pastebin - collaborative debugging tool
secsav.kpaste.net RSS

Difference between
modified post 24abcdf2c by Anonymous on Mon 13th Oct 2014 15:15
original post 2f65134 by Anonymous on Tue 7th Oct 2014 12:53
Download diff
Show old version | new version | both versions

    
11
[[[ WiFi YT vids ]]]
33
https://www.youtube.com/user/NeedSec
44
https://www.youtube.com/user/Raventattoo/videos
55
https://www.youtube.com/user/Cyb3rw0rM1/videos
77
# GUI frontend to reaver
88
http://sourceforge.net/projects/wpscrackgui/
1111
---
1212
# HSM from a Raspberry Pi
1313
http://cryptosense.com/building-a-raspberry-pi-hsm-for-rsa-2014/
1515
# Shredding files recursively into directories
1616
http://www.linuxforums.org/forum/miscellaneous/46693-how-shred-entire-directory-tree.html#post257616
1818
# Backdoor anything
1919
http://www.reddit.com/r/netsec/comments/2az8z2/the_backdoor_factory_backdoor_just_about_any/
2121
# OpenBSD lol
2222
http://bbs.progrider.org/prog/read/1383465168
2424
http://www.iusmentis.com/maatschappij/privacy/filmen-cameratoezicht/
2626
# iptables
2727
http://blog.commandlinekungfu.com/2014/01/episode-174-lightning-lockdown.html
2929
# /g/ has root to NSA
3030
http://archive.rebeccablacktech.com/g/thread/S39950951#p39950951
3232
# Scan the whole Internet in under 45 minutes!
3333
https://zmap.io/
3535
# Subterfuge - Automated MITM Framework
3636
https://code.google.com/p/subterfuge/
3838
# Telegram
3939
http://www.thoughtcrime.org/blog/telegram-crypto-challenge/
4141
# Entropy as fuck
4242
http://gamesbyemail.com/news/diceomatic
4343
http://www.random.org/
4747
[[[ (Anti) Forensics ]]]
4848
# The truth about – How to securely erase a Solid State Drive (SSD) (skrilnetz.net)
4949
http://www.reddit.com/r/linux/comments/2etx24/the_truth_about_how_to_securely_erase_a_solid/
5151
# Inception - search RAM contents for interesting stuff
5252
http://www.breaknenter.org/projects/inception/
5757
[[[ SELinux ]]]
5858
# From #centos
5959
Useful resources for SELinux: http://wiki.centos.org/HowTos/SELinux
6060
http://wiki.centos.org/TipsAndTricks/SelinuxBooleans
6161
http://docs.fedoraproject.org/en-US/Fedora/13/html/Security-Enhanced_Linux/
6262
http://fedorasolved.org/security-solutions/selinux-module-building
6363
http://www.youtube.com/watch?v=bQqX3RWn0Yw
6464
http://opensource.com/business/13/11/selinux-policy-guide
6666
http://wiki.centos.org/HowTos/SELinux
6767
http://beginlinux.com/server_training/web-server/976-apache-and-selinux
6868
http://docs.fedoraproject.org/en-US/Fedora/13/html/Managing_Confined_Services/
7070
http://www.reddit.com/r/linux/comments/23a2tg/the_selinux_coloring_book/
7373
[ CentOS ]
7474
http://wiki.centos.org/HowTos/OS_Protection
7878
[[[ Theory ]]]
7979
# ECC Primer
8080
http://blog.cloudflare.com/a-relatively-easy-to-understand-primer-on-elliptic-curve-cryptography
8181
http://arstechnica.com/security/2013/10/a-relatively-easy-to-understand-primer-on-elliptic-curve-cryptography/2/
8282
http://blog.serverfault.com/2011/12/12/a-studied-approach-at-wifi-part-1/
8383
http://safecurves.cr.yp.to/
8686
[ GPG / PGP ]
8787
http://www.gnupg.org/documentation/index.html
8888
http://www.thedrinkingrecord.com/pgpgpg-guide/
8989
http://www.dewinter.com/gnupg_howto/english/GPGMiniHowto.html
9393
[[[ Wikipedia ]]]
9494
https://en.wikipedia.org/wiki/Data_remanence
9595
http://en.wikipedia.org/wiki/PA-DSS
9999
[[[ WebSec ]]]
101101
# SSL easy copy pasta
102102
http://www.reddit.com/r/sysadmin/comments/271g4m/cipherlist_strong_copypaste_ssl_configuration_for/
104104
# Want to use my wifi? (cookie spoofing, MITM etc.)
105105
http://thejh.net/written-stuff/want-to-use-my-wifi?
107107
http://www.amanhardikar.com/mindmaps/Practice.html
109109
# The Web Application Vulnerability Scanners Benchmark
110110
http://sectooladdict.blogspot.se/2014/02/wavsep-web-application-scanner.html?m=1
112112
# Bypassing WAF's
113113
http://www.reddit.com/r/netsec/comments/20uhgh/bypassing_web_application_firewalls_using_http/
115115
# Hardening WordPress
116116
http://codex.wordpress.org/Hardening_WordPress
117117
http://halfelf.org/2013/false-security/
118118
http://www.esecurityplanet.com/open-source-security/top-5-wordpress-vulnerabilities-and-how-to-fix-them.html
119119
https://wordpress.org/plugins/better-wp-security/
120120
http://wordpress.org/plugins/bulletproof-security/
122122
# A seemingly innocent PHP vuln
123123
http://danuxx.blogspot.de/2013/03/unauthorized-access-bypassing-php-strcmp.html
125125
# JS crypto
126126
http://www.reddit.com/r/netsec/comments/21ebv7/mylar_encryptdecrypt_your_webapp_data_in_users/
128+
# Mega.co.nz weakness (MegaPWN)
128131
---
129132
https://wiki.ubuntu.com/BasicSecurity
130133
https://wiki.archlinux.org/index.php/Dm-crypt/Specialties#Securing_the_unencrypted_boot_partition
132135
http://www.danielmiessler.com/study/infosec_interview_questions/
138141
[[[ Talks & Other videos ]]]
139142
http://makehacklearn.org/2014/03/06/trustycon-videos/
143146
---
145148
[[[ Reddit ]]]
147150
# How to sign kernel for UEFI Secure Boot.
148151
http://www.reddit.com/r/linux/comments/1mw1xb/state_of_securely_booting_linux/
150153
# SSL/TLS Deployment Best Practices
151154
http://www.reddit.com/r/netsec/comments/1mn2nk/ssltls_deployment_best_practices/
153156
# SSH hardening
154157
http://www.reddit.com/r/linux/comments/1yfvm9/hardening_ssh_servers/
155158
http://www.reddit.com/r/linux/comments/2cwakx/the_ultimate_guide_to_hardening_ssh_with_ssh/
156159
# Ever wonder what makes the new ssh-certificate authentication different from ssh-pubkey? This guide explains that and how to use it effectively. (neocri.me)
157160
http://redd.it/1zmsi2
160163
# Physical machine security
161164
http://www.reddit.com/r/netsec/comments/l91d5/physical_laptop_security/
163166
# Linux sec
164167
http://www.reddit.com/r/linux/comments/1oobkf/what_kind_of_antimalware_exists_for_linux/
166169
# How does the Shellshock exploit work?
167170
http://fedoramagazine.org/shellshock-how-does-it-actually-work/
169172
# OS under a OS
170173
http://www.reddit.com/r/linux/comments/1qib6u/the_second_proprietary_operating_system_hiding_in/
172175
# grsec patches explained
173176
http://www.reddit.com/r/netsec/comments/renu4/grsecurity_pax_configuration_options_explained/
175178
# 4 HTTP security headers you should always be using (ibuildings.nl)
176179
http://www.reddit.com/r/netsec/comments/1vztlh/4_http_security_headers_you_should_always_be_using/
178181
# Show r/netsec: reveal your true IP address behind proxy/NATs using WebRTC (Firefox/Chrome) (jsfiddle.net)
179182
http://www.reddit.com/r/netsec/comments/1vzsnn/show_rnetsec_reveal_your_true_ip_address_behind/
181184
# Laptop security best practices. What do you do? (self.linux)
182185
http://www.reddit.com/r/linux/comments/1zi10c/laptop_security_best_practices_what_do_you_do/
184187
# How I got root with Sudo (securusglobal.com)
185188
http://www.reddit.com/r/netsec/comments/20mftq/how_i_got_root_with_sudo/
187190
# Hardening a Linux server (self.linux)
188191
http://www.reddit.com/r/linux/comments/1xxpap/hardening_a_linux_server/
190193
# Security of Debian?
191194
http://www.reddit.com/r/linux/comments/1xfuqb/debian_74_relased/cfbwunr
193196
# Sidestep Wireless Logins by Routing All Traffic Through Measly Little Ping Packets (getpostdelete.com)
194197
http://www.reddit.com/r/linux/comments/22tsil/sidestep_wireless_logins_by_routing_all_traffic/
196199
# Why Linux is better for infosec?
197200
http://www.reddit.com/r/linux/comments/22xece/why_is_linux_better_for_infosecsysadmins/
199202
# Wayland is NOT immune to keyloggers (self.linux)
200203
http://www.reddit.com/r/linux/comments/23mj49/wayland_is_not_immune_to_keyloggers/
202205
# What routines have you in place to keep your linux server secure and up to date? (self.linux)
203206
http://www.reddit.com/r/linux/comments/24j290/what_routines_have_you_in_place_to_keep_your/
205208
# The world's first operating-system kernel with an end-to-end proof of implementation correctness and security enforcement is now open source. (sel4.systems)
206209
http://www.reddit.com/r/netsec/comments/2c0yxh/the_worlds_first_operatingsystem_kernel_with_an/
208211
# BadUSB
209212
https://pay.reddit.com/r/netsec/comments/2c9otm/badusb/
210213
https://www.reddit.com/r/netsec/comments/2i6vvh/badusb_the_unpatchable_malware_that_infects_usbs/
212215
# Deanonymizing Facebook Users By CSP Bruteforcing (myseosolution.de)
213216
http://www.reddit.com/r/netsec/comments/2djtkt/deanonymizing_facebook_users_by_csp_bruteforcing/
215218
# Monitoring & log overview.
216219
# How To Install OSSEC on Ubuntu 14.04 (linuxlove.eu)
217220
http://www.reddit.com/r/linux/comments/2f72j4/how_to_install_ossec_on_ubuntu_1404/
219222
# Password MGMT
220223
http://www.reddit.com/r/linux/comments/2fnget/what_is_your_password_management_strategy/

Submit a correction or amendment below (click here to make a fresh posting)
After submitting an amendment, you'll be able to view the differences between the old and new posts easily.

Syntax highlighting:

To highlight particular lines, prefix each line with {%HIGHLIGHT}





All content is user-submitted.
The administrators of this site (kpaste.net) are not responsible for their content.
Abuse reports should be emailed to us at