Home

2016
securitynews
πŸ‡¬πŸ‡§

Pastejacking vs clipboard hijacking

Clipboard hijacking# It as been possible for a long time to use css (-9999px position trick) to append malicious content to the clipboard. Users doesn't notice anything and may execute unwanted comman

writeups
πŸ‡¬πŸ‡§

Writeups - Crypto - MindBlown

Information# Version# Date By Version Comment 05/06/2016 noraj 1.0 Creation CTF# Name : BackdoorCTF 2016 Website : https://backdoor.sdslabs.co Type : Online Format : Jeopardy CTF Time : lin

writeups
πŸ‡¬πŸ‡§

Writeups - Crypto - Oups it's all mixed

Information# Version# Date By Version Comment 03/05/2016 noraj 1.0 Creation Name# Oups it's all mixed Category# Cryptography Wording# Decipher the following flag: eGqaelr557dK4BbK47dS17dK68c

misc
πŸ‡¬πŸ‡§

How to manually configure Firefox / Waterfox language

Go to https://ftp.mozilla.org/pub/firefox/releases/ Choose the Firefox version, ex: 46.0 Choos the architecture, ex: linux-x86_64 Go into the xpi folder Choose a language, ex: fr.xpi Click on the cho

linux
πŸ‡¬πŸ‡§

Virtualbox : shared folder with guest

This how-to works independently of the host platform. On virtualbox : Open the Configuration window of the VM (guest) Select Shared folder on the left menu Click on the icon corresponding to Add a sh

linux
πŸ‡¬πŸ‡§

How to find out the Linux distribution name and version

There is the old method cat /etc/*-release to match distribution release file. For example on openSUSE this will match with /etc/SuSE-release. This method is deprecated and will be removed in the futu

security
πŸ‡¬πŸ‡§

c99.php : A backdoored backdoor

C99 is a PHP webshell. Attackers uploads it on web server in order to get information and above all execute commands with web user privileges (ex: www-data). This webshell is protected by a customizab

securitynews
πŸ‡¬πŸ‡§

Tracking down Tor users with mouse movements

Jose Carlos Norte, security researcher, wrote a post detailing how Tor Browser users can be uniquely fingerprinted using the mouse wheel, mouse speed, a CPU benchmark, and β€œgetClientRects”. POCs (proo

linux
πŸ‡¬πŸ‡§

How to convert VirtualBox vdi to KVM qcow2

VBoxManage can't directly convert vdi to qcow2, so there is two options : With VBoxManage convert vdi to raw and with qemu-img convert raw to qcow2 With qemu-img convert vdi to qcow2 Notes : vdi are

Posts
Billing - Write-up - TryHackMe

Information Room# Name: Billing Profile: tryhackme.com Difficulty: Easy Description: Some mistakes can be costly. Write-up Overview# Install tools use

Bypass Disable Functions - Write-up - TryHackMe

Information Room# Name: Bypass Disable Functions Profile: tryhackme.com Difficulty: Info Description: Practice bypassing disabled dangerous features t

Disqus: End of Discussion

Introduction: the error of not choosing# Disqus is one of the major third-party commenting and discussion system. However, I never really chose to use

BreizhCTF 2k25 - Write-ups

Information# CTF# Nom : BreizhCTF 2k25 Site web : www.breizhctf.com Type : Sur site β€” France β€” Rennes Format : Jeopardy Web - CurlMania# Vous n'avez q

Service Hacktion - Notes attachΓ©es au balado S01E11 - Panorama de la sΓ©curitΓ© de Github Action

Saison Épisode 1 11 Spotify Deezer Youtube Youtube Music Amazon Music Apple Podcast Podcast Index podCloud Podchaser podtail Podcasts Français Vodio S

Pages
HTTP Error 404 - Not Found

β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ•—β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ•— β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ•— β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ•— β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ•— β–ˆβ–ˆβ•— β–ˆβ–ˆβ•— β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ•— β–ˆβ–ˆβ•— β–ˆβ–ˆβ•— β–ˆβ–ˆβ•”β•β•β•β•β•β–ˆβ–ˆβ•”β•β•β–ˆβ–ˆβ•—β–ˆβ–ˆβ•”β•β•β–ˆβ–ˆβ•—β–ˆβ–ˆβ•”β•β•β•β–ˆβ–ˆβ•—β–ˆβ–ˆβ•”β•β•β–ˆβ–ˆβ•— β–ˆβ–ˆβ•‘ β–ˆβ–ˆβ•‘β–ˆβ–ˆβ•”β•β–ˆβ–ˆβ–ˆβ–ˆβ•—β–ˆβ–ˆβ•‘ β–ˆβ–ˆβ•‘ β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ•— β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ•”β•β–ˆβ–ˆβ–ˆβ–ˆβ–ˆ

Authors
Categories
Domains

Official domain names of Rawsec services. The blog: URL Description https://blog.raw.pm/ Main domain hxxps://rawsec[.]ml/ Backup domain, taken over hx

Tags
Categories
writeupswriteups
miscmisc
securitysecurity
linuxlinux
archlinuxlinux/archlinux
Tags
securitysecurity
fail2banfail2ban
webweb
phpphp
writeupswriteups