#canarytoken — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #canarytoken, aggregated by home.social.
-
Linux Physical Security based on eBPF
By now uses CanaryToken and-or TelegramBot to send notifications
I have in mind some TODOs, one of them is about monitor accelerometers, if someone has accelerometers sensors on the laptop, please send DM I'm very hype to implement this feature.
-
New release v5.1.2 for CanaryUSB that fixes a :bug: when building long canaryDNS tokens.
Get a mail notification via, Canary Tokens (DNS) when a USB or SDCard device is connected on a Linux computer.
Also it is possible to de-authorize an USB that is not present on trusted devices list.
https://github.com/carvilsi/canaryusb/releases/tag/v5.1.2
#usb #linux #security #physicalSecurity #sdcard #canaryToken
-
Happy to share the new release of canaryusb; right now apart of sending a mail via #canaryToken powered by @ThinkstCanary the new feature deauth_devices (on config file or on cli argument `-d`) allows to de-authorize a USB device attached that does is not on the trust devices list.
https://github.com/carvilsi/canaryusb/releases/tag/v5.1.0
The de-authorize thingy based on https://www.kernel.org/doc/html/v5.15/usb/authorization.html#usage
Of course this new feature requires to execute it as root user (all the thing explained on README if you want to run it as a service)
Also fixed a bug related with cli args parsing ;)
<3 hack the planet!
#linux #security #usb #hardening #monitoring-tool #security-automation #security-tools #physicalSecurity
-
Two of my long dormant Canary token's posted to private content on FB were activated, while I was deleting my FB account content yesterday.
Why would deleting private content require embedded links in that content to be followed? 🙄🤷♂️
-
@bitwarden question : why does the web version of Bitwarden follow password entry URLs? Every time I login to my vault, my #canarytoken triggers. (I don't say it's a bad thing, I just want to understand)
-
[Перевод] «Где хуже всего оставлять свои секреты?» — что происходит с учетными данными AWS, которые плохо лежат
ИБ-энтузиаст «теряет» на разных публичных площадках ключи AWS API, чтобы выяснить, как быстро до них доберутся злоумышленники, — и приходит к неутешительным результатам.
https://habr.com/ru/companies/bastion/articles/854384/
#canarytoken #canaryтокен #ханипот #honeypot #канарейка_иб #ловушки_для_хакеров #canary_trap #ключи_aws_api #учетные_данные #взлом_аккаунта
-
@Jacob @hack_lu and EntraID IS BEING TARGETED, there’s solid data showing that you deploying this #canarytoken might be a good idea. FYI: having thia token is mandatory at my $employer for all Azure tenants.
-
Pretty cool to see that ~45% of the domains we alert on with the @ThinkstCanary #EntraID #phishing #CanaryToken were issued their TLS certificates within a *day* of triggering an alert (median is 2 days, ~75% in under a week).
Come to my @hack_lu talk next week to learn more! -
Hey @ThinkstCanary, would it be possible to generate an HAR file #canarytoken ? Seems like a good addition to the stack given the current news... :ablobcatwink:
-
I added some new features to canaryusb, the most nice it's that right now it's possible to provide a list of trusted devices, and if any of these are connected, you'll not receive a notification from #canarytoken
https://github.com/carvilsi/canaryusb
Get a mail notification via, Canary Tokens (DNS) when a USB device is connected on a GNU/Linux computer.
Could be useful when you leave the laptop unattended or for a server on a remote location, will not prevent to being breached, but at least you'll notice; this is the principle behind @ThinkstCanary. Here we are thinking about removable media threats like #BadUSB or data theft. -
I am being told that Sentinel One makes use of canary tokens as part of their agent. Yet I cannot find any documentation related to this or how this works. Would anyone be able to provide any insight to this? I am looking to implement canary tokens and or honey pots, but I need to convince the team that this would be doing more than what our current EDR agent is doing. Any input is valuable. Thanks!
#EDR #SentinelOne #canarytoken #honeypot