Collaborate Disseminate
Given COVID-19 these days, a lot of people are working remotely. Does GlobalProtect work from anywhere across the nation and even abroad in other countries?
Would my company be able to see where I am physically located/working from through… Continue reading Can my company see my physical location if I’m using GlobalProtect? [closed]
I have seen many answers to this question in different scenarios but I am still unsure of the actual answer.
I have a VM in the cloud (Azure), which will be hosting my production database. Is it safe to have port 22 open for my SSH connect… Continue reading Is it safe to expose port 22 on a database VM?
I would like to learn reverse engineering. But as a beginner I’m having a hard time finding suitable ressources for me.
My main goal would be to reverse engineer an application server made in a "commercial", not widely used progr… Continue reading Ressources to learn reverse engineering [closed]
I noticed recently that my google account is logged into my phone, tablet and work laptop. I’m logged into the WiFi on all the devices at work. I know they can see what I do on these devices but how are they aware that they are my devices…. Continue reading How does my work know it was my device used to search something
Using gpgtools on MacOS, I have attempted multiple times to verify the signature of the Whonix image. I get:
$ gpg –verify-options show-notations –verify Whonix-*.ova.asc Whonix-*.ova
gpg: Signature made Sun Mar 8 14:38:51 2020 EDT
g… Continue reading Whonix Image Download Bad Signature
That is, is it generally considered more secure to save a single application-wide private key on the web server compared to storing (protected/encrypted) private keys in the database?
More specifically, would storing multiple copies of th… Continue reading Does a shared (but encrypted) private key for a group of users reduce the effectiveness of the encryption?
I run a home 24/7 gaming/teamspeak server for me my friends and a few public people that join..
It’s starting to get quite a few people using it that are the general public and i’m starting to get quite worried about my IP … Continue reading I run a home server, need to know how to IP Spoof [on hold]
I am pentesting a PHP website running on Apache in a Ubuntu server.
I found a vulnerability that allows me to write files to the target system.
I know it’s possible to write a php shell to the HTTP root directory and get RCE… Continue reading Is it possible to gain RCE from Arbitrary file write by an unprivileged user?
I want to test laravel exploit poc based on https://github.com/kozmic/laravel-poc-CVE-2018-15133/
I did docker steps to reach laravel home page on localhost:8000 then i got APIkey and simply i put APIKEY in php command to fi… Continue reading laravel-poc-CVE-2018-15133
I would like to reuse an authentication token (which is dynamic) between a response and a request in Burp Suite intruder.
By dynamic I mean that the token is invalidated after being sent to the server and that we get a new … Continue reading Configure Burp to pass dynamic authentication token from the past response to the next request in intruder