heise online<p>Ethical Hacking für Fortgeschrittene – sich selbst hacken, bevor es andere tun</p><p>In fünf Terminen lernen Admins und IT-Security-Verantwortliche ab dem 28. April, ihre eigenen Systeme zu hacken, um sich vor Angreifern effektiv zu schützen.</p><p><a href="https://www.heise.de/news/Ethical-Hacking-fuer-Fortgeschrittene-sich-selbst-hacken-bevor-es-andere-tun-10292984.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Ethical-Hacking-</span><span class="invisible">fuer-Fortgeschrittene-sich-selbst-hacken-bevor-es-andere-tun-10292984.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/Hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hacking</span></a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://social.heise.de/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
donphan.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
This generalist Mastodon server welcomes enthusiasts of the Pokémon franchise, to talk about it or anything else. Join the federation!
Administered by:
Server stats:
129active users
donphan.social: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.2+glitch.donphan.social
#penetrationtesting
0 posts · 0 participants · 0 posts today
heise online<p>Last Call: Proaktive IT-Security mit Pentesting: Ethical Hacking für Admins</p><p>In fünf Terminen lernen Admins und IT-Security-Verantwortliche ab dem 10.02., wie sie mit Ethical Hacking Systeme absichern und Schwachstellen aufdecken.</p><p><a href="https://www.heise.de/news/Last-Call-Proaktive-IT-Security-mit-Pentesting-Ethical-Hacking-fuer-Admins-10265009.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Last-Call-Proakt</span><span class="invisible">ive-IT-Security-mit-Pentesting-Ethical-Hacking-fuer-Admins-10265009.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/Hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hacking</span></a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://social.heise.de/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a></p>
heise online<p>Proaktive IT-Security mit Pentesting: Ethical Hacking für Admins</p><p>In fünf Terminen lernen Admins und IT-Security-Verantwortliche ab dem 10.02., wie sie mit Ethical Hacking Systeme absichern und Schwachstellen aufdecken.</p><p><a href="https://www.heise.de/news/Proaktive-IT-Security-mit-Pentesting-Ethical-Hacking-fuer-Admins-10246220.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Proaktive-IT-Sec</span><span class="invisible">urity-mit-Pentesting-Ethical-Hacking-fuer-Admins-10246220.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/Hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hacking</span></a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://social.heise.de/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a></p>
LBHuston<p>The system can also provide coaching and score your efforts at any time in the game.</p><p>Read more 👉 <a href="https://lttr.ai/AabhM" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">lttr.ai/AabhM</span><span class="invisible"></span></a></p><p><a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Infosec</span></a> <a href="https://mastodon.social/tags/Gaming" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Gaming</span></a> <a href="https://mastodon.social/tags/Learning" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Learning</span></a> <a href="https://mastodon.social/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a></p>
heise online<p>Proaktive IT-Security mit Pentesting: Ethical Hacking für Admins</p><p>In fünf Terminen lernen Admins und IT-Security-Verantwortliche ab dem 10.02., wie sie mit Ethical Hacking Systeme absichern und Schwachstellen aufdecken.</p><p><a href="https://www.heise.de/news/Proaktive-IT-Security-mit-Pentesting-Ethical-Hacking-fuer-Admins-10203297.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Proaktive-IT-Sec</span><span class="invisible">urity-mit-Pentesting-Ethical-Hacking-fuer-Admins-10203297.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/Hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hacking</span></a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://social.heise.de/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a></p>
heise online<p>Proaktive IT-Security mit Pentesting: Ethical Hacking für Admins</p><p>In fünf Terminen lernen Admins und IT-Security-Verantwortliche ab dem 10.02.25, wie sie mit Ethical Hacking Systeme absichern und Schwachstellen aufdecken.</p><p><a href="https://www.heise.de/news/Proaktive-IT-Security-mit-Pentesting-Ethical-Hacking-fuer-Admins-10201224.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Proaktive-IT-Sec</span><span class="invisible">urity-mit-Pentesting-Ethical-Hacking-fuer-Admins-10201224.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/Hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hacking</span></a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://social.heise.de/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a></p>
LMG Security<p>Cybercriminals are targeting APIs and costing businesses an estimated $75B annually! With rising Web App API attacks, we sat down with our Penetration Testing Team Manager <span class="h-card" translate="no"><a href="https://infosec.exchange/@tompohl" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>tompohl</span></a></span> to learn why Web App API penetration testing is crucial and five things every API pentest should include. Check out our new blog: <a href="https://ow.ly/QSw050UpBIy" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">ow.ly/QSw050UpBIy</span><span class="invisible"></span></a></p><p><a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a> <a href="https://infosec.exchange/tags/APISecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>APISecurity</span></a> <a href="https://infosec.exchange/tags/API" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>API</span></a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pentest</span></a> <a href="https://infosec.exchange/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a> <a href="https://infosec.exchange/tags/WebApp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WebApp</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/CISO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CISO</span></a> <a href="https://infosec.exchange/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a></p>
heise online<p>Proaktive IT-Security mit Pentesting: Ethical Hacking für Admins</p><p>In fünf Terminen lernen Admins und IT-Security-Verantwortliche ab dem 10.02.25, wie sie mit Ethical Hacking Systeme absichern und Schwachstellen aufdecken.</p><p><a href="https://www.heise.de/news/Proaktive-IT-Security-mit-Pentesting-Ethical-Hacking-fuer-Admins-10179995.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Proaktive-IT-Sec</span><span class="invisible">urity-mit-Pentesting-Ethical-Hacking-fuer-Admins-10179995.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/Hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hacking</span></a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://social.heise.de/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a></p>
The Doctor<p>I have a really stupid question. One that hasn't been relevant since the 1990's, but here we are.</p><p>Does anybody know if there is a breakdown of <a href="https://hackers.town/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSource</span></a> <a href="https://hackers.town/tags/licenses" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>licenses</span></a> that either explicitly do, or explicitly do not permit them to be in scope of <a href="https://hackers.town/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a>?</p><p>I can't go into details about who or why, but it's come up at work and the legal team is now sitting with their heads on their desks weeping openly.</p><p>Please boost. A helpful paper might come out of this that will help a lot of people.</p>
FXBG Hackers<h2>FXBG Hackers - 0x1B - Nov 6th 2024 @ 7pm</h2>
November 6, 2024, 7:00:00 PM EST - GMT-5 - Red Dragon Bewery, 22401, Fredericksburg, United States
<p><a href="https://meetups.infosec.exchange/events/eff4ac94-c888-4cb6-8276-6c1caa196bf5" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">meetups.infosec.exchange/event</span><span class="invisible">s/eff4ac94-c888-4cb6-8276-6c1caa196bf5</span></a></p>
heise online<p>Montag: VWs flexibler Sparkurs, Weltraumanzug der NASA 2025 wieder im Einsatz</p><p>VW-Chef zu Sparmaßnahmen + NASA-Anzug der 70er geflickt + CERN ohne russische Mitarbeiter + Windows Server 2025 verfügbar + Kontrollverlust durch Cyberangriff</p><p><a href="https://www.heise.de/news/Montag-VWs-flexibler-Sparkurs-Weltraumanzug-der-NASA-2025-wieder-im-Einsatz-10002744.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Montag-VWs-flexi</span><span class="invisible">bler-Sparkurs-Weltraumanzug-der-NASA-2025-wieder-im-Einsatz-10002744.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/Auto" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Auto</span></a> <a href="https://social.heise.de/tags/CERN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CERN</span></a> <a href="https://social.heise.de/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a> <a href="https://social.heise.de/tags/Forschung" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Forschung</span></a> <a href="https://social.heise.de/tags/hoDaily" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hoDaily</span></a> <a href="https://social.heise.de/tags/ISS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ISS</span></a> <a href="https://social.heise.de/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Microsoft</span></a> <a href="https://social.heise.de/tags/NASA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NASA</span></a> <a href="https://social.heise.de/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a> <a href="https://social.heise.de/tags/VW" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VW</span></a> <a href="https://social.heise.de/tags/WindowsServer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WindowsServer</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a></p>
heise online<p>Missing Link: Wie ein Unternehmen bei einem Cyberangriff die Kontrolle verlor</p><p>Eigentlich fühlt sich der IT-Chef recht sicher. Bis Hacker mitten am Tag in die Firma marschieren – und unbehelligt wieder raus. Die Beute: volle Kontrolle.</p><p><a href="https://www.heise.de/news/Missing-Link-Wie-ein-Unternehmen-bei-einem-Cyberangriff-die-Kontrolle-verlor-9984869.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Missing-Link-Wie</span><span class="invisible">-ein-Unternehmen-bei-einem-Cyberangriff-die-Kontrolle-verlor-9984869.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/Unternehmen" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Unternehmen</span></a> <a href="https://social.heise.de/tags/Hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hacking</span></a> <a href="https://social.heise.de/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a></p>
heise online<p>Last Call: Proaktive IT-Security mit Pentesting: Ethical Hacking für Admins</p><p>In fünf Terminen lernen Admins und IT-Security-Verantwortliche ab dem 04.11., wie sie mit Ethical Hacking ihre Systeme absichern und Schwachstellen aufdecken.</p><p><a href="https://www.heise.de/news/Last-Call-Proaktive-IT-Security-mit-Pentesting-Ethical-Hacking-fuer-Admins-9863154.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Last-Call-Proakt</span><span class="invisible">ive-IT-Security-mit-Pentesting-Ethical-Hacking-fuer-Admins-9863154.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/Hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hacking</span></a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://social.heise.de/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a></p>
LBHuston<p>Check it out by clicking here and let me know on Twitter (<span class="h-card" translate="no"><a href="https://mastodon.social/@lbhuston" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>lbhuston</span></a></span>) what you think!</p><p>Read more 👉 <a href="https://lttr.ai/AX1OH" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">lttr.ai/AX1OH</span><span class="invisible"></span></a></p><p><a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Infosec</span></a> <a href="https://mastodon.social/tags/Gaming" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Gaming</span></a> <a href="https://mastodon.social/tags/Learning" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Learning</span></a> <a href="https://mastodon.social/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a></p>
heise online<p>Proaktive IT-Security mit Pentesting: Ethical Hacking für Admins</p><p>In fünf Terminen lernen Admins und IT-Security-Verantwortliche ab dem 04.11., wie sie mit Ethical Hacking Systeme absichern und Schwachstellen aufdecken.</p><p><a href="https://www.heise.de/news/Proaktive-IT-Security-mit-Pentesting-Ethical-Hacking-fuer-Admins-9960511.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Proaktive-IT-Sec</span><span class="invisible">urity-mit-Pentesting-Ethical-Hacking-fuer-Admins-9960511.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/Hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hacking</span></a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://social.heise.de/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a></p>
FXBG Hackers<p>FXBG Hackers - 0x1A - Oct 2nd 2024 @ 7pm</p><p>October 2, 2024, 7:00:00 PM EDT - GMT-4 - Red Dragon Bewery, 22401, Fredericksburg, United States</p><p><a href="https://meetups.infosec.exchange/events/95baa898-87c5-417f-a170-1c72a1e03af1" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">meetups.infosec.exchange/event</span><span class="invisible">s/95baa898-87c5-417f-a170-1c72a1e03af1</span></a></p>
heise online<p>Proaktive IT-Security mit Pentesting: Ethical Hacking für Admins in 5 Webinaren</p><p>In fünf Webinaren lernen Admins und IT-Security-Verantwortliche ab dem 04.11., wie sie mit Ethical Hacking ihre Systeme absichern und Schwachstellen aufdecken.</p><p><a href="https://www.heise.de/news/Proaktive-IT-Security-mit-Pentesting-Ethical-Hacking-fuer-Admins-in-5-Webinaren-9834659.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Proaktive-IT-Sec</span><span class="invisible">urity-mit-Pentesting-Ethical-Hacking-fuer-Admins-in-5-Webinaren-9834659.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/Hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hacking</span></a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://social.heise.de/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a></p>
Tinker ☀️<p>There is something so satisfying in kicking off an entire RFC1918 scan.</p><p>Doing a single port at a brisk but safe (for my environment) pace.</p><p>~/# nmap -Pn -n -p <single port number> -T4 --open 10.0.0.0/8</p><p>~/# nmap -Pn -n -p <single port number> -T4 --open 172.16.0.0/12</p><p>~/# nmap -Pn -n -p <single port number> -T4 --open 192.168.0.0/16</p><p>(command broken out for dramatic effect - also note that I break out each of those CIDRs into /24's so that if anything breaks, I can pick up easier where the last known good ended. It's scripted and I prefer it this way.)</p><p>I am not doing a ping sweep or a DNS resolution. I'm assuming all hosts are up. And I'm looking for every host with a single port open. So even if they dont respond to pings (or something is preventing pings), I should get an answer back.</p><p>Note, I could certainly do faster (T5 or masscan, gawd) - but this is about as fast as I'm going to do in my environment and still be safe.</p><p>Also, only looking for open ports right now - no fingerprinting yet.</p><p>A cool thing about this approach is many intrusion detection still will only look for multiple ports on a single host to trigger an alert. Some still ignore many hosts / single port scans (to their detriment). </p><p>We've long sense purple teamed this, so I sent a notification to SOC letting them know my actions and asking them nicely (I bribed them last week) to not stop me, lol.</p><p>Should take a couple weeks to a month at this pace and in my environment to hit every single one of the just shy of 18,000,000 hosts 😂 </p><p><a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pentesting</span></a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacking</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/penetrationtesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>penetrationtesting</span></a> <a href="https://infosec.exchange/tags/blueteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>blueteam</span></a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>redteam</span></a> <a href="https://infosec.exchange/tags/intrusionDetection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>intrusionDetection</span></a></p>
Tinker ☀️<p>Ok. I think I've given them enough of a rest...</p><p>The greater security team asked me to chill for a bit because they were overloaded with findings. That makes perfect sense. I gave them enough to chew on and I try to rotate findings that various teams can work on.</p><p>This one specific team remediated a lot of my findings. It took a long time and they worked very hard and worked with multiple multiple multiple ops teams to get it done. </p><p>And I gave them ample time to rest afterwards. I announced their success to the CISO and give them major kudos.</p><p>But I'm about to be that guy who rewards good work with more work.</p><p>I'm going to do the dreaded "Full Security Audit".</p><p>I think I'll stretch before I send off these initial enumeration scans. I've got my custom scripts ready. I might step out to buy an energy drink.</p><p>Eris damned, even the anticipation has my dopamine and adrenaline flowing.</p><p><a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacking</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/redTeam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>redTeam</span></a> <a href="https://infosec.exchange/tags/penetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>penetrationTesting</span></a> <a href="https://infosec.exchange/tags/penTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>penTesting</span></a></p>
LBHuston<p>It leverages real-world tools, and teaches you a bit along the way.</p><p>Read more 👉 <a href="https://lttr.ai/AU0vz" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">lttr.ai/AU0vz</span><span class="invisible"></span></a></p><p><a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Infosec</span></a> <a href="https://mastodon.social/tags/Gaming" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Gaming</span></a> <a href="https://mastodon.social/tags/Learning" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Learning</span></a> <a href="https://mastodon.social/tags/PenetrationTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PenetrationTesting</span></a></p>
SearchLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload