Collaborate Disseminate
There’s no doubt that the RTL-SDR project has made radio hacking more accessible than ever, but there’s only so far you can go with a repurposed TV tuner. Obviously the …read more Continue reading The Evil Crow is Ready To Cause Some RF Mayhem
At SAS@Home, Luta Security CEO Katie Moussouris stressed that bug bounty programs aren’t a ‘silver bullet’ for security teams. Continue reading Grindr’s Bug Bounty Pledge Doesn’t Translate to Security
Organization seek out security through various means – risk analysis, regulatory compliance, alignment to security frameworks – but can never really be sure they are secure. That’s where pentesting comes in – evaluating security… Continue reading Phish Fryday – Pentesting and Phishing Defense
Organization seek out security through various means – risk analysis, regulatory compliance, alignment to security frameworks – but can never really be sure they are secure. That’s where pentesting comes in – evaluating security… Continue reading Phish Fryday – Pentesting and Phishing Defense
Curt Klump found himself standing in a server closet in a building’s network operations center (NOC), with an official employee escort. This is just one of the highlights of his first social engineering onsite infiltration job. In part 2 in our 4… Continue reading Breaking in for NOOBZ!: Social Engineering Onsite Infiltration
Linux is often talked about when it comes to security. With this OS, you can choose from a multitude of distributions (distros) to lock down your computer or device, but that’s just for starters. Many Linux distros come with tools to help you perform … Continue reading 7 Linux Distros for Security Testing
BugBounty story #bugbountytips
A fixed but they didn’t pay the bugbounty story…
Timeline:
reported 21 Oct 2019
validated at Critical 23 Oct 2019
validated as fixed 30 Oct 2019
Bounty amount stated (IDR 10.000.000 = ~700 USD) 12 Nov 2019
I… Continue reading What is your GCP infra worth?…about ~$700 [Bugbounty]
When a client calls us to pentest a web application that is only available in Internet Explorer. I cringe. I don’t know if it’s flashbacks from the countless hours spent getting a website compatible with IE, or the trauma from bad UX growin… Continue reading In Case of Fire: Break Windows
For years now I have been a huge proponent of the Raspberry Pi. I started with a Raspberry Pi 2, which required a USB WiFi dongle for wireless, to a Raspberry Pi 3b with onboard WiFi. Later I would get a pair of Raspberry Pi Zero W’s, and f… Continue reading Pentesting with a Raspberry Pi!
Not all politicians are lifers, said no politician ever. Until now. It was a mere 12 months ago that I left the political realm after losing a run for the Ohio General Assembly, after serving three years as Mayor of my community. I had spent most of… Continue reading From Politics to Penetration Testing