BHIS Blog Post: GNU Radio Primer

Black Hills Information Security just published a great blog post for anyone interested in software defined radios (SDRs). It links to other tutorials that he found while working with a car key fob and how he used GNU Radio paired with a HackRF One to capture and replay the signal back to the receiver. This is a good read for anyone interested in doing working with SDRs.

BHIS Blog Post: http://bit.ly/3467czI

China’s “Great Cannon” being actively used against Hong Kong protestors

Apparently China has brought out the proverbial “big guns” for dealing with the protests that have been going on in Hong Kong for the last 6+ months. The “Great Cannon” is a capability that is in the Great Firewall of China and it is cyber weapon has the ability to downgrade HTTPS to HTTP and then inject malicious JavaScript into targets web browser which gives them full control of the web browser and can be used to track what is being said, sites being visited, and worst of all create a massive botnet using the affected web browsers to launch a distributed denial of service (DDoS) attack the forums being used to coordinate protests.

You can read more about China’s “Great Cannon” here: http://bit.ly/34awInD

Offensive Security released Kali Linux 2019.4

Offensive Security, the company that is behind Kali Linux, has just released a new version of Kali Linux they are calling 2019.4. This recent release includes the usual updates to their tools, changes the default window manage from Gnome to XFCE, inclusion of PowerShell for Linux and other minor tweaks but it also has a new mode that was introduced that they are calling “UnderCover Mode” which changes the Kali desktop to look like Windows 10. This is great if you are trying to do penetration testing in a public place or at the client facility.

Links:

A new open source open source intelligence tool: OSINT-recon

Finally some competition for recon-ng! This tool will collect and aggregate data from the following sources:

GitHub repo can be found here: http://bit.ly/2KAPjCj

Meet Donut: A tool that will automatically create shellcode

Ever wish you could just take your piece of VBScript code and convert it into shellcode? How about that .NET DLL? Boy, do I have a treat for you! Meet Donut. Donut is a tool for generating shellcode for x86 and x64 architectures that will convert VBScript, JScript, .NET assemblies and even traditional EXEs and DLLs and will convert it into position independent code (PIC) shellcode.

More information can be found here: http://bit.ly/2Xnre78

OWASP just released a new version of their OSINT Tool “Amass”

The OWASP Foundation recently released a new version of their OSINT tool named Amass. It has great features that make it really good for pentesters and red teamers alike. It will automatically gather OSINT from DNS, search engines, web archives, APIs such as Shodan, Twitter and PasteBin. You may want to consider making this tool in your toolbox for the next engagement you are on!

GitHub Link is: http://bit.ly/2W2KcPR

USB Armory MkII: A USB-C Thumb Drive Based Linux Computer For Pentesters

USB Armory MkII is the successor to the original USB Armory which was introduced back in 2014. This new revision is currently accepting backers on Crowd Supply, which is a crowd funding site that is very similar to Kickstarter, and is currently over 250% funded. The funding for this project will end on November 1, 2019 at 01:59 PM EDT:

A security-minded USB-C stick computer that runs Linux

The USB armory Mk II is a full featured computer (900 MHz ARM® processor, 512 MB RAM, Bluetooth, USB-C) in a tiny form-factor, designed from the ground up with information security applications in mind.

Hardware

    • SoC: NXP i.MX6ULZ ARM® Cortex™-A7 900 MHz
    • RAM: 512 MB DDR3
    • Storage: internal 16 GB eMMC + external microSD
    • Bluetooth module: u-blox ANNA-B112 BLE
    • USB-C ports: DRP (Dual Role Power) receptacle + UFP (Upstream Facing Port) plug
    • LEDs: two
    • Slide switch: for boot mode selection between eMMC and microSD
    • External security elements: Microchip ATECC608A + NXP A71CH
    • Physical size: 66 mm x 19 mm x 8 mm (without enclosure, including USB-C connector)
    • Enclosure: included with all units for device protection

Links

Burp Suite now supports WebSockets

While I was trolling around on Twitter this morning PortSwigger tweeted about their latest release of Burp Suite which now supports intercepting WebSockets. Check out their release note regarding v2.1.01. This feature also appears to be in the Community version as well as their Professional version:

http://bit.ly/2k7Dv0o