Linux Physical Security based on eBPF

By now uses CanaryToken and-or TelegramBot to send notifications

I have in mind some TODOs, one of them is about monitor accelerometers, if someone has accelerometers sensors on the laptop, please send DM I'm very hype to implement this feature.

https://github.com/carvilsi/caetra

#eBPF #canaryToken #physicalSecurity #monitoring

New release v5.1.2 for CanaryUSB that fixes a :bug: when building long canaryDNS tokens.

Get a mail notification via, Canary Tokens (DNS) when a USB or SDCard device is connected on a Linux computer.

Also it is possible to de-authorize an USB that is not present on trusted devices list.

https://github.com/carvilsi/canaryusb/releases/tag/v5.1.2

#usb #linux #security #physicalSecurity #sdcard #canaryToken

Happy to share the new release of canaryusb; right now apart of sending a mail via #canaryToken powered by @ThinkstCanary the new feature deauth_devices (on config file or on cli argument `-d`) allows to de-authorize a USB device attached that does is not on the trust devices list.

https://github.com/carvilsi/canaryusb/releases/tag/v5.1.0

The de-authorize thingy based on https://www.kernel.org/doc/html/v5.15/usb/authorization.html#usage

Of course this new feature requires to execute it as root user (all the thing explained on README if you want to run it as a service)

Also fixed a bug related with cli args parsing ;)

<3 hack the planet!

#linux #security #usb #hardening #monitoring-tool #security-automation #security-tools #physicalSecurity

Two of my long dormant Canary token's posted to private content on FB were activated, while I was deleting my FB account content yesterday.

Why would deleting private content require embedded links in that content to be followed? 🙄🤷‍♂️

#Canarytoken #Facebook

[Перевод] «Где хуже всего оставлять свои секреты?» — что происходит с учетными данными AWS, которые плохо лежат

ИБ-энтузиаст «теряет» на разных публичных площадках ключи AWS API, чтобы выяснить, как быстро до них доберутся злоумышленники, — и приходит к неутешительным результатам.

https://habr.com/ru/companies/bastion/articles/854384/

#canarytoken #canaryтокен #ханипот #honeypot #канарейка_иб #ловушки_для_хакеров #canary_trap #ключи_aws_api #учетные_данные #взлом_аккаунта

I added some new features to canaryusb, the most nice it's that right now it's possible to provide a list of trusted devices, and if any of these are connected, you'll not receive a notification from #canarytoken

https://github.com/carvilsi/canaryusb

Get a mail notification via, Canary Tokens (DNS) when a USB device is connected on a GNU/Linux computer.
Could be useful when you leave the laptop unattended or for a server on a remote location, will not prevent to being breached, but at least you'll notice; this is the principle behind @ThinkstCanary. Here we are thinking about removable media threats like #BadUSB or data theft.

#security #hardware