• Privacy Roundup #18

    “It's dangerous when people are willing to give up their privacy.“ - Noam Chomsky Chrome to block tab-nabbing attacks Google will deploy a new security feature in Chrome next year to prevent tab-nabbing, a type of web attack that allows… read more »
  • Linux Forensics: Memory Capture and Analysis

    A tutorial by 13Cubed that explains how to use Microsoft's AVML to acquire memory on Linux systems… read more »
  • CobaltStrikeScan: identify CobaltStrike beacons in processes memory

    Cobalt Strike was born as a penetration testing tool, useful for Red Teaming activities. However, several threat actors started using it in real attacks. So, a proper detection of Cobal Strike activities during an incidend respose process is extremely important.… read more »
  • Cybersecurity Roundup #18

    “If you spend more on coffee than on IT security, you will be hacked. What's more, you deserve to be hacked”  ― Richard Clarke Grayshift, The Startup That Breaks Into Unlocked IPhones For The Feds, Raises $47 Million Grayshift, the startup… read more »
  • Digital Forensic Basics: an analysis methodology flow chart

    Data extraction, data acquisition, data analysis? Let's try to make it a little clearer! Let's start from the beginning... In the early 1980s, when personal computers began to be more accessible to consumers, however, increasing their use in criminal activities,… read more »
  • Technology Roundup #17

    “Technology is best when it brings people together” - Matt Mullenweg NASA and Nokia Team Up to Bring 4G to the Moon The National Aeronautics and Space Administration (NASA) announced last week that it has awarded Nokia’s Bell Labs to… read more »
  • Privacy Roundup #17

    ”A child born today will grow up with no conception of privacy at all. They’ll never know what it means to have a private moment to themselves, an unrecorded unanalyzed thought. And that’s a problem because privacy matters. Privacy is… read more »
  • Cybersecurity Roundup #17

    “It’s funny to us as we’re so used to worms and viruses being bad news rather than making the world a better place.“ - Graham Cluley Top reason to apply October, 2020’s Microsoft patches: Ping of Death Redux Microsoft is… read more »
  • How to extract sysdiagnose logs for forensic purposes on iOS

    Sysdiagnose logs allow developers to extract information from iOS devices, and it is used for understanding bug occurrences.However, this log is also useful for forensic purposes when a full device acquisition is not possible/available. Sysdiagnose logs generation Unlike crash Logs,… read more »
  • Privacy Roundup #16

    “If privacy is outlawed, only outlaws will have privacy.” - Philip Zimmermann Breach at food delivery service Chowbus reportedly affects hundreds of thousands of customers Two months after securing a $33 million funding round from investors, food delivery startup Chowbus is… read more »
  • Technology Roundup #16

    “First we thought the PC was a calculator. Then we found out how to turn numbers into letters with ASCII — and we thought it was a typewriter. Then we discovered graphics, and we thought it was a television. With… read more »
  • Cybersecurity Roundup #16

    “It takes 20 years to build a reputation and few minutes of cyber-incident to ruin it.” — Stephane Nappo Windows Subsystem for Linux 2 bypasses the Windows 10 Firewall The Windows Subsystem for Linux 2 will bypass the Windows 10… read more »
  • CloudBrute: a multi-platform Cloud Enumeration Tool

    CloudBrute is a multiple platform tool that finds and enumerates a target company’s cloud infrastructure, files, open buckets, applications, and databases hosted on top cloud providers (Amazon, Google, Microsoft, DigitalOcean, Alibaba, Vultr, Linode), and possibly applications behind proxy servers. The tool [1], developed in GO by security researcher… read more »
  • New Mimikatz update adds exploit for ZeroLogon (CVE-2020-1472) vulnerability

    Mimikat's developer Benjamin Delpy, has updated the latest version of the well-known tool to exploit the ZeroLogon vulnerability.… read more »
  • Red Commander: open source Red Team C2 Infrastructure

    Red Commander is a red team C2 infrastructure built in Amazon AWS using Ansible. The tool [1] is developed by Alex Williams, security consultant at GuidePoint Security, and can help pentesters improve their defensive responses but can also be used by adversaries to simulate their attacks.… read more »
  • Noctilucent brings back 'domain fronting' as 'domain hiding'

    At the DEF CON 2020, the security researcher Erik Hunstad has released a new tool that can help users to evade censorship and bypass firewalls to keep services up inside problematic areas of the globe.… read more »
  • Anomaly Six LLC: collecting and selling mobile phone location data using an SDK

    Anomaly Six LLC developed an SDK used by "more than 500 mobile applications", that collect data location and sells it. But, NSA comes to our aid!… read more »
  • “Singularity”: a lot of real instruments, in disguise

    In a previous post, I've talked about the idea of go back to record some songs using real instruments. On my new LP ”Singularity”, published on major streaming services today, I've recorded a lot of real instruments in disguise.… read more »
  • iOS Forensics: HFS+ file system, partitions and relevant evidences

    In order to perform a correct forensic analysis on a Apple device, a basic knowledge of storage, file allocation methods relevant files paths is always required.… read more »
  • Weekly Privacy Roundup #15

    “We will have more Internet, larger numbers of users, more mobile access, more speed, more things online and more appliances we can control over the Internet.” - Vinton Cerf… read more »