https://infosec.exchange/@thc https://thc.org/ops
Nothing here yet.
Feb 3, 2025 · 8 min read · TL;DR: An attacker can trick Let's Encrypt (LE) to issue new TLS certificates for any domain that the attacker intercepts traffic for. The attacker can then decrypt the TLS traffic. This one thing that TLS is supposed to prevent from happening. The f...
XXan commented
Aug 26, 2024 · 6 min read · Pavel was not arrested because he criticised Macron. He was arrested because he (allegedly) facilitates a wide range of crimes, including drug trafficking and ransomware groups. He should have also been arrested for LYING to the community and for his...
MKRRCRespodes676 commented
Oct 21, 2023 · 4 min read · Some comments regarding the recently discovered Interception of HTTPS/TLS/SSL traffic by a state actor in Germany. Ten years ago, in 2013, the IETF #88 (which is the standardization body of the Internet) declared that the Internet surveillance progra...
BBrooklyn commented
Sep 28, 2023 · 3 min read · After reading this article you will be able to start a Debian-Linux (including Kernel) from any (unprivileged) Linux shell. User Mode Linux (UML) is a modified Linux Kernel that the user starts just like any other Linux program. The UML-Kernel then "...
Join discussion
Sep 24, 2023 · 3 min read · After reading this article you will be able to start any OS of any architecture from your (unprivileged) Linux shell (and log in as root to start (for example) Docker inside the emulated OS). This is a great way to test or compile exploits and tools....
Join discussion
