sueden.social

BSides RDU10 days left until BSidesRDU 2025!!!!!$55.00 ticket and free parkingFriday, Sep 12, 2025 at 8:30 AM to 6:00 PM EDTNCSU McKimmon Center, 1101, Gorman Street, Raleigh, NC, 27606, United States <a href="https://www.eventzilla.net/e/bsidesrdu-2025-2138649409" rel="nofollow noopener" translate="no" target="_blank">https://www.eventzilla.net/e/bsidesrdu-2025-2138649409</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#linux</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a>

dan_nanniSteganography is the practice of concealing secret information within ordinary data such as images, audio, or text so that the hidden content is not detectable to unintended observersHere are freely available steganography tools 😎👇 <a href="https://mastodon.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://mastodon.social/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a> <a href="https://mastodon.social/tags/datasecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#datasecurity</a>Find a high-res pdf book with all my <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> related infographics from <a href="https://study-notes.org/cybersecurity-ebook.html" rel="nofollow noopener" translate="no" target="_blank">https://study-notes.org/cybersecurity-ebook.html</a>

BSides RDU11 days left until BSidesRDU 2025!!!!!$45.00 ticket and free parkingFriday, Sep 12, 2025 at 8:30 AM to 6:00 PM EDTNCSU McKimmon Center, 1101, Gorman Street, Raleigh, NC, 27606, United States <a href="https://www.eventzilla.net/e/bsidesrdu-2025-2138649409" rel="nofollow noopener" translate="no" target="_blank">https://www.eventzilla.net/e/bsidesrdu-2025-2138649409</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#linux</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a>

PentHertz🚀 Major updates dropping for rfswift.io before September! 🆕 Ghidra 11.4.2 🎯 ImHex 1.37.x 🌐 NEW: Caido for embedded web pentesting Plus enhanced tools for: 📡 <a href="https://infosec.exchange/tags/IoT" class="mention hashtag" rel="nofollow noopener" target="_blank">#IoT</a> • 🚗 <a href="https://infosec.exchange/tags/Automotive" class="mention hashtag" rel="nofollow noopener" target="_blank">#Automotive</a> • 🏷️ <a href="https://infosec.exchange/tags/RFID" class="mention hashtag" rel="nofollow noopener" target="_blank">#RFID</a> • 📱 <a href="https://infosec.exchange/tags/Mobile" class="mention hashtag" rel="nofollow noopener" target="_blank">#Mobile</a> • 🔍 <a href="https://infosec.exchange/tags/Reversing" class="mention hashtag" rel="nofollow noopener" target="_blank">#Reversing</a> • ⚡ <a href="https://infosec.exchange/tags/Hardware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hardware</a> attacks <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/iot" class="mention hashtag" rel="nofollow noopener" target="_blank">#iot</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a>

BSides RDU12 days left until BSidesRDU 2025!!!!!$45.00 ticket and free parkingFriday, Sep 12, 2025 at 8:30 AM to 6:00 PM EDTNCSU McKimmon Center, 1101, Gorman Street, Raleigh, NC, 27606, United States <a href="https://www.eventzilla.net/e/bsidesrdu-2025-2138649409" rel="nofollow noopener" translate="no" target="_blank">https://www.eventzilla.net/e/bsidesrdu-2025-2138649409</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#linux</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a>

BSides RDU13 days left until BSidesRDU 2025!!!!!$45.00 ticket and free parkingFriday, Sep 12, 2025 at 8:30 AM to 6:00 PM EDTNCSU McKimmon Center, 1101, Gorman Street, Raleigh, NC, 27606, United States <a href="https://www.eventzilla.net/e/bsidesrdu-2025-2138649409" rel="nofollow noopener" translate="no" target="_blank">https://www.eventzilla.net/e/bsidesrdu-2025-2138649409</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#linux</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a>

BSides RDUNeed a place to stay? Check out these hotels StateView Hotel on NCSU Campus & Aloft Raleigh<a href="https://infosec.exchange/tags/cyber" class="mention hashtag" rel="nofollow noopener" target="_blank">#cyber</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#linux</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://infosec.exchange/tags/kalilinux" class="mention hashtag" rel="nofollow noopener" target="_blank">#kalilinux</a> <a href="https://infosec.exchange/tags/programming" class="mention hashtag" rel="nofollow noopener" target="_blank">#programming</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/dataprotection" class="mention hashtag" rel="nofollow noopener" target="_blank">#dataprotection</a> <a href="https://bsidesrdu.org/#hotels" rel="nofollow noopener" translate="no" target="_blank">https://bsidesrdu.org/#hotels</a>

pentest-tools.com🤝 We’re excited to announce our new partnership with Allnet GmbH!This means easier access to our vulnerability scanning product for consultants, internal teams, and MSPs across Germany, Austria, and Switzerland.🇩🇪 What makes this special: Allnet adds their local expertise and support, so you'll be able to get even more value from your pentesting workflows if you're in the DACH region.🌍 Stronger tools + local know-how = better security for more organizations.<a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/MSPs" class="mention hashtag" rel="nofollow noopener" target="_blank">#MSPs</a> <a href="https://infosec.exchange/tags/consulting" class="mention hashtag" rel="nofollow noopener" target="_blank">#consulting</a>

SecBurgCaido v0.51.0 released<a href="https://secburg.com/posts/caido-v0510-released/" rel="nofollow noopener" translate="no" target="_blank">https://secburg.com/posts/caido-v0510-released/</a><a href="https://infosec.exchange/tags/caido" class="mention hashtag" rel="nofollow noopener" target="_blank">#caido</a> <a href="https://infosec.exchange/tags/tools" class="mention hashtag" rel="nofollow noopener" target="_blank">#tools</a> <a href="https://infosec.exchange/tags/webapp" class="mention hashtag" rel="nofollow noopener" target="_blank">#webapp</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a>

BillI have been reading "The Language of Deception" by Justin Hutchins and woo boy is it nothing like those quick list of 'look at the cool stuff I've hacked' low effort books you see so often. This is the real deal. He put his time in on this going back to the 2014 scope, and it really shows. Absolutely worth the read.<a href="https://infosec.exchange/tags/genai" class="mention hashtag" rel="nofollow noopener" target="_blank">#genai</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a>

BSides RDUThe Triangle’s cybersecurity community is gathering at <a href="https://infosec.exchange/tags/BSidesRDU" class="mention hashtag" rel="nofollow noopener" target="_blank">#BSidesRDU</a>. Be part of it as a sponsor <a href="https://bsidesrdu.org/#sponsors" rel="nofollow noopener" translate="no" target="_blank">https://bsidesrdu.org/#sponsors</a> <a href="https://infosec.exchange/tags/cyber" class="mention hashtag" rel="nofollow noopener" target="_blank">#cyber</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#linux</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://infosec.exchange/tags/kalilinux" class="mention hashtag" rel="nofollow noopener" target="_blank">#kalilinux</a> <a href="https://infosec.exchange/tags/programming" class="mention hashtag" rel="nofollow noopener" target="_blank">#programming</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/dataprotection" class="mention hashtag" rel="nofollow noopener" target="_blank">#dataprotection</a>

Pen Test PartnersReady to take Bluetooth Low Energy hacking a step further?In part two, Sam Thom moves on from the free Android/Linux setup and brings in budget hardware. A £20 Sonoff dongle for sniffing. A £10 Nordic nRF52 for control.With Sniffle and Wireshark, you can capture traffic. With nRFConnect, you can write to characteristics and make devices beep on command. It’s a cheap but powerful setup before we move on to advanced tools in the next post.📌 <a href="https://www.pentestpartners.com/security-blog/start-hacking-bluetooth-low-energy-today-part-2/" rel="nofollow noopener" translate="no" target="_blank">https://www.pentestpartners.com/security-blog/start-hacking-bluetooth-low-energy-today-part-2/</a><a href="https://infosec.exchange/tags/BLEHacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#BLEHacking</a> <a href="https://infosec.exchange/tags/Bluetooth" class="mention hashtag" rel="nofollow noopener" target="_blank">#Bluetooth</a> <a href="https://infosec.exchange/tags/BLE" class="mention hashtag" rel="nofollow noopener" target="_blank">#BLE</a> <a href="https://infosec.exchange/tags/HardwareHacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#HardwareHacking</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/PenTesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#PenTesting</a> <a href="https://infosec.exchange/tags/Wireshark" class="mention hashtag" rel="nofollow noopener" target="_blank">#Wireshark</a>

pentest-tools.com🔐 When security has to keep up with business, flexibility wins.Arco IT GmbH needed more than just another scanner. They wanted:⚙️ A cloud-native platform that fits into any client setup ⚡️ Fast, reliable results 📑 Reporting that works straight out of the box Old-school, hardware-heavy tools slowed them down. With Pentest-Tools.com, they got the agility to deliver both trustworthy and efficient assessments from day #1.As Marti Berini Sarrias, Arco IT Senior Security Architect, puts it: “We couldn’t keep relying on local boxes or manual processes. We needed cloud-native scanning that was reliable, fast, and insightful.”💡 See how Pentest-Tools.com helped Arco IT solve its scaling problems ➡️ <a href="https://pentest-tools.com/case-studies/arco-it" rel="nofollow noopener" translate="no" target="_blank">https://pentest-tools.com/case-studies/arco-it</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/automation" class="mention hashtag" rel="nofollow noopener" target="_blank">#automation</a> <a href="https://infosec.exchange/tags/MSPs" class="mention hashtag" rel="nofollow noopener" target="_blank">#MSPs</a> <a href="https://infosec.exchange/tags/consulting" class="mention hashtag" rel="nofollow noopener" target="_blank">#consulting</a>

ReynardSecYou’ve probably heard of Cold Boot attacks [1], but have you ever seen a practical example? If not, I recommend reading this report <a href="https://www.securitum.com/public-reports/medical-company-en.pdf" rel="nofollow noopener" translate="no" target="_blank">https://www.securitum.com/public-reports/medical-company-en.pdf</a> (point 002, page 15).There is even more: for example, as a bonus, in point 001 there’s an interesting analysis concerning the incorrect configuration of PCR banks of the disk encryption process using LUKS.[1] <a href="https://en.wikipedia.org/wiki/Cold_boot_attack" rel="nofollow noopener" translate="no" target="_blank">https://en.wikipedia.org/wiki/Cold_boot_attack</a><a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/hardware" class="mention hashtag" rel="nofollow noopener" target="_blank">#hardware</a> <a href="https://infosec.exchange/tags/research" class="mention hashtag" rel="nofollow noopener" target="_blank">#research</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/computers" class="mention hashtag" rel="nofollow noopener" target="_blank">#computers</a>

Pen Test PartnersWant to try Bluetooth Low Energy hacking but not sure where to begin?This is the first post in a three-part series where Sam Thom takes a £2 key-finder tag and makes it beep by capturing and replaying its BLE traffic with free tools. It’s a simple, practical way to see how GATT, handles, and characteristics work without investing in expensive gear.If you’ve been meaning to get into BLE, this is an easy starting point that sets you up for the more advanced tools and techniques we’ll cover in the series.📌<a href="https://www.pentestpartners.com/security-blog/start-hacking-bluetooth-low-energy-today-part-1/" rel="nofollow noopener" translate="no" target="_blank">https://www.pentestpartners.com/security-blog/start-hacking-bluetooth-low-energy-today-part-1/</a><a href="https://infosec.exchange/tags/Bluetooth" class="mention hashtag" rel="nofollow noopener" target="_blank">#Bluetooth</a> <a href="https://infosec.exchange/tags/BLE" class="mention hashtag" rel="nofollow noopener" target="_blank">#BLE</a> <a href="https://infosec.exchange/tags/HardwareHacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#HardwareHacking</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/PenTesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#PenTesting</a> <a href="https://infosec.exchange/tags/Wireshark" class="mention hashtag" rel="nofollow noopener" target="_blank">#Wireshark</a>

maschmiLearning about <a href="https://mastodon.social/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a> had a nice side effect: Keeping logs of what I do and have done is now basically second nature. This also helps in my dayjob and creates documentation basically as I go.Did you know you can log your terminal with <a href="https://mastodon.social/tags/tmux" class="mention hashtag" rel="nofollow noopener" target="_blank">#tmux</a> <a href="https://github.com/tmux-plugins/tmux-logging" rel="nofollow noopener" translate="no" target="_blank">https://github.com/tmux-plugins/tmux-logging</a>? Or by using `script` and `scriptreplay` <a href="https://www.geeksforgeeks.org/linux-unix/script-command-in-linux-with-examples/" rel="nofollow noopener" translate="no" target="_blank">https://www.geeksforgeeks.org/linux-unix/script-command-in-linux-with-examples/</a>When using script, do not wonder about the color-code-chars in the log :)<a href="https://mastodon.social/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#linux</a> <a href="https://mastodon.social/tags/terminal" class="mention hashtag" rel="nofollow noopener" target="_blank">#terminal</a>

Mike ShewardMini Pen Test Diaries story, happened in the last couple of years. The debrief meeting went like this:“In your report you said you we’re able to crack the domain admin account instantly because the password was stored using the LM hash?”“That’s right, yes.”“But we’ve had LM hashing disabled for like 15 years, that can’t be possible?!”“When was the last time that password was changed?”“Well it’s been the same since I got here, 20 years ago.”“And what hashing mechanism do you think was used back then?”“Oh no."For more, less mini stories like this, check out <a href="https://infosecdiaries.com" rel="nofollow noopener" translate="no" target="_blank">https://infosecdiaries.com</a>.<a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#redteam</a>

parrotboi~that feeling when there is a vulnerable service with a POC exploit but default payloads don't work O.O so you now have to sit down and try modifications ;*( . <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#redteam</a>

ReynardSec„Recursive Request Exploits (RRE) trace API chains backward from a protected resource (like a video stream) back to it's origin. If any upstream API is unauthenticated, the whole chain can be abused to bypass access. This Burp extension automates this to find low-trust inputs that generate high-value outputs”<a href="https://github.com/jumpycastle/rre-burp" rel="nofollow noopener" translate="no" target="_blank">https://github.com/jumpycastle/rre-burp</a><a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#vulnerability</a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#appsec</a> <a href="https://infosec.exchange/tags/webdev" class="mention hashtag" rel="nofollow noopener" target="_blank">#webdev</a> <a href="https://infosec.exchange/tags/programming" class="mention hashtag" rel="nofollow noopener" target="_blank">#programming</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a>

parrotboi~Has anyone played around with this or know of alternatives, I am thinking of rolling it out for the team, I played with it a bit looks really awesome 👌 <a href="https://github.com/Cyberwatch/Pentest-Collaboration-Framework" rel="nofollow noopener" translate="no" target="_blank">https://github.com/Cyberwatch/Pentest-Collaboration-Framework</a><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a>

Frühere Suchanfragen

Suchoptionen

Verwaltet von:

Serverstatistik:

#Pentesting