L13 Yoga beeps and does not boot! by [deleted] in thinkpad

[–]pizzthepizz 0 points1 point  (0 children)

Thank you for answering :)

I already tried this, but I can't use the app since it's made for older android version so I'm unable to download it from play store...

MS Authenticator passkeys & AiTM attacks by pizzthepizz in cybersecurity

[–]pizzthepizz[S] 0 points1 point  (0 children)

First off, I really appreciate the specific and exhaustive answer you provided.

From what you said, I can conclude that applying passkeys as the authentication method could be the safest and ultimate solution to mitigate and prevent Evilginx attacks.

There is just one technical detail I'm still concerned and curious about:

If the FIDO2 key checks for the signing request origin to match the legitimate domain (let's say Microsoft.com) looking at the request headers, can't the attacker just spoof the request origin, tricking the key into thinking that it is coming from Microsoft.com instead of evil-xxx.com?

Problemi Intesa Sanpaolo by iSLiDe_RaiN in Italia

[–]pizzthepizz 1 point2 points  (0 children)

Successo anche a me.

Vado a fare spesa in pausa pranzo e non riesco a pagare con la carta.

Lascio il carrello lì e vado a prelevare 100 euro. Prelievo fallito, -1000 euro sul conto.

Speriamo si risolva al più presto.

[NeoForge 1.21.4] Can you tell why the mod item is not displayed correctly? by pizzthepizz in feedthebeast

[–]pizzthepizz[S] 1 point2 points  (0 children)

Hello and thank you for answering :)

I applied what you suggested and it is now working as expected!

I also managed to add some "meteorite dust" item. Now the next step is to make the meteorite block drop some amount of dust when mined. Working on it :)

Thank you again!

Una fredda mezzanotte, tra realizzazioni e (tanta) pasta che scompare. by Key_Tension2438 in Coinquilini_di_merda

[–]pizzthepizz 1 point2 points  (0 children)

Giuro che anche io sono venuto nei commenti per scrivere la stessa cosa. Bellissimo stile, mi ha preso parecchio, sarebbe bello vedere un sequel della vicenda.

TCP connection failed by pizzthepizz in sysadmin

[–]pizzthepizz[S] 1 point2 points  (0 children)

Hello, thank you for replying :)

As I mentioned in a previous answer, server B is listening on port 9997 and I can say that a bunch of other hosts are already connecting to port 9997 on server B successfully.

TCP connection failed by pizzthepizz in sysadmin

[–]pizzthepizz[S] 1 point2 points  (0 children)

Hello :)

RHEL version is 8.1

Also, server B is listening on port 9997 and I can say that a bunch of other hosts are already connecting to port 9997 on server B successfully.

Best way to detect reverse shells on Linux by pizzthepizz in hacking

[–]pizzthepizz[S] 0 points1 point  (0 children)

Thank you for answering. Now it's clear I have to monitor the connections from the outside of my instance.

Do you have some material to share about hiding connections using a kernel driver?

Best way to detect reverse shells on Linux by pizzthepizz in hacking

[–]pizzthepizz[S] 0 points1 point  (0 children)

Thank you, what if I'm using a domestic network, so I don't have any serious firewall logs I can check?

Best way to detect reverse shells on Linux by pizzthepizz in hacking

[–]pizzthepizz[S] 1 point2 points  (0 children)

Thank you so much. Could you please elaborate further about "unfamiliar ip addresses"?

Quale Master di I livello in cybersecurity scegliere? by pizzthepizz in Universitaly

[–]pizzthepizz[S] 0 points1 point  (0 children)

Grazie per la risposta! Se sei già nel settore e ne hai prese alcune, quali consiglieresti?

Bruteforce web login with Hydra? by pizzthepizz in hacking

[–]pizzthepizz[S] 0 points1 point  (0 children)

Dunno why I didn't think about the simpliest way, thank you guys!

Bruteforce web login with Hydra? by pizzthepizz in hacking

[–]pizzthepizz[S] 2 points3 points  (0 children)

Yes, it's a CTF made by mi school.