HackerTrans
TopNewTrendsCommentsPastAskShowJobs

j027

no profile record

Submissions

Hunting AitM Phishing Infrastructure Using Certificate Transparency

j027.net
1 points·by j027·قبل 5 أشهر·1 comments

comments

j027
·قبل 15 يومًا·discuss
Phone verification services exist to give you a real number for the purpose of passing this kind of verification.

They even have APIs for these services. They make money since they can use the same number to verify different things.
j027
·قبل شهرين·discuss
This sounds like some LLM to me
j027
·قبل شهرين·discuss
To add onto this, cloudflare switched away from recaptcha a while ago. https://blog.cloudflare.com/moving-from-recaptcha-to-hcaptch...

I think they now use their own Cloudflare turnstile if I remember correctly, but back then they switched to hcaptcha.
j027
·قبل شهرين·discuss
You can still use the audio captcha, but I’m not sure how long that’ll be around.
j027
·قبل شهرين·discuss
Canvas seems like it’s not that great. But if you then use Blackboard Ultra it makes canvas look amazing.
j027
·قبل 5 أشهر·discuss
OP here. My university was targeted by a recent phishing attack, and these are my findings. I hope this helps others, but this was my first experience with an Adversary in the Middle (AitM) attack.