HAQ.NEWS

// jared folkins

# Latest Podcast

Today, delve into DLLNotificationInjection’s stealthy process injection, setting up a vulnerable Active Directory lab for cybersecurity practice, reverse engineering an EV charger, XNLReveal Chrome extension for security testing, Nmap scripts targeting CVE-2023-46805 and CVE-2024-21887, MetaRadar, an offline Bluetooth security tool, Taranis AI for OSINT cyber threat analysis, and Phish.ly for analyzing suspicious emails.

Tradecraft

dllnotificationinjection pocs a threadless attack by manipulating dll callbacks for process injection, suggesting opsec improvements for stealth.
http://www.kitploit.com/2024/01/dllnotificationinjection-poc-of-new.html

a guide to setting up and making an active directory lab vulnerable for learning cybersecurity tactics.
https://infosecwriteups.com/building-a-virtual-security-home-lab-part-7-active-directory-lab-setup-part-2-f203002a40b2

explore the inner workings of an ev charger through reverse engineering.
https://www.reddit.com/r/reverseengineering/comments/19c1ezq/reverse_engineering_an_ev_charger/

xnlreveal chrome extension detects reflected query parameters and reveals hidden page elements for security testing.
https://securityonline.info/xnlreveal-chrome-browser-extension-to-show-alerts-for-relfected-query-params-show-hidden-elements/

nmap script to check for vulnerabilities cve-2023-46805 and cve-2024-21887 in ivanti pulse secure ssl vpn.
https://github.com/rootup/personalstuff/blob/master/http-vuln-cve2023-46805_2024_21887.nse

the metaradar app is an offline bluetooth security tool that scans and tracks ble devices without sharing user data.
https://github.com/semper-viventem/metaradar

taranis ai is an open-source osint tool enhanced with ai for efficient cyber threat analysis.
https://taranis.ai/

phish.ly uses tines and urlscan to analyze suspicious emails and provide a security report.
https://phish.ly/

News

satnogs is an open-source network for connecting satellite ground stations globally, and you can contribute or seek project details on their site.
https://satnogs.org/

npm package “oscompatible” hides a trojan activating on explicit “compat()” call, requiring windows server os to run.
https://securityonline.info/npms-hidden-threat-the-covert-trojan-lurking-in-your-windows-system/

three romance scam victims lose money to sophisticated fake relationship schemes involving bogus financial emergencies.
https://garwarner.blogspot.com/2024/01/classic-baggie-part-three-romance-scam.html

# F.A.Q

Problem

Many websites are using AI/ML to create clickbait which actually doesn't have any valuable content.

Value

I use AI to de-clickbait the clickbait by allowing AI to read my news for me. Then it creates a meaningful tldr; regarding the articles of interest which helps discern what I should read. It is saving me a ton of time.

Why

FWIW HAQ.NEWS really started out as my personal news feed, enriched by Ai, and converted into something quick and easy to read. But then I started getting requests for features like rss, Gracie got involved, and with the super-power of Ai things have taken on a life of their own.

Sharing

I currently post daily infosec news to x, linkedin, mastodon and rss.

I also post daily infosec podcasts and interviews to apple podcasts and spotify.

Ads

This isn't an Ad.

current friend of haq 2024-01-22

I want to encourage people and projects that impress me, by posting a banner linking their work, as it's my desire to help others. I do not take or make any money.

Thanks,
Jared Folkins