SEC487 SANS Institute course announcement http://www.sec487.info
Helpful guide that provides directions on how to remove private information from public web sites.
OSINT isn't just about doing pre-attack recon. It is often leveraged by defenders as part of the incident response and investigation process. One of the most common applications of OSINT for a defender is to perform lookups on available information for IP addresses. This type of lookup can be performed via any of several different web... Continue Reading →
In this post I use a python tool (EyeWitness), TOR, TorGhost, and the Dark Web Reports from Hunchly to automate viewing the Dark Web resources.
A good friend and colleague of mine and I had a conversation today about the video "InterView - Attitude is everything - Film By Nithesh". WARNING: There is NSFW (Not Safe For Work) language in the video. In the video, an interviewer is looking for a candidate to fill a role. The interesting bit is why... Continue Reading →
What is WannaCry? In March 2017, Microsoft issued the MS17-010 bulletin (https://technet.microsoft.com/en-us/library/security/ms17-010.aspx) patching (and warning) of a broad set of vulnerabilities in many of its operating systems from Windows XP to Windows 10 and 2016. This vulnerability could be exploited via the DOUBLEPULSAR attack released by ShadowBrokers and supposedly attributed to the NSA. For more... Continue Reading →