HackerTrans
TopNewTrendsCommentsPastAskShowJobs

aaronsdevera

no profile record

Submissions

Plugin Secure: Exploiting Ambiguous Serialization

rya.nc
1 points·by aaronsdevera·9 bulan yang lalu·0 comments

Civilian hackers in China's military cyber strategy

margin.re
16 points·by aaronsdevera·tahun lalu·0 comments

[untitled]

1 points·by aaronsdevera·2 tahun yang lalu·0 comments

WebXray: Search engine for cookie privacy violations

webxray.ai
1 points·by aaronsdevera·2 tahun yang lalu·0 comments

Observer Ward: Web application and service fingerprinting tool

github.com
2 points·by aaronsdevera·2 tahun yang lalu·0 comments

Show HN: Sigkill, utility for decrypting and exporting signal chats

github.com
7 points·by aaronsdevera·3 tahun yang lalu·1 comments

Signal to roll out usernames in 2024

old.reddit.com
5 points·by aaronsdevera·3 tahun yang lalu·0 comments

What link previews on messaging apps leak about you

blog.aaronsdevera.com
1 points·by aaronsdevera·3 tahun yang lalu·0 comments

Detecting and blocking OpenAI crawlers with GreyNoise and Cloudflare

blog.aaronsdevera.com
1 points·by aaronsdevera·3 tahun yang lalu·1 comments

Boom, bust and adjust: offensive cybersecurity industry trends and updates

medium.com
3 points·by aaronsdevera·3 tahun yang lalu·0 comments

Tor v0.4.8.1 alpha gains proof-of-work mitigation against DOS attacks

forum.torproject.net
41 points·by aaronsdevera·3 tahun yang lalu·1 comments

Analyzing Russian Internet Firm Yandex, Its Open-Source Code, and Contributors

margin.re
2 points·by aaronsdevera·3 tahun yang lalu·0 comments

Threat actors using HuggingFace to deliver malware

huggingface.co
2 points·by aaronsdevera·3 tahun yang lalu·0 comments

Russia’s Open-Source Code and Private-Sector Cybersecurity Ecosystem

margin.re
1 points·by aaronsdevera·4 tahun yang lalu·0 comments

Homebrew macOS package manager 2022 security audit [pdf]

brew.sh
6 points·by aaronsdevera·4 tahun yang lalu·0 comments

Paradies Malware steals cryptocurrency from your clipboard

youtube.com
1 points·by aaronsdevera·4 tahun yang lalu·0 comments

FOISted: A MikroTik Remote Jailbreak

github.com
3 points·by aaronsdevera·4 tahun yang lalu·0 comments

Jailbreaking MikroTik RouterOS

margin.re
7 points·by aaronsdevera·4 tahun yang lalu·0 comments

No Code Execution? No Problem Living the Age of VBS, HVCI, and Kernel CFG

connormcgarr.github.io
2 points·by aaronsdevera·4 tahun yang lalu·0 comments

1-Click RCE in Electron Applications

shabarkin.notion.site
1 points·by aaronsdevera·4 tahun yang lalu·0 comments

comments

aaronsdevera
·3 tahun yang lalu·discuss
some light research into blocking openai crawlers https://blog.aaronsdevera.com/posts/20230823-detecting-and-b...
aaronsdevera
·3 tahun yang lalu·discuss
Surprised this did not get as much coverage. The Australian government produced this report last week which studied CCP ties to TikTok, the executive summary alone is pretty fascinating:

https://www.aph.gov.au/DocumentStore.ashx?id=a7e2a076-1112-4...
aaronsdevera
·4 tahun yang lalu·discuss
I would love to try it, but I’ll wait until the registration pop up is gone and the HN attention stops DOSing the backend. But from the sound of the website description this is a next and welcome step in the semi intelligentification of anything
aaronsdevera
·4 tahun yang lalu·discuss
heck, auto-generated English captions on YouTube still struggle to keep up most the time...

https://knowyourmeme.com/memes/youtube-automatic-caption-fai...
aaronsdevera
·4 tahun yang lalu·discuss
"Stage2.exe is a downloader for a malicious file corrupter malware. Upon execution, stage2.exe downloads the next-stage malware hosted on a Discord channel, with the download link hardcoded in the downloader."

Interesting technique.
aaronsdevera
·5 tahun yang lalu·discuss
Love algo. hard to imagine another project comes close to the ease of setting up an algo server...
aaronsdevera
·5 tahun yang lalu·discuss
or, you know, you could just paste this into the javascript console.

JSON.parse(window.localStorage.getItem("gameState")).solution
aaronsdevera
·5 tahun yang lalu·discuss
One thing I am incredibly cognizant of is the balkanization of the web. Different territories and privacy regimes will dictate various compliance steps... navigating this will be difficult. As a site operator I plan on collecting analytics accordingly, with a polymorphic payload that knows whats allowed to be collected where possible...
aaronsdevera
·5 tahun yang lalu·discuss
Reminds me of the residential proxy services known for fraud and hacking...

Google cache of TrendMicro report https://webcache.googleusercontent.com/search?q=cache:RUzFCa...

Looks like Tor Project is operating with a similar model, using Snowflake proxy users as a sort of broker onto the network.

Clever, but will be interesting to watch how this gets used. My testing so far of the Snowflake broker seems to have attracted less than benign hosts https://twitter.com/aaronsdevera/status/1473354766965035013