I work freelance doing infosec work for large companies, mostly working to find relevant technical security gaps in their core infrastructure from an "assumed breach" perspective (AD, CS, IAM etc), explaining why they should get it fixed and helping them get things prioritized. If you need help, reach out!
I've been coding Golang for 7 years, primary work has been developing an EDR product and now my Active Directory attack graph tool Adalanche, which is available both as open source and with commercial licenses.
In my spare time I design and build machines - and then try to use them. On that list are multiple 3D printers, a laser cutter and a large CNC machine. I love making stuff and learning new things!
Curious security octopus | Sarcasm level 10 | Fond of LEGO | There will be swearing
#activedirectory #adalanche #golang #infosec #cnc #3dprinting #making #hacking #electronics #repairs #diy
LDAP Nom Nom v1.4.1 release:
Go download it like 27K other people did - it's the fastest way to find account names if you don't have a working username/password combo to that AD you're testing 🤣
https://github.com/lkarlslund/ldapnomnom/releases/tag/v1.4.1
I've ordered a Lenovo ThinkPad T14s Gen 6 - it's running the Qualcomm X1E ARM CPU, and I've been wanting to switch to ARM for a while.
It's only supported with Windows, but because @tobhe is totally smashing it (such a hero!), I have no reason not to just flush the Windos part and install Ubuntu Concept on it.
As with other early adopter setups, you will probably only need Windows to grab firmware things and to firmware updates.
There's more info about the ongoing efforts to get everything working on with Ubuntu for X1E laptops here: https://discourse.ubuntu.com/t/ubuntu-24-10-concept-snapdragon-x-elite/48800/72
Also the #aarch64-laptops IRC channel on the OFTC network is a place to hang out if you're an early adopter.
Can't wait for this adventure.
Great stuff! I got linux running on my HP Omnibook X 14! Windows-on-arm still boots (now via grub), Debian boots, Laptop-Display, Keyboard and Touchpad work. I’m a bit struggling with a missing dependency of “sudo apt install qcom-firmware-extract” due to a missing dependency - but this challenge is already addressed above. My detailed installation steps (as far as I could document these) are listed here: http://wiki.andreaswarnke.de/index.php?title=X1E-78-100
Use my new tool 'jugular' to do ultrafast scans of your internal networks (or the entire Internet?) for open (likely vulnerable) CUPS-browsed instances.
Many will be affected by the multiple CUPS vulnerabilities we learned about last week (CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, CVE-2024-47177) and this should help you map out what you have in your infrastructure.
It's for Linux only, as it's written for performance (direct UDP packet creation and sending). There's a compiled x64 Linux binary available, otherwise you can build it yourself.
The debacle about the entire CUPS thing is a mess. Of course getting root by installing a malicious printer is bad, but it does require the target to actually print something. I think the potential for weaponizing the parsing problems is worse though.
Let me know what you think, comments and input is welcome.
