white2hack 📚

Windows_Forensics Building lab and Essential investigation by Ahmed Elkady #forensic

CISSP Concepts Guide by M.Waleed Khaliq, 2023 #useful

Для всех новых подписчиков w2hack и тех кто еще по каким-то причинам не знает, есть отдельный авторский канал CyberSecBastion посвященный исключительно материалам относящимся к вопросам DevSecOps, K8s security, Cloud AWS, Azure, GCP, Secure SDLC, API security and AppSec. Весь контент представлен только на английском языке. С текущего момента разрешен репост всех материалов Присоединиться! Dear friends, for all new subscribers w2hack channel and those who still don't know for a some reason, exists the separate CyberSecBastion channel dedicated exclusively to materials related to DevSecOps, K8s security, Cloud AWS, Azure, GCP, Secure SDLC, API security and AppSec issues. All content is presented in English only. And, good news, from now on, sharing and repost of all materials is allowed. Welcome onboard! #info

Malware Analysis Techniques. Tricks for the triage of adversarial software by Dylan Barker #book #malware

SSH penetration test scenario The SSH protocol, also known as Secure Shell, is a technique for secure and reliable remote login from one computer to another. It offers several options for strong authentication, as it protects the connections and communications\ security and integrity with strong encryption. It is a secure alternative to the nonprotected login protocols (such as telnet, rlogin) and insecure file transfer methods (such as FTP). #pentest

A Journey Into a Red Team by Charles F. Hamilton, 2023 #pentest

Inside the Mind of a Hacker: 2023 Edition Bugcrowd, one of the world's largest crowdsourced security platforms managing many bug bounty and vulnerability disclosure programs, analyzed 1000 survey responses from hackers on it's platform. These responses, combined with millions of proprietary data points on vulnerabilities collected across thousands of programs, were used to create this year's "Inside the Mind of a Hacker" report. Interesting stats include: ➡️ 5% of hackers are under 18, and only 10% over the age of 35 ➡️ 93% of hackers are fluent in at least two languages ➡️ India and Bangladesh are the top 2 countries where hackers live ➡️ 96% are male ➡️ 77% of hackers report working in IT or cybersecurity ➡️ 75% of hackers identify non-financial factors as their main motivators ➡️ 91% of hackers expect AI to amplify the value of their work ➡️ 72% of hackers doubt AI will ever match their human creativity Download report #useful

IPv6 Attacks (Active Directory) DNS Attack or DNS Spoofing its an attack that try to spoof the DNS traffic to allows an attacker to gather very important information about the network. If IPv6 is turned on the attacker can even spoof the DNS traffic for a Domain Admin and with certain tools, create an user with exclusive privileges. Sometimes a bad practice is to store the password in the field of "description", that kind of issues allows to an attacker to break into the network in an easier way. #pentest

Первыми сломались те, кто верил, что скоро все закончится. Потом – те, кто не верил, что это когда-то закончится. Выжили те, кто сфокусировался на своих делах, без ожиданий того, что ещё может случиться. (с) Виктор Франкл, Австрийский психотерапевт, выживший в нацистском лагере. Топите за свои цели что бы не происходило вокруг! Ваша жизнь - ваша ответственность! Возможности всюду! Всем отличной недели!🤝

AllEng - Всем, кто учится Учебные пособия и тематические ссылки для школьников, студентов и всех, занимающихся самообразованием. Главная страница Зеркало #education #useful

Всем, кто учится. - alleng.me AllEng - Всем, кто учится Учебные пособия и тематические ссылки для школьников, студентов и всех, занимающихся самообразованием.

Simplified Implementation of the Microsoft SDL, Updated November 4, 2010 #SSDLC #docs