-
CSP currently has a few gaps that prevent it from being a useful anti-exfiltration mechanism. https://www.w3.org/TR/CSP3/#exfiltration hints that preventing data exfiltration may be a goal, but it's n…
-
Hello!
Just reviewing the DNS exfiltration rule at - https://github.com/SigmaHQ/sigma/blob/master/rules/windows/powershell/powershell_script/posh_ps_invoke_dnsexfiltration.yml and was curious on th…
-
**Describe the bug**
We have a guy doing penetration testing for us on our TRE, and he’s discovered that the DNS configuration is vulnerable, allowing DNS tunneling. He’s successfully exfiltrated dat…
-
Created by Alya Gomaa via monday.com integration. 🎉
-
Using https://github.com/m57/dnsteal the following traffic is generated and better flow risks shall be generated
[dnsteal.pcap.zip](https://github.com/ntop/nDPI/files/12771465/dnsteal.pcap.zip)
-
-
-
# Description
Build a payload plugin that allows Infection Monkey to simulate a data exfiltration. The user should be able to configure:
- Root directory (where the data exfiltration will start …
-
-
Not my idea, but a continuation of [this discussion](https://github.com/zedeus/nitter/issues/919#issuecomment-1629393064) to keep the main issue thread clear.
@zedeus Feel free to close this issue …