background preloader

Secu_USB

Facebook Twitter

Buttercup. Conférences. Hash & Validate - Online MD5, SHA1, SHA256 and CRC32 file hasher. Blog de Gentil Kiwi. The No More Ransom Project. Tools. FOCA. FOCA includes a server discovery module, whose purpose is to automate the servers search process using recursively interconnected routines. The techniques used to this end are: Web SearchSearches for hosts and domain names through URLs associated to the main domain. Each link is analyzed to extract from it new host and domain names. DNS SearchEach domain is checked to ascertain which are the host names configured in NS, MX, and SPF servers to discover new host and domain names.

IP resolutionEach host name is resolved by comparison to the DNS to obtain the IP address associated to this server name. PTR ScanningTo find more servers in the same segment of a determined address, IP FOCA executes a PTR logs scan. Bing IPFor each IP address discovered, a search process is launched for new domain names associated to that IP address. Common namesThis module is designed to carry out dictionary attacks against the DNS. Virtual Private Network Service Provider. The App I Used to Break Into My Neighbor’s Home. When I broke into my neighbor’s home earlier this week, I didn’t use any cat burglar skills.

The App I Used to Break Into My Neighbor’s Home

I don’t know how to pick locks. I’m not even sure how to use a crowbar. It turns out all anyone needs to invade a friend’s apartment is an off switch for their conscience and an iPhone. This was done politely: I even warned him the day before. KeyMe: Copy Keys, Solve Lockouts. ABUS KeyGarage™ 767 (53507) Niara – Use Cases. Total Security Management. Parrot Security. Cloud Pentesting Parrot Cloud is a special edition of our OS specifically designed for servers, it consists on a lightweight parrot system without graphic interfaces, wireless and forensic tools and any other tools that can be considered useless in a remote-controlled virtual environment.

Parrot Security

Concept The idea of Parrot Cloud is to have a VPS or a dedicated server with a special operating system full of useful security tools, neither relying all the dirty work to your local machine nor relying the security of your confidential data to a 3rd party provider. Parrot Security OS - Une autre distrib pour faire de la sécu. On connait tous Kali, la distrib orientée sécu mais en voici une autre baptisée Parrot Security OS qui permet aussi de faire du pentest, du forensic, du reverse engineering, de protéger son anonymat, de faire du chiffrement, de coder...etc.

Parrot Security OS - Une autre distrib pour faire de la sécu

Basée sur une Debian, Parrot Security OS, embarque des tas d'outils sympa dont vous pouvez retrouver la liste ici. iPhone / iPad L2TP Client Setup - SoftEther VPN Project. This document describes how to connect to your SoftEther VPN Server by using the L2TP/IPsec VPN Client which is bundled with iOS.

iPhone / iPad L2TP Client Setup - SoftEther VPN Project

On this instruction, every screen-shots are taken on iOS 6. Other versions of iOS are similar to be configured, however there might be minor different on UIs. These screen-shots are in English version of iOS. If you use other language, you can still configure it easily by referring the following instructions. 1. From the iOS main screen, start the "Settings" application. OpenVPN project. OpenVPN is entirely a community-supported OSS project which uses the GPL license.

OpenVPN project

The project has many developers and contributors from OpenVPN Technologies, Inc and from the broader OpenVPN community. In addition, there are numerous projects that extend or are otherwise related to OpenVPN. Your support can go a long way towards ensuring OpenVPN's continuing development, including staying on top of security issues, maintaining a rigorous testing program, adding new features, improving documentation, and providing technical support. SoftEther VPN Open Source - SoftEther VPN Project. Sans titre. The following outlines the best practices for choosing the appliance best suitable for your environment.

sans titre

Feature Considerations Most features do not factor into hardware sizing, although a few will have a significant impact on hardware utilization: VPN - Heavy use of any of the VPN services included in the pfSense software will increase CPU requirements. Encrypting and decrypting traffic is CPU intensive. The number of connections is much less of a concern than the throughput required. The Secret Surveillance Catalogue. Samy Kamkar: PoisonTap - exploiting locked computers over USB. Created by @SamyKamkar || When PoisonTap (Raspberry Pi Zero & Node.js) is plugged into a locked/password protected computer, it: emulates an Ethernet device over USB (or Thunderbolt)hijacks all Internet traffic from the machine (despite being a low priority/unknown network interface)siphons and stores HTTP cookies and sessions from the web browser for the Alexa top 1,000,000 websitesexposes the internal router to the attacker, making it accessible remotely via outbound WebSocket and DNS rebinding (thanks Matt Austin for rebinding idea!)

Samy Kamkar: PoisonTap - exploiting locked computers over USB

Live demonstration and more details available in the video: PoisonTap evades the following security mechanisms: Inverse Path - USB armory. The USB armory from Inverse Path is an open source hardware design, implementing a flash drive sized computer.

Inverse Path - USB armory

The compact USB powered device provides a platform for developing and running a variety of applications. The security features of the USB armory System on a Chip (SoC), combined with the openness of the board design, empower developers and users with a fully customizable USB trusted device for open and innovative personal security applications. The hardware design features the NXP i.MX53 processor, supporting advanced security features such as secure boot and ARM® TrustZone®. The USB armory hardware is supported by standard software environments and requires very little customization effort. In fact vanilla Linux kernels and standard distributions run seamlessly on the tiny USB armory board. The USB armory board has been created by Inverse Path to support the development of a variety of security applications.

Reporting: Export Kibana Visualizations. Logstash. An Introduction to the ELK Stack (Now the Elastic Stack) Most Recent Getting Started On Demand Videos: Looking for a hosted & managed solution?

An Introduction to the ELK Stack (Now the Elastic Stack)

Check out the Elastic's 14-Day Free Cloud Trial. By combining the massively popular Elasticsearch, Logstash, and Kibana (what was the ELK Stack is now the Elastic Stack), Elastic has created an end-to-end stack that delivers actionable insights in real time from almost any type of structured and unstructured data source.

Built and supported by the engineers behind each of these open source products, the Elastic Stack makes searching and analyzing data easier than ever before. Thousands of organizations worldwide use these products for an endless variety of business critical functions. And we'd like to show you how the Elastic Stack will make your life better, too. During this video, you will be treated to: An Introduction to the ELK Stack (Now the Elastic Stack) Tutoriel. Rufus - Create bootable USB drives the easy way.

Penetration Testing and Ethical Hacking Linux Distribution. Tools for a Safer PC. An important aspect of securing any system is the concept of “defense-in-depth,” or having multiple layers of security and not depending on any one approach or technology to block all attacks.

Tools for a Safer PC

Here are some links to tools and approaches that I have found useful in stopping malware from invading a PC. Your mileage may vary. Learn, Memorize, Practice the 3 Rules Follow Krebs’s 3 Basic Rules for online safety, and you will drastically reduce the chances of handing control over your computer to the bad guys. In short, 1) If you didn’t go looking for it, don’t install it; 2) If you installed, update it. 3) If you no longer need it, get rid of it! How France's TV5 was almost destroyed by 'Russian hackers' Image copyright Getty Images A powerful cyber-attack came close to destroying a French TV network, its director-general has told the BBC. TV5Monde was taken off air in April 2015. A group calling itself the Cyber Caliphate, linked to so-called Islamic State, first claimed responsibility. But an investigation now suggests the attack was in fact carried out by a group of Russian hackers.

The attack used highly targeted malicious software to destroy the TV network's systems. Uniformatic. Boutique de Query Informatique - Clés USB sécurisées chiffrées. Classifier les actifs pour analyser les risques - Cases. Home - SECURITYMADEIN.LU. CIRCL » CIRCLean - USB key sanitizer. CIRCLean Malware regularly use USB sticks to infect victims and the abuse of USB sticks is a common vector of infection (as an example Lost USB keys have 66% chance of malware).

CIRCLean is a independent hardware solution to clean documents from untrusted (obtained) USB keys / USB sticks. The device converts automatically untrusted documents into a readable format and stores these clean files on a trusted (user owned) USB key/stick. The code runs on a Raspberry Pi (a small hardware device), which also means it is not required to plug or open the original USB key on a computer. CIRCLean can be seen as kind of air gap between the untrusted USB key and your operational computer. CIRCLean does not require any technical prerequisites of any kind and can be used by anyone. Usage CIRCLean is designed to be used by everyone and the following visual shows how to use in 8 easy steps. The visual usage HOWTO of CIRCLean is available in vertical PDF format and horizontal PDF format. Charte de sécurité : 11 commandements - Cases. Se protéger - Cases. Felony - Pour se mettre au chiffrement avec PGP en toute simplicité.

PGP c'est le pied quand il s'agit de chiffrement. Mais ce n'est pas forcement simple à prendre en main par tout le monde. Trials and Freeware Software. Page 4 sur 1711 « Upgrade your mind. Vous connaissez sans doute le HTTP2 qui résout pas mal de soucis qu'avait le HTTP 1.1 sorti en 1999. Pour résumer, les requêtes en HTTP2 peuvent être envoyées en rafale durant la même connexion TCP (multiplexage) et les réponses peuvent être reçues dans le désordre, éliminant ce besoin de connexions multiples entre 1 client et le serveur. Le client (donc le navigateur) peut indiquer au serveur quelles sont les ressources qui sont le plus importantes pour lui, afin de les recevoir en priorité.

Comment fonctionne l’itinérance de profil utilisateur ? Les profils itinérants de Microsoft fournissent aux administrateurs une option de base pour offrir à leurs utilisateurs leurs données et réglages personnels sur n’importe quel appareil ou poste de travail virtuel connecté au réseau de l’entreprise. Windows maintient un profil pour chaque utilisateur ouvrant une session. Le dossier du profil contient des données et des réglages spécifiques à l’utilisateur, comme ceux des applications, l’historique de navigation, les documents, les photos, et bien plus encore. Cinq questions brulantes sur la redirection USB. Disable USB Flash Drives. Update 1/18/2007 11:01 PM EST: I have received a few questions about this method – no it will not disable mice, or keyboards.

It only disables storage devices attached to the USB port. This includes hard drives, flash drives, and any other type of USB storage device. And yes, if the user has administrator access they can reverse the changes. Cadenas usb lindy. Disable USB Flash Drives.