konik_polanowy

Osobistość

937wpisy
104komentarzy

https://lubimyczytac.pl/profil/127443/joker

konik_polanowy

Osobistość

w Wiadomości Świat 2021-04-08T23:16:38+02:00

Widać kopanie kanałów staje się ostatnio modne. Kanał Stambulski (45km) ma w założeniu umożliwić ruch dodatkowych 200 statków dziennie + obejście Konwencji z Montreaux która ogranicza ruchy okrętów wojennych przez Bosfor: konwencja nie dotyczy kanału który dopiero ma powstać.

siRcatcha 2021-04-09T00:00:32+02:00

Fajnie, że w Europie ta inwestycja

kris

★

2021-04-09T09:39:42+02:00

@konik_polanowy @siRcatcha nie zapominajmy też o polskim Kanale żeglugowym na Mierzei Wiślanej

siRcatcha 2021-04-09T11:03:51+02:00

@kris xD Polska liderem wskazujacym droge innym nacjom europejskim xD

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2021-04-07T23:12:08+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/07.04.2021.md
Microsoft is now submerging servers into liquid baths - https://www.theverge.com/2021/4/6/22369609/microsoft-server-cooling-liquid-immersion-cloud-racks-data-centers
Pulling Bits From ROM Silicon Die Images: Unknown Architecture - https://ryancor.medium.com/pulling-bits-from-rom-silicon-die-images-unknown-architecture-b73b6b0d4e5d
The Serenity Operating System - https://github.com/SerenityOS/serenity
Image-to-Image Demo - https://affinelayer.com/pixsrv/
Breaking GitHub Private Pages for $35k - https://robertchen.cc/blog/2021/04/03/github-pages-xss
One day short of a full chain: Part 3 - Chrome renderer RCE - https://securitylab.github.com/research/one_day_short_of_a_fullchain_renderer/

Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2021-04-05T12:27:43+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/05.04.2021.md
4G, 5G paper at NDSS 2019 - https://www.documentcloud.org/documents/5749002-4G-5G-paper-at-NDSS-2019.html
Free 2D symbols for computer network diagrams - https://github.com/ecceman/affinity
Wireshark Tutorial: Decrypting RDP Traffic https://unit42.paloaltonetworks.com/wireshark-tutorial-decrypting-rdp-traffic/
Zero click vulnerability in Apple’s macOS Mail - https://mikko-kenttala.medium.com/zero-click-vulnerability-in-apples-macos-mail-59e0c14b106c
Attacking Active Directory - Kerberoasting - https://www.youtube.com/watch?v=-3MxoxdzFNI
How I Won 90 Days OSCP Lab Voucher for Free - https://blog.adithyanak.com/oscp-preparation-guide/enumeration
Reverse Engineering 101 - https://infosecwriteups.com/reverse-engineering-101-7acd1e6abfd8?gi=323a443cf8b6

Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

Zostań Patronem Hejto i odblokuj dodatkowe korzyści tylko dla Patronów

Włączona możliwość zarabiania na swoich treściach
Całkowity brak reklam na każdym urządzeniu
Oznaczenie w postaci rogala , który świadczy o Twoim wsparciu
Wcześniejszy dostęp, do wybranych funkcji na Hejto

konik_polanowy

Osobistość

w Ciekawostki 2021-04-03T21:36:11+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/03.04.2021.md
Why All My Servers Have an 8GB Empty File - https://brianschrader.com/archive/why-all-my-servers-have-an-8gb-empty-file/
Sodinokibi (aka REvil) Ransomware - https://thedfirreport.com/2021/03/29/sodinokibi-aka-revil-ransomware/
Detecting At-Risk Software Infrastructure - https://blog.communitydata.science/detecting-at-risk-software-infrastructure/
Speech to birdsong conversion - https://www.windytan.com/2021/03/speech-to-birdsong-conversion.html
A digital logic designer and circuit simulator - https://github.com/hneemann/Digital
Fetch information about a public Google document - https://github.com/Malfrats/xeuledoc

Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2021-04-01T22:37:43+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/01.04.2021.md
Rest In Peace Google Reader https://www.ripgooglereader.com/
From Creative Password Hashes to Administrator: Gone in 60 Seconds (Or Thereabouts) - https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/from-creative-password-hashes-to-administrator-gone-in-60-seconds-or-thereabouts/
Mining Bitcoin on the Game Boy - https://www.youtube.com/watch?v=4ckjr9x214c
ELF file viewer/editor for Windows, Linux and MacOS - https://github.com/horsicq/XELFViewer
Threat Actor Group using UAC Bypass Module to run BAT File - https://redalert.nshc.net/2019/03/28/threat-actor-group-using-uac-bypass-module-to-run-bat-file/
Analysis of a VB Script Heap Overflow (CVE-2019-0666) - https://www.malwaretech.com/2019/04/analysis-of-a-vb-script-heap-overflow.html
Exploiting PrivExchange - https://chryzsh.github.io/exploiting-privexchange/
Universal “netmask” npm package, used by 270,000+ projects - https://sick.codes/universal-netmask-npm-package-used-by-270000-projects-vulnerable-to-octal-input-data-server-side-request-forgery-remote-file-inclusion-local-file-inclusion-and-more-cve-2021-28918/

Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Programowanie 2021-03-29T11:45:15+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/29.03.2021.md
Materials for Windows Malware Analysis training - https://github.com/hasherezade/malware_training_vol1
1 Handmade Linux x86 executables: ELF header - https://www.youtube.com/watch?v=XH6jDiKxod8
Perkiler malware turns to SMB brute force to spread - https://blog.malwarebytes.com/trojans/2021/03/perkiler-malware-turns-to-smb-brute-force-to-spread/
A generator of binary polyglots - https://github.com/corkami/mitra#overlap-polyglots
Infrastructure PenTest Series : Part 3 - Exploitation https://bitvijays.github.io/LFF-IPS-P3-Exploitation.html
gRPC Attack Surface - https://offensivedefence.co.uk/posts/grpc-attack-surface/
Global Socket - https://www.gsocket.io/
Eliminating XSS from WebUI with Trusted Types - https://microsoftedge.github.io/edgevr/posts/eliminating-xss-with-trusted-types/
OS hacking: Taking PNG screenshots in SerenityOS - https://www.youtube.com/watch?v=3BF-vUts3ws

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Programowanie 2021-03-27T12:13:24+01:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/27.03.2021.md
Represent any GraphQL API as an interactive graph - https://github.com/APIs-guru/graphql-voyager
Hunting and detecting Cobalt Strike - https://www.sekoia.io/en/hunting-and-detecting-cobalt-strike/
XSS + Cloudflare bypass! - https://aswinthambipanik07.medium.com/xss-cloudflare-bypass-ae5caed4cd97
Recovering a full PEM Private Key when half of it is redacted - https://blog.cryptohack.org/twitter-secrets
MindAPI - https://github.com/dsopas/MindAPI
Exploration of x86-64 ISA using speculative execution. - https://github.com/can1357/haruspex
Injecting dependencies into microservices - https://openliberty.io/guides/cdi-intro.html
VM Forking & Hypervisor-Based Fuzzing with Xen - Tamas K Lengyel, Intel Corporation - https://www.youtube.com/watch?v=3MYo8ctD_aU

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Programowanie 2021-03-25T22:52:59+01:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/25.03.2021.md
Google: A mysterious hacking group used 11 different zero-days in 2020 - https://therecord.media/a-mysterious-hacking-group-used-11-different-zero-days-in-2020/
Apple Watch Prototype That Shouldn't Exist - Apple Watch Series 1 (DVT SwitchBoard) - Apple History https://www.youtube.com/watch?v=PC2-pPFhCgo
Just another OSCP preparation tips - https://infosecwriteups.com/just-another-oscp-preparation-tips-f22410006674
SecurityTips https://github.com/hackerscrolls/SecurityTips
Subdomain Takeover in AWS: making a PoC - https://godiego.tech/posts/STO-AWS/
Using Burp Suite match and replace settings to escalate your user privileges and find hidden features https://www.jonbottarini.com/2019/06/17/using-burp-suite-match-and-replace-settings-to-escalate-your-user-privileges-and-find-hidden-features/
Week in #OSINT 2021-11 - https://sector035.nl/articles/2021-11

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Programowanie 2021-03-23T22:17:34+01:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/23.03.2021.md
Browser logic vulnerabilities - https://github.com/Metnew/uxss-db
Malware development part 8 - https://0xpat.github.io/
The most common on premises vulnerabilities & misconfigurations - https://s3cur3th1ssh1t.github.io/The-most-common-on-premise-vulnerabilities-and-misconfigurations/
What Remote Work Really Does To Your Engineering Productivity - https://www.okayhq.com/blog/what-remote-work-really-does-to-your-engineering-productivity
Browser logic vulnerabilities skull_and_crossbones https://github.com/Metnew/uxss-db
HAFNIUM, China Chopper and ASP.NET Runtime - https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/hafnium-china-chopper-and-aspnet-runtime/
BadOutlook for C2 - https://www.optiv.com/explore-optiv-insights/source-zero/badoutlook-c2
How APTs Use Reverse Proxies to Nmap Internal Networks - https://www.varonis.com/blog/nmap-reverse-proxies/

Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Programowanie 2021-03-21T12:23:02+01:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/21.03.2021.md
Code Review of ExploitDB - https://www.youtube.com/watch?v=5_CX3BLlHEw
Return of the Darkside: Analysis of a Large-Scale Data Theft Campaign - https://www.varonis.com/blog/darkside-ransomware/?hss_channel=tw-21672993
In-the-Wild Series: October 2020 0-day discovery - https://googleprojectzero.blogspot.com/2021/03/in-wild-series-october-2020-0-day.html
Professionalizing Intelligence Operations in the Cyber Threat Landscape: Adversarial Perspective - https://www.advanced-intel.com/post/professionalizing-intelligence-operations-in-the-cyber-threat-landscape-adversarial-perspective
curl is 23 years old today - https://daniel.haxx.se/blog/2021/03/20/curl-is-23-years-old-today/
Episode 15 “Java 16 is Here!” with Mikael Vidstedt - https://inside.java/2021/03/16/podcast-015/ (podcast)
Smart Meter Hacking - Episode 1 - https://www.youtube.com/watch?v=gYowTR3Dfdk

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Programowanie 2021-03-21T11:19:05+01:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/19.03.2021.md
Hacking IIS - https://drive.google.com/file/d/1O0IARjqP4Pwa-ae1nAP8Nr9qb0ai2XPu/view
STATE of OSINT in 2020/2021 - https://stateofosint.com/
Build a Kubernetes Operator in 10 minutes with Operator SDK - https://opensource.com/article/20/3/kubernetes-operator-sdk
Fast and customisable vulnerability scanner based on simple YAML based DSL - https://github.com/projectdiscovery/nuclei
Fun with Java Records - https://benjiweber.co.uk/blog/2020/09/19/fun-with-java-records/
Build simple fuzzer - part 5 - https://carstein.github.io/2021/03/13/build-your-own-fuzzer-5.html
Basic Reverse Engineering | TryHackMe Basic Malware RE - https://www.youtube.com/watch?v=n3GAx3I1bWA

Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Programowanie 2021-03-17T21:21:18+01:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/17.03.2021.md
Reverse Engineer's Toolkit - https://github.com/mentebinaria/retoolkit
VM Detection Tricks, Part 2: Driver Thread Fingerprinting - https://labs.nettitude.com/blog/vm-detection-tricks-part-2-driver-thread-fingerprinting/
Extracting and Diffing Windows Patches in 2020 - https://wumb0.in/extracting-and-diffing-ms-patches-in-2020.html
Spectre demo - https://leaky.page/
Pentest IoT: 10 hardware & software tests - https://www.vaadata.com/blog/pentest-iot-10-hardware-software-tests/
Docker Security Cheat Sheet¶ - https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html
Using Syscalls to Inject Shellcode on Windows - https://www.solomonsklash.io/syscalls-for-shellcode-injection.html

Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Programowanie 2021-03-16T20:06:21+01:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/15.03.2021.md
Technical Advisory – Multiple Vulnerabilities in Netgear ProSAFE Plus JGS516PE / GS116Ev2 Switches - https://research.nccgroup.com/2021/03/08/technical-advisory-multiple-vulnerabilities-in-netgear-prosafe-plus-jgs516pe-gs116ev2-switches/
The Debugging Book - https://www.debuggingbook.org/
Fuzzing Java in OSS-Fuzz - https://security.googleblog.com/2021/03/fuzzing-java-in-oss-fuzz.html
CVE-2021-27927: CSRF to RCE Chain in Zabbix - https://www.horizon3.ai/disclosures/zabbix-csrf-to-rce
TryHackMe: DNS Manipulation Walkthrough - https://infosecwriteups.com/tryhackme-dns-manipulation-walkthrough-5944bf60f10f?gi=a9a628793976
Malware Analysis - Gootkit Decryption with Python - https://www.youtube.com/watch?v=uEb1Kml-SpQ
Reverse engineering Mortal Kombat GRA file format (part 2) - http://blog.rewolf.pl/blog/?p=1982

Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Historia 2021-03-11T21:29:47+01:00

Pokolorowane zdjęcie Margaretha Geertruida MacLeod, znanej jako "Mata Hari". Niestety została zapisana w historii jako najsłynniejszy szpieg. Prawda jest taka, że na kursie była jedną z najgorszych uczestniczek, ale dobrze się pieprzyła i z tego powodu była wysyłana na "akcje". Jej głównym klientami było oficerowie armii francuskiej. Ci chętnie po odbytym stosunku zwierzali jej się z planów. Z czasem wywiad ententy wpadł na jej trop. Cesarskim jakoś nie było smutno jej wydać, więcej z nią było problemów.
Więcej w "Szpiedzy. Tajni agencji, którzy zmienili bieg historii " by Ernest Volkman

Arroyo 2021-03-11T22:59:50+01:00

Ciekawostka, Mata Hari pojawiała się m.in. w Przygodach Młodego Indiany Jonesa jako kochanka Indiego.

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Programowanie 2021-03-11T20:50:21+01:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/11.03.2021.md
Detect webshells dropped on Microsoft Exchange servers after 0day - https://github.com/cert-lv/exchange_webshell_detection
Monitoring Deserialization to Improve Application Security - https://inside.java/2021/03/02/monitoring-deserialization-activity-in-the-jdk/
Tutorials and Things to Do while Hunting Vulnerability - https://github.com/KathanP19/HowToHunt
Red Team Notes 2.0 - https://dmcxblue.gitbook.io/red-team-notes-2-0/
A place where all your bugs will be disclosed - https://halove23.blogspot.com/2021/03/google-update-service-being-scum.html
Finding Evil Go Packages - https://michenriksen.com/blog/finding-evil-go-packages/
Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins - https://github.com/liamg/traitor
A pentest reporting tool written in Python. Free yourself from Microsoft Word - https://github.com/blacklanternsecurity/writehat

Paddy 2021-03-11T21:34:07+01:00

Dzięki! Kilku nie znałem.

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Hydepark 2021-03-09T22:44:52+01:00

https://twitter.com/David3141593/status/1368770956949393410?s=20

Dаvіd Вucһаnаn on Twitter

Fun fact: if you open this image in full-size, you can't see it anymore. https://t.co/cXI6LyJung

Twitter

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Historia 2021-03-09T22:27:00+01:00

Wywiad z niemieckim żołnierzem, uczestnikiem I Wojny Światowej
https://www.youtube.com/watch?v=XruYsAmKLyU

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Programowanie 2021-03-09T22:12:45+01:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/09.03.2021.md
An Interesting Feature in the Samsung DSP Driver - https://www.synacktiv.com/publications/an-interesting-feature-in-the-samsung-dsp-driver.html
How I Might Have Hacked Any Microsoft Account - https://thezerohack.com/how-i-might-have-hacked-any-microsoft-account
Multimodal Neurons in Artificial Neural Networks - https://openai.com/blog/multimodal-neurons/
Google Maps API Scanner - https://github.com/ozguralp/gmapsapiscanner
The latest pre-authenticated Remote Code Execution vulnerability on Microsoft Exchange Server - https://proxylogon.com/
Alternative Code Execution - https://github.com/S4R1N/AlternativeShellcodeExec
The difference between Powershell only & process specific AMSI bypasses - https://s3cur3th1ssh1t.github.io/

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Programowanie 2021-03-07T12:51:04+01:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/07.03.2021.md
BurpSuiteAutoCompletion - https://github.com/Static-Flow/BurpSuiteAutoCompletion
Bitsquatting Windows.com - https://remyhax.xyz/posts/bitsquatting-windows/
Bitsquatting: DNS Hijacking without exploitation - http://dinaburg.org/bitsquatting.html
BB-1011 Fuzzing WinAFL - https://www.youtube.com/watch?v=m7tJkeW6H58
Microsoft and Fireeye Detail New Malware Used by SolarWinds Hackers - https://therecord.media/microsoft-and-fireeye-detail-new-malware-used-by-solarwinds-hackers/
Qualcomm IPQ40xx: Analysis of Critical QSEE Vulnerabilities - https://raelize.com/blog/qualcomm-ipq40xx-analysis-of-critical-qsee-vulnerabilities/
Catching red teams with honeypots part 1: local recon - https://outflank.nl/blog/2021/03/03/catching-red-teams-with-honeypots-part-1-local-recon/

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Programowanie 2021-03-05T12:21:07+01:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/05.03.2021.md
Common Nginx misconfigurations that leave your web server open to attack - https://blog.detectify.com/2020/11/10/common-nginx-misconfigurations/
SQL Injection | Complete Guide - https://www.youtube.com/watch?v=1nJgupaUPEQ
SSH and User-mode IP WireGuard - https://fly.io/blog/ssh-and-user-mode-ip-wireguard/
D-LinkGATE Remote Code Execution - https://suid.ch/research/DAP-2020_Preauth_RCE_Chain.html
LINE CTF - https://linectf.me/
Anatomy of an Exploit: RCE with CVE-2020-1350 SIGRed - https://www.graplsecurity.com/post/anatomy-of-an-exploit-rce-with-cve-2020-1350-sigred
Kubernetes Operators pros and cons – the good, the bad and the ugly - https://digitalis.io/blog/kubernetes/kubernetes-operators-pros-and-cons/
Spring Boot tests with Testcontainers and PostgreSQL, MySQL or MariaDB - https://blog.codeleak.pl/2020/03/spring-boot-tests-with-testcontainers.html

Zaloguj się aby komentować

Poprzednia strona

45 46 47

Następna strona