My favorite pentesting setup.

Today i'm setting up the #KaliLinux #Docker #container for my #ansible #playbook. This setup has some pretty cool advantages for me.

I can:

• access the shell and files using #SSH and #SFTP.
• customize the installation to the fullest extend using the #Dockerfile.
• easily route the #networktraffic through a #vpn using #gluetun.
• reproduce the setup (i love Docker).
• use GUI apps from that container using X11Forwarding or by installing a #vnc server.

This has been my favorite #pentesting setup so far for obvious reasons. I can access a fully configured pentesting environment on all my devices, always accessible and ready to go.

In case anyone is interested in the setup, it will be included in my ansible playbook, which will be published on this repository.

#automation #linux #hacking #x11 #homelab #selfhosting

Join Anthony Verez at #Honeynet2025 in Prague for a hands-on training that dives into pcap analysis, attack classification, and large-scale metadata extraction. Learn how to use tools like Zeek, Suricata, DuckDB, and even LLMs like ChatGPT to break down malicious traffic patterns and understand real-world threats.

🛠️ Hone your skills in traffic dissection and detection
🪑 Limited seats available – don’t wait!
🔗 Register now: https://prague2025.honeynet.org

#PCAPAnalysis #NetworkTraffic #Zeek

Ah, just what we needed: yet another convoluted tool to poke holes in #encryption masquerading as "innovation" 🎩🔍. Now you can snoop on network traffic with all the grace of a bulldozer in a china shop, while GitHub desperately tries to sell you #AI as the solution to all your coding woes 🤖💡.
https://github.com/qpoint-io/qtap #innovation #networktraffic #tools #privacy #HackerNews #ngated

Just posted a new blog: Pete’s Take: Microsegmentation 03: Discovering Traffic Flows. URL: https://www.linkedin.com/pulse/petes-take-microsegmentation-03-discovering-traffic-flows-welcher-bykae/ Tags: #PeterWelcher #CCIE1773 #Microsegmentation #Elisity #Cisco #FlowDiscovery #TrafficAnalytics #NetworkTraffic

To add some more... For the last month:

- printer produced 9.34 MB of traffic
- air purifier - 27.2 MB
- robot vacuum - 912 MB

#network #IoT #UniFi #traffic #NetworkTraffic

Don't mix up #WireShark and #WireGuard: One is for analyzing #networktraffic and the other one is for hiding and encrypting network traffic (besides other things).

And yes, I verbally mix them up often enough even though I know exactly which one does what. Seems to be a #dyslexia thing.

#deformationProfessionnelle

Tom’s Hardware: This Raspberry Pi project visualizes your real-time network traffic in the most beautiful way. “Keeping an eye on your network activity is an important part of network security, but did you ever consider it could be an important element of design? We’re tickled to show off this cool Raspberry Pi art display put together by maker and developer Alex Chang that uses network […]

https://rbfirehose.com/2025/01/03/toms-hardware-this-raspberry-pi-project-visualizes-your-real-time-network-traffic-in-the-most-beautiful-way/

Need to monitor and diagnose network traffic on Windows? 🌐💻 Learn the best tools and techniques to track, analyze, and troubleshoot your network like a pro! 🚀 #NetworkTraffic #WindowsTips #TechTutorial #Troubleshooting

https://pupuweb.com/how-to-monitor-and-diagnose-windows-network-traffic/

To arrive at their breakthrough, the study researchers combined two prior approaches: the original solution that treated #networks as #traffic; and a later one that instead viewed them as an #ElectricalGrid.

#Algorithms

'Absurdly fast' algorithm solves 70-year-old logjam — speeding up #NetworkTraffic in areas from #AirlineScheduling to the #internet
https://www.msn.com/en-us/news/technology/absurdly-fast-algorithm-solves-70-year-old-logjam-speeding-up-network-traffic-in-areas-from-airline-scheduling-to-the-internet/ar-BB1qSRdF?ocid=emmx-mmx-feeds&PC=EMMX01

One example why to use strong #passwords for users who use file sharing over #SMB even when the file transfers are #encrypted.
If the SMB traffic is captured/eavesdropped, then the attacker can try to crack the user password.
The attacker is able to extract challenge/response values from the Session Setup and then use #passwordcracking tools such as #hashcat

If the attack is successful, the attacker will gain not only the access to the user account, but it is also possible to decrypt the captured SMB file transfers. There is lack of perfect forward secrecy in this encryption.

For more details and practical examples, see this blog post:

https://malwarelab.eu/posts/tryhackme-smb-decryption/

#networktrafficanalysis #networktraffic #encryption #netntlmv2 #netntlm #ntlm #windows #fileshare #pentesting #cybersecurity #hardening #password #cracking #offensivesecurity #offsec #blueteam #purpleteam

Recent #TryHackMe room inspired me to publish blog about Decryption of #SMB traffic

Summarized 3 methods of decryption in #Wireshark:
- with user password
- with NTLM hash
- without them, just by cracking the captured #network traffic

https://malwarelab.eu/posts/tryhackme-smb-decryption/

#cryptography #networkanalysis #networktrafficanalysis #networktraffic #samba #encryption

ELLIO and @ntop_org partnership to boost high-speed #networktraffic #monitoring #ntopng with real-time data on opportunistic scans, #botnets, and mass attacks. https://blog.ellio.tech/?p=148 via
@ELLIO

Hello everyone.
In today's article, we learn to listen to our own TCP/UDP packets using the Python socket model.

We wish everyone a good reading and working.
https://denizhalil.com/2024/04/23/python-network-traffic-listener-guide/

#networktraffic #python #programming #socket #sniffing #cybersecurity #networkanalysis

Top 10 #Networking #Tools & Techniques by #ActiveCountermeasures.

I have lot of fun watching this video and there are several useful tips&tricks by Chris and Bill.
Especially recommended to see use cases for #tshark, #tcpdump with #BPF and counting connections per hour from PCAP an #zeek logs

https://www.youtube.com/watch?v=0I6W175cUQk

#networkanalysis #networktraffic #networkforensics

Egal ob KI, Machine Learning (ML), Erweiterte Realität (XR) oder Digital Twins - alle diese Technologien haben etwa gemeinsam: Sie sorgen dafür, dass der Datenverkehr weiter stark zunimmt. Glaubt man dem Global Network Traffic 2030 Report von Nokia, so wird der Datenverkehr zwischen 2022 und 2030 mit einer durchschnittlichen jährlichen Wachstumsrate (CAGR) von 22 bis 25 Prozent zunehmen. (https://www.cio.de/) #NetworkTraffic https://www.computerwoche.de/a/so-veraendern-ki-und-cloud-die-netze,3697937

La diferencia entre el tráfico de #red de #Linux y #Windows es como la de un goteo controlado frente a una inundación apocalíptica 😱😁🚰🐧🪣 #network #networktraffic

For many in #security, full packet capture may seem like the holy grail. Our take? Reduce your #PCAP to only what is truly anomalous or requires further investigation. In a new blog, @corelight's Roger Cheeks explains how teams can create greater efficiencies and supercharge both their #SOC and their budget by using metadata that levels up packet capture. Read it now: https://corelight.com/blog/how-socs-can-level-up-their-pcap-game-part-2

Ready to accelerate your investigations with one-click pivots? Check out Corelight Smart PCAP, which significantly reduces the burden of packet capture without lowering the fidelity of information or the capabilities of analysts: https://corelight.com/products/smart-pcap/

#NetworkTraffic #NetworkAnalysis #NetworkSecurity #NTA #NDR #CyberThreats #DFIR

Has your #security team always wanted to take a full #PCAP approach to #networkanalysis but didn't think it was possible? Say goodbye 👋 to infrastructure overhead, difficulty of use, and high costs for limited retention timeframes with @corelight_inc Smart PCAP. Check out this blog from our own Roger Cheeks to learn how Smart PCAP gives #cyberdefenders the operational advantage they need with highly operational and cost-efficient packet capture workflows. It's the first in a two-part series: https://corelight.com/blog/how-socs-can-level-up-their-pcap-game

You can also find out more about Smart PCAP here: https://corelight.com/products/smart-pcap/

Contact us for a demo: https://corelight.com/products/demo

#NetworkTraffic #NetworkSecurity #NTA #NDR #CyberThreats #DFIR

#telecomsdrumbeat #networktraffic #traffictax #fairshare https://www.netopia.eu/network-fees-and-the-creative-sector/ What about the European creative sector? Would those companies be impacted by #networkfees? What is Disney refuses to pay? Will e.g Orange block Disney from the web?

Netopia look at the facts ⤵️

During the last 15 months, we have been developing the AI VPN, a tool to perform a security assessment of VPN clients' network traffic to identify cyber security threats. This is the current engine of our Emergency VPN service. #infosec #tools #freesoftware #aivpn #civilsociety #networktraffic #securityassessments

https://github.com/stratosphereips/AIVPN