An Opinionated Ramp Up Guide to AWS Pentesting https://awssecuritydigest.com/articles/opinionated-ramp-up-guide-to-aws-pentesting https://medium.com/@MorattiSec/my-aws-pentest-methodology-14c333b7fb58 Understanding the Shared Responsibility Model https://www.wiz.io/academy/shared-responsibility-model fwd:cloudsec https://fwdcloudsec.org/ AWS Customer Support Policy for Penetration Testing https://aws.amazon.com/security/penetration-testing/ Also, read this and follow the AWS pentesting rules. Cloud Tests One is a review of the external facing posture, which you can consider adjacent to a traditional External Read More …
Category: Notes
Sometimes I have to quick learn things. This is those collection of notes.
Open AI’s – 20th Century Blue Masters
The 20th century saw the rise of many influential blues musicians who shaped the genre and left a lasting impact on music history. Some notable figures include: Robert Johnson – Often regarded as the most influential blues musician of all time, known for his haunting vocals and intricate guitar playing. Songs like “Cross Road Blues” Read More …
I am new to Investing
So all of the folks of wisdom say that the stock market always goes up in the long run, although with plenty of unpredictable bumps along the way. Since you can’t predict those bumps until after they happen, there is no point in trying to dance in and out of it. In other words, the Read More …
SMS Phishing or Spam
I just received an awesome SMS phishing message scam, and I wanted to share with others, to show how to spot the scam. To the right is a photo of it: First, I do read the whole message, and in the second reading that we can really pick it apart. So the message claims to Read More …
What is SEO Poisoning?
SEO Poisoning (or Search Engine Optimization Poisoning) is a type of social engineering attack that targets an unsuspecting user, or maybe someone who is in a hurry and not paying close attention. These are typically used by bad guys to fool unsuspecting users into clicking their links and going to the wrong website, or worse Read More …
Windows Stuff from GREM Exam
Here are some of the Windows API things that I have on older flashcards that I am adding to this site. Yes. flashcards. I used them to pass my GREM exam from SANS. GetAsychKeyState GetProcAddress Memory Registers EIP
Want to Learn Python
@simonholdorf for these 20 Beginner Python Projects 3 Python Automation Projects – For Beginners 15 Python Projects in Under 15 Minutes 5 Unique Python Projects 12 Beginner Python Projects 5 Mini Python Projects – For Beginners
Want to Learn Linux
Here are some sources to get you started! Thanks to @simonholdorf for the links! Linux Operating System – Crash Course for Beginners The Complete Linux Course Linux Command Line Full course Linux File System/Structure Explained! Linux for Ethical Hackers (Kali Linux Tutorial)
Notes :: Getting around some Defenses
Trying to read up on this for some work things. Dropping a few links here. Will add more notes as I go on. —————————————————————— bypassing-cylance-and-other-avs-edrs-by-unhooking-windows-apis “”” It’s worth noting that not all the functions get hijacked by AVs/EDRs. Usually only those functions that are known to be abused over and over again in the wiled that Read More …