Leaderboard

Sper sa nu spun vreo prostie dar cred ca principalul tau interes pana la bani e sa iti adaugi in CV ceva experienta cu o companie oarecare pana inveti metodologia de lucru si altele. Cu alte cuvinte, mergi pe ieftineala daca spui ca esti nou in domeniu. Totodata, ai putea sa faci un scanner ceva mai interesant care sa contina panel web, stocarea sa fie intr-o baza de date, functionalitati externe pe baza de nmap etc. Exemplu scanner (sa zicem memcached 11211): - scaneaza range-uri intregi de IP-uri - treci rezultatele prin nmap sa vezi daca permite UDP - test pentru a verifica daca ISP-ul filteraza sau nu pachete cu ip-ul spoofuit - totul sa fie vizibil live in web panel - generare automata de key-uri - statistica grafica la absolut tot (ip-uri scanate, range-uri, e sau nu memcached -- vei mai intalni si false positive etc) - API pentru uz extern - sistem cache - resume scan - .. lasa-ti imaginatia sa zboare mai departe Cand te duci la interviu sa ai o lucrare prin care sa demonstrezi ca nu te bate linux-ul, ca stii sa imbini comenzi bash cu un script / program intr-o maniera profi, ca totul e stabil si ai encapsulat erorile intrucat nu risti sa crape toata aplicatia deoarece ti-a picat netul sau codul tau face uz de procesor in mod abuziv. Ideea e sa incorporezi diferite functionalitati ce denota experienta. Deci odata ce ai o baza de date bine optimizata denota cunostinte relativ solide in stocarea si prelucrarea datelor. Ca sa fii mai fasnet de atat, stocarea poti sa o faci in diferite formate eventual sa adaugi si o encriptie pe date.

Exact parerea mea gigiRoman. Omul de-abia si-a terminat CCNA-ul si vrea sa sa se faca cybersec analist, si @vatman il ia cu chestii de development: panel web, stocare in baze de date, APIs, sisteme cache, uz abuziv de procesoare in development, cunostinte de baze de stocare de date. Eu zic omului sa se faca sys admin/inginer daca ii place IT-ul si sa lase labareala din Info Sec. Si mai ales, sa invate 1-2 domenii la care ii bun ca de ex retele si inca ceva si apoi sa treaca in Info Sec daca ii place inca labareala. Sa lase visele alea de mare haxor ca se pierde pe drum si o da in disperare si nebunie ca multi din Info Sec care is cu nervii la pamant. Sunt destule joburi in IT si dupa 8-10 ore mergi acasa si ai viata de familie si prieteni. Nu-ii trebuie adictie la calculatoare.

Two Romanian hackers namely Bogdan Nicolescu and Rady Miclaus will be spending 20 and 18 years respectively in prison for infecting 400,000 computers with cryptominers and stealing sensitive financial and credential data. The duo is said to have stolen millions of dollars from countless unsuspected users. Both the accused are members of the infamous Romanian hacking group called Bayrob. Nicolescu was the group leader whereas Miclaus served as the co-conspirator. The third accused, Tiberiu Danet, is also a member of the same group. In November 2018, Danet pleaded guilty to eight of the charges and will be sentenced on January 8, 2020. See: Dutch Police Nabs Romanian Gang for Stealing $590K worth of iPhones According to the official press release, the duo was found guilty of 21 counts of money laundering, wire fraud, identity theft, and malware development for mining bitcoin and monero cryptocurrencies through utilizing host computers’ resources apart from other crimes. “These sentences handed down today reflect the dynamic landscape in which international criminals utilize sophisticated cyber methods to take advantage of and defraud, unsuspecting victims anywhere in the world,” said FBI Special Agent in Charge Eric Smith. “Despite the complexity and global character of these investigations, this investigation and prosecution demonstrate the commitment by the FBI and our partners to aggressively pursue these individuals and bring justice to the victims.” The Bayrob Group was founded in 2007 and operated actively until the apprehension and extradition of its key members, including the group leader Nicolescu, in 2016. This group operated from the outskirts of Bucharest and carried out different hacking and malware campaigns including spam emails loaded with dangerous Trojans sent as harmless messages from renowned firms and enterprises. The emails mostly contained attachments hiding the Bayrob botnet, and were sent from the IRS, Norton, and Western Union. As soon as the user clicked on the attachment, the computer got infected with the malware, and all the installed malware protection tools got disabled while access to websites of law enforcement agencies was also blocked. The attackers copied the email contacts of the victim through the malware and sent the infected emails to them as well. Through the botnet, the Romanian hacker group managed to steal $4 million. Moreover, the group also developed crypto miners to mine for Bitcoin and Monero and scan and transfer the victims’ crypto wallet ownership along with the funds. They also stole personal data from the infected computers including credit card information, login credentials, and usernames/passwords on different websites. Furthermore, the malware enabled the system to register AOL accounts, which were used to send more malicious emails. The duo got 100,000 email accounts registered through this method and subsequently sent out tens of millions of infected emails. They also replaced legitimate websites like eBay with fake replicas and when the victim accessed these websites, they were tricked into entering their credentials to the fake webpage instead of the authentic ones. It did not end here; the group also used eBay for their nefarious objectives. The duo placed over 1,000 fake listings of motorbikes and automobiles on eBay and uploaded malware-infected images on these listings. Users who clicked on the images were redirected to fake eBay ordering pages where the victims were encouraged to pay for the items. A person was hired to play the role of fictional eBay Escrow Agent whose only job was to collect the money from the victim and transfer it to the hacker duo. “These sentences handed down today reflect the dynamic landscape in which international criminals utilize sophisticated cyber methods to take advantage of and defraud, unsuspecting victims anywhere in the world,” added Special Agent Smith. Source https://www.hackread.com/20-years-prison-romanian-hackers-infected-computers/

El abia si-a luat mana-n mana si tu ii dai idei pe care nu le va pune in practica niciodata. Omu' e pe bistari, mai putin il intereseaza sa faca tooluri. Traim in Romania, nu in tara fagaduintei.

@alexhost, vezi ca ai un Stored XSS... posibil mai multe, eram prin trecere si instinctiv am testat. Da-mi un semn cand esti, te pot ajuta asta in cazul in care pui accent pe securitate http://prntscr.com/q9koqj // ti-am trimis pm.

Adauga content: https://alexhost.com/page/about-us/ Succes iti doresc.

La cererea mai multor persoane am facut acest mailer in python, este super simplu de modificat si integrat in alte proiecte. Aveti acolo o variabla care determina de cate ori se trimite un mail si cam atat este de "facut" la el. Default ea este 1, asta insemnand ca o sa fie trimis doar un email. Ar fi super sa imi dati si voi acolo un follow pe github ❤️ DOWNLOAD : https://github.com/lexofficial/SimpleAutoMailer