Es Geeks

¿Listo para actualizar tu arsenal? Analizamos los mejores gadgets para hacking ético de 2026. Del Flipper Zero al Wi-Fi Pineapple, te mostramos el equipo esencial. #HackingEtico #Pentesting #Ciberseguridad esgeeks.com/gadgets-hackin…

El GitHub de la NSA tiene 86 repos open source. Te decimos cuáles valen hoy: Ghidra, GRASSMARLIN, WALKOFF y el resto del catálogo, auditado pieza por pieza. #ciberseguridad #pentesting #NSA #hacking #github esgeeks.com/github-nsa-her…

Stack mínimo defensivo: Ghidra + SIMP + WALKOFF. Tres herramientas. Cero licencias. Laboratorio serio montado. Paradoja: la NSA escribe mejor software defensivo open-source que el 90% del enterprise. ¿Cuál habías usado? Fuente: code.nsa.gov

6/ DataWave — big data secure Framework para ingesta y query de logs masivos sobre Apache Accumulo. Control de acceso a nivel de celda. Pensado para volúmenes que rompen Elasticsearch. 7/ Pass-the-Hash Guidance (nsacyber) Mitigación oficial NSA del ataque PtH en AD.

🔓 La NSA tiene 86 repos públicos en GitHub. Casi nadie en español los toca. 7 que vale clonar hoy 🧵 #Ciberseguridad #NSA #Ghidra #OpenSource #ReverseEngineering #BlueTeam #InfoSec #Hacking #Linux #Pentesting #ThreatIntel #CyberDefense

Critical security bug in Chrome lets a single malicious webpage visit plant persistent background JavaScript that survives tab closure and browser restarts, enabling user tracking, and also potentially turning web browsers into a drive-by botnet node. Chrome shipped a fix for a bug that wasn’t the bug. issues.chromium.org/issues/40062121

¿Tu certificado digital no se instala en el iPhone? Te explico paso a paso cómo exportarlo desde el Mac, instalarlo y resolver los errores. #iPhone #iOS #Tutorial adictec.com/instalar-certi…

How Executable files work #malware #infosec winitor.com/pdf/Windows-Po…

🚨 Anthropic’s Claude Mythos Preview found 10,000+ severe software flaws in one month. thehackernews.com/2026/05/claude… The AI uncovered high- or critical-severity vulnerabilities across widely used software, including 1,726 confirmed flaws and 1,094 rated high or critical severity. The findings have already led to 97 patches and 88 advisories. One flaw, CVE-2026-5194 in WolfSSL, could allow certificate forgery.

@lair_nula 😎😎

@EsGeeks Pues si es kali en el celular 😂

Kali NetHunter: 600+ herramientas de pentesting corriendo en tu Android. No es "Kali en el celular". Es Kali pensado para movilidad: ataques físicos, de campo y de proximidad. Ediciones explicadas 👇 #kalilinux #nethunter #pentesting #hackingetico #infosec #mobilesecurity

🚨 Active exploit: LiteSpeed cPanel root flaw. thehackernews.com/2026/05/litesp… CVE-2026-48172 is a CVSS 10.0 vulnerability in LiteSpeed User-End cPanel Plugin that lets any cPanel user run arbitrary scripts as root. 🔸 Affected: v2.3–2.4.4 🔸 Not affected: WHM plugin 🔸 Fix: upgrade to WHM Plugin 5.3.1.0 with cPanel plugin v2.4.7+ 🔸 IOC: cpanel_jsonapi_func=redisAble

🛜🔓🧪 FARHAN-Shot: Auditor WPS sin modo monitor ni inyección de paquetes. +108 algoritmos de PIN, Pixie Dust, fuerza bruta online y PBC. Funciona en Kali y Termux (root). Solo para uso autorizado. #wifi #wps #ethicalhacking #termux #kali

Phantom Killer: EDR evasion via Lenovo driver Researcher Jehad Abu Dagga from e& UAE (etisalat and) reverse-engineered the "BootRepair.sys" driver used by Lenovo PC Manager and uncovered critical security flaws that can be abused: 📌 The device" \Device\BootRepair" created by the driver has no defined DACL, allowing any low-privileged user to interact with it. 📌 The IOCTL dispatcher doesn’t verify permissions when invoking the process termination function ("sub_14000198C") 📌 A symbolic link "\DosDevices\BootRepair" is created in user space, allowing direct access to the device from user space. ⚠️ The developed PoC can terminate any process by specifying its PID. 🥷 Key advantage for an attacker: the driver is legitimate and signed by Lenovo, allowing it to bypass Driver Signature Enforcement (DSE) checks. 🎯 Attack scenarios: ✅ If the driver is already loaded on the system: any low-privileged user can access it without restrictions and terminate any process, including EDR/AV. ✅ If the driver isn’t loaded: an attacker can load the trusted, signed driver (Bring Your Own Vulnerable Driver — BYOVD attack) and then use it to kill protected processes. 📎Article: @jehadbudagga/phantom-killer-reverse-engineering-and-weaponizing-a-lenovo-driver-to-terminate-edr-processes-9191cd06374f" target="_blank" rel="nofollow noopener">medium.com/@jehadbudagga/… 🦠PoC: github.com/redteamfortres… -> (git.redteamfortress.com/j3h4ck/Phantom…), git.redteamfortress.com/j3h4ck/Phantom… #dbugs_attacks

Compatibilidad: +100 modelos / 67 imágenes oficiales Pixel 3a–9 · OnePlus 7/8/Nord · Samsung S9–S10 · Redmi Note 11 Empezar: → kali.org/get-kali → nethunter.kali.org Fuente: kali.org/docs/nethunter ¿Qué edición usas? #kalilinux #nethunter #pentesting

⚠️ Realidad: la inyección WiFi depende del chipset. Lo más confiable: → Pixel (cualquiera 3a–9) → Dongle USB-OTG externo (Alfa AWUS036ACS, TP-Link AC600) Lo arriesgado: chips Broadcom random sin parche Nexmon.