→ Bruteforcing the phone number of any Google user
https://brutecat.com/articles/leaking-google-phones
#BruteForcing
#Bruteforcing the phone number of any #Google user
Thanks to our #TurrisSentinel #security #research program, #CZNIC #CSIRT team discovered large scale #FTP #attack. Coming from 45.78.4.0/22, it is #bruteforcing #slowly - it takes it 19 day to get through it's #passwords. Big thanks to everybody who helps us by running our #minipots on their devices! Report in #Czech is available on CSIRT website https://csirt.cz/cs/kyberbezpecnost/aktualne-z-bezpecnosti/distribuovany-ftp-bruteforcer/
How many services have a default username, but can have a custom password? Redis comes to mind (AUTH default password123).
#bruteforcing
A case of missing bytes: #bruteforcing your way through #Jenkins' CVE-2024-23897
(In which US crypto export restrictions prove to be still harmful after 25 years)
I decided to write a Ruby micro-framework for writing bruteforcers. In order to test my code, I would need bruteforce-able servers. So I created this bruteforceable repo of various apps and Dockerfiles. Please feel free to contribute some additional servers/Dockerfiles. Currently have FTP and HTTP Basic-Auth, still need HTTP Login Form, SMTP, POP3, IMAP, and RDP. What else am I missing?
https://github.com/ronin-rb/bruteforceable
#bruteforcers #bruteforcing #infosec #dockerfiles
@gaycookie Nah...
Personally I'd literally block all non-consumer-facing #ISP's to prevent #botting and #Spamming like #BruteForcing #Credentials.
Shure that'll inconvenience some users like you and me but Microsoft doesn"t gove a damn about something >99% of users won't experience ever...
https://github.com/nitrogenez/nitroforce
Yes, I'm naming my software like the smurfs do.
So.
This is an android pentest tool made by me in Lua.
It uses adb to bruteforce Android phone's PIN.
Notice included.
To those smarties that would like to use that NOT in educational purpose: you need to at least enable USB-debugging on a victim's phone.
Made it just for fun and to upgrade my Lua skills.
#bruteforce #bruteforcing #android #pentest #pentesting #justforfun
Sherlock: a spider with #bruteforcing framework https://github.com/hanicraft/Sherlock
Which wordlists do people use the most frequently or know by name?
#infosec #wordlists #recon #enumeration #bruteforcing
Let’s say hi to someone trying to use my #email #server as an open relay and putting their email as the receiving one. Also that subnet #bruteforcing has 300K #reports. Can’t we just yeet their internet at this point? :blobcatpeek:
#Tryhackme #AdventOfCyber Day 5 was another fun one!
Pretty great way to get your feet wet into the world of some simple #BruteForcing techniques.
It's not too late to catch up either! Don't be afraid, or just jump in starting at Day 5 (You'll have until November 2023 to play!)
#HackyHolidays #HolidayHackathons #HappyHackyDays #infosec #Education #Hacking #THM
HEH P2P Botnet Sports Dangerous Wiper Function - The P2P malware is infecting any and all types of endpoints via brute-forcing, with 10 versions ta... https://threatpost.com/heh-p2p-botnet-wiper-function/159974/ #malwareanalysis #mobilesecurity #bruteforcing #selfdestruct #websecurity #peertopeer #360netlab #malware #botnet #telnet #wiper #iot #heh #p2p
Activision Refutes Claims of 500K-Account Hack - The Call of Duty behemoth said that the reports of widespread hacks are false. https://threatpost.com/activision-refutes-claims-account-hack/159433/ #twofactorauthentication #accounttakeover #bruteforcing #websecurity #activision #callofduty #passwords #accounts #breach #denies #gaming #hacks #hack #ato
APT28 Mounts Rapid, Large-Scale Theft of Office 365 Logins - The Russia-linked threat group is harvesting credentials for Microsoft's cloud offering, and targe... https://threatpost.com/apt28-theft-office365-logins/159195/ #2020presidentialelection #credentialharvesting #passwordspraying #cloudsecurity #bruteforcing #websecurity #government #fancybear #microsoft #office365 #strontium #russia #sofacy #hacks #apt28
Client Info
Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst