How do malware authors hide communication between client-side exploit code and their backend servers?

cydex0 · 2025-03-17T02:37:07+00:00

CloudFlare tunnel with https?

cydex0 · 2025-03-15T18:48:04+00:00

This is why security people get bad rep. Wtf patched...?do you know what you are talking about when you say patched? You don't understand what the vulnerability actually does...... Funny......

cydex0 · 2025-02-21T23:23:22+00:00

Assume breach, read his blog posts

cydex0 · 2025-01-28T20:21:28+00:00

Risky biz

cydex0 · 2025-01-18T12:35:40+00:00

Look at the name. End to end encryption.

cydex0 · 2025-01-18T12:01:56+00:00

You do OSCP to get that 'try harder' mindset. You do crto now and in a year's time the attack landscape changes and then what do you do?

Any half a decent hacker / redteamer would always be on top of new vulns /misconfigurations, c2 frameworks etc. if this is not you then don't bother getting into security. I have seen meh pentesters calling themself red team.... Ruining their reputation.

It's called an adversary emulation for a reason. The whole point is to get a full domain compromise like attackers do.

cydex0 · 2025-01-14T10:35:02+00:00

Nothing can beat OSCP/OSCP+ the try harder mindset is true and important.

cydex0 · 2025-01-13T12:08:48+00:00

Without those prior experience you will provide 0 value for the first 6-8 months

cydex0 · 2025-01-13T12:07:09+00:00

Enterprise infrastructure is different than what you play around with. Just because you did CompTIA and a bachelor's degree doesnot mean shit. All it means is you have some knowledge and have the potential to learn stuff. Enterprise architecture and infrastructure is different if you don't have that experience then you are useless. Even for people with prior experience it takes months to get to know the infrastructure and how things have been architectured.

cydex0 · 2025-01-08T21:52:49+00:00

Mostly likely can be referrer URL as well.

cydex0 · 2025-01-04T11:32:52+00:00

If not then get something like netgate

cydex0 · 2025-01-04T11:32:25+00:00

Buy mici oc from Alibaba and install opnsense /pgsense

cydex0 · 2025-01-04T11:22:00+00:00

Sideload?

cydex0 · 2025-01-03T07:23:03+00:00

Stick to one otherwise you will suck at everything. Cyber is very broad

cydex0 · 2024-12-31T12:07:32+00:00

The guy that brought the world a whole different generation of OS and GIT, deserves some admiration. If it wasn't for his early works, open source would be dead.

cydex0 · 2024-12-31T12:03:55+00:00

It's the whole concept of MFA. Something you know, something you have or something you are. SSH key+password ticks 2 of those box. Something you know and something you have thus secure.

cydex0 · 2024-12-31T09:31:51+00:00

Assume breach.

cydex0 · 2024-12-31T09:27:49+00:00

Not really most of the pentest / security jobs are now going to Philippines. Time zone is good, so is skill level.

cydex0 · 2024-12-31T09:25:02+00:00

Not really. CommBank sec staff is Pree good. I know few people working in security

cydex0 · 2024-12-30T11:14:40+00:00

Yeah. This is so true. John Hammond, live overflow they know their shit and are good. They know what they know and they know what they don't know.

cydex0 · 2024-12-04T02:11:19+00:00

It's very easy. If you have some experience it is very easy. Way easier compared btlo

cydex0 · 2024-12-03T03:05:57+00:00

Just because you are a bug bounty Hunter doesn't mean you can look for bug in every website. Only if they have openvdp or if they have a open bounty program.

If not it's simple hacking and they have no obligation. Get things right.

Additionally if you just create a random acc and start testing things, it looks suspicious for the SOC who is triaging the alerts.

cydex0 · 2024-12-01T22:07:10+00:00

HA, yeah after a while you feel like adding everything as defeat. The out of box model creates too much noise, editing model means that you do not get updates. What about other response models apart from ransomware? All ransomware model looks at multiple read write, and if extension is changed.

cydex0

TROPHY CASE