A fast tool to scan prototype pollution vulnerability written in Rust. 🦀
https://ift.tt/3hvED7G
Submitted July 04, 2021 at 05:49PM by dwisiswant0
via reddit https://ift.tt/3jJ8I6q
https://ift.tt/3hvED7G
Submitted July 04, 2021 at 05:49PM by dwisiswant0
via reddit https://ift.tt/3jJ8I6q
GitHub
GitHub - dwisiswant0/ppfuzz: A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀
A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀 - GitHub - dwisiswant0/ppfuzz: A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀
Digital violence: how the NSO Group enables state terror
https://ift.tt/2SMNeKF
Submitted July 05, 2021 at 04:00AM by liotier
via reddit https://ift.tt/3yoxZGU
https://ift.tt/2SMNeKF
Submitted July 05, 2021 at 04:00AM by liotier
via reddit https://ift.tt/3yoxZGU
reddit
Digital violence: how the NSO Group enables state terror
Posted in r/netsec by u/liotier • 1 point and 0 comments
Scale, details of massive ransomware attack emerge
https://ift.tt/3xcUL4t
Submitted July 05, 2021 at 05:04AM by thegreatblazed
via reddit https://ift.tt/3dFM5vS
https://ift.tt/3xcUL4t
Submitted July 05, 2021 at 05:04AM by thegreatblazed
via reddit https://ift.tt/3dFM5vS
POLITICO
Scale, details of massive ransomware attack emerge
An affiliate of the notorious REvil gang infected thousands of victims in at least 17 countries.
Internet-Wide Analysis on Unauthenticated Exposed Databases
https://ift.tt/3qEWhtN
Submitted July 05, 2021 at 04:49PM by 0xInfection
via reddit https://ift.tt/3An3Ut8
https://ift.tt/3qEWhtN
Submitted July 05, 2021 at 04:49PM by 0xInfection
via reddit https://ift.tt/3An3Ut8
RedHunt Labs
Thousands Of Unauthenticated Databases Exposed On The Internet - RedHunt Labs
Internet-wide research on the security posture of databases exposed on the internet. This blog contains all the specifics and analysis of results.
Number-two-factor Authentication
https://ift.tt/2V57wMM
Submitted July 05, 2021 at 08:46PM by jesseflorig
via reddit https://ift.tt/3hB4tXQ
https://ift.tt/2V57wMM
Submitted July 05, 2021 at 08:46PM by jesseflorig
via reddit https://ift.tt/3hB4tXQ
Nature
A mountable toilet system for personalized health monitoring via the analysis of excreta
Nature Biomedical Engineering - A ‘smart’ toilet that uses pressure and motion sensors, biometric identification, urinalysis strips, a computer-vision uroflowmeter and machine learning...
19. Unpacking the Kaseya VSA incident. - Amplified And Intensified
https://ift.tt/3hlJxW0
Submitted July 06, 2021 at 07:40PM by MSP-Kontinuum
via reddit https://ift.tt/2TIbjTt
https://ift.tt/3hlJxW0
Submitted July 06, 2021 at 07:40PM by MSP-Kontinuum
via reddit https://ift.tt/2TIbjTt
Less.js Exploit to RCE
https://ift.tt/2SUSgoC
Submitted July 06, 2021 at 11:01PM by slapChops
via reddit https://ift.tt/3hHWc4i
https://ift.tt/2SUSgoC
Submitted July 06, 2021 at 11:01PM by slapChops
via reddit https://ift.tt/3hHWc4i
Exploiting the Sudo Baron Samedit vulnerability (CVE-2021-3156) on VMWare vCenter Server 7.0
https://ift.tt/3ACrBxF
Submitted July 07, 2021 at 01:38AM by digicat
via reddit https://ift.tt/36jphxD
https://ift.tt/3ACrBxF
Submitted July 07, 2021 at 01:38AM by digicat
via reddit https://ift.tt/36jphxD
NCC Group Research
Exploiting the Sudo Baron Samedit vulnerability (CVE-2021-3156) on VMWare vCenter Server 7.0
NCC Group’s Exploit Development Group document exploiting the sudo vulnerability on VMWare vCenter Server
Hookshot - A Python Tool to Scrape Websites for Emails and Check Them for Data Breaches with HIBP
https://ift.tt/2Vf3ODW
Submitted July 07, 2021 at 01:18AM by malanom3
via reddit https://ift.tt/36ezQ5j
https://ift.tt/2Vf3ODW
Submitted July 07, 2021 at 01:18AM by malanom3
via reddit https://ift.tt/36ezQ5j
GitHub
hookshot/README.md at master · andrew-vii/hookshot
Integrated web scraper and email account data breach comparison tool - hookshot/README.md at master · andrew-vii/hookshot
Damn Vulnerable Bank Guide
https://ift.tt/3yvvans
Submitted July 07, 2021 at 03:52AM by Rewanth_Tammana
via reddit https://ift.tt/2SVoMXI
https://ift.tt/3yvvans
Submitted July 07, 2021 at 03:52AM by Rewanth_Tammana
via reddit https://ift.tt/2SVoMXI
These Data leaks are literally backdoors, they always come out much later.
https://ift.tt/2UGxQ3a
Submitted July 07, 2021 at 05:19AM by chumze_simius
via reddit https://ift.tt/3hFjwjk
https://ift.tt/2UGxQ3a
Submitted July 07, 2021 at 05:19AM by chumze_simius
via reddit https://ift.tt/3hFjwjk
A PrintNightmare (CVE-2021-34527) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE
https://ift.tt/3jKnEkH
Submitted July 07, 2021 at 10:58AM by byt3bl33d3r
via reddit https://ift.tt/3jKYgLE
https://ift.tt/3jKnEkH
Submitted July 07, 2021 at 10:58AM by byt3bl33d3r
via reddit https://ift.tt/3jKYgLE
VaultHSM report: The way to confirm whether the Smart Card (J3H145) supports RFC-6979 ECDSA implementation
https://ift.tt/3xtfilC
Submitted July 07, 2021 at 12:22PM by hardenedvault
via reddit https://ift.tt/36gVpSu
https://ift.tt/3xtfilC
Submitted July 07, 2021 at 12:22PM by hardenedvault
via reddit https://ift.tt/36gVpSu
Kaspersky Password Manager: All your passwords are belong to us
https://ift.tt/3AzL2HF
Submitted July 06, 2021 at 06:02PM by lormayna
via reddit https://ift.tt/3ADsSVa
https://ift.tt/3AzL2HF
Submitted July 06, 2021 at 06:02PM by lormayna
via reddit https://ift.tt/3ADsSVa
Donjon
Kaspersky Password Manager: All your passwords are belong to us
Password generated by Kaspersky Password Manager were predictable (CVE-2020-27020).
Detecting Cowrie in “proxy” Mode.
https://ift.tt/3wolBp9
Submitted July 07, 2021 at 01:41PM by katyushas_lab
via reddit https://ift.tt/3qRg74V
https://ift.tt/3wolBp9
Submitted July 07, 2021 at 01:41PM by katyushas_lab
via reddit https://ift.tt/3qRg74V
Darren Martyn
Detecting Cowrie in “proxy” Mode
So in “proxy” mode, Cowrie is pretty damn powerful. It proxies you through to a backend pool of live systems or virtual machines. It is god damn awesome. My previous detection methods b…
CVE-2021-20595: Unauthenticated XXE in Multiple Mitsubishi Electric Air Conditioner Control Systems | Aon
https://ift.tt/3xpypN5
Submitted July 07, 2021 at 06:31PM by b1x3r
via reddit https://ift.tt/3ho1D9E
https://ift.tt/3xpypN5
Submitted July 07, 2021 at 06:31PM by b1x3r
via reddit https://ift.tt/3ho1D9E
Aon
CVE-2021-20595: Unauthenticated XXE in Multiple Mitsubishi Electric Air Conditioner Control Systems | Aon
Aon’s Cyber Solutions discovered a security vulnerability affecting over 20 Mitsubishi Electric Air Conditioner Control Systems leading to information disclosure and/or denial of service via unauthenticated XML External Entity Injection (XXE). For a complete…
Leveraging Burp Suite extension for finding HTTP Request Smuggling.
https://ift.tt/2SPIkMY
Submitted July 07, 2021 at 08:22PM by myshit11
via reddit https://ift.tt/2TKLL83
https://ift.tt/2SPIkMY
Submitted July 07, 2021 at 08:22PM by myshit11
via reddit https://ift.tt/2TKLL83
Medium
Leveraging Burp Suite extension for finding HTTP Request Smuggling.
HTTP Request Smuggling is often left behind in bug bounty findings. But with the right extension, you can automate the task of finding HTTP…
LibAFL: Rust Library to Develop Customized Fuzzers
https://ift.tt/3hLzsQW
Submitted July 07, 2021 at 08:51PM by domenukk
via reddit https://ift.tt/3ALZ2hF
https://ift.tt/3hLzsQW
Submitted July 07, 2021 at 08:51PM by domenukk
via reddit https://ift.tt/3ALZ2hF
GitHub
GitHub - AFLplusplus/LibAFL: Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For…
Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ... - GitHub - AFLplusplus/LibAFL: Advanced Fuzzing Libra...
Old dog, same tricks. Remote Command Injection as-a-service
https://ift.tt/3dT7b9W
Submitted July 08, 2021 at 01:49AM by pocorgtfoftw
via reddit https://ift.tt/2UsDiGH
https://ift.tt/3dT7b9W
Submitted July 08, 2021 at 01:49AM by pocorgtfoftw
via reddit https://ift.tt/2UsDiGH
Script to help mitigate the PrintNightmare CVE-2021-34527 exploit
https://ift.tt/3dRo8l2
Submitted July 08, 2021 at 04:39AM by jokezone
via reddit https://ift.tt/3jTWasY
https://ift.tt/3dRo8l2
Submitted July 08, 2021 at 04:39AM by jokezone
via reddit https://ift.tt/3jTWasY
GitHub
PowerShell-Scripts/Configure-PrintSpooler.ps1 at main · jokezone/PowerShell-Scripts
Random PowerShell noscripts worth sharing. Contribute to jokezone/PowerShell-Scripts development by creating an account on GitHub.
ASProtect embedded runtime DLL memory corruption aka Windows Defender RCE
https://ift.tt/3jVBKQe
Submitted July 08, 2021 at 10:04AM by 0xdea
via reddit https://ift.tt/3AIfD5Y
https://ift.tt/3jVBKQe
Submitted July 08, 2021 at 10:04AM by 0xdea
via reddit https://ift.tt/3AIfD5Y
Reddit
From the netsec community on Reddit: ASProtect embedded runtime DLL memory corruption aka Windows Defender RCE
Posted by 0xdea - 33 votes and 4 comments