hacklego

@[email protected]
33 Followers
54 Following
98 Posts
#SOC analyst and #PhD student in #computerscience. Member of @hackliza. Interested in #Cryptography, #Privacy, #Anonimity, #Bitcoin and #Monero. #MegaDrive #Genesis collector.
Websitehttps://iago.gal
PGPhttps://keys.openpgp.org/vks/v1/by-fingerprint/C865DD53943C3BC6F197CB5568A00BCD06101039
Show threadhacklegoJan 29, 2025
@johansolo ah! Y mientras estás en proceso puedes usar solamente un navegador para temas de google y utilizar la web en lugar de apps.
Show threadhacklegoJan 29, 2025
@johansolo para degooglizarte empieza dejando el ecosistema de google. GrapheneOS + protonmail o riseup + f-droid + Aurora store. Contras: el gps va a fallar bastante y olvidate de android auto o google pay. Algunas apps como las bancarias pueden fallar y necesitarás instalar (fácil con graphene) google services sandboxizado.
hacklegoDec 30, 2024

2024 was crazy:
- Married.
- First public talks.
- New work adventure.
- Bought an apartment (and an arcade cabinet!!!)
- Changed my car.
- Co-founded a company.

Three wishes for 2025:
- I hope it is a quieter year.
- I hope things keep as good as they are.
- I meant it I hope a quieter year. Really. Please.

hacklegoDec 13, 2024
hacklizaDec 13, 2024

[gal] Onte estiveron pola #BlackHat de Londres o noso @DonCaralludo e o noso amigo Marcos dando unha charliña sobre "Análise sintático de malware con Linguado". Menudas lendas!

[en] Yesterday our own @DonCaralludo and our friend Marcos were at #BlackHat London talking about "Syntax analysis for malware detection with Linguado". What a legends!

https://www.blackhat.com/eu-24/arsenal/schedule/index.html#syntax-analysis-for-malware-detection-with-linguado-41490

Black Hat

Black Hat

Show threadhacklegoDec 7, 2024
@XC3LL parabéns!!
hacklegoNov 17, 2024
@jartigag está acado de cocinarse! En diciembre/enero espero tener el paper listo para enviar.
hacklegoOct 5, 2024
hacklizaOct 5, 2024
Os nosos @DonCaralludo e @zer1t0 dando a súa charla “inxección de código en Python” na @pycones #pythones #python #vigo #pycones2024 #PyConES
Show threadhacklegoOct 5, 2024
@XC3LL homé, como ten que ser!
hacklegoSep 8, 2024
hacklizaSep 8, 2024
Novo artigo do @zer1t0, que apresenta a súa ferramenta keydump para leer os keyrings (protexidos) de terceiros procesos en Linux e extraer segredos como as credenciais de usuarias do dominio almacenadas por sssd. Agardamos que vos guste! https://hackliza.gal/posts/keydump/
Volcado de keyrings con Keydump: Extraendo credenciais en claro de SSSD

Boas xente!! Fai tempo estiven trangallando cos keyrings de Linux para extraer tickets de Kerberos con tickey, e recentemente vinme envolto nun novo proxecto no que precisaba volver a aprender sobre o tema, así que vou a describir aquí o proxecto e os conceptos mais relevantes sobre os keyrings por se eu ou outra persoa ten que aprendelos no futuro. O primeiro que temos que saber é que o que se coñece como keyrings de Linux, é un xestor de chaves.

Hackliza
hacklegoSep 8, 2024
EloySep 8, 2024

I was playing with code injection to read processes keyrings on Linux. I've wrote a new tool, keydump, and showing how we can use it to extract cleartext credentials from sssd. Not an easy exploitable scenario, but I hope you like the article!!

https://hackliza.gal/en/posts/keydump/

Keyrings dump with keydump: Extracting SSSD cleartext credentials

Hi there!! Time ago I was tinkered with Linux keyrings to extract Kerberos tickets from keys with tickey, and recently I was involved in a new interesting project in which I needed to learn again about this topic, so I will try to describe the important points here in case my future self or anyone else want to learn them. First we need to know is that Linux keyrings is a key management facility.

Hackliza