Show notes are at https://stevelitchfield.com/sshow/chat.html
…
continue reading
المحتوى المقدم من Firo Solutions LTD. يتم تحميل جميع محتويات البودكاست بما في ذلك الحلقات والرسومات وأوصاف البودكاست وتقديمها مباشرة بواسطة Firo Solutions LTD أو شريك منصة البودكاست الخاص بهم. إذا كنت تعتقد أن شخصًا ما يستخدم عملك المحمي بحقوق الطبع والنشر دون إذنك، فيمكنك اتباع العملية الموضحة هنا https://ar.player.fm/legal.
مشابه لـHacker Talk
This is the audio podcast version of Troy Hunt's weekly update video published here: https://www.troyhunt.com/tag/weekly-update/
…
continue reading
Discover a whole new take on Artificial Intelligence with Squirro's educational podcast! Join host Lauren Hawker Zafer, a top voice in Artificial Intelligence on LinkedIn, for insightful chats that unravel the fascinating world of tech innovation, use case exploration and AI knowledge. Dive into candid discussions with accomplished industry experts and established academics. With each episode, you'll expand your grasp of cutting-edge technologies and their incredible impact on society, and y ...
…
continue reading
The director’s commentary track for Daring Fireball. Long digressions on Apple, technology, design, movies, and more.
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
Three nerds discussing tech, Apple, programming, and loosely related matters.
…
continue reading
A podcast featuring panelists of engineers from Netflix, Twitch, & Atlassian talking over drinks about all things software engineering.
…
continue reading
Download This Show is your weekly guide to the world of media, culture, and technology. From social media to gadgets, streaming services to privacy issues. Each week Marc Fennell and a team of people far smarter than him (his words, not ours) take a fun deep dive into how technology is reshaping our lives.
…
continue reading
The American healthcare system is one of the most innovative in the world. But it’s also riddled with complex challenges, such as access to affordable medications, inefficiency and administrative burdens, and communication barriers between providers. There’s clearly a better way—and at Surescripts, we have a unique sightline into what that may be. In this series, host Melanie Marcus, Chief Marketing Officer of Surescripts, sits down with today’s most inspiring and innovative leaders in healt ...
…
continue reading
Monday through Friday, Marketplace demystifies the digital economy in less than 10 minutes. We look past the hype and ask tough questions about an industry that’s constantly changing.
…
continue reading
Player FM - تطبيق بودكاست
انتقل إلى وضع عدم الاتصال باستخدام تطبيق Player FM !
انتقل إلى وضع عدم الاتصال باستخدام تطبيق Player FM !
))
Compromising Covid-19 systems with Pavol Luptak
Manage episode 334221760 series 3370924
المحتوى المقدم من Firo Solutions LTD. يتم تحميل جميع محتويات البودكاست بما في ذلك الحلقات والرسومات وأوصاف البودكاست وتقديمها مباشرة بواسطة Firo Solutions LTD أو شريك منصة البودكاست الخاص بهم. إذا كنت تعتقد أن شخصًا ما يستخدم عملك المحمي بحقوق الطبع والنشر دون إذنك، فيمكنك اتباع العملية الموضحة هنا https://ar.player.fm/legal.
Buckle in for a great episode of Hacker Talk! Pavol Luptak, CEO of Nethemba joins us, and
walks us through the vulnerabilities that were found in Slovakia's covid-19 PCR and anti-gen authority.
Tune into the most technical and detailed covid-19 hacking episode, right here on Hacker Talk.
In this episode we cover:
Pavol's journey into it-security
old-school Unix
privilege escalation attacks
Traditional C and Assembly, shellcodes
Becoming a penetration tester
Rfid
Finding vulnerabilities in parking system, parking in Bratislava for free
Hacking Slovakia's covid-19 systems
extracting PCR and anti-gen covid-19 tests for all Slovakian citizens.
Finding vulnerabilities in PCR test authorities.
enumeration attacks.
Slovakian eHranica forms.
Generating birthdate number.
Finding birthdates on Facebook and Wikipedia
Leveraging different parts of the systems to make them work together
Impersonation attacks
OWASP Web Security Testing Guide
Cracking Captcha's
Rate limiting requests
Security mitigations that you can user
Central European Bug Bounty programs
Hacktrophy
Best practices for bug bounties for enterprises
How to get started with penetration testing
The new smart contract security field
Personal number generation script:
#!/bin/bash
for (( year=54; year < 100; year++)));
to
for (( month=1; month < 13; month++)));
to
for (( day=1; day < 32; day++)));
to
for (( suffix=0; suffix < 10000; suffix++))
to
final=$(( $year*100000000+$month*1000000+$day*10000+$suffix ));
if (( final % 11 == 0 )); then printf "%010d\n" $final;
fi
done
done
done
done
External Links:
https://nethemba.com/possibility-of-widespread-leak-and-misuse-of-eu-vaccination-certificates/
https://nethemba.com/kriticka-zranitelnost-v-aplikacii-moje-ezdravie-unik-databazy-pacientov-testovanych-na-covid-19/
https://slides.com/nethemba/how-trivial-critical-vulnerabilities-can-lead-to-a-complete-leak-of-sensitive-covid-19-data-on-all-citizens-of-the-country
https://spectator.sme.sk/c/22722505/serious-flaw-in-ehranica-form-attackers-able-to-send-people-into-self-isolation.html
https://wilderko.medium.com/
https://owasp.org/www-project-web-security-testing-guide/
https://nginx.org/
https://docs.nginx.com/nginx-waf/
https://en.wikipedia.org/wiki/Cloudflare
https://hacktrophy.com/en/
https://nethemba.com/resources/ehranice-critical-vulnerabilities.pdf
19 حلقات
مشاركة
Manage episode 334221760 series 3370924
المحتوى المقدم من Firo Solutions LTD. يتم تحميل جميع محتويات البودكاست بما في ذلك الحلقات والرسومات وأوصاف البودكاست وتقديمها مباشرة بواسطة Firo Solutions LTD أو شريك منصة البودكاست الخاص بهم. إذا كنت تعتقد أن شخصًا ما يستخدم عملك المحمي بحقوق الطبع والنشر دون إذنك، فيمكنك اتباع العملية الموضحة هنا https://ar.player.fm/legal.
Buckle in for a great episode of Hacker Talk! Pavol Luptak, CEO of Nethemba joins us, and
walks us through the vulnerabilities that were found in Slovakia's covid-19 PCR and anti-gen authority.
Tune into the most technical and detailed covid-19 hacking episode, right here on Hacker Talk.
In this episode we cover:
Pavol's journey into it-security
old-school Unix
privilege escalation attacks
Traditional C and Assembly, shellcodes
Becoming a penetration tester
Rfid
Finding vulnerabilities in parking system, parking in Bratislava for free
Hacking Slovakia's covid-19 systems
extracting PCR and anti-gen covid-19 tests for all Slovakian citizens.
Finding vulnerabilities in PCR test authorities.
enumeration attacks.
Slovakian eHranica forms.
Generating birthdate number.
Finding birthdates on Facebook and Wikipedia
Leveraging different parts of the systems to make them work together
Impersonation attacks
OWASP Web Security Testing Guide
Cracking Captcha's
Rate limiting requests
Security mitigations that you can user
Central European Bug Bounty programs
Hacktrophy
Best practices for bug bounties for enterprises
How to get started with penetration testing
The new smart contract security field
Personal number generation script:
#!/bin/bash
for (( year=54; year < 100; year++)));
to
for (( month=1; month < 13; month++)));
to
for (( day=1; day < 32; day++)));
to
for (( suffix=0; suffix < 10000; suffix++))
to
final=$(( $year*100000000+$month*1000000+$day*10000+$suffix ));
if (( final % 11 == 0 )); then printf "%010d\n" $final;
fi
done
done
done
done
External Links:
https://nethemba.com/possibility-of-widespread-leak-and-misuse-of-eu-vaccination-certificates/
https://nethemba.com/kriticka-zranitelnost-v-aplikacii-moje-ezdravie-unik-databazy-pacientov-testovanych-na-covid-19/
https://slides.com/nethemba/how-trivial-critical-vulnerabilities-can-lead-to-a-complete-leak-of-sensitive-covid-19-data-on-all-citizens-of-the-country
https://spectator.sme.sk/c/22722505/serious-flaw-in-ehranica-form-attackers-able-to-send-people-into-self-isolation.html
https://wilderko.medium.com/
https://owasp.org/www-project-web-security-testing-guide/
https://nginx.org/
https://docs.nginx.com/nginx-waf/
https://en.wikipedia.org/wiki/Cloudflare
https://hacktrophy.com/en/
https://nethemba.com/resources/ehranice-critical-vulnerabilities.pdf
19 حلقات
كل الحلقات
×
مرحبًا بك في مشغل أف ام!
يقوم برنامج مشغل أف أم بمسح الويب للحصول على بودكاست عالية الجودة لتستمتع بها الآن. إنه أفضل تطبيق بودكاست ويعمل على أجهزة اندرويد والأيفون والويب. قم بالتسجيل لمزامنة الاشتراكات عبر الأجهزة.
مشابه لـHacker Talk
Show notes are at https://stevelitchfield.com/sshow/chat.html
…
continue reading
This is the audio podcast version of Troy Hunt's weekly update video published here: https://www.troyhunt.com/tag/weekly-update/
…
continue reading
Discover a whole new take on Artificial Intelligence with Squirro's educational podcast! Join host Lauren Hawker Zafer, a top voice in Artificial Intelligence on LinkedIn, for insightful chats that unravel the fascinating world of tech innovation, use case exploration and AI knowledge. Dive into candid discussions with accomplished industry experts and established academics. With each episode, you'll expand your grasp of cutting-edge technologies and their incredible impact on society, and y ...
…
continue reading
The director’s commentary track for Daring Fireball. Long digressions on Apple, technology, design, movies, and more.
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
Three nerds discussing tech, Apple, programming, and loosely related matters.
…
continue reading
A podcast featuring panelists of engineers from Netflix, Twitch, & Atlassian talking over drinks about all things software engineering.
…
continue reading
Download This Show is your weekly guide to the world of media, culture, and technology. From social media to gadgets, streaming services to privacy issues. Each week Marc Fennell and a team of people far smarter than him (his words, not ours) take a fun deep dive into how technology is reshaping our lives.
…
continue reading
The American healthcare system is one of the most innovative in the world. But it’s also riddled with complex challenges, such as access to affordable medications, inefficiency and administrative burdens, and communication barriers between providers. There’s clearly a better way—and at Surescripts, we have a unique sightline into what that may be. In this series, host Melanie Marcus, Chief Marketing Officer of Surescripts, sits down with today’s most inspiring and innovative leaders in healt ...
…
continue reading
Monday through Friday, Marketplace demystifies the digital economy in less than 10 minutes. We look past the hype and ask tough questions about an industry that’s constantly changing.
…
continue reading
Player FM - تطبيق بودكاست
انتقل إلى وضع عدم الاتصال باستخدام تطبيق Player FM !
انتقل إلى وضع عدم الاتصال باستخدام تطبيق Player FM !
