MastodonTech.de

HiSolutions📢Neu im Research-Blog: Windows-Angriffe entgegen der VertrauensstellungWindows Domänen lassen sich durch Vertrauensstellungen zusammenbringen. Wird der Zugriff nur in eine Richtung benötigt, kann man das Vertrauen auch nur einseitig aussprechen – aber sind damit Angriffe in die andere Richtung ausgeschlossen? Leider nicht, denn es gibt Wege um das Vertrauen entgegen der „Direction of Access“ auszunutzen. Das Problem ist schon länger bekannt und die Ausnutzung ist fester Bestandteil von einigen Pentest-Tools. Wir stellen aber immer wieder fest, das erfahrene Windows-Administratoren überrascht sind, wenn wir diesen Angriffsweg in Pentests nachweisen. Daher haben unsere Experten in einem Blogpost noch einmal die Grundlagen und einen konkreten Angriff inklusive passender Gegenmaßnahmen zusammengefasst. 👉 <a href="https://research.hisolutions.com/2025/06/windows-angriffe-entgegen-der-vertrauensstellung/" rel="nofollow noopener" translate="no" target="_blank">https://research.hisolutions.com/2025/06/windows-angriffe-entgegen-der-vertrauensstellung/</a><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/ITSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#ITSecurity</a> <a href="https://infosec.exchange/tags/ResearchBlog" class="mention hashtag" rel="nofollow noopener" target="_blank">#ResearchBlog</a> <a href="https://infosec.exchange/tags/Pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pentest</a> <a href="https://infosec.exchange/tags/Penetrationstest" class="mention hashtag" rel="nofollow noopener" target="_blank">#Penetrationstest</a>

r1cksecA post that demonstrates how attackers can craft malware that bypass MS SmartScreen and Defender by exploiting whitelisting mechanisms🕵️‍♂️ <a href="https://versprite.com/vs-labs/slipping-malware-through-microsoft-security-checks" rel="nofollow noopener" translate="no" target="_blank">https://versprite.com/vs-labs/slipping-malware-through-microsoft-security-checks</a><a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#redteam</a>

YogthosLLM as Hackers: Autonomous Linux Privilege Escalation Attacks with AI Agents.<a href="https://arxiv.org/pdf/2310.11409v4" rel="nofollow noopener" translate="no" target="_blank">https://arxiv.org/pdf/2310.11409v4</a><a href="https://social.marxist.network/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://social.marxist.network/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a> <a href="https://social.marxist.network/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a> <a href="https://social.marxist.network/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AI</a> <a href="https://social.marxist.network/tags/LLM" class="mention hashtag" rel="nofollow noopener" target="_blank">#LLM</a>

Chema Alonso :verified:El lado del mal - LLM as Hackers: Autonomus Linux Privilege Escalation Attacks con Agentes AI <a href="https://www.elladodelmal.com/2025/06/llm-as-hackers-autonomus-linux.html" rel="nofollow noopener" translate="no" target="_blank">https://www.elladodelmal.com/2025/06/llm-as-hackers-autonomus-linux.html</a> <a href="https://ioc.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a> <a href="https://ioc.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://ioc.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a> <a href="https://ioc.exchange/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a> <a href="https://ioc.exchange/tags/EoP" class="mention hashtag" rel="nofollow noopener" target="_blank">#EoP</a> <a href="https://ioc.exchange/tags/AgenticAI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AgenticAI</a> <a href="https://ioc.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AI</a> <a href="https://ioc.exchange/tags/IA" class="mention hashtag" rel="nofollow noopener" target="_blank">#IA</a> <a href="https://ioc.exchange/tags/InteligenciaArtificial" class="mention hashtag" rel="nofollow noopener" target="_blank">#InteligenciaArtificial</a> <a href="https://ioc.exchange/tags/ArtificialIntelligence" class="mention hashtag" rel="nofollow noopener" target="_blank">#ArtificialIntelligence</a>

Chema Alonso :verified:El lado del mal - WhiteRabbitNeo un LLM (y un "ChatGPT") para el Red Team <a href="https://www.elladodelmal.com/2025/06/whiterabbitneo-un-llm-y-un-chatgpt-para.html" rel="nofollow noopener" translate="no" target="_blank">https://www.elladodelmal.com/2025/06/whiterabbitneo-un-llm-y-un-chatgpt-para.html</a> <a href="https://ioc.exchange/tags/IA" class="mention hashtag" rel="nofollow noopener" target="_blank">#IA</a> <a href="https://ioc.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AI</a> <a href="https://ioc.exchange/tags/RedTeam" class="mention hashtag" rel="nofollow noopener" target="_blank">#RedTeam</a> <a href="https://ioc.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#DevSecOps</a> <a href="https://ioc.exchange/tags/SecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#SecOps</a> <a href="https://ioc.exchange/tags/Pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pentest</a> <a href="https://ioc.exchange/tags/Hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hacking</a> <a href="https://ioc.exchange/tags/InteligenciaArtificial" class="mention hashtag" rel="nofollow noopener" target="_blank">#InteligenciaArtificial</a> <a href="https://ioc.exchange/tags/LLM" class="mention hashtag" rel="nofollow noopener" target="_blank">#LLM</a>

Clément Labro🆕 New blog post!"Checking for Symantec Account Connectivity Credentials (ACCs) with PrivescCheck"This blog post is not so much about PrivescCheck in the end, but rather brings additional insight to the original article published by MDSec on the subject.👉 <a href="https://itm4n.github.io/checking-symantec-account-credentials-privesccheck/" rel="nofollow noopener" translate="no" target="_blank">https://itm4n.github.io/checking-symantec-account-credentials-privesccheck/</a><a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#redteam</a> <a href="https://infosec.exchange/tags/research" class="mention hashtag" rel="nofollow noopener" target="_blank">#research</a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a>

r1cksecA post about malware development essentials and myths🕵️‍♂️ <a href="https://blog.deeb.ch/posts/maldev-myths" rel="nofollow noopener" translate="no" target="_blank">https://blog.deeb.ch/posts/maldev-myths</a><a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#redteam</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a>

Ciarán McNallyHow do people feel about reissuing a pentest report with all your good findings removed (post retest/remediation)? I hate the idea my reports could be shown to third parties, minus all the good critical/high findings. <a href="https://mastodon.ie/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://mastodon.ie/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a>

Clément Labro🆕 New blog post! It's a rather short one, nothing crazy. Just wanted to share a random finding I made recently. 🤷‍♂️'Hijacking the Windows "MareBackup" Scheduled Task for Privilege Escalation'👉 <a href="https://blog.scrt.ch/2025/05/20/hijacking-the-windows-marebackup-scheduled-task-for-privilege-escalation/" rel="nofollow noopener" translate="no" target="_blank">https://blog.scrt.ch/2025/05/20/hijacking-the-windows-marebackup-scheduled-task-for-privilege-escalation/</a><a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#redteam</a> <a href="https://infosec.exchange/tags/windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#windows</a> <a href="https://infosec.exchange/tags/privilegeescalation" class="mention hashtag" rel="nofollow noopener" target="_blank">#privilegeescalation</a>

dan_nanniPython offers a rich set of libraries for penetration testing, enabling tasks like network scanning, exploit development, web vulnerability analysis, and payload generationHere are useful <a href="https://mastodon.social/tags/python" class="mention hashtag" rel="nofollow noopener" target="_blank">#python</a> libraries for pentesters 😎👇 <a href="https://mastodon.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://mastodon.social/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a>Find high-res pdf books with all my <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> related infographics at <a href="https://study-notes.org" rel="nofollow noopener" translate="no" target="_blank">https://study-notes.org</a>

LMG SecurityAI-powered features are the new attack surface! Check out our new blog in which LMG Security’s Senior Penetration Tester Emily Gosney <a href="https://infosec.exchange/@baybedoll" class="u-url mention" rel="nofollow noopener" target="_blank">@baybedoll</a> shares real-world strategies for testing AI-driven web apps against the latest prompt injection threats.From content smuggling to prompt splitting, attackers are using natural language to manipulate AI systems. Learn the top techniques—and why your web app pen test must include prompt injection testing to defend against today’s AI-driven threats.Read now: <a href="https://www.lmgsecurity.com/are-your-ai-backed-web-apps-secure-why-prompt-injection-testing-belongs-in-every-web-app-pen-test/" rel="nofollow noopener" translate="no" target="_blank">https://www.lmgsecurity.com/are-your-ai-backed-web-apps-secure-why-prompt-injection-testing-belongs-in-every-web-app-pen-test/</a><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/PromptInjection" class="mention hashtag" rel="nofollow noopener" target="_blank">#PromptInjection</a> <a href="https://infosec.exchange/tags/AIsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#AIsecurity</a> <a href="https://infosec.exchange/tags/WebAppSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#WebAppSecurity</a> <a href="https://infosec.exchange/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#PenetrationTesting</a> <a href="https://infosec.exchange/tags/LLMvulnerabilities" class="mention hashtag" rel="nofollow noopener" target="_blank">#LLMvulnerabilities</a> <a href="https://infosec.exchange/tags/Pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pentest</a> <a href="https://infosec.exchange/tags/DFIR" class="mention hashtag" rel="nofollow noopener" target="_blank">#DFIR</a> <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AI</a> <a href="https://infosec.exchange/tags/CISO" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISO</a> <a href="https://infosec.exchange/tags/Pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pentesting</a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/ITsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#ITsecurity</a>

Marcel SIneM(S)US<a href="https://social.tchncs.de/tags/Interrupt" class="mention hashtag" rel="nofollow noopener" target="_blank">#Interrupt</a>: Starker <a href="https://social.tchncs.de/tags/FlipperZero" class="mention hashtag" rel="nofollow noopener" target="_blank">#FlipperZero</a>-Konkurrent kommt mit <a href="https://social.tchncs.de/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a> :tux: und Tastatur - Golem.de <a href="https://www.golem.de/news/interrupt-starker-flipper-zero-konkurrent-kommt-mit-linux-und-tastatur-2505-196028.html" rel="nofollow noopener" translate="no" target="_blank">https://www.golem.de/news/interrupt-starker-flipper-zero-konkurrent-kommt-mit-linux-und-tastatur-2505-196028.html</a> <a href="https://social.tchncs.de/tags/PenTest" class="mention hashtag" rel="nofollow noopener" target="_blank">#PenTest</a> <a href="https://social.tchncs.de/tags/PenTesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#PenTesting</a> <a href="https://social.tchncs.de/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#PenetrationTesting</a>

0x40kWow, the whole situation with proxy services is just nuts, right? And Operation Moonlander? Man, it really hammers home how vital it is to lock down your IoT devices. Seriously, those End-of-Life (EoL) gadgets are basically sitting ducks for cybercrooks.Turns out, four Russians and one Kazakh individual were raking in millions with services like anyproxy.net and 5socks.net. Get this: their botnet was built from thousands of infected IoT and, you guessed it, EoL devices.It's pretty wild how many businesses are still chugging along with outdated hardware and software. Here's the thing: regular penetration tests and keeping everything updated? That's non-negotiable. And those automated scans? They're just scratching the surface, really.So, what're your biggest headaches when it comes to IoT security? Let's talk!<a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://infosec.exchange/tags/iotsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#iotsecurity</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a>

0x40kIoT devices turned into DDoS slaves? 🤖 Sounds wild, right? But it's totally true! Think GeoVision, Samsung... and that's just scratching the surface, really. Those End-of-Life devices? They're practically a free-for-all for botnet operators. Mirai sends its regards! 😈So, what's the big deal? Well, IoT gadgets often have lousy security, and updates? Forget about 'em! Automated scans? They barely scratch the surface. If you want real security, you gotta go for manual pentests. ☝️Alright, so what can you actually do? Update 'em (if that's even an option!), segment your network, and keep an eye on things with monitoring! An unpatched device? That's a ticking time bomb, plain and simple. 💣 And hey, don't forget: vendor security claims are often just a load of marketing fluff! 😬Which "smart" devices with known weak spots are hiding out on your network? Have you even checked lately? 👇<a href="https://infosec.exchange/tags/IoT" class="mention hashtag" rel="nofollow noopener" target="_blank">#IoT</a> <a href="https://infosec.exchange/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#Security</a> <a href="https://infosec.exchange/tags/Pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pentest</a> <a href="https://infosec.exchange/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a>

r1cksecA Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidden elements and enable disabled elements🕵️‍♂️ <a href="https://github.com/xnl-h4ck3r/XnlReveal" rel="nofollow noopener" translate="no" target="_blank">https://github.com/xnl-h4ck3r/XnlReveal</a><a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://infosec.exchange/tags/web" class="mention hashtag" rel="nofollow noopener" target="_blank">#web</a> <a href="https://infosec.exchange/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#opensource</a> <a href="https://infosec.exchange/tags/browser" class="mention hashtag" rel="nofollow noopener" target="_blank">#browser</a>

Mike ShewardMini Pen Test Diaries Story:During the open source enumeration phase of an external footprint test, I found a virtual machine that bore the name of the client in its NetBIOS response in Shodan.Connecting to the machine over HTTP, I found a web app that was very relevant to the industry of the client - so I knew it was likely related.The strange thing, however, was that Shodan was telling me NetBIOS and SMB were open (that’s how I found the machine in the first place), but I was unable to connect to it over SMB. Port scan showed closed.I needed to figure out why Shodan was telling me one thing, but my reality was different.The machine was hosted in Azure, so I figured I’d try rerunning my port scan from a source IP in my own Azure account, to see if I’d get a different result.Sure enough, SMB was open when scanned from an Azure machine. They’d opened it up to any IP in Azure. No auth. Just an open file share accessible to anyone who was connecting to it from an Azure public source IP.I reported it, and it turned out that the machine was hosted by a vendor on behalf of the client.The vendor was insistent that my description of “public access to SMB share” was wrong, since technically it wasn’t open to the internet - just to Azure.I then pointed out that hey, Azure is a famous example of a “public” cloud for a reason.They fixed it.Lesson: always try from different perspectives - such as from within the same providers IP space, you might find what I found.For more, slightly less mini stories like this ones check out <a href="https://infosecdiaries.com" rel="nofollow noopener" translate="no" target="_blank">https://infosecdiaries.com</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a>

Henrik Kramselund - kramse 🍉So I updated the README for my security-courses Git repo containing all my teaching materials. Trying to make it more understandable and readable, but wondering if it is ...If you want to help me please read it, and comment. If you feel adventurous you can also start installing LaTeX and try it! This might pull you into a nice rabbit hole though!or look at PDFs all over the place, quite a lot about <a href="https://helvede.net/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a>, <a href="https://helvede.net/tags/Pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pentest</a>, <a href="https://helvede.net/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a> etc.<a href="https://codeberg.org/kramse/security-courses" rel="nofollow noopener" translate="no" target="_blank">https://codeberg.org/kramse/security-courses</a>and it is <a href="https://helvede.net/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenSource</a> of course

0x40kWow, this Node.js malware situation is pretty wild, isn't it? 🤯 It's a stark reminder of how quickly attackers pivot and adapt their methods.Sure, Node.js is incredibly handy, there's no denying that. But, let's be real, it can also be an open door for trouble if you're not careful with implementation. Things like PowerShell exclusions and sneaky obfuscated code are popping up – yeah, staying vigilant is absolutely key these days.It really drives home what we're always telling our clients: Security by Design is non-negotiable! ☝️ Honestly, getting it right from the very beginning definitely beats scrambling to fix nasty surprises later on.So, curious to hear from you all: What are *your* go-to tools for managing risks like these? And what strategies do you use to train your teams so they don't get caught out by these tactics? 🤔 Let's share some knowledge!<a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/nodejs" class="mention hashtag" rel="nofollow noopener" target="_blank">#nodejs</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://infosec.exchange/tags/securitybydesign" class="mention hashtag" rel="nofollow noopener" target="_blank">#securitybydesign</a>

r1cksecJust another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener🕵️‍♂️ <a href="https://github.com/som3canadian/Cloudflare-Redirector" rel="nofollow noopener" translate="no" target="_blank">https://github.com/som3canadian/Cloudflare-Redirector</a><a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#redteam</a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://infosec.exchange/tags/c2" class="mention hashtag" rel="nofollow noopener" target="_blank">#c2</a> <a href="https://infosec.exchange/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#opensource</a> <a href="https://infosec.exchange/tags/cloudflare" class="mention hashtag" rel="nofollow noopener" target="_blank">#cloudflare</a>

Will HuntTop <a href="https://infosec.exchange/tags/hashcat" class="mention hashtag" rel="nofollow noopener" target="_blank">#hashcat</a> tip:Want per-position duplication in your rules to leverage your GPU?It's not available in a single op, but you can emulate it by incrementally duplicating the first N chars, and then incrementally deleting the position and frequency of the redundant characters<a href="https://infosec.exchange/tags/password" class="mention hashtag" rel="nofollow noopener" target="_blank">#password</a> <a href="https://infosec.exchange/tags/passwordcracking" class="mention hashtag" rel="nofollow noopener" target="_blank">#passwordcracking</a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentest</a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#redteam</a>

Frühere Suchanfragen

Suchoptionen

Verwaltet von:

Serverstatistik:

#pentest