Cybersecurity

Weekly newsletter, sent every Tuesday.

Sources:
/r/cybersecurity /r/netsec /r/netsecstudents

News and discussions about cutting edge cybersecurity technology.

Keep me posted on product updates and related news (for example, if you add more newsletter or add new features)

Latest issue

Here's a preview of the latest issue of this newsletter.

A Blueprint for Stopping DDoS Attacks Forever Using “Tokenized” Fields in TCP or IPv6 Packets. • Command and Control via SYN packets

Unreadit/Cybersecurity
A Blueprint for Stopping DDoS Attacks Forever Using “Tokenized” Fields in TCP or IPv6 Packets. medium.com • r/netsec • u/sdgreathouse share

The obvious flaw with this is that it requires you to have already established a token with the client before it's first connection. So it's impossible for public applications, and impractical for others.

u/compdog

Any half decent server can handle a SYN flood these days. Modern DDoS attacks are volumetric, they just flood packets at you until your upstream link is saturated. No amount of protocol trickery can save you from that.

u/notR1CH

Any host level mitigation of DDoS attacks is doomed to fail. You need to stop attacks at the source network to be successful with this kind of signed traffic scheme. It won't work because every internet operator would need to participate. See the history of BCP 38 adoption to learn how this kind of DDoS mitigation scheme usually goes.

u/RedKrieg
Command and Control via SYN packets thesw4rm.gitlab.io • r/netsec • u/IAMINNOCENT1234 share

This was an awesome post, highly enjoyed reading it

u/Fcuk-

good idea. on the notion of nobody looking at syns - i did an investigation about a year ago. lateral movemenet was done via rdp and rpc calls but i could not find connection to outside for an oldest pivot server in logs. than i started looking at incompletes and soon found a host known for metasploit connecting from outside in those logs.... when all impossible is eliminated, what is left, no matter how improbable, is truth...as long as there are some logs.

u/apatrid
Wiershark - Malware traffic analysis tutorial youtube.com • r/netsecstudents • u/HackExplorer share

Good stuff. Thank you!

u/SuperSeyoe
Some useful Open Source Intelligence (OSINT) tools peerlyst.com • r/netsecstudents • u/Z3r0s3c4 share
Pentesting for n00bs: Episode 8 - Bashed (hackthebox) youtu.be • r/netsecstudents • u/DorkNowitzki41 share
Introduction to Networking | Network Basics for Beginners - Data Hashing youtu.be • r/netsecstudents • u/SquareTechAcademy share
How two dead users allowed remote crash of any instagram android user medium.com • r/netsec • u/Eta-Meson share
Human Error Always Wins r/cybersecurity • u/Reigncity2012 share

Issue #3 of Unreadit/Cybersecurity was brought to you by Superlinear. Want to suggest more subreddits or give feedback? Click here.