0P3N Blog

Cybrary’s Open Blog is a user contributed cybersecurity knowledge base that brings together content highlighting the latest tools, exploits, technologies and insights in the industry.

By: synthesis
December 4, 2016

Introduction Socat is a multi-purpose networking tool which can be used to accomplish various networking tasks (refer to SOCAT as a Polymorphic Networking Tool which gives an overview on the many uses of Socat). In this article, Socat will be used to setup an SSL VPN tunnel between two endpoints, which could be separated over a large ...

SQL Injections and Countermeasures
By: Hari Charan
December 3, 2016

These days, all we hear about  hacktivists  took down a website and retrieved thousands of user’s data. One of the techniques to get unauthorized access to a database is by performing SQL injection . SQL injection is a basic technique a hacker might use to take over unauthorized access to the database or maybe to enumerate the ...

SSMA - Simple Static Malware Analyzer
By: Jimakoch
December 3, 2016

SSMA is a simple malware analyzer written in Python 3. Features: Searches for websites, e-mail addresses, IP addresses in the strings of the file. Looks for Windows functions commonly used by malware. Get results from VirusTotal and/or upload ...

A Buzzword to Rattle your Brain
By: Olivia
December 2, 2016

Updated October 2018 I’ve got a buzzword for you. ‘Deep learning.’Perhaps you’ve heard of it, or maybe not. But if you’ve been following the IoT trend like I have, you’ll hear its praise there.Deep learning is a branch of machine learning, and the one you can thank for improved voice search on smartphones and better image recognition ...

Brain Token: A Multi-factor Authentication Enhancement
By: Ridiahshost
December 2, 2016

A solution for the possibility that a targeted password manager or vault may be compromised. This also serves as a multi-factor authentication method which is not stored in any electronic device. Multi-factor authentication is a means of authenticating with more than one form; combining factors of authentication greatly reduces the chance of a failure in the authentication process. The ...

Pythonista 3 iOS Hacking
By: CybrarySupport
December 2, 2016

Many iOS users would agree that Apple products are very restricting and limit the max functionality of the device itself. There are only a few ways to unleash the potential iOS devices have when it comes to hacking. Some people resort to Jailbreak which can make the device vulnerable to attacks. But for all the programmers out there, there ...

Why are Russians Such Talented and Determined Hackers?
By: rcubed
December 1, 2016

When we hear about cybercrime and hacking exploits we tend to immediately assign blame to the usual suspects: the Russians or the Chinese. Next in line are hackers from other Eastern European countries formerly part of the Soviet Union such as Romania and other satellites. Increasingly, cyber "bad guys" from Russia are hogging most of the press ...

Password Generation Principles
By: Cernyr
December 1, 2016

Hello, fellow Cybrarians!Today I would like to introduce you to the fine art of password creation. In the first part of this article, we will discuss the anatomy of a password, and the definition of entropy. In the second part, we will look at some real life examples of easy to generate but hard to guess passwords. So without ...

MobSF: World's Most Powerful Mobile Pentesting Framework
By: bachan
December 1, 2016

Hello Cybrarians,The world is changing & technology is becoming more and more advanced. Everything is mobile.So let's start! For the most advanced mobile pentesting environment:  Mobile Security Framework (MobSF) It is an automated pentesting framework created by Ajin Abraham.You can clone the latest release from github  https://github.com/ajinabraham/Mobile-Security-Framework-MobSF.git It is an automated mobile (android/iOS) pentesting framework which is capable of performing a static ...

Risk Management Disaster Planning
By: prabesh8583
December 1, 2016

Risk Management: Contingency Planning - "Plan B" What? Today I want to share about so called the Plan B, it comes under risk management. Big or small every organization should have contingency planning. Contingency planning refers to the planning for unexpected events when the use of technology is disrupted and business operation ...