Jonathan DS jonathands

🔐 Entendendo e Mitigando a Ameaça do Malware Androxgh0st

Como o Androxgh0st Funciona

O Androxgh0st atinge principalmente aplicações Laravel, um dos principais frameworks PHP usados em muitos sites. Ao escanear arquivos .env, o malware consegue identificar e extrair informações sensíveis, especialmente credenciais de acesso a plataformas como a Amazon Web Services (AWS).

O funcionamento do Androxgh0st ocorre em várias fases:

Etapa 1: Varredura com Botnet

O Androxgh0st utiliza uma botnet para procurar por sites que utilizam Laravel. Isso gera uma lista de possíveis alvos.

Problem

I have two Github accounts: oanhnn (personal) and superman (for work). I want to use both accounts on same computer (without typing password everytime, when doing git push or pull).

Solution

Use ssh keys and define host aliases in ssh config file (each alias for an account).

How to?

Generate ssh key pairs for accounts and add them to GitHub accounts.

Problem

I have two Github accounts: oanhnn (personal) and superman (for work). I want to use both accounts on same computer (without typing password everytime, when doing git push or pull).

Solution

Use ssh keys and define host aliases in ssh config file (each alias for an account).

How to?

Generate ssh key pairs for accounts and add them to GitHub accounts.

Step by step guide to downloading protected PDF from Google Drive

Open the document in Google Docs
Scroll to the bottom of the document, so all the pages are present
Open Developer Tools on separate window and choose the Console tab
Paste the code
Have fun!

	echo "deb [signed-by=/usr/share/keyrings/cloudflare-warp-archive-keyring.gpg] https://pkg.cloudflareclient.com/ jammy main" \| sudo tee /etc/apt/sources.list.d/cloudflare-client.list
	## force Jammy

	sudo apt-get update && sudo apt-get install cloudflare-warp


	warp-cli registration new
	warp-cli connect

	// === Global Variables ===
	var siteResults = {};
	var isPaused = false;
	var pausePromiseResolve;

	// === Function to Export siteResults as CSV ===
	function exportSiteResultsAsCSV(siteResults) {
	// Create the CSV headers
	var csvContent = 'Site,Domain Info,DNS Info,Error\n';

	// Original script: https://gist.github.com/leodevbro/2987e8874a18b2086ea6cc1aa3c494e8

	// v2.5
	// Google Apps Script is a coding language based on JavaScript.
	// This Apps Script code helps us to sort addresses by most threads.
	// A thread is a group of messages, as a conversation.

	const modes = {
	inbox: "inbox", // to analyze threads in the "Inbox" folder
	outbox: "outbox", // to analyze threads in the "Sent" folder

	** This is a Test

	asfasdf asdf asdf asdf asdfa sdfa sdfas dfasdf

	* 1
	* 2

	- 3
	- 4

	/**
	* Wrapper for easy cURLing
	*
	* @author Viliam Kopecký
	*
	* @param string HTTP method (GET\|POST\|PUT\|DELETE)
	* @param string URI
	* @param mixed content for POST and PUT methods
	* @param array headers
	* @param array curl options