Wazuh SIEM, Suricata IDS, OpenWRT

Suricata is a popular intrusion detection system (IDS) that monitors network traffic for suspicious activity. Wazuh XDR (Extended Detection and Response), on the other hand, is a tool that allows you to collect, analyze and correlate data from a variety of sources, such as operating systems, network devices, applications, databases…

Genesys Cloud, GPT-3

Genesys Cloud Web Messaging provides additional functionality for users who visit your website - you get the ability to chat with a bot or agent with a conversation history preserved. GPT-3 is a language model developed by OpenAI that uses deep learning to produce human-like text. Taking the initial text…

Qualcomm Monitor mode

Monitor mode is a special mode of the network adapter that allows you to monitor the wireless network bandwidth - in this mode the network card intercepts all packets on a specified frequency. If the network interface allows you to use the capture mode, we can use a number of…

CTF - time2hack, writeups

Some time ago I took part in a CTF competition organized by the Foreign Intelligence Agency . Below I present a description of my solutions to some of the more interesting tasks that were available on the competition website. 1. SecureDocuments On a specially prepared website, we have a form where…

E6430, smart view, miracast, drivers

It turns out that drivers from the manufacturer's official website (in this case Dell) are not always the best drivers for our equipment. I had the opportunity to find out about it recently when I wanted to transfer the image from the Dell E6430 laptop to a Samsung…

XSS - telekom, allegro, mediamarkt, ikea

It seemed to me that this type of error does not appear in popular websites or portals anymore.. and yet - recently I managed to find some more or less serious errors like Cross-site scripting (XSS) as some time has passed and they were all patched, I decided to share…

liveperson, java nashorn, remote code execution

LivePerson is a popular platform that offers the possibility of integrating live chat functions on your website. It also offers the possibility of creating something called 'AI-powered chatbots', i.e. bots that, when properly programmed / set, will be able to service customers themselves and answer frequently asked questions…

openconnect - anyconnect, corporate VPN

Here I will describe how we can transfer the VPN client (Cisco AnyConnect) installed in the "Windows 10" system to the NEWIFI-D2 router with the padavan firmware installed using the OpenConnect applications. In my case, authorization to the VPN network in the Cisco AnyConnect application, in addition to…