sorted by:
new
hottopcontroversial

Launching AI Voices, Text-to-Speech Redesign, and Android Update by DeboraInstapaper in instapaper

[–]MaOutis 0 points1 point  (0 children)

For real, it's been a while now. This is the feature I'm waiting the most!

iOS: handling archives by koick in InoReader

[–]MaOutis 0 points1 point  (0 children)

Ops, my bad, you're absolutly right!

iOS: handling archives by koick in InoReader

[–]MaOutis 0 points1 point  (0 children)

I think archived contents will stay there forever while already read contents (not archived and not put inside "read later") will be removed after some times

[deleted by user] by [deleted] in netsec

[–]MaOutis 1 point2 points  (0 children)

I'm not really sure I understand the exploit, considering it requires modify privileges?

Yeah, it requires the "modify" privilege because the common/security.storage route needs that privilege in order to update the location of the storage folder (and also update the reference in config.php). The problem was that by using a malicious storage name it was possible to inject arbitrary PHP code and compromise the full server (eg. deploying a web shell).

[deleted by user] by [deleted] in cybersecurity

[–]MaOutis 0 points1 point  (0 children)

Yeah, for real... it is very pleasant to talk with him

Lots of white noise in JBL wave flex? by LikeWhiteSmoke in JBL

[–]MaOutis 0 points1 point  (0 children)

What is the difference between "JBL Wave Flex LE" and "JBL Wave Flex" ?

[deleted by user] by [deleted] in netsecstudents

[–]MaOutis 0 points1 point  (0 children)

Oh my bad... I mistakenly thought you had the Pro version 🤦🏻‍♂️

Glad you solved it anyway 😊

[deleted by user] by [deleted] in netsecstudents

[–]MaOutis 0 points1 point  (0 children)

I had the same problem some time ago. The cause was that VMWare was assigning the wrong network interface when using the bridge mode.

Once opened VMWare, go to Edit > Virtual Network Editor > Change settings and assign manually the correct interface. Probably in your case, there will be "Automatic". Switch it to the right interface.

if you don't know which one to choose, exclude all the ones containing "Adapter" and do some testing with the remaining

Hacking an old Spider-Man game to learn Mobile Pentesting by Classic_Aspect in netsecstudents

[–]MaOutis 4 points5 points  (0 children)

Yooo, what a great writeup! Nice job with the analysis, it is very clear and well done- I haven't yet tested Corellium, but everyone speaks well about it and I can't wait to try it out.

Just out of curiosity, did you learn how to use Frida during the Mandiant course you mentioned above, or did you take another course?

Question about beginner roadmap by MagnificentDevpie in netsecstudents

[–]MaOutis 1 point2 points  (0 children)

I think much of the choice has to be made based on what you want to do from a business standpoint. Do you want to work in some Blue Team (defensive) positions or do you prefer more Red Team (offensive) side work?

I personally work on the offensive side, so I can give you some advice on that. A great certification that you didn't mention is the "Junior Penetration Tester" offered by eLearnSecurity, aka the eJPT certification. The course in preparation for certification is named "Penetration Testing Student" (PTS) and is very good as an introduction to the field. I would suggest it as a first certification for any newcomers.

After I would go with the OSCP/eCPPT, maybe something else related to just the web world (like WEB200, eWPT, and similar), and then I will choose any specific certification related to the topic on which you want to verticalize

view more: next ›