0P3N Blog

Cybrary’s Open Blog is a user contributed cybersecurity knowledge base that brings together content highlighting the latest tools, exploits, technologies and insights in the industry.

Cloud-Based Application Penetration Testing
By: Hari Charan
December 6, 2016

Most of the applications these days are on  Cloud . Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more. But most of the organizations are in a notion that security is a service providers job. Yea, I ...

What's the deal with IPV6?
By: rcubed
December 6, 2016

Not long after the Internet and World Wide Web were unleashed on the public, plans were already underway to increase the potential pool of IP addresses available for allocation. The version of the IP protocol standard most in use today, IPv4, was released way back in 1981 and deployed in 1982. This version is a 32-bit protocol ...

Pentester's Guide - MD5 Hash a Website Page
By: Rattar
December 5, 2016

Have you ever wanted to calculate an MD5 Hash of a web page? Well, now you can.Before we begin, you might be asking why would I ever need to use an MD5 Hash on a web page? The reason is simple: Check to see if a web page changes. Why can't I just compare two files? You ...

CREATING AN SSL VPN WITH SOCAT
By: synthesis
December 4, 2016

Introduction Socat is a multi-purpose networking tool which can be used to accomplish various networking tasks (refer to SOCAT as a Polymorphic Networking Tool which gives an overview on the many uses of Socat). In this article, Socat will be used to setup an SSL VPN tunnel between two endpoints, which could be separated over a large ...

SQL Injections and Countermeasures
By: Hari Charan
December 3, 2016

These days, all we hear about  hacktivists  took down a website and retrieved thousands of user’s data. One of the techniques to get unauthorized access to a database is by performing SQL injection . SQL injection is a basic technique a hacker might use to take over unauthorized access to the database or maybe to enumerate the ...

SSMA - Simple Static Malware Analyzer
By: Jimakoch
December 3, 2016

SSMA is a simple malware analyzer written in Python 3. Features: Searches for websites, e-mail addresses, IP addresses in the strings of the file. Looks for Windows functions commonly used by malware. Get results from VirusTotal and/or upload ...

A Buzzword to Rattle your Brain
By: Olivia
December 2, 2016

Updated October 2018 I’ve got a buzzword for you. ‘Deep learning.’Perhaps you’ve heard of it, or maybe not. But if you’ve been following the IoT trend like I have, you’ll hear its praise there.Deep learning is a branch of machine learning, and the one you can thank for improved voice search on smartphones and better image recognition ...

Brain Token: A Multi-factor Authentication Enhancement
By: Ridiahshost
December 2, 2016

A solution for the possibility that a targeted password manager or vault may be compromised. This also serves as a multi-factor authentication method which is not stored in any electronic device. Multi-factor authentication is a means of authenticating with more than one form; combining factors of authentication greatly reduces the chance of a failure in the authentication process. The ...

Pythonista 3 iOS Hacking
By: CybrarySupport
December 2, 2016

Many iOS users would agree that Apple products are very restricting and limit the max functionality of the device itself. There are only a few ways to unleash the potential iOS devices have when it comes to hacking. Some people resort to Jailbreak which can make the device vulnerable to attacks. But for all the programmers out there, there ...

Why are Russians Such Talented and Determined Hackers?
By: rcubed
December 1, 2016

When we hear about cybercrime and hacking exploits we tend to immediately assign blame to the usual suspects: the Russians or the Chinese. Next in line are hackers from other Eastern European countries formerly part of the Soviet Union such as Romania and other satellites. Increasingly, cyber "bad guys" from Russia are hogging most of the press ...