alberg
This is very clever - and potentially a resource for attackers. You probably should be blocking this on corporate networks. Another example of tools which lower the technical bar, giving less sophisticated attackers access to easy to deploy and use tooling. https://www.gsocket.io/deploy/?utm_source=pocket_saves
Global Socket

Connect like there is no firewall. Securely.

Global Socket
May 17, 2023 at 12:32amWeb
Show threadNosirrahSec 🏴‍☠️ guillotine enthusiastMay 17, 2023

@alberg

Initial thought: "mother of god this is terrifyingly simple and effective"

Secondary thought: "I want this for some legitimate use cases, I think. I love this idea."

Show threadMatt PalmerMay 17, 2023
@alberg @tychotithonus "connect like there is no firewall". My default-deny inbound and outbound security groups wouldn't mind having a quick chat...
Show threadMatt PalmerMay 17, 2023
@alberg looks tricky to selectively block, as the relay service it uses goes over tcp/443.
Show threadMiddyMay 17, 2023
@alberg Oh wow. Speaking as one of those "less sophisticated attackers" myself, this is scarily easy to use lol