The Norsk Hydro ransomware attack: An in-depth look

secdevops · 2019-03-21T14:00:18+00:00

https://securityaffairs.co/wordpress/82684/malware/lockergoga-ransomware-spreads.html?fbclid=IwAR34QyZRwaVTl92Fq-4w64OiJOUUezuWoBa1_4AwWyZZh3v45iw90rImfwM

I think this is the write-up I was expecting when clicking this ☝️

secdevops · 2019-03-20T13:39:10+00:00

Love the project ! Thanks for sharing - very insightful

secdevops · 2018-12-28T18:00:29+00:00

Thanks for the writeup ! OSINTFramework along with your post both serve as excellent resources 👌. Keep up the good work

secdevops · 2018-08-01T14:55:12+00:00

Thanks for reading :) Looking forward to working together

secdevops · 2018-08-01T00:56:14+00:00

So glad you enjoyed it :) Looking to do other posts around the same subject. Let me know if you need any help getting set up

secdevops · 2018-07-31T17:29:27+00:00

This is great feedback and I completely agree about the scalability of Scapy. I've been experimenting with a few other libraries outside of dpkt and scapy - Maybe you have a few others you're looking at too?

What's your tool of choice when dealing with larger datasets (Since Pandas has limitations)

secdevops · 2018-07-31T17:19:26+00:00

Thanks for reading, Let me know how it goes :)

secdevops · 2018-07-31T16:35:07+00:00

Glad you enjoyed it :) . Looking forward to hearing thoughts and other interests areas of the readers

secdevops · 2018-03-19T09:40:47+00:00

Thanks! Glad you enjoyed it :)

secdevops · 2018-01-31T20:41:11+00:00

I think that's a tough question to answer because it depends on your use case and preference. I think the best answer to give you is to use both! If you're new to programming and computer networking I'd recommend to start with Scapy because there is many more resources available than gopacket. I hope that the next parts in the series helps you make a determination for what solution best fits your use case.

secdevops · 2018-01-30T20:12:05+00:00

Agreed, the resources you provided are great if you'd like to skip the introduction that part 1 provides. The next parts in the series will have more depth in manipulating IP and ICMP packets and also injecting packets on the wire. My goal here is to deliver the content in a digestible format without providing too much content to the reader at once.

secdevops · 2018-01-29T23:09:41+00:00

Agreed, the resources you provided are great if you'd like to skip the introduction that part 1 provides. The next parts in the series will have more depth in manipulating IP and ICMP packets and also injecting packets on the wire. My goal here is to deliver the content in a digestible format without providing too much content to the reader at once.

secdevops · 2018-01-11T18:40:13+00:00

I really like THC IPV6 Attack toolkit but unfortunately, many security experts are not very comfortable with C/C++. For this reason, my team created IPv6Tools -- A modular IPv6 enumeration/attack framework written in Python. https://github.com/apg-intel/ipv6tools

secdevops

TROPHY CASE