#PenTest

Red Hot Cyber

@redhotcyber.bsky.social

1 hour ago

🚀 TRA POCHI GIORNI AL VIA IL CORSO "𝗖𝗬𝗕𝗘𝗥 𝗢𝗙𝗙𝗘𝗡𝗦𝗜𝗩𝗘 𝗙𝗨𝗡𝗗𝗔𝗠𝗘𝗡𝗧𝗔𝗟𝗦" 🚀

🔗 Programma www.redhotcyber.com/linksSk2...

Info 📞 379 163 8765 ✉️ formazione@redhotcyber.com

#redhotcyber #formazione #pentesting #pentest #formazionelive #ethicalhacking #hacking #cybersecurity #penetrationtesting #cti

Red Hot Cyber

@redhotcyber.bsky.social

18 hours ago

🚀 TRA POCHI GIORNI AL VIA IL CORSO "𝗖𝗬𝗕𝗘𝗥 𝗢𝗙𝗙𝗘𝗡𝗦𝗜𝗩𝗘 𝗙𝗨𝗡𝗗𝗔𝗠𝗘𝗡𝗧𝗔𝗟𝗦" 🚀

Se sei indeciso, è ora di iscriversi!
📞 379 163 8765 ✉️ formazione@redhotcyber.com

#formazione #pentest #ethicalhacking #hacking #cybersecurity #corsi #academy

r1cksec

@r1cksec.bsky.social

1 day ago

Windows of Opportunity: exploiting race conditions in Seclogon to dump LSASS | Otter's Notes

By altering the calling threads process ID and extending the exploitation window with file locks, an attacker can trick Seclogon into creating privileged LSASS handles for memory dumping

otter.gitbook.io/red-teaming/...

#infosec #cybersecurity #redteam #pentest #windows

Red Hot Cyber

@redhotcyber.bsky.social

2 days ago

🚀 TRA POCHI GIORNI AL VIA IL CORSO "𝗖𝗬𝗕𝗘𝗥 𝗢𝗙𝗙𝗘𝗡𝗦𝗜𝗩𝗘 𝗙𝗨𝗡𝗗𝗔𝗠𝗘𝗡𝗧𝗔𝗟𝗦" 🚀

Se sei indeciso, è ora di iscriversi!
📞 379 163 8765 ✉️ formazione@redhotcyber.com

#formazione #pentest #ethicalhacking #hacking #cybersecurity #corsi #academy

Red Hot Cyber

@redhotcyber.bsky.social

3 days ago

🚀 TRA POCHI GIORNI AL VIA IL CORSO "𝗖𝗬𝗕𝗘𝗥 𝗢𝗙𝗙𝗘𝗡𝗦𝗜𝗩𝗘 𝗙𝗨𝗡𝗗𝗔𝗠𝗘𝗡𝗧𝗔𝗟𝗦" 🚀

🔗 Programma www.redhotcyber.com/linksSk2...

Info 📞 379 163 8765 ✉️ formazione@redhotcyber.com

#redhotcyber #formazione #pentesting #pentest #formazionelive #ethicalhacking #hacking #cybersecurity #penetrationtesting #cti

VAPTOR AI

@vaptgpt.com

4 days ago

Cost-effective, automated security assessments are becoming essential infrastructure for SMEs. Attackers thrive in environments where nobody is looking. Protect your network with weekly/monthly pentests from vaptgpt.com #CyberSecurity #Pentest #AI #SMB #SME #Pentesting

CyberTaters

@potato.software

4 days ago

Vulnerable and malicious Windows drivers database

loldb.xsec.fr

#infosec #potatosecurity #redteam #pentest #windows

r1cksec

@r1cksec.bsky.social

4 days ago

Vulnerable and malicious Windows drivers database

loldb.xsec.fr

#infosec #cybersecurity #redteam #pentest #windows

Red Hot Cyber

@redhotcyber.bsky.social

4 days ago

🚨 Corso 𝗖𝗬𝗕𝗘𝗥 𝗢𝗙𝗙𝗘𝗡𝗦𝗜𝗩𝗘 𝗙𝗨𝗡𝗗𝗔𝗠𝗘𝗡𝗧𝗔𝗟𝗦: ultimi posti rimasti. Afrettati!

📞 Per info 379 163 8765 ✉️ formazione@redhotcyber.com
🔗 Per dettagli: www.redhotcyber.com/linksSk2...

#redhotcyber #formazione #pentesting #pentest #formazionelive #ethicalhacking #hacking #cybersecurity

r1cksec

@r1cksec.bsky.social

5 days ago

Abusing Cortex XDR Live Terminal as a C2 - InfoGuard Labs The Cortex XDR agent includes an incident response feature called "Live Terminal", which attackers can abuse as a C2.

The Live Terminal feature of Cortex XDR can be abused by attackers as a pre-installed, EDR-trusted C2 channel

labs.infoguard.ch/posts/abusin...

#infosec #cybersecurity #redteam #pentest

IT-Connect

@it-connect.bsky.social

6 days ago

Suivi et remédiation de vos pentests avec la plateforme Rigma Rigma permet d'automatiser et de fiabiliser le suivi des remédiations correspondant aux vulnérabilités de votre SI, via un tableau de bord dynamique.

🔎 Suivi et remédiation de vos pentests : découvrez la plateforme Rigma

✍️ Un article dispo sur IT-Connect
www.it-connect.fr/suivi-et-rem...

#Cybersécurité #Pentest #ITPro #Rigma

r1cksec

@r1cksec.bsky.social

6 days ago

GitHub - toneillcodes/DPAPI-BOF: A collection of DPAPI hunting and parsing BOFs A collection of DPAPI hunting and parsing BOFs. Contribute to toneillcodes/DPAPI-BOF development by creating an account on GitHub.

A collection of DPAPI hunting and parsing BOFs

github.com/toneillcodes...

#infosec #cybersecurity #redteam #pentest #windows

David @ InnoVirtuoso

@innovirtuoso.bsky.social

1 week ago

Understanding the Various Types of Penetration Tests Explore the essential role of penetration testing in cybersecurity. Learn about various types of tests including black-box, white-box, and gray-box methods.

Unlock the secrets of cybersecurity! 🔒💻 Explore our latest blog post on the various types of penetration tests and how they can enhance your security posture. Dive in now! 👉 innovirtuoso.com/cybersecurity/understand... #Cybersecurity #PenTest #Infosec

r1cksec

@r1cksec.bsky.social

1 week ago

GitHub - r1cksec/cheatsheets: Collection of knowledge about information security Collection of knowledge about information security - r1cksec/cheatsheets

New cheatsheets pushed

github.com/r1cksec/chea...

#infosec #cybersecurity #redteam #pentest #threatintel #malware #dfir #bugbounty #opensource

Lab401.com

@lab401.bsky.social

1 week ago

Discover the hardware pentesting revolution : The MACOBOX *Some features shown are in beta and will be fully functional soon. Stop fighting cables. Macobox gives you a step-by-step process: FCCID OSINT, AI Photo Scan, smart connect (UART/SPI/I²C/SWD/JTAG/eMMC), one-click dumps, AI log analysis (“Chat with the Target”), deep scans, clean exports, and one-click reports. It’s faster, deeper, and repeatable—every job. 👉 Get MACOBOX at LAB401.com: https://lab401.com/products/macobox-hardware-pentest-platform 👍 Like, share, and subscribe for more hardware security content. What you’ll learn in this video Problem → solution: From cable chaos to a clean, repeatable workflow. OSINT first: Enter FCCID to pull filings, photos, and docs; use AI Photo Scan to ID chips and fetch datasheets. Smart connect: Auto-detect UART, SPI, I²C, SWD, JTAG, eMMC; safe voltages; built-in multimeter info. One-click dump: Reliable SPI/eMMC extraction—no guesswork. Chat with the Target: AI explains boot logs, maps memory, highlights entry points. Project workflow: Auto-organized artifacts; export bundles with binaries, logs, notes, photos. One-click reports: Generate clean, professional vulnerability reports. Chat with Project: Ask about risks, coverage, next steps—AI answers from your project context. Portable lab: 1.5 GHz Cortex-A53, 4 GB RAM, 256 GB storage, USB/LAN/Wi-Fi/Bluetooth; battery powered. In the box: Macobox, PCBite with SQ10 probes, eMMC reader, SPI clips, SOP sockets, jumpers, pen-style multimeter, precision screwdriver + opening kit, PSU, spare plate. Plans: Basic (free), Premium (€2k/yr), Pro (contact us). Chapters 00:00 Cable chaos vs. results 00:32 The problem every pentester knows 01:04 From tool-driven to method-driven 01:21 What Macobox covers end-to-end 01:52 OSINT: FCCID + AI Photo Scan 02:38 Smart Connect: UART/SPI/I²C/SWD/JTAG/eMMC + safe voltages 03:08 One-Click Dump: SPI/eMMC firmware 03:38 Chat with the Target: AI log + memory analysis 04:27 Project Organization & Export 04:55 One-Click Reports 05:09 Chat with Project (context-aware AI) 06:17 Why it matters: speed, depth, repeatability 06:46 Portable specs (A53/4 GB/256 GB, I/O, battery) 07:14 What’s in the case 07:42 Standardized, shareable workflow 08:22 Consistency = success 09:14 Built by field researchers (Giuseppe, Matteo, Luca) 09:51 Plans: Basic / Premium / Professional 11:21 Core platform + annual plan tip 11:43 Call to action: streamline now 12:38 Like • Share • Subscribe Plan details (quick) Basic (free): Core workflow, lifetime updates, community help. Premium (~€2,000/yr): AI component + firmware tools, priority support, adapter upgrades, replacement probe boards. Pro (CONTACT US): All Premium + cloud vuln scans, reporting for teams, dashboards, SLA support. Why Macobox Cut setup time Go deeper with AI Keep everything organized Deliver client-ready reports, fast Roadmap: Macobox keeps evolving. New functionalities roll out regularly, and the roadmap is packed. Follow our official channels to catch new features as they drop.

Discover the hardware pentesting revolution: The MACOBOX
youtu.be/GHLmtduVlUE
#MACOBOX #Lab401 #HardwarePentest #FirmwareSecurity #PenTest #IoTSecurity

Red Hot Cyber

@redhotcyber.bsky.social

1 week ago

🚀 TRA POCHI GIORNI AL VIA IL CORSO "𝗖𝗬𝗕𝗘𝗥 𝗢𝗙𝗙𝗘𝗡𝗦𝗜𝗩𝗘 𝗙𝗨𝗡𝗗𝗔𝗠𝗘𝗡𝗧𝗔𝗟𝗦" 🚀

Se sei indeciso, è ora di iscriversi!
Per info e iscrizioni: 📞 379 163 8765 ✉️ formazione@redhotcyber.com

#redhotcyber #formazione #pentesting #pentest #formazionelive #ethicalhacking #hacking #cybersecurity

Maitre Malterre

@maitremalterre.bsky.social

1 week ago

Kali Linux Integrates Claude AI for Penetration Testing via Model Context Protocol Kali Linux has officially introduced a native AI-assisted penetration testing workflow, enabling security professionals to issue natural-language commands through Anthropic's Claude AI, which are then...

#KaliLinux #AI #PenTest

Kali Linux Integrates Claude AI for Penetration Testing via Model Context Protocol

cybersecuritynews.com/kali-linux-i...

Lab401.com

@lab401.bsky.social

1 week ago

The Multi-RFID keyfob keeps you ready ⚡ A low-cost solution with 6 built-in tags: 3× LF T5577 and 3× MIFARE Classic® 1K UID modifiable tags—never run out of LF/HF blanks 🔑 l.lab401.com/VQDbV
#RFID #Pentest #Lab401

hukni

@hukni.bsky.social

1 week ago

t.me/DutyCrypto

About hack web3

#web3 #crypto #hack #pentest #drainer #btc #eth #xmr

Red Hot Cyber

@redhotcyber.bsky.social

1 week ago

🚀 ULTIMI POSTI DISPONIBILI PER IL CORSO "𝗖𝗬𝗕𝗘𝗥 𝗢𝗙𝗙𝗘𝗡𝗦𝗜𝗩𝗘 𝗙𝗨𝗡𝗗𝗔𝗠𝗘𝗡𝗧𝗔𝗟𝗦" 🚀

Per info e iscrizioni: 📞 379 163 8765 ✉️ formazione@redhotcyber.com
👉 www.redhotcyber.com/linksSk2...

#redhotcyber #formazione #pentesting #pentest #formazionelive #ethicalhacking #hacking #cybersecurity

r1cksec

@r1cksec.bsky.social

1 week ago

GitHub - m0x41nos/TimeAfterFree: PHP 8 Sandbox Escape PHP 8 Sandbox Escape. Contribute to m0x41nos/TimeAfterFree development by creating an account on GitHub.

PHP 8 sandbox escape PoC demonstrating a disable_functions bypass on Unix-like systems.

github.com/m0x41nos/Tim...

#infosec #cybersecurity #redteam #pentest #php

r1cksec

@r1cksec.bsky.social

1 week ago

GitHub - V-i-x-x/WIFIAIR-C2-Channel: Command channel that uses Wi-Fi Beacons as a unidirectional C2 transport Command channel that uses Wi-Fi Beacons as a unidirectional C2 transport - V-i-x-x/WIFIAIR-C2-Channel

Command channel that uses Wi-Fi Beacons as a unidirectional C2 transport

github.com/V-i-x-x/WIFI...

#infosec #cybersecurity #redteam #pentest

Laurent Cheylus

@lcheylus.bsky.social

1 week ago

YGGtorrent — Fin de partie — YGGLeak Détournement de cartes bancaires et fingerprinting abusif de ses 6.6 millions d'utilisateurs, DDoS des concurrents, blanchiment de millions d'euros via des montages sophistiqués, fausses identités…

Quoi qu'on puisse penser du hack et de la fin de #YggTorrent, je conseille la lecture de la partie technique du Hack : super détaillé, #Pentest pas à pas d'une infra (reconnaissance, accès, exfiltration, pivot, persistence, effacement des traces) yggleak.top/fr/home/ygg-...

r1cksec

@r1cksec.bsky.social

1 week ago

NTLM.PW - Hash to password lookup Instantly look up NTLM hashes and resolve them to plaintext passwords using our database with 8B+ entries.

This database has 8.726.485.619 unique hashes (NT, LM, MD5, SHA1, SHA256)

ntlm.pw

#infosec #cybersecurity #redteam #pentest

eddieoz

@eddieoz.mastodon.social.ap.brid.gy

1 week ago

Limites da IA na Cibersegurança

A IA vai substituir especialistas em cibersegurança? 🤔

• O que o vídeo diz:
- Muitas empresas usam ferramentas proprietárias e você paga caro por elas 🔒💸
- Essas empresas retreinaram modelos com suas bases internas (dados […]

[Original post on mastodon.social]

MISC

@miscmag.bsky.social

1 week ago

Ça y est, notre nouveau numéro est disponible en kiosque & sur boutique.ed-diamond.com/nouveautes/1... où vous pourrez le commander (numérique ou papier avec les frais de ports offerts) et découvrir son sommaire.

Bonne lecture !

#cybersécurité #malware #pentest #exploit #supplychain #CVE

r1cksec

@r1cksec.bsky.social

1 week ago

GitHub - 0xbbuddha/notion: Notion C2 Profile for Mythic Notion C2 Profile for Mythic. Contribute to 0xbbuddha/notion development by creating an account on GitHub.

A Mythic C2 profile that uses Notion as a covert communication channel.

github.com/0xbbuddha/no...

#infosec #cybersecurity #redteam #pentest #opensource

r1cksec

@r1cksec.bsky.social

1 week ago

GitHub - dievus/ADPulse: Active Directory Vulnerability Scanner Active Directory Vulnerability Scanner. Contribute to dievus/ADPulse development by creating an account on GitHub.

ADPulse is an open-source Active Directory security auditing tool that connects to a domain controller via LDAP(S), runs 35 automated security checks, and produces detailed reports in console, JSON, and HTML formats.

github.com/dievus/ADPulse

#infosec #cybersecurity #pentest #opensource

Lab401.com

@lab401.bsky.social

1 week ago

All-in-one remote control capture, decrypt, and transmit device ⚡ Built for automated cloning, supports fixed & rolling codes, signal inversion, and optimised bruteforce—engineered for pentesters, auditors, and LEA teams 🔐 l.lab401.com/FopCs
#Pentest #RF #Lab401 #PandwaRFRoguePro

r1cksec

@r1cksec.bsky.social

1 week ago

GitHub - Maldev-Academy/PrefetchFileParser: A lightweight Windows Prefetch file parser to extract programs' execution history A lightweight Windows Prefetch file parser to extract programs' execution history - Maldev-Academy/PrefetchFileParser

A lightweight Windows Prefetch file parser to extract programs execution history

github.com/Maldev-Acade...

#infosec #cybersecurity #redteam #pentest #opensource