The Ghost Operator's Signal
Have you ever thought about joining the forces of white hat hackers and penetration testers? Don’t you know where to start or how to practice some skills? Though capture the flag games, or CTFs in short, are not the most life-like situations, they can help you to build a way of thinking and to learn the basic tools. PicoCTF is a great site to start as a beginner.
Continue reading “PicoCTF: “where are the robots” [CTF Write Up]”
In the Linux-based operating systems, Debian stands out, renowned for its stability and reliability. At the heart of Debian’s package management system lies APT (Advanced Package Tool), a sophisticated tool that ensures seamless installation, upgrade, and removal of software packages.
Continue reading “Debian’s APT: Package Management”
You learned about the hidden part of the internet, the Tor hidden services. Then you downloaded and configured your Tor browser for the first deep dive into this unknown territory. As I mentioned before, the hidden services is a region of the internet that is not crawled and indexed by ordinary search engines like Google and Bing. You have to know the .onion URL of the site that you are looking for. These URLs are not the usual easy-to-remember domain names you see in the clear web. The hidden services URLs are generated text with the .onion ending. Luckily there are popular link collections and wiki sites as your entry points to the hidden services.
Continue reading “Tor Hidden Services: Reaching The First Entry Point”
After my previous article about the deep web and the Tor hidden services you know just enough to be curious: what lies behind the gates of the Onion Routing protocol? To figure it out you need an instance of the Tor browser connected to the Tor network. Before you jump right to a download link, please do a bit of research yourself about the Tor project and its tools and affiliates. It is interesting to take a look at the Tor metrics and understand its data. The growing usage of Tor relays talks about a constantly growing user base. At a peak time in the beginning of February, 2024 there were more than 7.5 million users online on the relays. It was only about 4 million in the end of 2023. Before you continue this journey into the hidden services read about information safety and be notified that this area of the internet is dangerous!
Continue reading “Tor Hidden Services: Preparing For Reaching The Hidden Area”
As a child in the ’90s I was fascinated by the internet. That tiny browser window in a flashing CRT display became a portal to an exciting world. Not much later, in the early 2000s I realized that the online land of possibilities has another side. The hidden part of the internet is protected by a chain of relays and a tool that is specially developed to reach this area. No ordinary web browser can surf this web, nor the search engines like Google can index and show them in search results. The Tor hidden services was all over in the news in the 2010s because of its dark and lawless side. The Silk Road was taken down by the authorities in October 2013. Ross Ulbricht, the alleged founder and operator of the Silk Road, was arrested and later convicted on multiple charges. The case drew significant attention due to its connection to the dark web and the use of cryptocurrency (particularly Bitcoin) for transactions on the platform. The hidden services and the onion routing was developed for a very different purpose: to help people stay anonymous from governments, dictatorship and to help whistleblowers, journalists and the free speech.
Continue reading “Tor Hidden Services: Privacy On The Internet And Dark Things”
Data security is paramount in today’s digital age. Whether you’re concerned about personal privacy or safeguarding sensitive work-related information, encrypting your data is an effective way to protect it from unauthorized access. In this blog post, we’ll explore how to use LUKS (Linux Unified Key Setup) to encrypt a partition, /dev/nvme0n1p3, on a Debian Bookworm desktop. LUKS is a widely-used disk encryption specification for Linux systems that provides robust security for your data.
In the world of the containerization, security and efficient service configuration are serious concerns. Podman, a container management tool, provides a solution for orchestrating containers and includes a feature known as “secrets” to enhance the security of sensitive information within containerized applications. This article explores the use of Podman secrets for configuring services securely, ensuring that sensitive data such as passwords and API keys remain confidential.
Continue reading “Podman Secrets for Secure Service Config”
As technology breaks in to more fields and professions, as the age of the AI is in our doorstep and the information technology (IT) is unquestionable part of our everyday life the attack surface for malicious actors is exponentially growing. With the age of home office and remote work the importance of cyber security just accelerated. More and more people want to get their share from this now popular cyber world. They are from different experience levels and age. Here are my suggestions and ideas for 2024 to learn cyber security and dip a pinky into ethical hacking.
Continue reading “How To Become a Master Hacker in 2024”
Tom's IT Cafe 