Author, Ethan Robish, How-To encryption, Let's Encrypt, SSL/TLS certificate

How Does Let’s Encrypt Gain Your Browser’s Trust?

Ethan Robish // Let’s Encrypt is a free service that allows you to obtain a free (as in beer) SSL/TLS domain validation certificate to use as you wish.  Here is what […]

Read the entire post here

News Darkweb Scanning, Dropbox, Election 2016, Election Fraud, Linux, network packet filtering support cgroups, OnionScan, Voter Fraud

Lawrence’s List 090216

Lawrence Hoffmann // Election fraud is something I’ve mentioned here recently. The reality we must face here is that any time a digital system is used for voting there is […]

Read the entire post here

Author, Beau Bullock, Brian Fehrman, Red Team, Red Team Tools how to bypass Anti Virus, How to bypass AV, How to bypass whitelisting, PowerShell, PowerShell without PowerShell, What to do when PowerShell is banned

Powershell Without Powershell – How To Bypass Application Whitelisting, Environment Restrictions & AV

Brian Fehrman (With shout outs to: Kelsey Bellew, Beau Bullock) // In a previous blog post, we talked about bypassing AV and Application Whitelisting by using a method developed by Casey Smith. In […]

Read the entire post here

Author, InfoSec 201, Jordan Drysdale apricorn, bash history, evading content filters with SSH, exif-tool, histcontrol, peach jam, personal google maintenance, photo scrubbing, pickles, yubico, yubikey

Reminders – Simple Security and Finding Sanity In the Digital Age

Jordan Drysdale // As I wander through life, in what now seems like a world gone entirely mad, disconnecting from digital is my newest hobby. Information overload constantly smashes us […]

Read the entire post here

C2, Red Team C2, Google Drive

Google Docs becomes Google SOCKS: C2 Over Google Drive

Luke Baggett // If you’re monitoring a network with internet access, it’s almost inevitable that you’re going to see a lot of traffic to and from Google servers. Blending in […]

Read the entire post here

InfoSec 101, News 4A, Cryptography, Election2016, Gov Hacking, hardware hacking, Microsoft, PowerShell, reverse engineering, Tinfoil Hat, Weird Stuff

Lawrence’s List 081916

Lawrence Hoffman // So Microsoft is open sourcing PowerShell and putting it on Linux. Realistically Linux already has a full suite of administrative tools and some very powerful scripting languages […]

Read the entire post here

How-To Linus, n00b, red tape, VPN

It’s Always Nice to Have Cron-ies!

Rick Wisser // I have been asked by some friends, (not very Linux proficient friends) to share this. I thought I would create a blog post and share with all. […]

Read the entire post here

Author, John Strand, Red Team, Red Team Tools, Webcasts Man-in-the-Middle, MITM

Webcast Recording: Man in the Middle Attacks

In this webcast we walked through the current super cool crop of MITM tools. We looked at Bettercap, MITMf and discussed LLMNR and WPAD poisoning attacks.  Also, this was a new […]

Read the entire post here

InfoSec 101, News Apple, boot key, bug bounty, Exodus, Microsoft, TCp attack

Lawrence’s List 081216

Lawrence Hoffmann // So, Apple announced a new bug bounty program at BlackHat, and there are some interesting deviations from the norm in their plan to implement and pay out. […]

Read the entire post here