Blog

Posts in category "Tool Projects"

Why You Need IDontSpeakSSL in Your Life

You’ve Already Heard of testssl.sh; Now, Meet IDontSpeakSSL. What is it? It’s a simple script designed for parsing testssl.sh results. It was created to automate the discovery of bad practices on SSL/TLS configuration, Cipher suites, and certificates. It is the most useful on projects with a broader scope; for example, it would prove highly efficient …

Breaking Drone Defenses: Using Chicken Wire to Defeat Net Projectile-Based Products

The majority of practical drone defense products/solutions currently available use a net projectile of some kind.  These nets are typically very light weight, and wouldn’t be heavy enough to drag down their intended targets.  Instead, they are designed to get tangled in the propellers of the ‘rogue drone’ being targeted in order to disable it …

How We Can Stop Email Spoofing

According to our research, 98 percent of the internet is vulnerable to this attack. And here’s how our tool, SpoofCheck, can help us bring a stop to it. Most web domains are not protected against email spoofing, which is a relatively easy problem to solve. If you’re concerned that your domain may be vulnerable …

Tastic RFID Thief: Silent, But Deadly

You’re a professional. You’re equipped with the latest in elite, customized RFID hacking tools. So, it’s high time you put a silencer on your Tastic RFID Thief – the weaponized, long-range badge reader. We’ll show you how to avoid the embarrassingly loud beep when turning on your RFID badge stealer during your next physical …

Untwisting the Mersenne Twister: How I Killed the PRNG

Random number generation has been insecure for decades and there hasn’t been a practical pentesting tool to tackle this problem – until now, that is. Enter Untwister Untwister is a tool designed to help pentesters predict random number sequences when an application generates them using an insecure algorithm. The tool is named for the …