Phlenstone Owino’s Post

Zeek provided me a general network monitoring overview to investigate captured traffic

Path Traversal in parisneo/lollms&webuiA path traversal vulnerability exists ...A path traversal vulnerability exists in the parisneo/lollms-webui repository, specifically in the `lollms_file_system.py` file. The functions `add_rag_database`, `toggle_mount_rag_database`, and `...

goTenna Pro ATAK Plugin Observable Response DiscrepancyThe goTenna Pro ATAK P...The goTenna Pro ATAK Plugin has a payload length vulnerability that makes it possible to tell the length of the payload regardless of the encryption used.https://https://lnkd.in/dVu8cdpf

Completed the Nmap room on TryHackMe! 🎉 Through this I've learned network scanning, port scanning, service detection and other security assessment skills. Excited to apply these in practical scenarios and grow further.

goTenna Pro ATAK Plugin Use of Cryptographically Weak Pseudo&Random Number Ge...The goTenna Pro ATAK Plugin does not use SecureRandom when generating its cryptographic keys. The random function in use is not suitable for cryptographic use.https://https://lnkd.in/dyPbNFeg

With 2 short weeks away before BSides Melbourne kicks off, this week we continue introducing the conference talks. First we have Thomas Roccia presenting his talk on "The XZ Backdoor Story: The Undercover Operation That Set the Internet on Fire". Here Thomas discusses the XZ backdoor! But what happened? How long has this rogue maintainer been part of the project? Who is Jia Tan? Was he involved in other projects? Beyond the technical background, there is a story to tell, to capitalize on what went wrong and what we could improve. #BSidesMelb2024 https://lnkd.in/gdZhFPnz

I learned how to use Nmap to discover live hosts on any network. I also explored the common types of port scans and how I could use Nmap to find service version numbers. In addition, I learned how to control the timing of the scan, and finally, I covered the different formats for saving Nmap scan results.

🔍 Exploring Nmap Live Host Discovery for Network Scanning 🔍 As part of my journey in mastering network security, I’ve been diving deep into the capabilities of Nmap (Network Mapper) – a powerful tool for network discovery and security auditing. One of the standout features I’ve explored recently is Live Host Discovery, which is crucial for identifying active devices in a network. With Nmap, you can easily detect live hosts, uncover hidden devices, and build a solid understanding of your network's landscape. 💡 Why is Live Host Discovery important? Enhanced Network Visibility: By pinpointing active devices, you gain better control over your network’s security. Identifying Unauthorized Devices: Nmap helps in finding rogue devices that might be connected without permission. Efficient Vulnerability Management: By knowing which hosts are live, you can focus your efforts on securing vulnerable points in real-time. Here are some key Nmap commands for Live Host Discovery: nmap -sn [target]: A quick scan to identify live hosts without port scanning. nmap -PE -PA [target]: Ping scan to discover hosts using both ICMP and TCP ping requests. Nmap continues to be a go-to tool for network admins and security professionals, and mastering it is essential for anyone serious about cybersecurity. 💻🔒 If you’re into network security or looking to learn more, let’s connect! Feel free to share your experiences with Nmap or any other tools that have helped you in network scanning and security. 🚀 #CyberSecurity #NetworkSecurity #Nmap #NetworkScanning #EthicalHacking #LiveHostDiscovery #TryHackMe

Path Traversal in parisneo/lollms&webuiA path traversal vulnerability exists ...A path traversal vulnerability exists in the parisneo/lollms-webui repository, specifically in the `lollms_file_system.py` file. The functions `add_rag_database`, `toggle_mount_rag_database`, and `...https://lnkd.in/d8YgNGsY

 Hey there! Cyber security Enthusiasts Just wrapped up an exciting adventure diving deep into the world of Nmap at TryHackMe! During this course, I had the opportunity to master the art of using Nmap, a powerful network scanner, to uncover and exploit vulnerabilities in networked devices. It's like having a secret map to navigate through digital landscapes and discover hidden treasures! As I delved into the course, I learned how to unveil open ports, unveil operating systems, and unearth installed services. It's like being a detective, piecing together clues to unravel the mysteries of a network! Understanding network protocols and security concepts became my compass, guiding me on this thrilling quest to harness Nmap's full potential. Exploring the vast array of online resources, from tutorials to videos to documentation, was like uncovering a treasure trove of knowledge. Each discovery enriched my understanding of Nmap, empowering me to wield its powers like a seasoned adventurer equipped with the finest gadgets. And the best part? Putting my newfound skills to the test in TryHackMe's interactive environment! It was like embarking on a real-life mission, honing my abilities, and gaining hands-on experience to become a savvy network navigator! Let's stay connected and share our tales of cybersecurity conquests as we continue to fortify our digital realms against sneaky cyber adversaries! 🚀 #Nmap #CybersecurityQuest #EthicalHackerJourney #TryHackMeTales