Truly insightful post on the results of 2 years of password cracking by Andy Gill and the team at @lares.bsky.social
"The data potentially reveals patterns in password creation and policy enforcement across various industries"
Rey Bango
- 18 Followers
- 12 Following
- 66 Posts
I like to hack into things sometimes. Opinions are mine. Fortis fortuna adiuvat.
Tried out Ligolo-ng on Hack the Box. Impressive. Very fast and easy to setup on the pivot box. IMO, the killer feature is the agent listeners. No need for ssh reverse port forward or socat. Setup a listener & it feeds into your attacker box. 😈 @Nicocha30
Hackers explain how they “owned” FlexiSpy https://www.helpnetsecurity.com/2017/04/26/flexispy-hack-explained/ via Help Net Security
"New Strain of Linux Malware Could Get Serious" http://www.linuxinsider.com/story/84481.html Basically, it's a brute force password attack on common ports.
PrivacyMatters 🔒@schestowitz @Tain Remember. . .privacy isn't about "something to hide". . .it's about "something to lose".
Got one of these 20+ Linksys Smart Wi-Fi routers? Bad news. 10 security vulnerabilities discovered https://www.grahamcluley.com/got-one-20-linksys-smart-wi-fi-routers-bad-news-10-security-vulnerabilities-discovered/ via @gcluley
Interesting op-ed. Hard to know who is doing what. "Trump Administration Changes Its Tune on Ed Snowden, Moscow’s Star Defector" http://observer.com/2017/04/mike-pompeo-blasts-edward-snowden-nsa-wikileaks-donald-trump/
Inside The Hunt For Russia’s Hackers https://www.buzzfeed.com/sheerafrenkel/inside-the-hunt-for-russias-hackers?utm_term=.lk1PEyLAo Really interesting read.
Companies are paying millions to get hacked — on purpose https://nypost.com/2017/04/23/companies-are-paying-millions-to-get-hacked-on-purpose/
Question: many tutorials for setting up a virtual pentest lab recommend using host-only adapters to isolate the VMs. Why don't they recommend using the "Internal" or "LAN Segment" adapters instead that block access to the host entirely? Seems like a more secure option.