n0v | 🦋 @n0vsec.social

Quick PSA: Someone is attacking Tor right now and has been for a few weeks. The attacker is spoofing the IPs of Tor Exit and Directory nodes, and blasting TCP SYN packets indiscriminately on 22/TCP- spurring a large amount of abuse complaints to hosting providers, which are then temp blocking/banning Tor infrastructure which isn't actually doing anything wrong. For the time being, I recommend all hosting providers *ignore* abuse complaints that indicate "SSH scanning" or "port scanning on 22/TCP" and originate from any of the following IPs: https://t.co/RQFUGuI8XU This is a clever attack. I'm working with partners to triangulate the true origin of this traffic then try to get it disconnected. Weird attacker website here: https://t.co/xyd9CwE1hF Related links: https://t.co/RZdC51gQoR https://t.co/9NF9oGgapj

Today I want to highlight the importance of having Dummy (Test) Data in your arsenal so you're prepared when you will need it. Like many hackers I keep a healthy supply of ancillary tools like word lists and corrupted files to test software. One of the most famous Dummy Data types is the Eicar Test File which, for many years now, has been used to test antivirus software. A year or so ago I was caught empty handed when writing a program which would fix a corrupted PDF in six of the known ways one can be corrupted and I had to make one myself. I couldn't use live data as that would've been irresponsible. When building your arsenal try to think of common things you are asked to do and have a supply of test data on hand for those scenarios. There are a multitude of sites out there which have this kind of data for the taking but I'm having lots of luck with HuggingFace's datasets lately. You can also search for Awesome Datasets on Github. Also, make Excel sheets for advanced formulas or keep a notepad file on them. I do the sheets because it's a live example and has data in it rather than strings of formulas without context which I'm not going to remember months later.