Nicolas Chatelain

@dottor_morte @Jean_Maes_1994 There seems to be a bug affecting Edge and IWA. Unfortunately, there's very little documentation on IWA. I'll investigate.

@Nicocha30 @Jean_Maes_1994 Did you manage to make it run with edge?

Introducing Ligolo-IWA! If you love Ligolo-ng but struggle with proxies, EDRs, or AppLocker policies, this is for you. Ligolo-IWA runs directly from Chromium-based browsers (Edge/Chrome) to bypass standard host restrictions and corporate filters. iwa.ligolo.ng

@JohnWH79 Most likely a duplicate route. Check your routes/yaml configuration file.

@Nicocha30 Can you advise on why I receive "file exists" error when I try to start a tunnel with ligolo-ng?

There are likely Ligolo servers on the Internet that you can connect to with a Ligolo agent. 1. Ligolo has 3 JARM signatures. 2. Ligolo-MP's JARM is the same as Sliver C2. 3. We do not advise or condone connecting to potential Ligolo servers. necromancerlabs.com/research/paper…

ProxyBlob is alive ! We’ve open-sourced our stealthy reverse SOCKS proxy over Azure Blob Storage that can help you operate in restricted environments 🔒 🌐 github.com/quarkslab/prox… Blog post for more details right below ⬇️

🇬🇧 DEFCON Paris on NOV-04 🇫🇷 DEFCON Paris le 04/11 - "New cyber visualisation tool", by Adem Ali Cherif - "RedTeaming and Tunneling – Stop using Raspberry Pi!", by Nicolas Chatelain (@Nicocha30) 📍 Le Carlie, 177 rue Saint Martin, Paris 🕖 19:00 🎟️ framadate.org/T6TnZTdcihNJqh…

@H_Miser L'état a supprimé les aides pour les contrats d'alternance en professionnalisation. entreprendre.service-public.fr/vosdroits/F353…

Je constate une certaine difficulté pour les étudiants à trouver une alternance, ainsi que des réductions budgétaires empêchant l’embauche de stagiaires compétents, c’est dans ma tête ? Trop d’alternant, moins de budget ? Je croyais qu’il y avait pénurie de talents :)

Wireless hacking doesn't have to be a mess of dongles and ad-hoc code anymore. Yesterday @virtualabs and @CayreRomain from @Eurecom released WHAD, a set of open source tools, libraries and firmware to make wireless security research easier. The code repo: github.com/whad-team/whad…

How to fix the Crowdstrike thing: 1. Boot Windows into safe mode 2. Go to C:\Windows\System32\drivers\CrowdStrike 3. Delete C-00000291*.sys 4. Repeat for every host in your enterprise network including remote workers 5. If you're using BitLocker jump off a bridge

💪🏻

Plans to literally "hack the planet" foiled due to 500ms of latency that Andres instinctually investigated. The latency was due how the malicious code parsed symbol tables in memory. openwall.com/lists/oss-secu…

“It’s almost like people are making more money teaching hacking than actually doing it.” -- @assume_breach link.medium.com/XLQADjq6HGb ^ 100% true statement, and most don't teach good habits, they teach run and gun cowboy BS.

LocalPotato - When Swapping The Context Leads You To SYSTEM localpotato.com/localpotato_ht…

#Cloning #Fingerprints Like A Boss: 101 Edition lucabongiorni.medium.com/cloning-finger…

@reybango That's a very good question. Ligolo-ng connections can only be established through the proxy, not from the agent. Even if it works like a VPN, it's not really a VPN 😉. No TUN/TAP interfaces are created on the agent.

@Nicocha30 Thank you. I was thinking ensuring no inbound traffic from unwanted folks when the connection is established and any routing security considerations since a local adapter is being created.

Ligolo-ng by @Nicocha30 is pretty amazing. Proxy through pivot boxes without proxychains. Seems like you can even use full nmap capabilities and more. Well done. github.com/nicocha30/ligo…

@reybango Hey Rey! I don't think there are any security issues using the proxy. For authentication, using mTLS is on my Todo list. 😉

@Nicocha30 is there any security concerns on the proxy side that should be considered when using Ligolo-ng? Also, is there a way to enable authentication of a connection from the agent to the proxy?

Lol?

A fun little canary for you all in cyber defence to help detect breaches/data theft. QT & MP4 files can reference external urls via 'rdrf' sections. These can be URLs and thus you can get a DNS resolution and/or HTTP request on open. Have an MP4 working example in VLC...

CVE-2020-19909 is everything that is wrong with CVEs Another 9.8 CRITICAL curl problem. All made up. daniel.haxx.se/blog/2023/08/2…

Post a picture of your favorite dead hacking tool