Welcome back to IT Pro Tuesday!

In the latest Security Swarm Podcast: “New Threat Campaign Distributing DarkGate Malware & The Massive 911 S5 Botnet Takedown,” we discuss the Monthly Threat Review for June 2024 with Eric Siron. You’ll hear about a new threat campaign distributing the Darkgate Malware using a technique called pastejacking and the 911 S5 Proxy Botnet takedown and how threat actors are exploiting Stack Overflow to distribute malware.

We’re looking for your favorite tips and tools we can share with the community… those that help you do your job better and more easily. Please share your suggestions on the IT Pro Tuesday subreddit, and we’ll be featuring them in the coming weeks.

Now on to this week’s list!

A Free Tool

OnyX is a Mac utility that provides a clean interface for verifying the structure of system files; running maintenance and cleaning tasks; configuring Finder, Dock, Safari, and some Apple applications; deleting caches; removing problematic folders/files; rebuilding databases and indexes; and more. zqpmx recommends it to optimize Macs.
External Attack Surface Management Attack Surface Summary

Another Free Tool

Storm Control is an online collection of network tools that cover IPv4, subnetting, converters for decimal/hex/binary as well as bits/bytes/megabytes, and MAC/DNS/Whois/BGPv4 prefix lookup. Kindly suggested by myrianthi.
External Attack Surface Management Attack Surface Summary

A Tip

xCharg shares a handy shortcut:

Ctrl+shift+click (or enter if something is selected) opens elevated without the need to navigate through context menus

And Double_Zout adds:

CTRL+Shift+Enter when using “Run” (Win+R) for CMD opens as admin as well 🙂

A Podcast

Know a Little More is a great way to build your understanding of various tech topics. Episodes are relatively short, and each features award-winning podcaster Tom Merritt digging into a single topic area. stim appreciates that it “does good deep dives on specific technologies… a mix of consumer and enterprise topics.”

One More Free Tool

KeyStore Explorer is an intuitive, open-source GUI replacement for the Java command-line utilities keytool and jarsigner. jake04-20 explains, “If you deal with java keystores especially, but really certificates at all, Keystore explorer is an absolute godsend. It’s basically a GUI for openssl commands.”
External Attack Surface Management Attack Surface Summary

P.S. Bonus Free Tools

whatsmydns.net is a quick way to perform a DNS lookup of any domain name’s current IP address and DNS record information, instantly checking multiple nameservers that are located in different parts of the world. Appreciation for this one goes to Fancy_Possibility_47.

P0f uses an array of sophisticated, yet entirely passive traffic fingerprinting mechanisms to identify precisely who is behind any TCP/IP communications. Works without interfering with the traffic in any way. Kindly suggested by Nnyan.