home.social

#canarytoken — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #canarytoken, aggregated by home.social.

  1. Linux Physical Security based on eBPF

    By now uses CanaryToken and-or TelegramBot to send notifications

    I have in mind some TODOs, one of them is about monitor accelerometers, if someone has accelerometers sensors on the laptop, please send DM I'm very hype to implement this feature.

    github.com/carvilsi/caetra

    #eBPF #canaryToken #physicalSecurity #monitoring

  2. New release v5.1.2 for CanaryUSB that fixes a :bug: when building long canaryDNS tokens.

    Get a mail notification via, Canary Tokens (DNS) when a USB or SDCard device is connected on a Linux computer.

    Also it is possible to de-authorize an USB that is not present on trusted devices list.

    github.com/carvilsi/canaryusb/

    #usb #linux #security #physicalSecurity #sdcard #canaryToken

  3. Happy to share the new release of canaryusb; right now apart of sending a mail via #canaryToken powered by @ThinkstCanary the new feature deauth_devices (on config file or on cli argument `-d`) allows to de-authorize a USB device attached that does is not on the trust devices list.

    github.com/carvilsi/canaryusb/

    The de-authorize thingy based on kernel.org/doc/html/v5.15/usb/

    Of course this new feature requires to execute it as root user (all the thing explained on README if you want to run it as a service)

    Also fixed a bug related with cli args parsing ;)

    <3 hack the planet!

    #linux #security #usb #hardening #monitoring-tool #security-automation #security-tools #physicalSecurity

  4. Two of my long dormant Canary token's posted to private content on FB were activated, while I was deleting my FB account content yesterday.

    Why would deleting private content require embedded links in that content to be followed? 🙄🤷‍♂️

    #Canarytoken #Facebook

  5. @bitwarden question : why does the web version of Bitwarden follow password entry URLs? Every time I login to my vault, my #canarytoken triggers. (I don't say it's a bad thing, I just want to understand)

  6. [Перевод] «Где хуже всего оставлять свои секреты?» — что происходит с учетными данными AWS, которые плохо лежат

    ИБ-энтузиаст «теряет» на разных публичных площадках ключи AWS API, чтобы выяснить, как быстро до них доберутся злоумышленники, — и приходит к неутешительным результатам.

    habr.com/ru/companies/bastion/

    #canarytoken #canaryтокен #ханипот #honeypot #канарейка_иб #ловушки_для_хакеров #canary_trap #ключи_aws_api #учетные_данные #взлом_аккаунта

  7. @Jacob @hack_lu and EntraID IS BEING TARGETED, there’s solid data showing that you deploying this #canarytoken might be a good idea. FYI: having thia token is mandatory at my $employer for all Azure tenants.

  8. Pretty cool to see that ~45% of the domains we alert on with the @ThinkstCanary #EntraID #phishing #CanaryToken were issued their TLS certificates within a *day* of triggering an alert (median is 2 days, ~75% in under a week).

    Come to my @hack_lu talk next week to learn more!
  9. Hey @ThinkstCanary, would it be possible to generate an HAR file #canarytoken ? Seems like a good addition to the stack given the current news... :ablobcatwink:​

  10. I added some new features to canaryusb, the most nice it's that right now it's possible to provide a list of trusted devices, and if any of these are connected, you'll not receive a notification from #canarytoken

    github.com/carvilsi/canaryusb

    Get a mail notification via, Canary Tokens (DNS) when a USB device is connected on a GNU/Linux computer.
    Could be useful when you leave the laptop unattended or for a server on a remote location, will not prevent to being breached, but at least you'll notice; this is the principle behind @ThinkstCanary. Here we are thinking about removable media threats like #BadUSB or data theft.

    #security #hardware

  11. I am being told that Sentinel One makes use of canary tokens as part of their agent. Yet I cannot find any documentation related to this or how this works. Would anyone be able to provide any insight to this? I am looking to implement canary tokens and or honey pots, but I need to convince the team that this would be doing more than what our current EDR agent is doing. Any input is valuable. Thanks!
    #EDR #SentinelOne #canarytoken #honeypot