bunthut 
With my new x260 thinkpad, I came to install kubuntu. The main reason it’s not the usual debian testing with xfce4 was that debian, even the firmware image, didn’t had the wifi firmware for the x260. I tried PopOS randomly, which didnt include the drivers too. Next choice was kubuntu then, since I was a … Read moreFalling in love with KDE
I bought a refurbished thinkpad x260 and the bios locked with the seller can not supply the password. Since I need at least a seperated kali for pentesting and used virtual box until today, I would need virtualization enabled. Which wasn’t unfortunately. So I am exploring ways to use kali as a lxc container. A … Read moreUsing kali in lxc container the easy way
To have the signal desktop client running on testing, one needs to install 2 packages from the buster release. I will update how that works out. https://packages.debian.org/buster/amd64/libindicator7/downloadhttps://packages.debian.org/buster/libappindicator1/download Update: Seems to work good 🙂
I recently was asked by a colleague how i would find all these cool applications I come up with. As I was looking for an alternative to the popular design tool InDesign, I thought to reveal one of my favorite tools in finding great stuff online. AlternativeTo.net is so valuable to find previously unknown tools. … Read moreHowto find cool apps
Peinlicherweise habe ich mein WordPress zerschossen als ich zu OVH umgezogen bin….wird wohl etwas dauern, bis auch das theme wieder gut aussieht..immerhin weg vom unendlich schlechten 1blu. Update: Template ist wieder in etwa auf dem alten Stand. Aber ich denke ich werde WordPress mal durch was leichtgewichtigeres auswechseln, ich finde es inzwischen wirklich zu aufgebläht.
Auf den Terroranschlag folgt EU-Verschlüsselungsverbot – FM4 Die EU möchte gerade im Schnellverfahren Verschlüsselung verbieten. Tja, Fuck You Privatsphäre. Die Opfer: Unbedarfte ohne Ahnung von Technik. Reines Werkzeug zur Massenüberwachung und wie man so schön sagt: ” You can’t uninvent the math.” Also werden nur Brave Bürger die nicht halt stattdessen ein anderes Tool verwenden … Read moreMal wieder Terror als Ausrede
https://opensourcesecurity.io/2020/07/26/episode-207-weaponized-attention/ Eine interessante Folge von Open Source Security über AI’s die Texte generieren und wie man Aufmerksamkeit Monetarisiert. Dazu fiel meiner Freundin auf, man finde bei der Suche nach Repetaturanleitungen viele scheinbar AI generierte Trash Texte. Absicht? Man kann ja so Menschen recht davon abhalten ihr kaputtes Gerät zu reparieren. Wenn jemand es wagt sich … Read moreWeaponized Attention and other encounters.
With flock you can implement basic job control in bash. That’s very handy when you have a script that is running in multiple instances and doing file operations. I was writing a script to return some data from a switch stack to zabbix and as zabbix does run the script for every item it gets … Read morehandling multiple script instances in BASH
The Marketplace writeup tryhackme jwt token found Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VySWQiOjQsInVzZXJuYW1lIjoibW9hIiwiYWRtaW4iOmZhbHNlLCJpYXQiOjE2MDMxODQzNzB9.cHhTfERXZoGvHZu5wEFEqRN5paZc6FZIH8AUPVFcHsY decoded its: {“alg”:”HS256″,”typ”:”JWT”}{“userId”:1,”username”:”michael’ or 1=1″,”admin”:true,”iat”:1603184370} eyJ1c2VySWQiOjQsInVzZXJuYW1lIjoibW9hIiwiYWRtaW4iOnRydWUsImlhdCI6MTYwMzE4NDM3MH0= Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VySWQiOjEsInVzZXJuYW1lIjoibWljaGFlbCcgb3IgMT0xIiwiYWRtaW4iOnRydWUsImlhdCI6MTYwMzE4NDM3MH0K.cHhTfERXZoGvHZu5wEFEqRN5paZc6FZIH8AUPVFcHsY ok since i found an reflected xss and there was an ability to report stuff to admins which are automatically responded to by an admin account, we can steal their cookies. i’m running a cookie stealer and injected … Read moreThe Marketplace – writeup tryhackme
Reminder to not use \d, \w and such regex tokens when using regex with the linux streamline editor sed. Use [0-9] and [a-z] instead. Made me ask my first question on stackoverflow and getting downvoted for it 😛 https://regex101.com btw… when dealing with regular expressions, a handy tool. would be nice to have a sed … Read moresed dislikes \d \w regex syntax