You can learn more about security assessments and cloud testing Halborn does at https://jh.live/halborn
00:00 Preview 00:22 Background on AWS Man-in-the-Middle 01:02 AWS CodeArtifact 02:34 Remote Code Execution with Dependency Confusion 04:34 You need to update old defaults! 05:22 Begin Demonstration 07:12 New Panel "Edit Origin Controls" 10:52 Finding Internal Package Names 12:50 How much damage does this do?
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcDark Web Dumpster Diving (Hunting Infostealer Malware)John Hammond2023-07-10 | j-h.io/flare || You can explore the dark web, hunt for cybercrime, threat intelligence or your exposed attack surface with Flare! Try a free trial and see what info is out there: j-h.io/flare
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcHow to Trick Hackers & Web Crawlers with SpidertrapJohn Hammond2023-07-06 | j-h.io/pwyc || Jump into Pay What You Can training for Active Defense & Cyber Deception -- at whatever cost makes sense for you! j-h.io/pwyc
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcHow Hackers Write Malware & Evade Antivirus (Nim)John Hammond2023-07-05 | https://jh.live/maldevacademy || Learn how to write your own modern 64-bit Windows malware with Maldev Academy! For a limited time you can use code 'HAMMOND10' to save 10%! https://jh.live/maldevacademy
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcTryHackMe! Finding Computer Artifacts with osqueryJohn Hammond2023-07-03 | https://jh.live/tryhackme || Learn cybersecurity with TryHackMe! Discount code 'JH10THM' will save 10% off the monthly, annual or student plan. You can get started with the osquery room and their SOC Level 1 learning path here: https://jh.live/thm-osquery
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcMOVEit Transfer Exploitation (my API presentation recording)John Hammond2023-06-30 | Help the channel grow with a Like, Comment, & Subscribe! ❤️ Support ➡ j-h.io/patreon ↔ j-h.io/paypal ↔ j-h.io/buymeacoffee Check out the affiliates below for more free or discounted learning! 🐱👤SEKTOR7 ➡ Malware Development, AV Evasion j-h.io/sektor7 🖥️ Zero-Point Security ➡ Certified Red Team Operator j-h.io/crto 💻Zero-Point Security ➡ C2 Development with C# j-h.io/c2dev 🐜Zero2Automated ➡ Ultimate Malware Reverse Engineering j-h.io/zero2auto ⛳Point3 ESCALATE ➡ Top-Notch Capture the Flag Training j-h.io/escalate 📗Humble Bundle ➡ j-h.io/humblebundle 🐶Snyk ➡ j-h.io/snyk
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcHow Hackers Use netsh.exe For Persistence & Code Execution (Sliver C2)John Hammond2023-06-29 | j-h.io/plextrac || Save time and effort on pentest reports with PlexTrac's premiere reporting & collaborative platform in a FREE one-month trial! j-h.io/plextrac 😎
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcStealing OAuth Github Tokens with AWS CodeBuildJohn Hammond2023-06-28 | Carlos Polop from HALBORN showcases his technique to exfiltrate Github tokens via the AWS CodeBuild cloud service, with a custom Docker container to man-in-the-middle the OAuth credentials!
You can learn more about Carlos Polop, Ignacio Dominguez or the security audits and assessments that HALBORN performs at j-h.io/halborn
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcInside a Cybercrime Scam OperationJohn Hammond2023-06-20 | https://jh.live/snyk || Use Snyk to help review code! Try it FOR FREE ➡ https://jh.live/snyk
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcHow Hackers Evade Program Allowlists with DLLsJohn Hammond2023-06-15 | j-h.io/plextrac || Save time and effort on pentest reports with PlexTrac's premiere reporting & collaborative platform in a FREE one-month trial! j-h.io/plextrac 😎
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcBypassing Branch Protections with Github Actions (CI/CD)John Hammond2023-06-14 | In this video we’ll dig more into Continuous Integration and Continuous Deployment (CI/CD) with Github Actions -- with indirect pipeline poisoning and bypassing branch protection, we'll uncover what modern security mechanisms should be in place with online repositories!
You can learn more about Carlos Polop, Ignacio Dominguez or the security audits and assessments that HALBORN performs at j-h.io/halborn
00:00 - Branch Protection 00:25 - Introductions 02:34 - Demo Start 07:06 - GitHub Actions PR permission setting 08:27 - Attack Start 12:03 - A note about being repository admin 14:46 - Reset and re-attack 16:46 - Q&A session 18:44 - Wrap up
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcHow To Extract Plaintext Google Chrome PasswordsJohn Hammond2023-06-12 | j-h.io/passbolt || Use a password manager to keep all your credentials secure -- my code JOHN-HAMMOND will save 20% off!! j-h.io/passbolt
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcNow Scammers Can RENT Email Addresses for CybercrimeJohn Hammond2023-06-09 | j-h.io/snyk || Try Snyk to find vulnerabilities in your own code and applications FOR FREE ➡ j-h.io/snyk
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcFAKE Microsoft Login to Hacked Charity ScamJohn Hammond2023-06-08 | j-h.io/proton || Get privacy by default with Proton, and stop other companies from exploiting your data! You can get started with Proton for free at j-h.io/proton
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcThreat Emulation & Purple Teaming (with PlexTrac Runbooks)John Hammond2023-06-01 | This is a fully featured and dedicated video for our sponsor PlexTrac. j-h.io/plextrac || Perform adversary emulation all inside of PlexTrac's premiere reporting & collaborative platform in a FREE one-month trial! j-h.io/plextrac 😎
00:00 - Plextrack Runbooks 00:57 - Introduction 02:47 - Demo Begin 07:47 - Quick Q&A Session 10:33 - Final Thoughts
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcHow Can CI/CD Go Horribly Wrong?John Hammond2023-05-31 | In this video we’ll learn the basics of Continuous Integration and Continuous Deployment (CI/CD) and what security implications it has – with a live demo example, showcasing how we can perform direct pipeline poisoning to execute code and ultimately leak sensitive production info like AWS credentials!
You can learn more about Carlos Polop, Ignacio Dominguez or the security audits and assessments that HALBORN performs at j-h.io/halborn
00:00 - How Can CI/CD Go Horribly Wrong? 01:19 - What is CI/CD? 03:47 - Common Misconfigurations 06:19 - Start of Demonstration 10:16 - Pipeline Poisoning Explanation 12:00 - Showcasing Direct Pipeline Poisoning 17:04 - Security Takeaways
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcRapid Windows Memory Analysis with Volatility 3John Hammond2023-05-30 | j-h.io/cysec || Find your next cybersecurity career! CySec Careers is the premiere platform designed to connect candidates and companies. Try it for free! j-h.io/cysec
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcExploring the Latest Dark Web Onion SitesJohn Hammond2023-05-29 | j-h.io/flare-systems || Track down any information leaks or cyber threat intelligence with Flare Systems, try a free trial and uncover your exposed attack surface! j-h.io/flare-systems
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcThis Dark Web URL Shortener SucksJohn Hammond2023-05-27 | ...Raspberry Pi Malware uses IRC Remote Access Trojan (RAT)John Hammond2023-05-26 | j-h.io/snyk || Try Snyk to find vulnerabilities in your own code and applications FOR FREE ➡ j-h.io/snyk
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcWhy Dont People Want Security?John Hammond2023-05-16 | This is a fully dedicated video for our sponsor Passbolt. j-h.io/passbolt || Use a password manager to keep all your credentials secure -- my code JOHN-HAMMOND will save 20% off!! j-h.io/passbolt
00:00 - Background 00:39 - Begin interview 01:00 - Abnormal reservations? 03:50 - How do we combat that confusion? 07:48 - Open Source Open Audit? 09:08 - Centralized Database Woes. 13:52 - New folder feature! 18:03 - Wrap up
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcHide a Hackers Reverse Shell in ONE CommandJohn Hammond2023-05-12 | j-h.io/plextrac || Save time and effort on pentest reports with PlexTrac's premiere reporting & collaborative platform in a FREE one-month trial! j-h.io/plextrac 😎
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcGetting Started in Firmware Analysis & IoT Reverse EngineeringJohn Hammond2023-05-11 | j-h.io/bugprove || For blazing-fast automated IoT firmware analysis and zero-day discovery, you can use BugProve FOR FREE: j-h.io/bugprove
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcHow To Setup ELK | Elastic Agents & Sysmon for CybersecurityJohn Hammond2023-05-10 | j-h.io/pwyc || Jump into Pay What You Can training -- at whatever cost makes sense for you! j-h.io/pwyc
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcPowerShell CRYPTOSTEALER through DNSJohn Hammond2023-05-09 | j-h.io/snyk || Try Snyk to find vulnerabilities in your own code and applications FOR FREE ➡ j-h.io/snyk
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcThis TikTok User Stole My ContentJohn Hammond2023-05-08 | ...Hacking Complex Passwords with Rules & MungingJohn Hammond2023-05-08 | j-h.io/passbolt || Use a password manager to keep all your credentials secure -- my code JOHN-HAMMOND will save 20% off!! j-h.io/passbolt
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcLiving Off The Land - Windows Disk Cleaner PersistenceJohn Hammond2023-05-05 | j-h.io/plextrac || Save time and effort on pentest reports with PlexTrac's premiere reporting & collaborative platform in a FREE one-month trial! j-h.io/plextrac 😎
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcHunt for Hackers with VelociraptorJohn Hammond2023-05-02 | j-h.io/pwyc || Jump into Pay What You Can training -- at whatever cost makes sense for you! j-h.io/pwyc
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcChatGPT tries a BASIC Capture The Flag (CTF) ChallengeJohn Hammond2023-05-01 | j-h.io/snyk || Snyk loves CTF challenges just like this for application security -- you can use Snyk to find vulnerabilities in your own projects FOR FREE ➡ j-h.io/snyk
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcHow To Test Your Security with Atomic Red TeamJohn Hammond2023-04-25 | j-h.io/pwyc || Jump into Pay What You Can training for more free labs just like this! j-h.io/pwyc
00:42 - Context 01:27 - Setup 02:57 - Begin 04:32 - Atomic Red Team Demo 05:49 - Starting Atomic Red Team 07:42 - Results 09:26 - What next? 10:33 - Final Thoughts
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcQuick Forensics of Windows Event Logs (DeepBlueCLI)John Hammond2023-04-21 | j-h.io/pwyc || Jump into Pay What You Can training for more free labs just like this! j-h.io/pwyc
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcWhat SECRETS are in your Clipboard?John Hammond2023-04-19 | j-h.io/snyk || Snyk loves CTF challenges just like this for forensics and application security -- you can use Snyk to find vulnerabilities in your own projects FOR FREE ➡ j-h.io/snyk
00:00 - Clipboard Forensics 00:21 - The Setup 02:52 - Getting started 04:10 - Checking the data 05:15 - What next? 11:20 - Another way forward 13:07 - Viewing the DB 16:50 - Final Thoughts
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcKubernetes Hacking: From Weak Applications to Cluster ControlJohn Hammond2023-04-18 | j-h.io/sysdig || Use Sysdig to keep your runtime environments secure, across Kubernetes clusters, the CI/CD pipeline, and your production environment! j-h.io/sysdig
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcPython Pwntools Hacking: ret2libc GOT & PLTJohn Hammond2023-04-12 | j-h.io/snyk || Snyk loves CTF challenges just like this for binary exploitation and web security -- you can use Snyk to find vulnerabilities in your own applications FOR FREE ➡ j-h.io/snyk
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcCybersecurity Labs (FOR FREE) - Linux Backdoor AnalysisJohn Hammond2023-04-11 | j-h.io/pwyc || Jump into Pay What You Can training -- at whatever cost makes sense for you! j-h.io/pwyc
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcMost ChatGPT Extensions Are Just MalwareJohn Hammond2023-04-10 | j-h.io/guardio || Guardio protects you from malicious browser extensions and scams like these! Get 20% off with my link: j-h.io/guardio
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcHow FAST Can You Write a Pentest Report?John Hammond2023-04-06 | j-h.io/plextrac || Give PlexTrac a try and see HOW FAST you and your team can crank out reports -- use their premiere reporting & collaborative platform in a FREE one-month trial! j-h.io/plextrac 😎
This is a fully dedicated sponsor video as part of our sponsored partnership. Thank you for supporting the channel!
00:00 - PlexTrac 5 minute challenge 00:57 - Timer Start 04:14 - Going over the report 05:10 - Post-Report Generation 06:28 - Digital Delivery 09:26 - Attack Path 10:08 - Final Thoughts
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcThe Latest YouTube Malware ScamJohn Hammond2023-04-03 | j-h.io/aci-itpro || Learn ANYTHING in tech with ITPro from ACI Learning -- start a free trial and use promo code JOHN30 for 30% off your first month or year of learning! j-h.io/aci-itpro
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etc3CX VOIP Compromised & Supply Chain ThreatJohn Hammond2023-03-30 | j-h.io/flare-systems || Track down any information leaks or cyber threat intelligence with Flare Systems, try a free trial and uncover your exposed attack surface! j-h.io/flare-systems
Resources & References surrounding the 3CX exploitation:
📧Contact me! (I may be very slow to respond or completely unable to) 🤝Sponsorship Inquiries ➡ j-h.io/sponsorship 🚩 CTF Hosting Requests ➡ j-h.io/ctf 🎤 Speaking Requests ➡ j-h.io/speaking 💥 Malware Submission ➡ j-h.io/malware ❓ Everything Else ➡ j-h.io/etcSo Linus Tech Tips Got Hacked...John Hammond2023-03-24 | SORRY FOR THE SCUFFED AUDIO I AM STILL IN THE CAYMAN ISLANDS LOL