RetroArch for Windows - Versions 1.9.0 - 1.9.4 (High-Risk Vuln)
https://ift.tt/3gF7fuN
Submitted June 15, 2021 at 11:03PM by breach_house
via reddit https://ift.tt/2S1Etw2
https://ift.tt/3gF7fuN
Submitted June 15, 2021 at 11:03PM by breach_house
via reddit https://ift.tt/2S1Etw2
I’m putting a WiFi router into a wall charger (Part 1)
https://ift.tt/3cK9bRq
Submitted June 16, 2021 at 04:07AM by Machinehum
via reddit https://ift.tt/3zE04vB
https://ift.tt/3cK9bRq
Submitted June 16, 2021 at 04:07AM by Machinehum
via reddit https://ift.tt/3zE04vB
Medium
I’m putting a WiFi router into a wall charger (Part 1)
This is the second part of a blog about putting a WiFi router into a phone charger; please see part zero here and feel free to join our…
Handy guide to a new Fivehands ransomware variant: notes from incident response cases..
https://ift.tt/3pW27qc
Submitted June 16, 2021 at 12:10PM by digicat
via reddit https://ift.tt/3xpYBa9
https://ift.tt/3pW27qc
Submitted June 16, 2021 at 12:10PM by digicat
via reddit https://ift.tt/3xpYBa9
Nccgroup
Cyber Security Research
Cutting-edge cyber security research from NCC Group. Find public reports, technical advisories, analyses, & other novel insights from our global experts.
Rescue Your Amazon Dash Buttons (By Exploiting Them)
https://ift.tt/2EMrCDF
Submitted June 16, 2021 at 01:43PM by 0xdea
via reddit https://ift.tt/3gvzRI1
https://ift.tt/2EMrCDF
Submitted June 16, 2021 at 01:43PM by 0xdea
via reddit https://ift.tt/3gvzRI1
reddit
Rescue Your Amazon Dash Buttons (By Exploiting Them)
Posted in r/netsec by u/0xdea • 1 point and 0 comments
Unauthenticated Gitlab SSRF through CI Lint API
https://ift.tt/2S0qfeJ
Submitted June 16, 2021 at 02:51PM by root_at_remote_host
via reddit https://ift.tt/2SGKPky
https://ift.tt/2S0qfeJ
Submitted June 16, 2021 at 02:51PM by root_at_remote_host
via reddit https://ift.tt/2SGKPky
reddit
Unauthenticated Gitlab SSRF through CI Lint API
Posted in r/netsec by u/root_at_remote_host • 1 point and 0 comments
Microsoft ADCS – Abusing PKI in Active Directory Environment
https://ift.tt/3cKpAFr
Submitted June 16, 2021 at 07:09PM by pheedrus
via reddit https://ift.tt/3iLxDWn
https://ift.tt/3cKpAFr
Submitted June 16, 2021 at 07:09PM by pheedrus
via reddit https://ift.tt/3iLxDWn
RiskInsight
Microsoft ADCS – Abusing PKI in Active Directory Environment - RiskInsight
Active Directory Certificate Services (ADCS) have never really been under security scrutiny until a few years ago (by C. Falta and later Q&D Security). We will therefore focus today on how similar techniques can be used to gain Domain Admins privileges.
Network Tracking using Wireshark and Google Maps
https://ift.tt/3eRFcsd
Submitted June 17, 2021 at 12:58AM by burdin271
via reddit https://ift.tt/3wwQacV
https://ift.tt/3eRFcsd
Submitted June 17, 2021 at 12:58AM by burdin271
via reddit https://ift.tt/3wwQacV
Medium
Python Cybersecurity— Network Tracking using Wireshark and Google Maps
In this article we will dive into Network Traffic visualization using the Python programming language, Wireshark and Google Maps. This…
Using Monday.com's project manager as a command & control server
https://ift.tt/35vQ0GQ
Submitted June 17, 2021 at 10:37AM by TorchedXorph
via reddit https://ift.tt/3zInnEu
https://ift.tt/35vQ0GQ
Submitted June 17, 2021 at 10:37AM by TorchedXorph
via reddit https://ift.tt/3zInnEu
GitHub
publications/README.md at main · 1d8/publications
CVE/Research Publications. Contribute to 1d8/publications development by creating an account on GitHub.
Public crypto audit report: lurch/OMEMO
https://ift.tt/3q3hRYH
Submitted June 17, 2021 at 11:32AM by hardenedvault
via reddit https://ift.tt/3gyHRI6
https://ift.tt/3q3hRYH
Submitted June 17, 2021 at 11:32AM by hardenedvault
via reddit https://ift.tt/3gyHRI6
Certified Pre-Owned: Abusing Active Directory Certificate Services
https://ift.tt/3cRgbvN
Submitted June 17, 2021 at 10:13PM by trackdrew
via reddit https://ift.tt/3cKb8NN
https://ift.tt/3cRgbvN
Submitted June 17, 2021 at 10:13PM by trackdrew
via reddit https://ift.tt/3cKb8NN
Medium
Certified Pre-Owned
Active Directory Certificate Services has a lot of attack potential!
How to use Wormhole for simple, private file sharing
https://ift.tt/3zsImuG
Submitted June 18, 2021 at 01:40AM by feross
via reddit https://ift.tt/3q4Ge82
https://ift.tt/3zsImuG
Submitted June 18, 2021 at 01:40AM by feross
via reddit https://ift.tt/3q4Ge82
PodRocket - A web development podcast from LogRocket
PodRocket - A web development podcast from LogRocket: How to use Wormhole for simple, private file sharing with Feross Aboukhadijeh
In this episode, Ben interviews Feross Aboukhadijeh about Wormhole. Wormhole is a file sending tool that lets you quickly share files with end-to-end encryption and a link that automatically expires. So you can keep what you share private and make sure your…
Bypassing Image Load Kernel Callbacks - @MDSecLabs
https://ift.tt/2S8mjZA
Submitted June 18, 2021 at 03:35AM by dmchell
via reddit https://ift.tt/3gydtxC
https://ift.tt/2S8mjZA
Submitted June 18, 2021 at 03:35AM by dmchell
via reddit https://ift.tt/3gydtxC
MDSec
Bypassing Image Load Kernel Callbacks - MDSec
As security teams continue to advance, it has become essential for attacker’s to have complete control over every part of their operation, from the infrastructure down to individual actions that...
Secured encrypted networks with OpenVPN, Suricata and Oinkmaster
https://ift.tt/3iPGbvp
Submitted June 18, 2021 at 04:18AM by oxagast
via reddit https://ift.tt/35uAL0Y
https://ift.tt/3iPGbvp
Submitted June 18, 2021 at 04:18AM by oxagast
via reddit https://ift.tt/35uAL0Y
oxasploits
Secured encrypted networks with OpenVPN and Suricata
Into
Security Podcast
https://ift.tt/3ipgW0E
Submitted June 18, 2021 at 07:08AM by SecureVentures
via reddit https://ift.tt/3xADcv7
https://ift.tt/3ipgW0E
Submitted June 18, 2021 at 07:08AM by SecureVentures
via reddit https://ift.tt/3xADcv7
Bypassing 2FA using OpenID Misconfiguration
https://ift.tt/3iPCFB7
Submitted June 18, 2021 at 02:09PM by albinowax
via reddit https://ift.tt/3vwxtVy
https://ift.tt/3iPCFB7
Submitted June 18, 2021 at 02:09PM by albinowax
via reddit https://ift.tt/3vwxtVy
Scapy Turned 18. Boy They Grow Up Fast, Don’t They!
https://tknk.io/F5LN
Submitted June 18, 2021 at 02:01PM by guedou
via reddit https://ift.tt/35zEnic
https://tknk.io/F5LN
Submitted June 18, 2021 at 02:01PM by guedou
via reddit https://ift.tt/35zEnic
Google Docs
SharkFest - Scapy
Scapy Turned 18 Boy They Grow Up Fast, Don’t They! Abstract: Scapy (https://www.scapy.net), a program written in Python simplifying the handling of network packets, is 18 years old in 2021. Through this keynote, and on the occasion of the first commit made…
A deep dive into the operations of the LockBit ransomware group
https://ift.tt/3cMhdt5
Submitted June 18, 2021 at 05:02PM by wtfse
via reddit https://ift.tt/3zDPww6
https://ift.tt/3cMhdt5
Submitted June 18, 2021 at 05:02PM by wtfse
via reddit https://ift.tt/3zDPww6
2 Factor Authentication: The Tester’s Edition
https://ift.tt/3gLZ6Ey
Submitted June 18, 2021 at 05:38PM by dipika_singh
via reddit https://ift.tt/2THOA9R
https://ift.tt/3gLZ6Ey
Submitted June 18, 2021 at 05:38PM by dipika_singh
via reddit https://ift.tt/2THOA9R
Testsigma Blog
2 Factor Authentication: The Tester’s Edition
Introduction 2 Factor Authentication is a subset of the multi factor authentication service that we see mainly in FinTech Apps. Some financial technology apps ask the user to enter a password, and MPIN, a TPIN, and finally another OTP based authentication…
Google Docs/Drive feature allows attackers to embed any custom (malicious) web page in an email's body. Attackers are using this trick to bypass email security solutions configured to allow Google Docs/Drive links.
https://ift.tt/2SMxMhz
Submitted June 18, 2021 at 06:41PM by Avanan_Security
via reddit https://ift.tt/3vx0kZW
https://ift.tt/2SMxMhz
Submitted June 18, 2021 at 06:41PM by Avanan_Security
via reddit https://ift.tt/3vx0kZW
Avanan
Attackers Take Advantage of New Google Docs Exploit
Avanan researchers have uncovered an attack that takes advantage of an exploit in Google Docs
Malware prevents its victims from going to illegal download sites
https://ift.tt/2TLpPJS
Submitted June 18, 2021 at 06:35PM by AmerBekic
via reddit https://ift.tt/2S6AM8a
https://ift.tt/2TLpPJS
Submitted June 18, 2021 at 06:35PM by AmerBekic
via reddit https://ift.tt/2S6AM8a
SwaCash | Internet Marketing News
Malware prevents its victims from going to illegal download sites
© Pirate Bay In a report, SophosLab said it learned of the existence of malware intended to prevent its victims from downloading illegally. Active between October 2020 and January 2021, this malwar…
Spear-phishing campaign tricks users to transfer money (TTPs & IOC)
https://ift.tt/2UXxTVq
Submitted June 19, 2021 at 01:11AM by FeelingFineRightNow
via reddit https://ift.tt/35xsA49
https://ift.tt/2UXxTVq
Submitted June 19, 2021 at 01:11AM by FeelingFineRightNow
via reddit https://ift.tt/35xsA49
blog.redteam.pl
Spear-phishing campaign tricks users to transfer money (TTPs & IOC)
red team, blue team, penetration testing, red teaming, threat hunting, digital forensics, incident response, cyber security, IT security