-
Getting Data on Usernames
Click or not...: Getting Data on UsernamesAs an OSINT investigator, knowing a person’s usernames is like knowing their aliases. Oftentimes people reuse the same username, as an alternate ID, and this makes profiling and data gather a bit easier. One caveat, a user may use a username shared by others, but if it’s very specific then there’s less chance of pollution.… Read more...
-
Installing GHunt
Click or not...: Installing GHuntIn a recent post, I discussed the data leakage that can occur from public reviews and ratings. This is especially concerning when paired with a tool like GHunt. GHunt can be viewed from another perspective as a tool for investigators. If you get a Gmail during an investigation of an event or target, that email… Read more...
-
Getting Info on Gmail Accounts
Click or not...: Getting Info on Gmail AccountsA lot of us balance privacy concerns vs. usability and in that regard some (maybe most?) are unaware of the data that can be obtained with their Gmail account. Gmail makes use of a Google identifier (Gaia ID), which stores publicly shared data. This data can be reviews, checkins, or various forms of geo tagging… Read more...
-
Wazuh Install and Maintenance
Click or not...: Wazuh Install and MaintenanceTo date I’ve installed Wazuh three different ways: Beyond the core install there is also the email setup and some maintenance elements that must be completed: namely configuring the index lifecycle. Without adjusting a regular deletion of indexes as they reach an age limit, the hard disk will become filled over time. All this will… Read more...
-
Security Setup at work, home or to learn
Click or not...: Security Setup at work, home or to learnThere are a lot of tools for security. Tools that get the most attention are perhaps offensive ones, but defensive tools and skillsets are very much needed. In this article, I wanted to mention the security measures that I would put in place if I were to jump into a team that had little to… Read more...
-
![EDR [WAZUH]](https://ffe4.org/wp-content/uploads/2024/03/edr3-scaled.jpg)
EDR [WAZUH]
Click or not...: EDR [WAZUH]EDR (Endpoint Detection and Response) is a valuable security layer. While Antivirus protects the system against known threats (in theory), and an IDS (Intrusion Detection System) protects a network against threats, the EDR monitors known endpoints (computer, server, etc.) in a network. The EDR installs an agent on each device in the network and relays… Read more...
-
GVM – Package Scanning
Click or not...: GVM – Package ScanningAccording to the GVM documentation, when you set up a scanner you can add credentials and escalated privileges. The purpose of these credentials, is to allow administrative/root access to a machine, in order to scan the installed packages. Version information of all installed packages is then cross referenced to know CVE’s. The result is a… Read more...
-
Hack The Box [HTB] Review
Click or not...: Hack The Box [HTB] ReviewAt the time of this writing, I’m a bit on the fence with HackTheBox.com. On one hand they offer VM’s, training and certifications for a very decent price. On the other hand, I found the support to be lacking, the lessons to be wrong in various instructions and it left me frustrated at times. Pricing… Read more...
-
Hack The Box: Issues with Net Cat
Click or not...: Hack The Box: Issues with Net CatGoing through some material at Hack the Box (HTB), I came across various lessons that I couldn’t get past. I’m not fluent in NetCat, and it comes in many different variations, so I got stumped with the content of the course. The course content details setting up a listener using NetCat. The methodology however, isn’t… Read more...
-
ParrotOS: Fix Sherlock
Click or not...: ParrotOS: Fix SherlockThe existing version of ParrotOS has a bug with social media lookup app, Sherlock. Specifically Sherlock has a bug where the version installed on ParrotOS won’t run (0.14.0). It requests you upgrade to 0.14.3. This upgrade can’t be done through apt, as ParrotOS will only pull down 0.14.0. To fix this, we need to download… Read more...
Recent Posts
- Getting Data on Usernames
- Installing GHunt
- Getting Info on Gmail Accounts
- Wazuh Install and Maintenance
- Security Setup at work, home or to learn
Tags
App Archive.org dashboard EDR elasticsearch elk email Exercise EXIF filebeat GHunt Google Earth gvm IDS kibana logic Maltego OpenCTI openvas OSINT owasp philosophy Reporting Reverse Image Search scanner suricata Wazuh