Collaborate Disseminate
Today I was visiting a website, using HTTPS obviously, that firefox gave me a certificate error and said that the certificate did not match the website’s information.
After a bit of investigation, it seems to me that my DNS provider is pro… Continue reading Can your ISP pull off a man-in-the-middle attack over unencrypted DNS?
Let’s say you did arp poisoning on another person’s computer and then they did arp poisoning on your computer while you were doing arp poisoning on their computer. What would you be seeing in Wireshark (or some other network traffic viewer… Continue reading What would you see in Wireshark if you did arp poisoning on a device that is arp poisoning your device? [closed]
I’ve just seen a Youtube video with an advertisement for NordVPN in which they claim that NordVPN would protect passwords when people are on potentially malicious coffee shop WLAN.
That seems strange to me as basically all websites use HTT… Continue reading What damage can a malicious wifi hotspot cause? [duplicate]
Today I called a friend of mine and something weird was going on. When he picked up the call, it was not showing my phone number on the caller ID but a different mobile number apparently from Romania. We could hear each other only badly an… Continue reading Called a friend and my caller ID was showing a wrong number from another country?
Recently started turning my phone on airplane mode and it got me curious. Airplane mode is supposed to turn off all radio signals. So, I won’t be able to receive or send messages (emails aswell, and so on). Once airplane mode is turned off… Continue reading Can messages be intercepted when in airplane mode?
My threats are: MitM basically, eavesdroppers
I have a Nextcloud instance and I was thinking of mounting sshfs locally and selecting local as the external storage type and then putting the data there, but is it the most secure option?
Next… Continue reading What’s the most secure mounting method for external storage in Nextcloud when not using encryption on rest for performance reasons?
My threats are: MitM basically, eavesdroppers
I have a Nextcloud instance and I was thinking of mounting sshfs locally and selecting local as the external storage type and then putting the data there, but is it the most secure option?
Next… Continue reading What’s the most secure mounting method for external storage in Nextcloud when not using encryption on rest for performance reasons?
Command: sudo ettercap -T -S -i eth0 -M arp:remot /192.168.1.1// /192.168.1.3//
Error: FATAL: ARP poisoning: parameter incorrect.
Continue reading FATAL: ARP poisoning: parameter incorrect [closed]
I am tasked with auditing the default configuration (system configuration, default applications…) that is set for some computers before they are given to users.
Though I have never seen it anywhere, I feel it would make sense to check wh… Continue reading System audit of hardened device regarding certificate handling
A question came up when I was discussing that Man in the middle attacks can occur when certificates have subject names are not qualified (e.g. "localhost"). I was then told that MitM only happens when it’s a TLS certificate with … Continue reading Man-in-the-middle attack only affects TLS certs with unqualified subject names?