-
Oct 19, 2020
”A child born today will grow up with no conception of privacy at all. They’ll never know what it means to have a private moment to themselves, an unrecorded unanalyzed thought. And that’s a problem because privacy matters. Privacy is… read more »
-
Oct 15, 2020
“It’s funny to us as we’re so used to worms and viruses being bad news rather than making the world a better place.“ - Graham Cluley Top reason to apply October, 2020’s Microsoft patches: Ping of Death Redux Microsoft is… read more »
-
Oct 12, 2020
Last week, a new collection of my compositions was released on major music streaming services. "Noli me tangere" is a shining example of music recycling: all song has been developed using melodies, loops and backtracks created for other projects, but… read more »
-
Oct 9, 2020
Sysdiagnose logs allow developers to extract information from iOS devices, and it is used for understanding bug occurrences.However, this log is also useful for forensic purposes when a full device acquisition is not possible/available. Sysdiagnose logs generation Unlike crash Logs,… read more »
-
Oct 7, 2020
“If privacy is outlawed, only outlaws will have privacy.” - Philip Zimmermann Breach at food delivery service Chowbus reportedly affects hundreds of thousands of customers Two months after securing a $33 million funding round from investors, food delivery startup Chowbus is… read more »
-
Oct 5, 2020
“First we thought the PC was a calculator. Then we found out how to turn numbers into letters with ASCII — and we thought it was a typewriter. Then we discovered graphics, and we thought it was a television. With… read more »
-
Oct 2, 2020
“It takes 20 years to build a reputation and few minutes of cyber-incident to ruin it.” — Stephane Nappo Windows Subsystem for Linux 2 bypasses the Windows 10 Firewall The Windows Subsystem for Linux 2 will bypass the Windows 10… read more »
-
Sep 30, 2020
“Privacy means people know what they’re signing up for, in plain language, and repeatedly. I believe people are smart. Some people want to share more than other people do. Ask them.” – Steve Jobs
… read more »
-
Sep 28, 2020
“We've arranged a civilization in which most crucial elements profoundly depend on science and technology.” - Carl Sagan
… read more »
-
Sep 27, 2020
Yes, the title is an hommage to the science fiction short story by British author Arthur C. Clarke, which was used as a starting point for the 1968 novel and film ”2001: A Space Odyssey”. This new LP is set… read more »
-
Sep 21, 2020
CloudBrute is a multiple platform tool that finds and enumerates a target company’s cloud infrastructure, files, open buckets, applications, and databases hosted on top cloud providers (Amazon, Google, Microsoft, DigitalOcean, Alibaba, Vultr, Linode), and possibly applications behind proxy servers. The tool [1], developed in GO by security researcher… read more »
-
Sep 17, 2020
Mimikatz' developer Benjamin Delpy, has updated the latest version of the well-known tool to exploit the ZeroLogon vulnerability. Mimikatz Mimikatz [2] is an open source tool designed to target devices running Windows OS and can run pass-the-hash, pass-the-ticket, kerberoasting, and more. ZeroLogon (CVE-2020-1472) Discovered by Secura's… read more »
-
Sep 14, 2020
Red Commander is a red team C2 infrastructure built in Amazon AWS using Ansible. The tool [1] is developed by Alex Williams, security consultant at GuidePoint Security, and can help pentesters improve their defensive responses but can also be used by adversaries to simulate their attacks.… read more »
-
Sep 11, 2020
At the DEF CON 2020, the security researcher Erik Hunstad has released a new tool that can help users to evade censorship and bypass firewalls to keep services up inside problematic areas of the globe. Domain fronting, the technique of… read more »
-
Sep 9, 2020
The Wall Street Journal has published a post about a company called Anomaly Six LLC, that develop an SDK used by "more than 500 mobile applications". Through that SDK, the company collects location data from users, which it then sells [1]: Anomaly… read more »
-
Sep 7, 2020
In a previous post, I've talked about the idea of go back to record some songs using real instruments.On my new LP ”Singularity”, published on major streaming services today, I've recorded a lot of real instruments in disguise. Indeed, all… read more »
-
Sep 4, 2020
PowerZure is a framework designed to perform reconnaissance and exploitation of the Azure cloud platform, Azure Active Directory, and associated resources. The project [1] is maintained by Ryan Hausknecht, who recently released a new version (2.0) of the framework. The tool is… read more »
-
Sep 2, 2020
Security pentester Jean Maes published a tool on Github called Backdoorplz. Backdoorplz [1] is a portable executable (PE) file that creates a user ("LegitAdmin" with password "Backdoor123!") on a Windows device and adds it to the local administrators group of granting administrator privileges to the user. The command… read more »
-
Aug 31, 2020
In order to perform a correct forensic analysis on a Apple device, a basic knowledge of storage, file allocation methods relevant files paths is always required. So, let’s try to write down some basic information… The HFS+ filesystem The Hierarchical… read more »
-
Aug 28, 2020
"Fish Tank" is the title of my new EP, released last week on all major streaming services. It comes from a set of musical ideas collected during the COVID-19 lockdown occured in Italy in the past months. I lived for… read more »