Don’t be a script kiddy

Ok kids, AWS is gonna call your mommie and she’s gonna have to change the WIFI password again.

Seriously though, this is what happens when autistic kids play with scriptkiddy tools. Scriptkiddy tools immediately set off alarm bells and frequently generate automated abuse complaints. You do this shit from a crappy shared server with 50 other people on it so no one knows who to blame, not an Amazon instance that has your name written all over it. And you absolutely don’t do 20 requests per minute.

——————————————————————————-

Thank you for submitting your abuse report. We have begun our investigation into the source of the activity or content you reported.

We’ve determined that an Amazon EC2 instance was running at the IP address you provided in your abuse report. We have reached out to our customer to determine the nature and cause of this activity or content in your report.

We will investigate your complaint to determine what additional actions, if any, need to be taken in this case. We may notify you during our investigation if our customer requires more information from you to complete their troubleshooting of the issue. Our customer may reply stating that the activity or content is expected and instructions on how to prevent the activity or manually remove the content, as well.

If you wish to provide additional information to us or our customer regarding this case, please reply to this email. Please also let us know if we have your consent to share your contact information with our customer so that they can reach out to you directly to address your concerns.

We will notify you once this case has been marked resolved. Thank you for alerting us to this issue.

Regards,
AWS Trust & Safety

submitted by /u/FantasticThing359
[link] [comments]

Wagyu XSS Update

A while back I posted a tool I created called Wagyu. I just wanted to say thank you as you guys have been awesome! I have had numerous vulnerabilities and bugs raised and due to the support, multiple versions of Wagyu have been released. If you haven’t…

Fooling My ISP

Ok so I pay for 75 mbps and when I do an ookla speedtest , its shows 150 mbps download speed which is total b.s , So I know that my ISP is purposely optimizing the network to show good stats , is there a way I can permanently exploit that to get unrest…

Hacker stole credit cards from the website of Canada’s largest alcohol retailer LCBO

The Canadian Liquor Control Board of Ontario (LCBO), the largest beverage alcohol retailer in the country, disclosed Magecart attack. Canadian Liquor Control Board of Ontario (LCBO), the largest beverage alcohol retailer in the country, disclosed a Magecart attack on January 10, 2023. Threat actors compromised the Canadian Liquor Control Board of Ontario’s website and injected […]

The post Hacker stole credit cards from the website of Canada’s largest alcohol retailer LCBO appeared first on Security Affairs.

I made a port scanner

https://github.com/ko-mill/Nimmer-nim-port-scanner- Lmk what you think submitted by /u/His_son [link] [comments]

CircleCi Elaborates Over Recent Data Breach

CircleCi stands as a software company, popular with software engineers and developers for its products. Recently, however, the company had confirmed that data of some of their customers had been stolen by way of a data breach that occurred last month. …

Security Affairs newsletter Round 402 by Pierluigi Paganini

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. Most internet-exposed Cacti servers exposed to hacking French CNIL fined Tiktok $5.4 Million for violating cookie […]

The post Security Affairs newsletter Round 402 by Pierluigi Paganini appeared first on Security Affairs.

How to brute force KeePassXC

How to brute force KeePassXC

I’ve tried it and it does work, but you’ll need and idea on what the password looked like, for example key words, length and other features

What you’ll need:

  1. Linux OS. I used Kali Linux inside VirtualBox

  2. To create the worldlist i used mentalist (it creates passwords with key words) or type it by hand

  3. To share the wordlist and the .kdbx (keepass database) create a shared folder ( <VM’s name> – settings – shared folders)

  4. Get keepass4brute (Linux only):

  5. Open a terminal window.

  6. Update the package list by running the command sudo apt-get update
    .

  7. Install the necessary dependencies by running the command sudo apt-get install python3-dev python3-pip libssl-dev
    .

  8. Use pip3 to install the package by running the command pip3 install keepass4brute
    .

  9. Verify the installation by running the command keepass4brute -h
    to see if it returns the help menu.

OR download it from here. You still need to to 1, 2 and 3

  1. Copy or cut the folders inside the shared folder and paste it on the desktop or anywhere else but remember the path.

  2. Open terminal windows and write: /keepass4brute.sh <kdbx-file> <wordlist>

Example

In the end it will show you the right password.

If you have any Questions or need help ask ChatGPT.

submitted by /u/_WALUF_
[link] [comments]