Collaborate Disseminate
I recently built an information gathering tool and I’m curious to hear your opinions on it. How does it compare to similar tools you’ve tried, and what are your overall thoughts :
https://github.com/jasonxtn/Argus
MITRE has shared a timeline of the recent breach if fell victim to and has confirmed that it began earlier than previously thought: on December 31, 2023. On that day, the attackers deployed a web shell on an external-facing Ivanti Connect Secure VPN ap… Continue reading MITRE breach details reveal attackers’ successes and failures
reNgine is an open-source automated reconnaissance framework for web applications that focuses on a highly configurable and streamlined recon process. Developing reNgine reNgine was developed to overcome the constraints of conventional reconnaissance t… Continue reading reNgine: Open-source automated reconnaissance framework for web applications
If a web app is giving normal "not found" page for /blablablaalsdf but for certain paths, it doesn’t give the normal 404 page but gives Cannot Get /<path> instead, would this be an indicator that this path (and whatever un… Continue reading Can we identify secondary contexts from web application error messages? [closed]
What is the best way to get more information from the information-gathering stages/ reconnaissance when trying CTFs? Is there any workflow for a new cybersecurity student who knows some programming?
for example consider against virtual mac… Continue reading CTF or Bug Bounty info gathering workflows [closed]
If you’re conducting covert military reconnaissance, you probably don’t want the enemy seeing what’s obviously a drone flying overhead. That’s where the Evolution Eagle is intended to come in, as it’s a drone that just looks like a big ol’ bird.Continu… Continue reading Evolution Eagle drone flips the bird at enemy forces
Fly Catcher is an open-source device that can detect aircraft spoofing by monitoring for malicious ADS-B signals in the 1090MHz frequency. Angelina Tsuboi, the developer of Fly Catcher, is an enthusiastic pilot, cybersecurity researcher, and tinkerer. … Continue reading Fly Catcher: Detect aircraft spoofing by monitoring for malicious signals
Open-Source Intelligence (OSINT) refers to gathering, assessing, and interpreting public information to address specific intelligence queries. All the tools listed here are available for free. Amass The OWASP Amass project performs network mapping of a… Continue reading 8 open-source OSINT tools you should try
i have w wordlist of subdomains contains like this :
admin.bugbountytarget.com
portal.bugbountytarget.com
sales.bugbountytarget.com
vpn1.bugbountytarget.com
dev.test.bugbountytarget.com
…
And I want to grep subdomains names without &quo… Continue reading How i can grep only subdomain names without "target.com" [closed]
My goal is to block all incoming unsolicited connections to a Windows computer.
I’ve read that Windows Firewall is stateful and it can tell the difference between solicited and unsolicited traffic.
https://learn.microsoft.com/en-us/previou… Continue reading How to secure Windows computer from any unsolicited connections? [closed]