Jump to content

Leaderboard

Popular Content

Showing content with the highest reputation on 03/01/19 in all areas

  1. carderi nu zic ca nu sunt, dar faza cu asasinii...v-a intrat un mit in cap, ca pe tor sunt asasini, satanisti, taxiuri negre, cica si Dan Spataru intra live cu Dolanescu din cand in cand. Realitatea e ca se invart doar copii curiosi si tepari p-acolo. Cate un dealer mai rasare si dispare, hitmeni d-astia care dau refresh la pagina din minut in minut sa vada daca le-au intrat mesaje de la clienti...🐼
    4 points
  2. An extra whitespace in a server response allowed a security firm to track a hackers' favorite tool for years. https://www.zdnet.com/video/free-malware-tools-are-being-exploited-for-malicious-intent/ A vulnerability in a tool used by cyber-criminal gangs is now helping researchers expose the locations of thousands of malware command-and-control (C&C) servers. The vulnerability --now patched since the start of the year-- affected cobalt strike , a legitimate penetration testing tool used by security researchers to emulate cyber-attacks. Cobalt Strike has been around for more than a decade, but for the past five years, it has slowly been adopted by cyber-criminal groups as well. Malware gangs and nation-state cyber-espionage groups have used Cobalt Strike because of its simple and very efficient client-server architecture. Cyber-criminals use Cobalt Strike to host their C&C servers, and then deploy malware on company networks through Cobalt "beacons" they plant on infected hosts. Over the past few years, Cobalt Strike slowly became the go-to toolkit for many threat actors, such as the FIN6 and FIN7 (Carbanak) cyber-criminal gangs, but also nation-state hackers such as APT29 (Cozy Bear). But unbeknownst to all these hacker groups was that Fox-IT researchers discovered a bug in the Cobalt Strike server component. Built on NanoHTTPD, a Java-based web server, crooks didn't know that it contained a bug that allowed Fox-IT to track them since 2015. According to Fox-IT researchers, the NanoHTTPD server accidentally added an additional space in the server's HTTP responses, like in the image below. This extra whitespace allowed Fox-IT to detect Cobalt Strike communications between beacons and their C&C servers across the years, until January 2, 2019, when Cobalt Strike developers patched the bug and removed the extra space in version 3.13. "In total Fox-IT has observed 7718 unique Cobalt Strike team server or NanoHTTPD hosts between the period of 2015-01 and 2019-02," the company said in a blog post this week. Because the issue is now patched, Fox-IT researchers revealed this little trick, along with a list of historical IP addresses that used to or are still hosting Cobalt Strike C&C servers. The company hopes that security teams use this list to check their network logs for these IP addresses and identify past or current security breaches. Some of these IP addresses might belong to legitimate Cobalt Strike instances hosted by security firms for testing purposes, but Fox-IT believes that many of these are also from hacker groups. They said that a cursory examination of their list of 7,700+ IP addresses revealed malware C&C servers tied to China's APT10 government hacking unit, the Bokbot banking trojan, and servers managed by remnants of the Cobalt Group (also known as FIN7 or Carbanak). KnownSec 404 Team, a Chinese cyber-security company that runs the ZoomEye IoT search engine confirmed Fox-IT's discovery by identifying 3,643 Cobalt Strike NanoHTTPD-based servers that are still operational at this moment --86 percent of which were also on Fox-IT's list, the company said. Fox-IT says that current scans for the extra whitespace are turning fewer and fewer results, as servers are getting patched. However, the company says that most threat actors tend to use pirated, cracked, and unregistered versions of the Cobalt Strike software, and therefore will remain unpatched for a long time to come. As legitimately-owned servers will receive the Cobalt Strike patch, most of the servers that will come up during scans in the coming future will most likely be part of malware operations. Source : https://www.zdnet.com/article/vulnerability-exposes-location-of-thousands-of-malware-c-c-servers/?fbclid=IwAR3ZLo-hRSTyZ6jxgp7bhU4K2MTv-cMh00ci3Bi9IwUi0kCw90OAExw-1h8
    1 point
  3. Salut . Dacă ai greșit categoria , unul dintre Mod/Adm il muta la locul potrivit fără să mai deschizi un alt topic
    1 point
  4. vere :))) documenteaza-te inainte sa vorbesti, tot ce ai auzit tu despre deepweb sunt in mare parte mituri care niciodata nu au fost dovedite a fi reale ( hitmani, redroom-uri etc) singurele chestii nasoale de pe acolo sunt gore, child porn si alte cacaturi care pot fi gasite si pe clearnet, dar nimic mai mult. Nu e ilegal sa folosesti deepwebul daca vrei sa achizitionezi ceva spre exemplu un hard drive. Eu doar am intrebat daca a achizitonat cineva ceva de p-aici si tu imi spui sa ma apuc de munca :)))
    1 point
  5. Vezi ca exista https://codecanyon.net/item/socialite-laravel-social-network-script/17553328 pe code canyon , build with laravel , clean code , daca vrei ceva pe python https://github.com/vitorfs/bootcamp
    1 point
  6. Cumpar pagina Facebook verificata
    1 point
  7. Nu are importanță pentru ce imi trebuie. Am specificat clar ca vreau doar o pagina verificată. Nu mă interesează nimic altceva gen like-uri.in fine să încheiem mai bine.
    1 point
  8. Bai frate..ce ai tu cu mine? Doar ca sunt nou pe forum sunt mai prejos sau cum? Imi trebuie pentru o firma. Cred ca mai bine te-ai duce Tu la muncă și nu mai sta pe forumuri
    1 point
  9. When is a vulnerability actually a vulnerability? I can't answer this question easily, and thus we look at a few examples in this video.
    1 point
  10. Va salut, am gasit ceva teme whmcs gratis: Link- https://hostmix.ro/whmcs-templates-free.php
    1 point
  11. As mitigations keep rolling in, the complexity of attacking iOS keeps growing. We will look at recent hardware mitigations that affect advanced attackers and analyze the economic impact across different kinds of attackers.
    1 point
  12. Catalog Description Learn how to analyze malware, including computer viruses, trojans, and rootkits, using disassemblers, debuggers, static and dynamic analysis, using IDA Pro, OllyDbg and other tools. Advisory: CS 110A or equivalent familiarity with programming Upon successful completion of this course, the student will be able to: Describe types of malware, including rootkits, Trojans, and viruses. Perform basic static analysis with antivirus scanning and strings Perform basic dynamic analysis with a sandbox Perform advanced static analysis with IDA Pro Perform advanced dynamic analysis with a debugger Operate a kernel debugger Explain malware behavior, including launching, encoding, and network signatures Understand anti-reverse-engineering techniques that impede the use of disassemblers, debuggers, and virtual machines Recognize common packers and how to unpack them Videos: https://samsclass.info/126/126_S17.shtml
    1 point
  13. http://www.datasciencefree.com/cheatsheets.html Source,
    -1 points
  14. Like any developer, you are constantly developing. You are learning new technologies by reading books, watching online lessons, attending some courses, and so on and so forth. You know that if you stop learning, you become uncompetitive. But have you ever thought about your performance? How do you improve that? If you don't know how to answer than welcome under the cut. Level 0 — Сonquer The Fear Touch typing This post is not about touch typing. Nevertheless, this is the first answer to the question above. To understand the rest of this article you have to manage touch typing. VIM Intro More..https://m.habr.com/en/post/440130/
    -1 points
  15. Vezi sa nu mori impuscat, t/c Edit// du-te in olanda daca vrei sa fumezi, Edit2: obamama avea 100mil pe cap pt un lunetist, merkel 500, stai in banca ta Edit3/// platesti aprox 70 € dus intors si fumezi de te spargi, all inclusive
    -1 points
  16. -1 points
  17. Triplu post in pula mea de prost ce esti, incepi sa dai dislike-uri aiurea
    -1 points
  18. "Tovarase", stie tota lumea ca pe acolo se invart carderi, asasini, etc, stai in banca a ta, si apuca-te de munca
    -1 points
×
×
  • Create New...