Jesús Obrador Ayllón’s Post

Tracebox A Middlebox Detection Tool Middleboxes manipulates traffic for purposes other than simple packet forwarding and often transparently to the end-user (e.g. NAT, transparent proxies, DPI, etc.). Detecting such middleboxes is difficult today. https://lnkd.in/esZ9f8eM

In this recent video, Ruben @Dizzion gives a brief demo of #Liquidware #CommandCTRL and how it supports #workspaces on #Frame.

I post about Garage, and then sbc64 follows the links and comes back with wgautomesh, a tool by the same team: “A simple utility to help connect wireguard nodes together in a full mesh topology” Excellent! May be useful for some work at Fission. https://lnkd.in/gV3UJ6uP

In this recent video, Ruben @Dizzion gives a brief demo of #Liquidware #CommandCTRL and how it supports #workspaces on #Frame.

Small tip: AutoAnalysis with IDA can sometimes take quite some time, depending on the size of the binary. There are some tricks you can use to speed up the auto analysis. By closing all windows except for the "Output" window, you can speed up the analysis considerably. #reverseengineering #hexrays #malwareanalysis #infosec

🎈 The web server on the default port 80 hosts a demo virtual host, accessible with guest credentials. While reviewing the links, I discover a MinIO Metrics section that is visible due to a Line Feed (LF) injection vulnerability. This allows me to analyze the logs, leading to the discovery of a new virtual host. This new virtual host uses the MinIO platform and reveals the service version, which is vulnerable to CVE-2023-28432. This is an information disclosure vulnerability that exposes the root user's credentials of the platform. After a thorough analysis, I determine that a specific version of a bucket leaks critical information related to an identity-based secrets and encryption management system. Finally, privilege escalation is achieved by leveraging a program that can be executed with elevated privileges by a user.

One of the new features of BINARLY Transperency Platfrom v2.0 is the secure-by-design practices when measuring the defense in depth maturity. Our Binary Intelligence Technology measures the mitigation code coverage inside the binary. It provides visibility on weak code places not protected by mitigations, such as stack canaries. #SupplyChainSecurity #SecureByDesign #VulnerabilityManagment

Your files deserve more than just storage; they deserve a vault. Cyphertop Safe Vault transforms your devices into impenetrable safes in just a few steps, ensuring your sensitive data remains locked away from prying eyes. 🏦🔒 #DigitalFortKnox #Cyphertop

Good technical breakdown of the meltdown resulting from the latest Crowdstrike update (link in comments). Tl;dr #kerneldrivers open up all kinds of risks – including system degradation or even outages. When we built Senser, we were aware of these risks – from our own experience putting out fires as a result of errors in driver code. That's why we used #eBPF tech for lightweight, non-intrusive data collection. eBPF programs are executed in an isolated environment (so they can’t access or modify sensitive kernel data structures) and go through a verification process before they are loaded into the kernel. Of course comprehensive data collection is just the first step in smart observability. But today's meltdown shows the devastating cost of outages and the risks of kernel drivers – a good reminder of the benefits of safe, secure, and lightweight system monitoring.

Dynabook Accidental Damage Protection Pro Program – safeguard your laptop with unparalleled coverage against unexpected mishaps! Don't let accidents disrupt your productivity! Explore the terms and conditions, and embark on worry-free computing. #DynabookProtection #AccidentalDamageProtection #LaptopSecurity #TechInnovation #PeaceOfMind #Dynabook #Dynabooklaptop