variety of situations.

more...
No comment yet.
d@n3n
Your new post is loading...
Your new post is loading...
Scooped by Danen Raas
Scoop.it!

How to map static IP address using dnsmasq under LXD (Linux containers)

Explains how to setup a static IP address using dnsmasq DHCP server on Linux containers (LXD/LXC).

I am using LXD (Linux container) to host Apache, MySQL, Perl and PHP-based app. I would like to assign or map fixed IP address to my MySQL container. How do I allow dnsmasq DHCP server to assign a static IP address to LXD container based on name or MAC address?

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

Rainbowstream

Rainbowstream | d@n3n | Scoop.it

A TWITTER CLIENT ON TERMINAL. SMART, NICELY DISPLAYED, COLORFUL STREAM FANCY COMMANDS IN INTERACTIVE MODE

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

Attacking Yourself First

Attacking Yourself First | d@n3n | Scoop.it

If you’re doing this on a budget, you have a few ways to go about this. You can either use old machines you have laying around to install OSes and applications on and attack those systems or you can do something virtualized.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

Practical JSONP Injection

Practical JSONP Injection | d@n3n | Scoop.it

JSONP injection is a lesser known but quite widespread and dangerous vulnerability and it surfaced in the last years due to the high rate of adoption of JSON, web APIs and the urging need for cross-domain communications. What is JSONP?

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

Hunting for a better hex dump tool

Hunting for a better hex dump tool | d@n3n | Scoop.it
Many command line tools are written with an ancient 80×25 terminal size in mind and as such their output is often limited (at least, for a current standard). This is quite amazing that a concept of writing tools destined for such a small terminal is so omnipresent given the fact high resolution computer screens, as well as dual- and multi- monitor setups are now such a common thing.
more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

automato

automato | d@n3n | Scoop.it

automato should help with automating some of the user-focused enumeration tasks during an internal penetration test. 

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

autovpn

autovpn - Easily connect to a VPN in a country of your choice.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

GoBooks

GoBooks | d@n3n | Scoop.it

GoBooks - List of Golang books.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

A Tour of Machine Learning Algorithms

A Tour of Machine Learning Algorithms | d@n3n | Scoop.it

Take a tour of the most popular machine learning algorithms. In this post, we take a tour of the most popular machine learning algorithms. It is useful to tour the main algorithms in the field to get a feeling of what methods are available.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

Spora - the Shortcut Worm that is also a Ransomware

Spora - the Shortcut Worm that is also a Ransomware | d@n3n | Scoop.it

Ransomware is a serious digital threat nowadays. Spora, a new malware family, combines encryption techniques with worm-like behavior in a remarkable manner. 

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

Evil: A poor man's ransomware in JavaScript

Introduction Initially Evil was brought to our attention by an incident reported on 2017-01-08. By that time the Internet was completely silent on that threat and we had nothing to analyze. We found first working sample day later, on 2017-01-09. In this article we will shortly summarize our analysis and conclusions.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

How To Change The Sudo Prompt In Linux And Unix

How To Change The Sudo Prompt In Linux And Unix | d@n3n | Scoop.it

I felt a bit bored today. While digging in Google, I found this cool and useless hack. There is an option to change the sudo prompt to something cool or funny.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

LUKS Support - hashcat Forum

LUKS offers a set of "crypto items" (hashes, ciphers, blockmodes and keysizes) which can be used to configure an encrypted block device. The user can freely select them which then creates a large number of possible crypto relevant combinations. This made it a very work intensive implementation especially without a crypto library and on GPU.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

Preventing Docker Escaping Attacks

Unless modified, by default User IDs (UIDs) are mapped directly from host to container, thus a root user in the container has the same capabilities in the host.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

geoserver

geoserver | d@n3n | Scoop.it

geoserver - Official GeoServer repository. GeoServer is an open source server for sharing geospatial data.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

How to Hook Web Browsers with MITMf and BeEF

How to Hook Web Browsers with MITMf and BeEF | d@n3n | Scoop.it

Do you remember the last time we used BeEF? Well, now we get to use it again, but this time with MITMf! We are going to auto-inject the hooking script into every webpage the victim visits! Requirements If you don't already have it, install MITMf via apt-get install mitmf.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

Secure tunnels to localhost: ngrok

Secure tunnels to localhost: ngrok | d@n3n | Scoop.it

Secure tunnels to localhost: ngrok is a reverse proxy that creates a secure tunnel from a public endpoint to a locally running web service. ngrok captures and analyzes all traffic over the tunnel for later inspection and replay. ngrok allows you to expose a web server running on your local machine to the internet.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

Simple Wi-Fi Yagi

Simple Wi-Fi Yagi | d@n3n | Scoop.it

It's easy to make a small Yagi for a wireless router even if it lacks an antenna connector. The photo shows how I added two parasitic elements to the sleeve dipole of my Netgear WGR614.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

Rust – memory safety without garbage collector

Rust – memory safety without garbage collector | d@n3n | Scoop.it

I’ve spent time with Rust at various points in the past, and being a language in development it was no surprise that every time I looked there were breaking changes and even the documentations look very different at every turn!

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

Application-Security

Application-Security | d@n3n | Scoop.it

Application-Security - Resources for learning about application security.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

Making Raw Syscalls on Windows From Python

Often times while writing a proof of concept for an exploit or doing vulnerability research its necessary to make a raw syscall on Windows. Usually syscalls are called by a thin wrapping function in userland, often provided as an exported function from within a DLL.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

TLS/SSL Vulnerabilities

A client recently gave me a list of their supported ciphers and asked me which SSL ciphers they should disable – effectively looking for the most secure SSL ciphers they can use. Instead of the fast answer of “disable the insecure ones”, I thought I’d try and write up something useful.

more...
No comment yet.
Scooped by Danen Raas
Scoop.it!

peloton

peloton | d@n3n | Scoop.it

peloton - The Self-Driving Database Management System.

more...
No comment yet.