sábado, 20 de janeiro de 2024

$$$ Bug Bounty $$$

What is Bug Bounty ?



A bug bounty program, also called a vulnerability rewards program (VRP), is a crowdsourcing initiative that rewards individuals for discovering and reporting software bugs. Bug bounty programs are often initiated to supplement internal code audits and penetration tests as part of an organization's vulnerability management strategy.




Many software vendors and websites run bug bounty programs, paying out cash rewards to software security researchers and white hat hackers who report software vulnerabilities that have the potential to be exploited. Bug reports must document enough information for for the organization offering the bounty to be able to reproduce the vulnerability. Typically, payment amounts are commensurate with the size of the organization, the difficulty in hacking the system and how much impact on users a bug might have.


Mozilla paid out a $3,000 flat rate bounty for bugs that fit its criteria, while Facebook has given out as much as $20,000 for a single bug report. Google paid Chrome operating system bug reporters a combined $700,000 in 2012 and Microsoft paid UK researcher James Forshaw $100,000 for an attack vulnerability in Windows 8.1.  In 2016, Apple announced rewards that max out at $200,000 for a flaw in the iOS secure boot firmware components and up to $50,000 for execution of arbitrary code with kernel privileges or unauthorized iCloud access.


While the use of ethical hackers to find bugs can be very effective, such programs can also be controversial. To limit potential risk, some organizations are offering closed bug bounty programs that require an invitation. Apple, for example, has limited bug bounty participation to few dozen researchers.
More articles

RECONNAISSANCE IN ETHICAL HACKING

What is reconnaissance in ethical hacking?
This is the primary phase of hacking where the hacker tries to collect as much information as possible about the target.It includes identifying the target ip address range,network,domain,mail server records etc.

They are of two types-
Active Reconnaissance 
Passive Reconnaissance 

1-Active Reconnaissance-It the process from which we directly interact with the computer system to gain information. This information can be relevant and accurate but there is a risk of getting detected if you are planning active reconnaissance without permission.if you are detected then the administration will take the severe action action against you it may be jail!

Passive Reconnaissance-In this process you will not be directly connected to a computer system.This process is used to gather essential information without ever interacting with the target system.

More articles


Hashdb-Ida - HashDB API Hash Lookup Plugin For IDA Pro


HashDB IDA Plugin

Malware string hash lookup plugin for IDA Pro. This plugin connects to the OALABS HashDB Lookup Service.


Adding New Hash Algorithms

The hash algorithm database is open source and new algorithms can be added on GitHub here. Pull requests are mostly automated and as long as our automated tests pass the new algorithm will be usable on HashDB within minutes.


Using HashDB

HashDB can be used to look up strings that have been hashed in malware by right-clicking on the hash constant in the IDA disassembly view and launching the HashDB Lookup client.


Settings

Before the plugin can be used to look up hashes the HashDB settings must be configured. The settings window can be launched from the plugins menu Edit->Plugins->HashDB.


 

Hash Algorithms

Click Refresh Algorithms to pull a list of supported hash algorithms from the HashDB API, then select the algorithm used in the malware you are analyzing.


Optional XOR

There is also an option to enable XOR with each hash value as this is a common technique used by malware authors to further obfuscate hashes.


API URL

The default API URL for the HashDB Lookup Service is https://hashdb.openanalysis.net/. If you are using your own internal server this URL can be changed to point to your server.


Enum Name

When a new hash is identified by HashDB the hash and its associated string are added to an enum in IDA. This enum can then be used to convert hash constants in IDA to their corresponding enum name. The enum name is configurable from the settings in the event that there is a conflict with an existing enum.


Hash Lookup

Once the plugin settings have been configured you can right-click on any constant in the IDA disassembly window and look up the constant as a hash. The right-click also provides a quick way to set the XOR value if needed.



Bulk Import

If a hash is part of a module a prompt will ask if you want to import all the hashes from that module. This is a quick way to pull hashes in bulk. For example, if one of the hashes identified is Sleep from the kernel32 module, HashDB can then pull all the hashed exports from kernel32.


 

Algorithm Search

HashDB also includes a basic algorithm search that will attempt to identify the hash algorithm based on a hash value. The search will return all algorithms that contain the hash value, it is up to the analyst to decide which (if any) algorithm is correct. To use this functionality right-click on the hash constant and select HashDB Hunt Algorithm.


 

All algorithms that contain this hash will be displayed in a chooser box. The chooser box can be used to directly select the algorithm for HashDB to use. If Cancel is selected no algorithm will be selected.



Dynamic Import Address Table Hash Scanning

Instead of resolving API hashes individually (inline in code) some malware developers will create a block of import hashes in memory. These hashes are then all resolved within a single function creating a dynamic import address table which is later referenced in the code. In these scenarios the HashDB Scan IAT function can be used.


 

Simply select the import hash block, right-click and choose HashDB Scan IAT. HashDB will attempt to resolve each individual integer type (DWORD/QWORD) in the selected range.


Installing HashDB

Before using the plugin you must install the python requests module in your IDA environment. The simplest way to do this is to use pip from a shell outside of IDA.
pip install requests

Once you have the requests module installed simply copy the latest release of hashdb.py into your IDA plugins directory and you are ready to start looking up hashes!


Compatibility Issues

The HashDB plugin has been developed for use with the IDA 7+ and Python 3 it is not backwards compatible.




Continue reading
  1. Black Hat Hacker Tools
  2. Hacking Tools And Software
  3. Pentest Tools For Windows
  4. Hacking Tools For Kali Linux
  5. Hacking Tools For Beginners
  6. Beginner Hacker Tools
  7. Hacks And Tools
  8. Pentest Tools For Android
  9. Hacker Tools Github
  10. Pentest Tools Bluekeep
  11. Pentest Tools Linux
  12. Usb Pentest Tools
  13. Hacking Apps
  14. Pentest Tools Url Fuzzer
  15. Pentest Tools Download
  16. Hacker Tools For Mac
  17. Pentest Tools For Ubuntu
  18. Beginner Hacker Tools
  19. New Hack Tools
  20. Pentest Tools Online
  21. Pentest Tools Android
  22. Hacking Tools Github
  23. Hacker Tool Kit
  24. Top Pentest Tools
  25. Termux Hacking Tools 2019
  26. Nsa Hack Tools
  27. Hacking Tools Github
  28. Hack Tools Download
  29. Pentest Tools Open Source
  30. Hacking Tools 2020
  31. Game Hacking
  32. Hack Tool Apk No Root
  33. Pentest Tools Subdomain
  34. Hack Tools Online
  35. Pentest Recon Tools
  36. Best Hacking Tools 2020
  37. Hackers Toolbox
  38. Growth Hacker Tools
  39. Hack Tools 2019
  40. Hack Tools For Pc
  41. Hacking Tools Hardware
  42. Hack And Tools
  43. Github Hacking Tools
  44. Hacking Tools Kit
  45. Hacking Tools Kit
  46. Hacking App
  47. Pentest Box Tools Download
  48. Pentest Tools Github
  49. Pentest Automation Tools
  50. What Are Hacking Tools
  51. New Hacker Tools
  52. Tools For Hacker
  53. Blackhat Hacker Tools
  54. Hack Tools For Mac
  55. Hacking Tools For Kali Linux
  56. Pentest Tools Free
  57. Hackers Toolbox
  58. Hacking Tools For Windows 7
  59. Hacking Tools Usb
  60. Hacker Techniques Tools And Incident Handling
  61. Hacker Techniques Tools And Incident Handling
  62. Hacking Tools Github
  63. Termux Hacking Tools 2019
  64. Pentest Tools Port Scanner
  65. Pentest Tools Kali Linux
  66. Tools For Hacker
  67. Pentest Tools Port Scanner
  68. Hak5 Tools
  69. Free Pentest Tools For Windows
  70. How To Install Pentest Tools In Ubuntu
  71. Hacker Tools For Windows
  72. Pentest Tools Linux
  73. Hack Website Online Tool
  74. Hack Tools For Windows
  75. Android Hack Tools Github
  76. Hak5 Tools
  77. Hacking Tools Github
  78. Hacking Tools For Windows
  79. What Are Hacking Tools
  80. Hacker Tools Free Download
  81. Hacking Tools Download
  82. Hacking Tools Kit
  83. Hacking App
  84. Hack Tools 2019
  85. Hack Tools
  86. Hack Tools Download
  87. Hacking Tools Name
  88. How To Install Pentest Tools In Ubuntu
  89. Hacker Tools For Ios
  90. Hacking Tools Hardware
  91. Pentest Tools List
  92. Blackhat Hacker Tools
  93. Hacker Tools Windows
  94. Kik Hack Tools
  95. Nsa Hack Tools
  96. Bluetooth Hacking Tools Kali
  97. Pentest Tools List
  98. Physical Pentest Tools
  99. Hacker Tools Online
  100. Blackhat Hacker Tools
  101. Blackhat Hacker Tools
  102. Hacking Tools 2020
  103. Hacker Tools Linux
  104. Hacking Tools
  105. Hacking Tools Software