Feb 5, 2017
Posted in cheatsheets, Quick Tips, Tools
Default Passwords for IP Cameras
So, I decided to post a list of default passwords for most IP camera’s. I will try to update this list as specifications change or are added over time.
This list is very useful for conducting penetration testing. I’ve found that many camera devices will either not ask the user to “create” a password or a “new” non-default password. The camera I ended up purchasing for testing ended up asking and forcing the users to enter a new password upon setup.
(more…)
Jan 23, 2017
Posted in Encryption, Information Security
Public Wi-Fi Security
Today in our current world we have access to free public wifi practically around ever corner street. Most cafes and restaurants offer free public WiFi to just about anyone. What people fail to realize is that technology is no different in the public compared to people being in public.
Let’s create a real life use case. You could be taking a nice stroll down at your local park. When someone comes by and starts taking photo’s of you and others at the park. They know have “access” to an image of you without your knowledge. But, (more…)
Jan 13, 2017
Posted in Breaches, News
Cellebrite Systems Breeched
Cellebrite (https://cellebrite.com) is an Israeli company that specializes in mobile forensics.
They have created a well known product that is called Universal Forensic Extraction Device (UFED). This tool basically can extract data from most mobile devices. They are able to also unlock mobile devices with a passcode. I have used a much older version of this tool in the past. You may see the catch the details in my Research Project here –> https://www.stealthbay.com/hardening-mobile-phone-devices/
What was taken
Based off a popular website called “Motherboard” who first posted about this breech. Cellebrite has lost over 900GB worth of data. Now, that is a lot of information and data that was taken. My assumption is that a lot of the data is related to tools and software made use of for forensic investigations. (more…)
Jan 12, 2017
Posted in Encryption, Quick Tips, Reviews, Tools
SSL Scanning Websites
So today, I came across a website that does a quick SSL test on your website.
Anyone with a website should really be running this tool. I actually did find a few minor issues and was able to gather some info about it.
Our Results
Here is what we got for our results:
whynopadlock
It’s looking good for us and especially since we have forced all our internal links to make use of HTTPS
I also wanted to list a bad result as shown below.
(more…)
Dec 19, 2016
Posted in Featured, Information Security, mobile, portfolio, Tutorial
Mobile Hardening
A question I often get asked by a lot of mobile users is regarding how they can secure “harden” their mobile devices. What can they do to add some layers of protection to secure their mobile devices?
There aren’t a whole lot of software tools that are out there which actually harden mobile devices. And, it’s a bit unfortunate that mobile security has a lower priority these days.
Kaspersky Threats 2015
Courtesy of (https://www.kaspersky.com)
For most Android and iOS devices there are a few steps and actions that you can take in order to harden your mobile device.
The following steps should give you some basic hardening techniques for personal use.
(more…)
My name is Harry Taheem
I am a Cyber Security Engineer.
My aim is to post things I learn or find interesting and allow others to hopefully gain some more insight. I also plan on posting general IT related issues, as I’d like 
