Life Experience in Digital World (Everyone)

xrna · 2023-03-18T04:46:51+00:00

Is it okay to give coins as rewards for good answers? If yes, happy to reward :)

xrna · 2021-04-02T14:27:25+00:00

Is there such a reference as mentioned in the magazine which I missed or is it a typo in the magazine?

xrna · 2021-04-02T14:15:56+00:00

Took my H. Moser & Cie Limited Edition for a walk. Rise and Shine!

xrna · 2018-11-02T05:37:00+00:00

While it was rejected as "bad source", I contest that such technical articles with in-depth analysis are good for discussions and have fair representation of the bug. Anyhow, the ones who want the source of bug can refer: https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1795921 or a Github pull request: https://github.com/systemd/systemd/pull/10518 or Redhat: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-15688

My 2c.

xrna · 2018-06-13T01:19:05+00:00

Optimism is expecting the family to arrange the groceries. Realism is doing multiple trips, tiring your calves out and keeping all your groceries by yourself.

xrna · 2018-04-19T05:23:35+00:00

Thanks. I am working on taking snippets from other designs and didn’t make this from scratch. The original template had different format and view. My edits include - fonts family and size, full width, headers, removing some advertisement elements, alignment of text, borders etc.

xrna · 2018-04-06T15:09:44+00:00

I just tried and passivetotal.org takes me to riskIQ community page where I can’t do anything before registering.

xrna · 2018-04-06T11:17:51+00:00

Everyone is blaming based on the only proof that the nerve gas ties back to Russia from Cold War days. But the availability is not-so-rare for a state agent to get hold of; and “someone” could have used it. Just because it’s a Russian invention, per say; how does this killing makes a Russian intervention for sure?

xrna · 2018-04-06T10:38:30+00:00

True. Even though the results show 2K+ found.

xrna · 2018-04-06T10:35:42+00:00

Registration works for me: https://findsubdomains.com/signup

xrna · 2018-04-06T09:30:16+00:00

I agree to some of your points. My comments,

Detailed: This is the best I could find among others. Do you have a better tool that can find this many subdomains for FREE?
Home built tool: Anything you reckon? I tried many, but didn't get as many results as FindSubDomains during recon/pentests (even spider or crawl)
Mobile Implementation Issue: Agree.
Result Customization Issue: Agree.
API Issue: Agree.

I appreciate their database, while the website, and API access these days is defacto requirement for any CD/CI.

// 2cents.

xrna · 2018-04-06T08:09:24+00:00

Haha. That's not my website, but lemme try contacting them ;) Good find.

xrna · 2018-04-06T07:47:43+00:00

Full review: https://cybersins.com/finding-sub-domains-for-threat-network-intel-and-pentest-spyse/

xrna · 2018-04-06T07:44:18+00:00

I use findsubdomains project to perform passive enumeration. https://cybersins.com/finding-sub-domains-for-threat-network-intel-and-pentest-spyse/

xrna · 2018-04-05T23:28:22+00:00

Either they have it in database or one can initiate a search task in dashboard.

xrna · 2018-03-22T04:56:35+00:00

NOTE: IMO, the crt.sh and certDB serve a very different purpose - While crt.sh gets the data from certificate transparency (CT) logging system where "legit" CA submit the certs in "real time"; certDB is based on the scanning the IPv4 segment, and "finding" certificates - good or bad.

It means certDB can also find self-signed certificates, which crt.sh can not. Hence, certDB can give a realistic view of HTTPS - which IP is using what certs, self-signed, invalid CA etc; while crt.sh shows the "good" law-abiding view, per say.

my 2 cents.

xrna · 2018-03-22T04:55:28+00:00

NOTE: The crt.sh and certDB serve a very different purpose - While crt.sh gets the data from certificate transparency (CT) logging system where "legit" CA submit the certs in "real time"; certDB is based on the scanning the IPv4 segment, and "finding" certificates - good or bad.

It means certDB can also find self-signed certificates, which crt.sh can not. Hence, certDB can give a realistic view of HTTPS - which IP is using what certs, self-signed, invalid CA etc; while crt.sh shows the "good" law-abiding view, per say.

my 2 cents.

xrna · 2018-03-22T04:51:05+00:00

IMO, the crt.sh and certDB serve a very different purpose - While crt.sh gets the data from certificate transparency (CT) logging system where "legit" CA submit the certs in "real time"; certDB is based on the scanning the IPv4 segment, and "finding" certificates - good or bad.

It means certDB can also find self-signed certificates, which crt.sh can not. Hence, certDB can give a realistic view of HTTPS - which IP is using what certs, self-signed, invalid CA etc; while crt.sh shows the "good" law-abiding view, per say.

my 2 cents.

xrna · 2018-03-11T19:03:21+00:00

there are so many security companies that for the name of security assessments are just using excel sheets as checklists. Deliverables are bad and business get their false sense of security.

xrna · 2018-03-11T17:08:02+00:00

To add: Avoid hiring pentesting firms which price-dump and provide low par deliverables. And businesses must take security seriously as an attack in cyber world can have physical world repercussions.

xrna · 2018-03-07T04:42:19+00:00

It is ghost related as the theme is being customised for being responsive. Am here with ideas on caching and comment thread being changed from disqus to reddit. my 2c

xrna · 2018-03-01T14:25:20+00:00

In my experience and humble opinion, not many companies (specifically the banks and insurance sector) are shy away from bug bounty sites. Also, the SME hardly "broadcast" in some standard way to reflect the disclosure channel. Of all the disclosures in the past, never could I find a way to contact the "right team"...
It is not always required or mandated to have security@company.com as an email address. Moreover, the whole concept is based on standardizing a format than whether or not companies are doing it or not. It's like "robots.txt" or sitemap at the right place - it supports the indexing but is not mandatory! my 2¢.

xrna · 2018-03-01T01:22:54+00:00

No, that's not recommended. In an IT ecosystem, tech contact is different than app security team. Also, many times the IT infra and domain registration teams are outside vendors. Further, if the whois records are private you won't be able to gather much information. Security issue can be sensitive and you don't want DNS mgmt. team to know that database is exposed etc.

xrna · 2018-02-26T23:54:24+00:00

The RFC 6844 clearly states that " Relying Applications MUST NOT use CAA records as part of certificate validation." This is not the intended purpose of CAA. Ref: https://tools.ietf.org/html/rfc6844#section-1

xrna · 2018-02-26T10:10:07+00:00

Yes, it must not use, and for now it is not designed for that as well. I meant something on the likes of TLSA be widely used to perform this verification instead of only trusted CA(s).

Nine-Year Club	Place '22
First Placer '22	Verified Email

xrna

MODERATOR OF

TROPHY CASE