Re: [NetSec] How Hacking Team got hacked

2016-06-06 Başlik bahadir pektas 
Merhaba,
Aynı adamın katalan polisini hacklerken çektiği video da eğitim
niteliğinde. Özellikle sızma testi yapan arkadaşların non interactive
netcat shell'den full interactive shell'e nasıl geçtiğine bakmalarını
tavsiye ederim.

https://tune.pk/video/6528544/hack

Bahadır
2 Haz 2016 05:29 tarihinde "Ali Aydin Selcuk" 
yazdı:

>
>
> http://arstechnica.com/security/2016/04/how-hacking-team-got-hacked-phineas-phisher/
>
> Cok komple bir saldiri olmus:
>
> ...
>
> Phisher is no script kiddie, whoever he is. The attack he describes goes
> well beyond exploiting OWASP Top 10 vulnerabilities.
>
> "The guy is kind of a ninja," Dan Tentler, CEO of Phobos Group, which does
> attack simulation as a service, told Ars. "It's pretty rare you find
> exploitation, reverse engineering, exploit development, lateral movement,
> networking/routing, and exfiltration all in the same person."
>
>
> Okumaya deger.
>
> --
> Ali Aydın Selçuk
> Dept. of Computer Engineering
> TOBB-ETU
> 06560, Ankara, Turkey
>
>
> ---
> NetSec Topluluğu Siber Güvenlik Etkinliği - İstanbul- 28 Mayıs 2016
>
> www.netsectr.org
>
> ---
>
---
Siber Güvenlik Yaz Kampı

24 - 31 Temmuz 2016 tarihlerinde İzmir Yüksek Teknoloji Enstitüsü

http://www.siberkamp.org/
---

[NetSec] How Hacking Team got hacked

2016-06-01 Başlik Ali Aydin Selcuk 
http://arstechnica.com/security/2016/04/how-hacking-team-got-hacked-phineas-phisher/

Cok komple bir saldiri olmus:

...

Phisher is no script kiddie, whoever he is. The attack he describes goes
well beyond exploiting OWASP Top 10 vulnerabilities.

"The guy is kind of a ninja," Dan Tentler, CEO of Phobos Group, which does
attack simulation as a service, told Ars. "It's pretty rare you find
exploitation, reverse engineering, exploit development, lateral movement,
networking/routing, and exfiltration all in the same person."


Okumaya deger.

--
Ali Aydın Selçuk
Dept. of Computer Engineering
TOBB-ETU
06560, Ankara, Turkey
---
NetSec Topluluğu Siber Güvenlik Etkinliği - İstanbul- 28 Mayıs 2016

www.netsectr.org

---