k3nundrum k3nundrum

Git'ing started with `git` and Github

This is just a BASIC cheatsheet for a PR based workflow using git and GitHub, geared towards new users of git and GitHub. If you are a new user, I HIGHLY recommend you skip to the end and review the Recommended Resources, which includes a sample GitHub repo you can clone and which will guide you through using GitHub.

Basic PR workflow
5. Release (as needed)

hi, i'm daniel. i'm a 15-year-old high school junior. in my free time, i hack billion dollar companies and build cool stuff.

3 months ago, I discovered a unique 0-click deanonymization attack that allows an attacker to grab the location of any target within a 250 mile radius. With a vulnerable app installed on a target's phone (or as a background application on their laptop), an attacker can send a malicious payload and deanonymize you within seconds--and you wouldn't even know.

I'm publishing this writeup and research as a warning, especially for journalists, activists, and hackers, about this type of undetectable attack. Hundreds of applications are vulnerable, including some of the most popular apps in the world: Signal, Discord, Twitter/X, and others. Here's how it works:

Cloudflare

By the numbers, Cloudflare is easily the most popular CDN on the market. It beats out competitors such as Sucuri, Amazon CloudFront, Akamai, and Fastly. In 2019, a major Cloudflare outage k

Disable Telemetry and Data Collection

Access Firefox Configuration:
- Open Firefox and type about:config in the address bar, then press Enter.
- Accept the warning message by clicking on "Accept the Risk and Continue."
Modify Preferences:
- Search for each of the following preferences and set them to the specified values:

| Preference | Value |

Original report

Affected Vendor: OpenPrinting
Affected Product: Several components of the CUPS printing system: cups-browsed, libppd, libcupsfilters and cups-filters.
Affected Version: All versions <= 2.0.1 (latest release) and master.
Significant ICS/OT impact? no
Reporter: Simone Margaritelli [evilsocket@gmail.com]
Vendor contacted? yes The vendor has been notified trough Github Advisories and all bugs have been confirmed:

https://github.com/OpenPrinting/cups-browsed/security/advisories/GHSA-rj88-6mr5-rcw8

	using System;
	using System.IO;
	using System.Security.Cryptography;
	using System.Runtime.Serialization.Formatters.Binary;

	namespace hawktracewsus
	{
	class Program
	{
	static void Main()

	import sys
	import argparse
	from impacket.dpapi import MasterKeyFile, MasterKey, DPAPI_BLOB
	from impacket.uuid import bin_to_string
	from binascii import unhexlify, hexlify


	def decrypt_masterkey(mk_blob, dpapikey):
	"""Decrypt masterkey blob with dpapikey pulled from secretsdump"""
	try:

	cmake_minimum_required(VERSION 3.24)
	project(Stardust
	LANGUAGES CXX
	)

	# Build option for generating the final shellcode.bin file
	option(STARDUST_BUILD_SHELLCODE "Build the final shellcode.bin file" OFF)

	# Add nasm for the Stardust.asm source if building shellcode
	if(${STARDUST_BUILD_SHELLCODE})

	import random
	import argparse
	import tempfile
	import ipaddress
	from time import sleep
	from shlex import split
	from os import path, remove
	from scapy.all import sniff
	from threading import Thread
	from subprocess import Popen, PIPE

	# -- coding: utf-8 --
	import hashlib
	import base64
	import requests, string, struct, uuid, random, re
	import sys
	from collections import OrderedDict
	from sys import version
	from urllib3.exceptions import InsecureRequestWarning
	requests.packages.urllib3.disable_warnings(category=InsecureRequestWarning)
	# too lazy to deal with string <-> bytes confusion in python3 so forget it ¯\_(ツ)_/¯

k3nundrum k3nundrum

Git'ing started with git and Github

Cloudflare

Disable Telemetry and Data Collection

Git'ing started with `git` and Github