SecurAIty? - Using ChatGPT to cut down on your workflow

Another look at ChatGPT, APTs, and few other curios to keep you busy! [View this email in your browser]( SecPro #95: SecurAIty - ChatGPT and your workflow. Hello! As promised, we've turned our attention to the positive aspects of ChatGPT's meteoric rise to prominence in the tech world. Our secpros gave us plenty of food for thought - we receive loads of tips and tricks to get the most out of ChatGPT, whether you're running an entire cybersecurity operation or you're starting your first job in a SOC. As always, we love to hear from our readers! Make sure to fill in the survey below and tell us what you'd like to see us discuss next week in the _secpro. One of our readers reached out to us last week for an insight into tools that are useful for red and blue teams - make sure to check your emails next week to read that one! Cheers! [Austin Miller]( Editor in Chief [TELL US WHAT YOU THINK!]( This week's highlights: - [ChatGPT - Finding out what secpros think]( - [APT #3 - HelixKitten]( - [Learn Ethical Hacking from Scratch]( - [Learn Cybersecurity with Ian Neil]( - [This Week's Survey]( And with that - on with the show! [_secpro]( [Packt _secpro Newsletter]( [The _secpro Website]( Studying for your Sec+? Taking the first steps into the world of cybersecurity isn't easy. There are many exams available, but many more courses that promise to help you pass those exams. How do you know which ones are right for you and your career trajectory? Thankfully, the CompTIA Sec+ is pretty much the gold standard for getting a foot in the door. We have been working with Ian Neil, an author and cybersecurity trainer, to get you up to scratch for the Sec+ exam. With a free study guide, live training, and online resources, this is a great place to start you journey or supplement any other courses you are using. [Check out Ian's website!]( Ian Neil is one of the world’s top trainers of Security+. He has many years of teaching experience, and a proven ability to break information down into manageable chunks so that complex ideas are clear and easy to understand. This means that people with no background knowledge can gain the skills required to become certified. He has recently worked for the US Army in Europe and designed a Security+ course that catered for people from all backgrounds (not just the IT professional), with an extremely successful pass rate. He is an MCT, MCSE, A+, Network+, Security+, CASP, and RESILIA practitioner, who over the past 23 years has worked with high-end training providers and was one of the first technical trainers to train Microsoft internal staff when they opened their Bucharest Office in 2006. [Check out Ian's book with Packt!]( Think you're ready to get started? Click the link below! [GET STARTED WITH SEC+]( This Week's News... This week, we have a bumper edition of news! We're focusing on the crackdown on Genesis Market, a website that was probably on your radar if you've been working in cybersecurity for a while. The FBI - in coordination with over 100 other international cybersecurity groups - has managed to crack down on the international crime ring, leaving only the .onion site online at present (link not included, for obvious reasons). According to the report, the FBI was able to successfully shut down the site after an extensive investigation, which involved collaboration with international law enforcement agencies. The Genesis Market website was primarily used by individuals looking to purchase illicit items such as drugs, stolen personal information, and hacking tools. The site was accessible only through the Tor network, which is an anonymous and decentralized network used by many users to hide their online activity from prying eyes. Genesis Market had over 400,000 registered users and was a popular destination for people looking to buy or sell illegal goods. The FBI's crackdown on Genesis Market is part of a broader effort to combat the use of the dark web for criminal activity. The dark web is an online space that is not accessible through traditional search engines and requires specific software, such as the Tor browser, to access. It is a popular space for cybercriminals to engage in illegal activities such as hacking, fraud, and the sale of illegal goods and services. The investigation into Genesis Market was led by the FBI's Cyber Division, which worked closely with other law enforcement agencies such as Europol, the European Union's law enforcement agency, and the Russian Federal Security Service (FSB). The site's servers were located in Russia, and the FSB's involvement was crucial in shutting down the site. On the Genesis Market website, users could find listings for various illegal items and services, which were organized into different categories. For example, the site had a "Drugs" category, where users could find listings for illegal substances such as cocaine, heroin, and methamphetamine. There was also a "Fraud" category, where users could find listings for stolen credit card information, counterfeit money, and fake passports. The site also had a "Hacking" category, where users could find listings for various hacking tools and services, such as distributed denial of service (DDoS) attacks and phishing scams. To make purchases on Genesis Market, users had to use cryptocurrencies such as Bitcoin, which allowed for anonymous transactions. The site's administrators took a percentage of each transaction as a commission fee. While the FBI's crackdown on Genesis Market is a significant blow to the dark web's illegal economy, it is unlikely to put an end to criminal activity on the platform. There are many other dark web marketplaces, and new ones are constantly emerging to take the place of those that are shut down. The anonymous nature of the dark web makes it difficult for law enforcement agencies to track down and prosecute cybercriminals. However, the FBI's actions against Genesis Market sends a clear message that law enforcement agencies are committed to taking down illegal dark web marketplaces and prosecuting those who engage in criminal activity on these platforms. It also highlights the importance of international cooperation in fighting cybercrime, as many of these marketplaces are hosted in countries with different laws and regulations. This Week's Editorial Articles [Chatting GPT]( We've already asked you the questions - time to share our findings! Leave a comment on our _secpro page to potentially win a free Packt eBook! [APT#3 - HelixKitten]( APT-C-36, also known as OilRig, HelixKitten, and Greenbug, is a group of hackers from Iran that has been operating since at least 2015. This group is known for using advanced techniques and tools that make it a serious threat to organizations all over the world. Cybersecurity Fundamentals [Learn Ethical Hacking from Scratch]( We've changed course! This time, we're taking a quick look at [Learn Ethical Hacking from Scratch](. Make sure to check out the book to set up your systems for the lessons, then dive in with the _secpro! [LIKE WHAT YOU SEE? CLICK HERE]( Network basics Before we start trying to hack into networks, there are a few basics that we need to learn. What is a network? A network is a number of devices connected together so that they can share data. This data can be files, resources (such as on a home network), or just a way to connect to the internet. All networks, Wi-Fi or wired, achieve this sharing of data by using the same principle—a device that acts as a server, which all of the devices communicate with. The server has access to the resources, and all of the other devices on the network can access the data from the server. On most Wi-Fi networks, the server is the router, and all devices connect to the router and access the internet through it. The only device on the network that is directly connected to the internet is the Wi-Fi router. In the following diagram, clients 1, 2, and 3 have no access to the internet, but they can access it through the router. For example, whenever Client 3 wants to open Google, it sends a request to the router. The router goes to the internet, grabs []( and forwards it back to Client 3. Client 3 does not have direct access to the internet—it has to go through the router, and the router grabs the request and sends the response back to the client. All of this data—requests and responses—is transferred through packets, so there are a number of packets being sent between clients and the router. In a Wi-Fi network, these packets are sent through the air, so they are broadcasted. If we are in the range of these packets, we can just sniff them, capture them, and read them, being able to see all of the information inside. All of this data—whether it's usernames, passwords, videos, audio, music, charts, and so on—is transferred as packets, and it's always transferred between the router and the client. So, if we capture the packets, we can read all of the information on our device. Connecting to a wireless adapter In this part of the chapter, we will see how to connect a USB device to a virtual machine. As an example, we are going to connect a wireless adapter to a Kali machine, but the same method can be used to connect any USB device. We will need a wireless adapter for the cracking section of the network penetration test, because in later chapters, we will learn how to crack passwords for Wi-Fi networks. Other than that, we can do everything else without a wireless adapter. A wireless adapter is a USB device that connects to the computer through the USB and allows us to communicate with wireless networks. Most computers and laptops now come with built-in wireless cards. The only problem is, first of all, that we can't access built-in wireless cards from a virtual machine. Also, even if you install Kali as a main machine, the built-in wireless cards are not good for hacking, because we need a powerful adapter that supports monitor mode and packet injection (we will go into what these mean). Basically, the built-in wireless adapter does not support these modes, and can't be used for hacking. Want to get a step-by-step guide of how to connect to a wireless adapter? [Click the link and check out the book]( It's free! Have You Tried...? Ethical hacking - it's the name of the game. If you're an aspiring white hat, these are some great tools to get you started. - [husnainfareed/Awesome-Ethical-Hacking-Resources]( - If you're not sure where to start, here's a good place to get going. - [Samsar4/Ethical-Hacking-Labs]( - Labs are great, especially when they're free. - [SHathi28/Ethical-Hacking-Python-Scripts]( - Comfortable with Python? Here are some Python scripts to start hacking away. - [PacktPublishing/Python-Ethical-Hacking]( - Same again, but this time from the gang at Packt. - [Purp1eW0lf/HackTheBoxWriteups]( - Some tips and tricks for using Hack the Box. [FORWARDED THIS EMAIL? SIGN UP HERE]( [NOT FOR YOU? UNSUBSCRIBE HERE]( Copyright © 2023 Packt Publishing, All rights reserved. As a GDPR-compliant company, we want you to know why you’re getting this email. The _secpro team, as a part of Packt Publishing, believes that you have a legitimate interest in our newsletter and the products associated with it. Our research shows that you opted-in for communication with Packt Publishing in the past and we think that your previous interest warrants our appropriate communication. If you do not feel that you should have received this or are no longer interested in _secpro, you can opt out of our emails using the unsubscribe link below. Our mailing address is: Packt Publishing Livery Place, 35 Livery StreetBirmingham, West Midlands, B3 2PB United Kingdom [Add us to your address book]( Want to change how you receive these emails? You can [update your preferences]( or [unsubscribe from this list](.