Browsing tag
Set of tools for security testing of Internet of Things devices using protocols like: CoAP, DTLS, HTCPCP, mDNS, MQTT, SSDP. Installation: Simply clone code from git: https://github.com/Samsung/cotopaxi Requirements: Currently Cotopaxi works only with Python 2.7.x, but future versions will work also with Python 3. If you have previous installation of scapy without scapy-ssl_tls, please remove it or […]
FATT is a script for extracting network metadata and fingerprints such as JA3 and HASSH from packet capture files (pcap) or live network traffic. The main use-case is for monitoring honeypots, but you can also use it for other use cases such as network forensic analysis. fatt works on Linux, macOS and Windows. Note […]
Security researchers discovered the biggest data breach in Biometric Security Platform BioStar 2 that leaks millions of users facial recognition records, fingerprints, log data, and other personal information. BioStar 2, a web-based biometric security smart lock platform by world’s biggest bio-access B2B company Suprema, and the platform used by UK Metropolitan police, defense contractors and […]
In a world where companies are hungry for user data and are adopting different mechanisms to legally or illegally get hold of it, privacy is a big concern. Advertisers often use unique identifiers like MAC addresses and IMEI numbers to form a profile for you. A technique called ‘device fingerprinting’ is used to collect data […]
OnePlus 7 Pro Fingerprint Scanner hacked within minutes using Fake Fingerprint that can be created using hot-glue due to inadequate security that is implemented in the OnePlus 7 Pro Fingerprinting unlock Feature. OnePlus, is a Chinese smartphone manufacturer based in Shenzhen, Guangdong, China and it is one of the leading Smartphone manufacturers in the world. […]
The condition of being anonymous is called anonymity – Let’s suppose you want to post the most anonymous comment on a social network imaginable. What kind of tools do you need for that? VPN? Tor? SSH tunnel? In fact, none of the above. It suffices to purchase a burner SIM card and a used smartphone […]
Once again, Mozilla has taken a leaf out of Tor browser’s handbook with the introduction of user anti-fingerprinting technique in Firefox 67 which is scheduled for a release this year in May. Dubbed ‘Letterboxing,’ this method protects against window-size related fingerprinting which is used for profiling and tracking users. For the uninitiated, browser fingerprinting means collection […]
“HASSH” is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints can be easily stored, searched and shared in the form of an MD5 fingerprint. What can HASSH help with: Use in highly controlled, well understood environments, where any fingerprints outside of a known good set […]
Fortify the security of any WordPress installation. This tool releases new versions on a regular basis. Make sure to update your dependencies frequently to get the latest version. Check out the changelog or CHANGELOG.md to learn about the new features. Installation Installing WPHardening requires you to execute one console command: $ pip install -r requirements.txt […]
Syhunt ScanTools 6.0 adds advanced fingerprinting capabilities, enhanced spidering, injection and code scan capabilities, and a large number of improved checks. Adds the display of Hybrid, Dynamic and Code detailed scan statistics to the command-line tools. New fingerprinting capabilities – Because of the so many vulnerability checks and mutations added to this version, we developed an advanced […]
Canvas fingerprinting relies on websites meaning able to receive data from HTML canvas details calmly. In future, Firefox users will be required to give their approval before that wrenching can take place, just as users of the Tor Browser are. The community in behavior to Tor Browser is no chance. That privacy-first browser is really […]
The Port Scan Attack Detector psad is a lightweight system daemon written in is designed to work with Linux iptables/ip6tables/firewalld firewalling code to detect suspicious traffic such as port scans and sweeps, backdoors, botnet command and control communications, and more. It features a set of highly configurable danger thresholds (with sensible defaults provided), verbose alert […]
Scannerl is a modular distributed fingerprinting engine implemented by Kudelski Security. Scannerl can fingerprint thousands of targets on a single host, but can just as easily be distributed across multiple hosts. Scannerl is to fingerprinting what zmap is to port scanning. Scannerl works on Debian/Ubuntu (but will probably work on other distributions as well). It uses […]
Short Bytes: A new research conducted at the Lehigh University has taken the browser fingerprinting to a whole new level. They have devised a method to create a digital fingerprint and identify 99.24% users, regardless of the web browser they are using. For this, they take various hardware and software features of the users’ device […]
Dropping a malicious USB key in a parking lot is an effective attack vector, as demonstrated by our recent large-scale study. This blog post follows up on the study by showing how reliable and realistic-looking malicious USB keys can be created. After discussing the pros and cons of the three types of malicious USB keys, […]
Short Bytes: While TOR software suite promises enhanced privacy and security, researchers have found new ways like TOR user fingerprinting to unmask the users. One such I.T. security expert has listed some advanced TOR user fingerprinting methods that exploit a user’s mouse movements and certain JavaScript functions. TOR browser is used by hundreds of thousands […]