Security Feed
Live posts from mastodon.social on HTTP client vulnerabilities, botnets, JA4 fingerprinting, and network security research.
Library Radar
| Library | Version | CVEs mentioned | Collector | Source |
|---|---|---|---|---|
| axios | 4.2 | - | runner exists | Axios Supply Chain Attack Pushes Cross-Platform RAT via Comp… ↗ |
| axios | 0.30.4 | - | runner exists |
Supply Chain Attack Impacts Widely Used Axios npm Package | … ↗
Un ataque compromete a Axios, uno de los paquetes más popula… ↗ |
| axios | 1.14.1 | - | runner exists |
Supply Chain Attack Impacts Widely Used Axios npm Package | … ↗
Un ataque compromete a Axios, uno de los paquetes más popula… ↗ Axios Supply Chain Attack Pushes Cross-Platform RAT via Comp… ↗ |
lang
all
en
de
es
fr
it
pl
pt
ru
Showing 75 posts · cached 0 min ago ·
refresh
#malware
en
Axios의 npm 유지관리자 계정이 탈취돼 axios@1.14.1·0.30.4에 악성 의존성 plain-crypto-js@4.2.1이 주입됐다. postinstall으로 macOS·Windows·Linux용 RAT을 배포·실행하고 자기 삭제·포렌식 은폐를 수행. 즉시 1.14.0/0.30.3으로 다운그레이드, 비밀키·토큰 교체, plain-crypto-js 제거, C2(sfrclak.com) 차단 및 시스템 검사 권고 https:// thehackernews.com/2026/03/axio s-supply-chain-attack-p
#malware
en
이 GitHub 리포지토리는 mac용 axios 보안 검사 스크립트와 복구 가이드를 제공한다. 권장 조치: axios를 안전한 버전(1.14.0 또는 0.30.3)으로 다운그레이드·고정(overrides/resolutions), node_modules/plain-crypto-js 제거, npm install --ignore-scripts 실행. RAT 발견 시 시스템을 완전 재구성하고 모든 자격증명 회수, CI/CD 감사 및 C2(142.11.206.73, sfrclak.com) 차단 권고. https:// github.com/Li
#threatintel
en
Your org should be activating Entra ID conditional access policies to outright block device code authorizations with a carveout for very limited use cases such as meeting room conferencing devices. Even Microsoft knows this and has specific guidance on how to enforce it. Device code phishing is hot
#infosec
en
2026-03-31 RDP # Honeypot IOCs - 705 scans Thread with top 3 features in each category and links to the full dataset # DFIR # InfoSec Top IPs: 143.198.111.35 - 495 143.110.190.12 - 36 80.66.83.75 - 27 Top ASNs: AS14061 - 531 AS216473 - 42 AS396982 - 36 Top Accounts: hello - 531 Administr - 39 Domain
#infosec
en
2026-03-31 RDP # Honeypot IOCs - 470 scans Thread with top 3 features in each category and links to the full dataset # DFIR # InfoSec Top IPs: 143.198.111.35 - 330 143.110.190.12 - 24 80.66.83.75 - 18 Top ASNs: AS14061 - 354 AS216473 - 28 AS396982 - 24 Top Accounts: hello - 354 Administr - 26 Domain
#infosec
en
2026-03-31 RDP # Honeypot IOCs - 235 scans Thread with top 3 features in each category and links to the full dataset # DFIR # InfoSec Top IPs: 143.198.111.35 - 165 143.110.190.12 - 12 80.66.83.75 - 9 Top ASNs: AS14061 - 177 AS216473 - 14 AS396982 - 12 Top Accounts: hello - 177 Administr - 13 Domain
#cybersecurity
es
🖲️ # Cybersecurity # Ciberseguridad # Ciberseguranca # Security # Seguridad # Seguranca # News # Noticia # Noticias # Tecnologia # Technology ⚫ Rethinking Vulnerability Management Strategies for Mid-Market Security 🔗 https://www. darkreading.com/cybersecurity- operations/rethinking-vulnerability-man
#infosec
en
Fine-grained control per API method and version defines boundaries exactly. Read more 👉 https:// lttr.ai/Aptpv # Security # Infosec # Api
#malware
en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: exiodhun[.]gitbook[.]io 🔍 Analysis at: https:// phishdestroy.io/domain/exiodhu n.gitbook.io/ # BlockchainFraud # scamalert # malware
#malware
en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: eni-top[.]website 🔍 Analysis at: https:// phishdestroy.io/domain/eni-top .website/ # BlockchainFraud # BlockchainSafety # malware # WalletSecurity # Web3Hacking
#infosec
en
🚨 EUVD-2026-17709 📊 Score: 6.2/10 (CVSS v3.1) 📦 Product: iccDEV 🏢 Vendor: InternationalColorConsortium 📅 Updated: 2026-03-31 📝 iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted TIFF input can trigger Undefined Behavior (U
#infosec
en
🚨 EUVD-2026-17711 📊 Score: 6.2/10 (CVSS v3.1) 📦 Product: iccDEV 🏢 Vendor: InternationalColorConsortium 📅 Updated: 2026-03-31 📝 iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, an Undefined Behavior (UB) condition in IccUtil.cpp ca
#infosec
en
🚨 EUVD-2026-17713 📊 Score: 6.2/10 (CVSS v3.1) 📦 Product: iccDEV 🏢 Vendor: InternationalColorConsortium 📅 Updated: 2026-03-31 📝 iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is an Undefined Behavior (UB) condition in the X
#infosec
en
🚨 EUVD-2026-17714 📊 Score: 6.2/10 (CVSS v3.1) 📦 Product: iccDEV 🏢 Vendor: InternationalColorConsortium 📅 Updated: 2026-03-31 📝 iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is an Undefined Behavior (UB) condition in IccUt
#infosec
en
🚨 EUVD-2026-17715 📊 Score: 6.2/10 (CVSS v3.1) 📦 Product: iccDEV 🏢 Vendor: InternationalColorConsortium 📅 Updated: 2026-03-31 📝 iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is an Undefined Behavior (UB) condition in IccPr
#infosec
en
🚨 EUVD-2026-17716 📊 Score: 6.2/10 (CVSS v3.1) 📦 Product: iccDEV 🏢 Vendor: InternationalColorConsortium 📅 Updated: 2026-03-31 📝 iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a null-pointer dereference (NPD) in CIccTagLut16::Writ
#cybersecurity
en
🚨 EUVD-2026-17725 📊 Score: 4.8/10 (CVSS v3.1) 📦 Product: Bento4 🏢 Vendor: Axiomatic 📅 Updated: 2026-03-31 📝 A vulnerability was determined in Axiomatic Bento4 up to 1.6.0-641. This impacts the function AP4_BitReader::ReadCache of the file Ap4Dac4Atom.cpp of the component MP4 File Parser. This manipu
#cybersecurity
en
🚨 EUVD-2026-17717 📊 Score: 6.2/10 (CVSS v3.1) 📦 Product: iccDEV 🏢 Vendor: InternationalColorConsortium 📅 Updated: 2026-03-31 📝 iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is an Undefined Behavior (UB) issue in IccTagLut
#vulnerability
en
🚨 EUVD-2026-17718 📊 Score: 4.0/10 (CVSS v3.1) 📦 Product: iccDEV 🏢 Vendor: InternationalColorConsortium 📅 Updated: 2026-03-31 📝 iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is a defect in LUT dump/iteration logic affectin
#vulnerability
en
🚨 EUVD-2026-17719 📊 Score: 6.2/10 (CVSS v3.1) 📦 Product: iccDEV 🏢 Vendor: InternationalColorConsortium 📅 Updated: 2026-03-31 📝 iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a heap-buffer-overflow (HBO) in CIccApplyCmmSearch::co
#threatintel
en
CVE Alert: CVE-2026-5204 - Tenda - CH22 - https://www. redpacketsecurity.com/cve-aler t-cve-2026-5204-tenda-ch22/ # OSINT # ThreatIntel # CyberSecurity # cve -2026-5204 # tenda # ch22
#threatintel
en
CVE Alert: CVE-2026-34504 - OpenClaw - OpenClaw - https://www. redpacketsecurity.com/cve-aler t-cve-2026-34504-openclaw-openclaw/ # OSINT # ThreatIntel # CyberSecurity # cve -2026-34504 # openclaw #
#threatintel
en
CVE Alert: CVE-2026-5210 - SourceCodester - Leave Application System - https://www. redpacketsecurity.com/cve-aler t-cve-2026-5210-sourcecodester-leave-application-system/ # OSINT # ThreatIntel # CyberSecurity # cve -2026-5210 # sourcecodester # leave -application-system
#threatintel
en
CVE Alert: CVE-2026-34503 - OpenClaw - OpenClaw - https://www. redpacketsecurity.com/cve-aler t-cve-2026-34503-openclaw-openclaw/ # OSINT # ThreatIntel # CyberSecurity # cve -2026-34503 # openclaw #
#threatintel
en
CVE Alert: CVE-2026-33579 - OpenClaw - OpenClaw - https://www. redpacketsecurity.com/cve-aler t-cve-2026-33579-openclaw-openclaw/ # OSINT # ThreatIntel # CyberSecurity # cve -2026-33579 # openclaw #
#threatintel
en
Cobalt Strike Beacon Detected - 115[.]190[.]161[.]178:1234 - https://www. redpacketsecurity.com/cobalt-s trike-beacon-detected-115-190-161-178-port-1234-37/ # CobaltStrikeBeaconDetected # OSINT # ThreatIntel
#threatintel
en
Cobalt Strike Beacon Detected - 156[.]245[.]144[.]203:4443 - https://www. redpacketsecurity.com/cobalt-s trike-beacon-detected-156-245-144-203-port-4443-5/ # CobaltStrikeBeaconDetected # OSINT # ThreatIntel
#threatintel
en
Cobalt Strike Beacon Detected - 38[.]49[.]57[.]15:443 - https://www. redpacketsecurity.com/cobalt-s trike-beacon-detected-38-49-57-15-port-443-21/ # CobaltStrikeBeaconDetected # OSINT # ThreatIntel
#threatintel
en
Cobalt Strike Beacon Detected - 47[.]105[.]36[.]109:443 - https://www. redpacketsecurity.com/cobalt-s trike-beacon-detected-47-105-36-109-port-443-18/ # CobaltStrikeBeaconDetected # OSINT # ThreatIntel
#malware
en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: coinbsse-pro-logi-sso[.]created[.]app 🔍 Analysis at: https:// phishdestroy.io/domain/coinbss e-pro-logi-sso.created.app/ # Web3Hacking # CryptoSafety # CryptoDrainers # WalletSecurity # malware
#malware
en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: www[.]web3cloudsafetech[.]com 🔍 Analysis at: https:// phishdestroy.io/domain/www.web 3cloudsafetech.com/ # malware # CryptoThreats # WalletSecurity # BlockchainSafety
#malware
en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: solana[.]traxr[.]pro 🔍 Analysis at: https:// phishdestroy.io/domain/solana. traxr.pro/ # scamalert # SecureYourWallet # malware # cybersec # BlockchainFraud
#malware
en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: wallet4[.]nexretail9[.]monster 🔍 Analysis at: https:// phishdestroy.io/domain/wallet4 .nexretail9.monster/ # cybersec # CryptoHacking # malware # WalletSecurity
#malware
en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: rbxshader[.]xyz 🔍 Analysis at: https:// phishdestroy.io/domain/rbxshad er.xyz/ # DigitalFraud # WalletDrainers # malware
#networksecurity
en
Stay ahead of cyber threats. Today’s playlist dives deep into network breaches and how to stop them. ⚡ https://www. youtube.com/playlist?list=PLXq x05yil_mcNhv_qUKj-kZRNLxPt-03O # NetworkSecurity # InfoSec # CyberDefense # Ransomware # OnlineSafety
#malware
en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: trustvisa[.]app 🔍 Analysis at: https:// phishdestroy.io/domain/trustvi sa.app/ # Web3Hacking # malware # CryptoProtection # CryptoAwareness # scam # scamalert # WalletHackers
#networksecurity
en
Stay ahead of cyber threats. Today’s playlist dives deep into network breaches and how to stop them. ⚡ https://www. youtube.com/playlist?list=PLXq x05yil_menswmrfKMagbTC9Luj05YO # NetworkSecurity # InfoSec # CyberDefense # Ransomware # OnlineSafety
#networksecurity
en
Telegram disruption in Russia intensifies. • ISP-level blocking observed since ~March 20 • CDN throttling interrupts downloads mid-stream • Expanding to WhatsApp, Signal, YouTube Shift toward infrastructure-based censorship. Source: https:// explorer.ooni.org/findings/962 25549500 💬 Thoughts? Follow
#networksecurity
en
Zero Trust Network Access (ZTNA) is transforming how organizations secure applications in hybrid and cloud environments. This architecture diagram shows how identity providers, policy engines, and enforcement points deliver least-privilege, identity-based access. Move beyond VPNs, reduce attack surf
#networksecurity
en
Still using VPN for remote access? This visual compares ZTNA vs VPN and shows why Zero Trust is gaining traction. ZTNA provides identity-based, application-level access, reducing network exposure and limiting lateral movement. A smarter approach for modern, hybrid work security. What’s your take on
#networksecurity
en
The Silent Breach: Why Your Security Gateway Can’t See the Malware in Your Images 3,217 words, 17 minutes read time. The Invisible Threat: Why Modern Cybersecurity Cannot Afford to Ignore Digital Steganography In the current era of high-frequency cyber warfare, the most effective weapon is not
#networksecurity
en
Stay ahead of cyber threats. Today’s playlist dives deep into network breaches and how to stop them. ⚡ https://www. youtube.com/playlist?list=PLXq x05yil_mcfP7QXQ5FDGlmKtE5O9LfF # NetworkSecurity # InfoSec # CyberDefense # Ransomware # OnlineSafety
#networksecurity
en
Boost your skills with today’s cybersecurity playlist: exploits, defenses, and real-world lessons. 🔒 https://www. youtube.com/playlist?list=PLXq x05yil_mdl2JENBTBF15prRSd919ty # CyberAwareness # NetworkSecurity # ZeroTrust # ThreatIntelligence # Malware
#networksecurity
en
https://www. youtube.com/shorts/UgjyyMTi1T8 You do not get hacked only because of bad systems. You get hacked because of human mistakes too. One wrong click, one open port, one exposed tool, and the attacker gets in. Log in to https:// vip.secpoint.com to download the latest SecPoint Penetrator &
#networksecurity
en
Boost your skills with today’s cybersecurity playlist: exploits, defenses, and real-world lessons. 🔒 https://www. youtube.com/playlist?list=PLXq x05yil_mdneL39RX8eC_-aKxoNZfqc # CyberAwareness # NetworkSecurity # ZeroTrust # ThreatIntelligence # Malware
#scraping
en
Areejit Banerjee explains how the OWASP Automated Threat Handbook can help in the defence against AI-related scraping. # automatedthreats # scraping # bots # infosec # ciso # owasp @ owasp A CISO's Playbook for Defending Data Assets Against AI Scraping https://www. darkreading.com/cyber-risk/cis
#scraping
en
ClaudeBot is making regularly scheduled requests for my sitemap. It's completely ignoring robots.txt. Enjoy your 403 errors, ClaudeBot! # FuckAI # Scraping
#botnet
de
Die vier wichtigsten Botnets abgeschaltet Das dürfte ein schwerer Schlag gegen den Wirtschaftszweig Cybercrime sein: Behörden aus Deutschland, Kanada und den USA ist es in einer gemeinsamen Aktion gelungen, die Infrastruktur (C2 Server, Domains) hinter den vier größten Botnets auszuschalten. Das sin
#scraping
en
Quo Vadis, Crawlers? Progress and what’s next on safeguarding our infrastructure https:// diff.wikimedia.org/2026/03/26/ quo-vadis-crawlers-progress-and-whats-next-on-safeguarding-our-infrastructure/ # AI , # AIDataCrawlers , # Crawlers , # Infrastructure , # Knowledge , # KnowledgeAsAService , # Sc
#scraping
ru
Как я сделал глобальный семантический поиск для Telegram TLDR: https:// semagram.io/ Всё началось с того, что меня сократили на работе, и я несколько месяцев подряд не мог найти новую работу. Так получилось, что крупнейший работодатель региона Amadeus (хотя я работал даже не там) - решил заморозить
#ja4
en
We planned one report on Keitaro abuse, but we ran out of pages before we ran out of cases. So here’s Part 2 of 3, a medley of threats that go well beyond AI‑investment scams. Threat actors abuse Keitaro’s traffic distribution, cloaking, and rule engine to hide malicious landing pages behind geo and
#botnet
en
New. This relates to CVE-2023-46604, CVE-2023-38646, and CVE-2025-55182. VulnCheck: The Return of the Kinsing https://www. vulncheck.com/blog/return-of-t he-kinsing @ vulncheck # infosec # threatresearch # botnet
#botnet
en
Manager of # botnet used in # ransomware attacks gets 2 years in prison https://www. bleepingcomputer.com/news/secu rity/russian-man-sentenced-for-operating-botnet-used-in-ransomware-attacks/ # cybercrime # cybersecurity
#botnet
it
Russian national convicted for running # botnet used in attacks on U.S. firms https:// securityaffairs.com/189987/cyb er-crime/russian-national-convicted-for-running-botnet-used-in-attacks-on-u-s-firms.html # securityaffairs # hacking
#botnet
en
It turns out # Mirai malware isn’t fading, it’s multiplying. Hundreds of Mirai-based variants now host massive botnet growth, exploiting weak IoT devices and evolving attack methods. Read more: https:// hackread.com/mirai-malware-var iants-botnet-growth/ # Botnet # CyberSecurity # IoT # Malware # DD
#botnet
pt
Hacker russo condenado a dois anos de prisão por operar botnet de extorsão 🔗 https:// tugatech.com.pt/t80783-hacker- russo-condenado-a-dois-anos-de-prisao-por-operar-botnet-de-extorsao # botnet # hacker
#botnet
en
Mirai Variant and Monaco Miner Campaign Targeting Linux Systems Two malware strains are targeting Linux systems CondiBot an evolved Mirai botnet used for DDoS attacks and Monaco an SSH brute-force and cryptocurrency mining campaign. Pulse ID: 69c1943ae53f9148f6f7f398 Pulse Link: https:// otx.alienva
#botnet
en
📢 Global crackdown dismantles Aisuru, KimWolf, JackSkid, and Mossad botnets behind major DDoS attack campaigns targeting millions of devices worldwide. Read: https:// hackread.com/crackdown-dismant les-4-botnets-ddos-attacks/ # CyberSecurity # CyberCrime # DDoS # Mossad # Aisuru # Botnet
#botnet
de
Ich finde es schwierig eine # Malware / ein # Botnet nach dem israelischen Geheimdienst # Mossad zu benennen # Aisuru , # KimWolf & Co.: Behörden „stören“ vier gefährliche Botnets | Security https://www. heise.de/news/Aisuru-KimWolf-C o-Laenderuebergreifende-Aktion-gegen-vier-gefaehrliche-Botnet
#scraping
es
Si alguien de # españa está intentando descargar archivos # PARES pueden utilizar el script que armé, la interfaz del sitio es una mierda honestamente, no la entendí. Tengo el código en dos lugares, forgejo y la caja de TP, accedan al que mejor les guste, Forgejo es como github pero no es de # micro
#botnet
de
Erfolgreicher Schlag gegen Cyberkriminalität! 🚨 Internationale Ermittler aus USA, Deutschland & Kanada haben vier mächtige Botnetze (Aisuru, Kimwolf, JackSkid, Mossad) zerschlagen – über 3 Mio. infizierte Geräte wie Router & Webcams lahmgelegt. Hunderttausende DDoS-Angriffe, auch auf US-Mili
#scraping
en
The free OWASP Automated Threat Handbook defines a common language to identify and classify automated threats to web applications and relevant countermeasures. https:// owasp.org/www-project-automate d-threats-to-web-applications/ # AccountAggregation # AccountCreation # CAPTCHADefeat # CardCracking
#ja4
ru
Анатомия DPI анализа: что происходит с твоим пакетом за первые 16 КБ Пошаговый разбор того, как ТСПУ анализирует трафик — от первого SYN до поведенческого ML. С конкретными числами, реальными алгоритмами и объяснением почему одни протоколы умирают на первом байте, а другие живут месяцами Большинство
#scraping
en
The Emerging AI Agents War, by (not on Mastodon or Bluesky): https://www. junkcharts.com/the-emerging-ai -agents-war/ # aiagents # ai # scraping # amazon # ecommerce
#ja4
ru
Анатомия DPI анализа: что происходит с твоим пакетом за первые 16 КБ Пошаговый разбор того, как ТСПУ анализирует трафик — от первого SYN до поведенческого ML. С конкретными числами, реальными алгоритмами и объяснением почему одни протоколы умирают на первом байте, а другие живут месяцами Большинство
#ja4
ru
Как ТСПУ ловит VLESS в 2026 и почему XHTTP — следующий шаг Разбор методов детекции, которые работают прямо сейчас. JA3/JA4-отпечатки, поведенческий анализ и архитектура XHTTP, которая закрывает именно эти дыры Если твой VLESS+Reality сервер лёг в последние месяцы — ты не один. В сообществах фиксирую
#ja4
ru
Как ТСПУ ловит VLESS в 2026 и почему XHTTP — следующий шаг Разбор методов детекции, которые работают прямо сейчас. JA3/JA4-отпечатки, поведенческий анализ, академическая работа СПбПУ по детекции Reality — и архитектура XHTTP, которая закрывает именно эти дыры Если твой VLESS+Reality сервер лёг в пос
#scraping
en
🔗 https:// stephvee.ca/blog/updates/the-s craping-problem-is-worse-than-i-thought/ The extreme amount of unethical # scraping that's occurring all over the web right now *definitely* won't be solved by limiting nice features for good-faith visitors; for that reason, I've reinstated my fu
#scraping
de
📌 Streitwertsenkung bei Scraping-Klagen Das OLG Zweibrücken senkt den Streitwert bei zurückgezogener Berufung von 16.500€ auf 10.000€, was zu deutlich geringeren Gerichts- und Anwaltskosten führt. So wird das Prozessrisiko kalkulierbarer. # Scraping # Kostenrisiko # Urteil https://www. ra-kotz.de/st
#scraping
en
[Show GN: 다이소 MCP - 어떤 AI든 내 주변 다이소 재고파악을 가능하도록 다이소 MCP를 챗지피티와 클로드에서 사용 가능하도록 구성한 프로젝트로, 오픈소스 기반의 서버리스 아키텍처를 활용하여 다이소 재고 파악이 가능하도록 구현했습니다. 향후 영화관, 편의점, 백화점 등의 정보도 확장할 예정입니다. https:// news.hada.io/topic?id=27131 # ai # openai # chatgpt # scraping # serverless
#ja4
en
RE: https:// infosec.exchange/@geraldcombs/ 116133603929246605 # Wireshark 4.6.4 resolves 3 denial of service vulnerabilities in the following protocol dissectors: USB HID CVE-2026-3201 NTS-KE CVE-2026-3202 RF4CE Profile CVE-2026-3203 The new release also includes a bug fix for # JA4 fingerprints of
#ja4
fr
📢 JA4 pour traquer les scrapers IA : guide pratique de fingerprinting TLS 📝 Source: WebDecoy (équipe sécurité). 📖 cyberveille : https:// cyberveille.ch/posts/2026-01-1 0-ja4-pour-traquer-les-scrapers-ia-guide-pratique-de-fingerprinting-tls/ 🌐 source : https:// webdecoy.com/blog/ja4-fingerpr inting-a
#ja4
fr
http:// blog.foxio.io/ja4+-network-fin gerprinting https:// github.com/FoxIO-LLC/ja4 # ja4 + # blueteam # redteam
#ja4
pl
Masz VPN, zmieniony user-agent, prywatną przeglądarkę – a mimo to serwer wie, kim jesteś? Bo dziś identyfikacja to coś więcej niż ciasteczka. W grze są JA3, JA4, PeetPrint, fingerprinting HTTP/2 od Akamai, kolejność nagłówków, ALPN, WebGL, fonty, język systemu… Prywatność nie kończy się na adresie I
#ja4
en
PolarProxy 1.0.1 Released 🆔 More # JA4 🔂 Fail-open on # TLS errors ⏩ Better performance https:// netresec.com/?b=2523c96