John Doe – Page 5 – WindowsTechs.com

Should a DNS server restrict reverse lookups from external hosts?

Posted on January 31, 2020 by John Doe

What risks are there in allowing external clients to resolve internal IPs to their domain names? The server is used internally for clients, as well as for external clients needing to resolve a web server’s domain. Couldn’t allowing these r… Continue reading Should a DNS server restrict reverse lookups from external hosts?→

Is there any danger to downloading a malware binary, but not executing it?

Posted on January 16, 2020 by John Doe

I recently downloaded an ELF file which was discovered from an exploit attempt (wget to download this binary failed due to outgoing traffic being blocked if it isn’t whitelisted). I downloaded it into a VM in order to run some basic analys… Continue reading Is there any danger to downloading a malware binary, but not executing it?→

Is there any danger to downloading a malware binary, but not executing it?

Posted on January 16, 2020 by John Doe

Possible to detect tools like HTran from network analysis?

Posted on December 18, 2019 by John Doe

There is a publicly available tool called HTran which is widely used by criminal groups in cyberattacks to exfiltrate data. It simply relays traffic from one host to another, much like a proxy. It is typically used to relay i… Continue reading Possible to detect tools like HTran from network analysis?→

Any data on how many users change passwords after a breach notifcation?

Posted on November 22, 2019 by John Doe

Does anyone know of any study or any data whatsoever which might indicate how many users actually change their passwords after they have been notified that their credentials appeared in a breach?

Continue reading Any data on how many users change passwords after a breach notifcation?→

Difference between linux hash sum utilities and online string to hash utilities

Posted on October 2, 2019 by John Doe

When I go online and calculate a hash from a string on some generator website, no matter the algorithm or the website, it is always a different output than if I do echo “password” | sha256sum (or insert *sum there for corresp… Continue reading Difference between linux hash sum utilities and online string to hash utilities→

Does every modern buffer overflow require multiple exploits in end user devices to be utilized?

Posted on July 24, 2019 by John Doe

On modern user oriented devices, such as Android phones, iPhones, PCs(Windows, MacOS, Linux), if there is a remote buffer overflow 0 day, are they only exploitable with the aid of multiple vulnerabilities? An example of this … Continue reading Does every modern buffer overflow require multiple exploits in end user devices to be utilized?→

Security of Passwords vs Biometrics [duplicate]

Posted on July 24, 2019 by John Doe

This question already has an answer here:

Why do we even use passwords / passphrases next to biometrics?

14 answers

Would… Continue reading Security of Passwords vs Biometrics [duplicate]→

Svchost.exe as parent process of csrss.exe and wininit.exe?

Posted on June 28, 2019 by John Doe

Would there ever be a case in which the parent process of csrss.exe and wininit.exe is svchost.exe -k termsvcs?

Continue reading Svchost.exe as parent process of csrss.exe and wininit.exe?→

Modified NMAP script: variable ‘host’ is not declared

Posted on May 28, 2019 by John Doe

I am modifying an nse script, ssl-cert.nse, which was already made for enumerating ssl certificates. I want to output the host ip and the port number in a line of the ssl certificate output. However, any time I try to make a … Continue reading Modified NMAP script: variable ‘host’ is not declared→