Collaborate Disseminate
I am connecting to a wi-fi network and blocked all IP addresses in this network with a regular Windows 10 firewall. The only available IP addresses are:
192.168.1.1 = gateway
192.168.1.102 = my own IP address
Some people from the wi-fi s… Continue reading Windows 10 Update – Man In The Middle Attack – Tamper Update [duplicate]
My problem is that I have made my own tampered payload that should convert the actual payload to hex format.
You can see from the log that the tampered payload is correct, but in the post data "pinNumber" it has been tampered aga… Continue reading sqlmap tampered payload doesn’t insert correctly
Mark: Okay. Good afternoon. Welcome to the next full paper session. We have three papers for you in this session on forensic methods. So, Janine will start shortly with a paper on evidence tampering, we have a paper on … Read more The post… Continue reading Prudent Design Principles for Digital Tampering Experiments
I am trying to better understand and determine the impact and implications of a web app where data tamping is possible.
When discussing data tampering, I am referring to when you are able to use a tool such as BurpSuite or Tamper Data to i… Continue reading Does client-side data tampering allow more than just evading validation? Dictionary attacks? Brute-force login attempts?
Is there a way to prevent a Windows 10/11 system to access/modify/delete data from a secondary linux drive?
I understand I can encrypt the linux drive, but wouldn’t the windows system be still able to see the drive, and a potential malware… Continue reading Preventing Windows from seeing/tampering with linux drive
I’m thinking of getting a Librem laptop with Pureboot which uses Heads (with the Librem key) for tamper detection. But I’ve heard rumours that there are weaknesses or vulnerabilities so I wanted to see if anyone here knows about it. For me… Continue reading How secure is Heads for detecting tampering or infection of firmware or boot sector? (Pureboot)
Many projects offering binaries, also offer hashes (e.g. SHA256) of those binaries, wither as .ASC files, or directly on the web page near the binary. This isn’t to protect against network-caused corruption, as that’s ensured by the TCP pr… Continue reading What’s the point of providing file checksums for verifying downloads?
I’m building an API with websocket that serializes data through JSON. The App itself is a chat application. I came up with the following structure to send my data:
{date: ‘2020-05-31′, time: ’14:28:05’, text: “Hey!”, to: ‘<id:int>’,… Continue reading Protect API from being tampered?
I’m asking this question with the assumption that anything the user can do, so can malware.
I’m using a third party firewall on my system to control which programs are able to access the internet. However I notice that I – as a limited us… Continue reading How could malware disable third party security software?
Does WP(Write Protect) pin of a USB flash memory controller prevent tampering with its firmware?
I want to have an USB stick that I can make it read-only and insert it in any untrusted PC without risking a silent BadUSB infection.