I printed a 3D box for my bettercap arsenal and I liked it

Looking at the title you might think that it’s Katy Perry new hit… It isn’t… I’m sorry… One of my favourite tools when doing security assessments is bettercap. Its like “one tool to rule them all”. With that in mind, I needed something to carry my bettercap arsenal when going to a client. Using my… Continue reading I printed a 3D box for my bettercap arsenal and I liked it

A small gesture on this pandemic times

Since the middle of April, I decided to help health professionals, firefighters and all the people who were in the frontline against COVID-19 with 3D printed visors and ear-savers. After a while the scope had a wide range which any people could ask for this type of protections and in exchange they would offer goods… Continue reading A small gesture on this pandemic times

Checkmarx Security Research Team latest work

The mercenaries have been busy in the last couple of months. We got a very few good hits on the media and we’re proud of our work and the company itself. Solidity Top 10 Common Issues Smart Vacuum Security Flaws May Leave Users Exposed SoundCloud API Security Advisory A Race Condition in Kubernetes Solidity and… Continue reading Checkmarx Security Research Team latest work

Speaker at ENEI2020

Last wednesday I gave a talk at ENEI2020 with the topic – “Do I need a hoodie to hack a bank?”. It was focused on a red-team assessment I did and it was to show computer students a little bit about security, specially: Recon Social Engineering Implants Dead-drops It was quite interesting because I got… Continue reading Speaker at ENEI2020

Gone in 30 seconds – a HID cable story tale

Following what I mentioned in my previous post, I went to my electronics bin and gathered a Logitech Wireless mouse (M185) and a USB cable. On the mouse, I took the receiver – a Logitech Unifying Receiver CU0010 (nRF24L family): And cut one of the sides of a random USB cable: Split the wires: Removed… Continue reading Gone in 30 seconds – a HID cable story tale

Make HID great again

Since ever I’ve been using HID devices on red-team assessments at Char49 – specially using Rubber Ducky and latelly with Cactus WHID. I wanted to play a little more so I’ve picked one of my favourite tools from my arsenal which is the tiny Digispark. This ATTINY85 with 8kb flash memory – became part of… Continue reading Make HID great again