Weaponizing Middleboxes for TCP Reflected Amplification
https://ift.tt/3CRHd1I
Submitted August 14, 2021 at 10:11PM by dml-at-umd
via reddit https://ift.tt/3jTSHc8
https://ift.tt/3CRHd1I
Submitted August 14, 2021 at 10:11PM by dml-at-umd
via reddit https://ift.tt/3jTSHc8
censorship.ai
Weaponizing Middleboxes for TCP Reflected Amplification
Censors pose a threat to the entire Internet.
Chaining PHP Exploits with the help of Magic (and luck)
https://ift.tt/3iMToVn
Submitted August 15, 2021 at 12:32AM by _creosote
via reddit https://ift.tt/37PcLql
https://ift.tt/3iMToVn
Submitted August 15, 2021 at 12:32AM by _creosote
via reddit https://ift.tt/37PcLql
Slayer Labs – Cyber Range Platform
rConfig 3.9.6 - Magic Hash Auth Bypass to RCE
rConfig 3.9.6 chained exploits
PE Loader From a PE Section
https://ift.tt/37KY5ZE
Submitted August 13, 2021 at 11:25AM by Aruen2
via reddit https://ift.tt/37JWh32
https://ift.tt/37KY5ZE
Submitted August 13, 2021 at 11:25AM by Aruen2
via reddit https://ift.tt/37JWh32
GitHub
GitHub - frkngksl/Huan: Encrypted PE Loader Generator
Encrypted PE Loader Generator. Contribute to frkngksl/Huan development by creating an account on GitHub.
Red Teaming Gitbook Notes
https://ift.tt/3iL0eun
Submitted August 15, 2021 at 10:26AM by MajorAd1511
via reddit https://ift.tt/3iLtJw8
https://ift.tt/3iL0eun
Submitted August 15, 2021 at 10:26AM by MajorAd1511
via reddit https://ift.tt/3iLtJw8
Experience Diary: Doing Infosec Research the right way!
https://ift.tt/3m78uai
Submitted August 15, 2021 at 10:59PM by _SecurityGOAT
via reddit https://ift.tt/37IgtlR
https://ift.tt/3m78uai
Submitted August 15, 2021 at 10:59PM by _SecurityGOAT
via reddit https://ift.tt/37IgtlR
Medium
Experience Diary: Doing infosec research the right way
Let me share my experience on how I do research on a topic. I would be happy to know your methodology as well :)
Trickbot Deploys a Fake 1Password Installer - In this intrusion, we will take a look at a Trickbot infection, where soon after gaining access, the threat actor started to enumerate the target network and dump credential information.
https://ift.tt/3AOUy99
Submitted August 16, 2021 at 07:05AM by TheDFIRReport
via reddit https://ift.tt/2W0akPF
https://ift.tt/3AOUy99
Submitted August 16, 2021 at 07:05AM by TheDFIRReport
via reddit https://ift.tt/2W0akPF
The DFIR Report
Trickbot Leads Up to Fake 1Password Installation
In this intrusion, we will take a look at a Trickbot infection, where soon after gaining access, the threat actor started to enumerate the target network and dump credential information. A setup file, which attempted to masquerade as a legitimate software…
Researchers unveil new DDoS amplification attack... with technically infinite amplification. The attack weaponizes firewalls and censors for amplification.
https://ift.tt/3m2Zt20
Submitted August 16, 2021 at 09:50AM by Correcthorse121
via reddit https://ift.tt/3sl0lQG
https://ift.tt/3m2Zt20
Submitted August 16, 2021 at 09:50AM by Correcthorse121
via reddit https://ift.tt/3sl0lQG
censorship.ai
Weaponizing Middleboxes for TCP Reflected Amplification
Censors pose a threat to the entire Internet.
Advisory: Multiple Issues in Realtek SDK Affects Thousands of Devices Down the Supply Chain - IoT Inspector
https://ift.tt/3AHChKP
Submitted August 16, 2021 at 12:38PM by g_e_r_h_a_r_d
via reddit https://ift.tt/2VTBNlC
https://ift.tt/3AHChKP
Submitted August 16, 2021 at 12:38PM by g_e_r_h_a_r_d
via reddit https://ift.tt/2VTBNlC
IoT Inspector
Advisory: Multiple Issues in Realtek SDK Affects Hundreds of Thousands of Devices Down the Supply Chain - IoT Inspector
At least 65 vendors affected by severe vulnerabilities that enable unauthenticated attackers to fully compromise the target device.
HiveNightmare - Practical Use Cases
https://ift.tt/3k0oY15
Submitted August 16, 2021 at 01:02PM by netbiosX
via reddit https://ift.tt/3AMFuZq
https://ift.tt/3k0oY15
Submitted August 16, 2021 at 01:02PM by netbiosX
via reddit https://ift.tt/3AMFuZq
Penetration Testing Lab
HiveNightmare
The security account manager (SAM) file contains the password hashes of the users on a Windows system. Since it is considered a sensitive file SYSTEM level privileges are required to view its conte…
Guide to Prototype Pollution Vulnerabilities
https://ift.tt/2VVXJgc
Submitted August 16, 2021 at 01:45PM by atgemsip
via reddit https://ift.tt/2Ujc5GI
https://ift.tt/2VVXJgc
Submitted August 16, 2021 at 01:45PM by atgemsip
via reddit https://ift.tt/2Ujc5GI
WhiteSource
The Complete Guide to Prototype Pollution Vulnerabilities
An in-depth look at Prototype Pollution vulnerabilities and how to mitigate them.
Dan Kaminsky (discoverer of DNS cache poisining) fellowship is now accepting applications
https://ift.tt/2TRyzOR
Submitted August 16, 2021 at 07:28PM by wtbengdeg
via reddit https://ift.tt/3sywqEV
https://ift.tt/2TRyzOR
Submitted August 16, 2021 at 07:28PM by wtbengdeg
via reddit https://ift.tt/3sywqEV
Wodify - 3 Vulnerabilities Found in Popular Gym Management App
https://ift.tt/3yRdK5m
Submitted August 16, 2021 at 10:16PM by breach_house
via reddit https://ift.tt/3xMGUkJ
https://ift.tt/3yRdK5m
Submitted August 16, 2021 at 10:16PM by breach_house
via reddit https://ift.tt/3xMGUkJ
Bishopfox
Wodify
The Bishop Fox team discovered three vulnerabilities that could have a severe business and reputational risk for Wodify.
How to Hack Apple ID
https://ift.tt/3g6dJmE
Submitted August 17, 2021 at 02:17AM by Zemnmez
via reddit https://ift.tt/3xNpWmh
https://ift.tt/3g6dJmE
Submitted August 17, 2021 at 02:17AM by Zemnmez
via reddit https://ift.tt/3xNpWmh
Medium
How to Hack Apple ID
Everyone knows what’s inside a computer isn’t really real. It pretends to be, sure, hiding just under the pixels — but I promise you it…
CVE-2021-22929 – Brave Browser 1.27 and below permanently logs the server connection time for all v2 tor domains to ~/.config/BraveSoftware/Brave-Browser/tor/data/tor.log (fixed in 1.28.x)
https://ift.tt/3sv7yhe
Submitted August 17, 2021 at 02:30AM by docker-osx
via reddit https://ift.tt/3iOYgta
https://ift.tt/3sv7yhe
Submitted August 17, 2021 at 02:30AM by docker-osx
via reddit https://ift.tt/3iOYgta
Sick Codes - Security Research, Hardware & Software Hacking, Consulting, Linux, IoT, Cloud, Embedded, Arch, Tweaks & Tips!
CVE-2021-22929 – Brave Browser 1.27 and below permanently logs the server connection time for all v2 tor domains to ~/.config/BraveSoftware…
Title CVE-2021-22929 Brave Browser 1.27 and below permanently logs the server connection time for all v2 tor domains to ~/.config/BraveSoftware/Brave-Browser/tor/data/tor.log
Accellion Kiteworks - Remote lowpriv web user to system root bugchain
https://ift.tt/3ANXd2J
Submitted August 17, 2021 at 04:29AM by feabell
via reddit https://ift.tt/2VT7hbz
https://ift.tt/3ANXd2J
Submitted August 17, 2021 at 04:29AM by feabell
via reddit https://ift.tt/2VT7hbz
reddit
Accellion Kiteworks - Remote lowpriv web user to system root bugchain
Posted in r/netsec by u/feabell • 19 points and 0 comments
CVE-2021-31956 Exploiting the Windows Kernel (NTFS with WNF) - Part 2 - We look at exploitation without the CVE-2021-31955 information disclosure, enabling better exploit primitives through PreviousMode, reliability, stability and exploit clean-up and well as thoughts on detection
https://ift.tt/2VSIfK9
Submitted August 17, 2021 at 01:58PM by digicat
via reddit https://ift.tt/3spR3Tx
https://ift.tt/2VSIfK9
Submitted August 17, 2021 at 01:58PM by digicat
via reddit https://ift.tt/3spR3Tx
NCC Group Research Blog
CVE-2021-31956 Exploiting the Windows Kernel (NTFS with WNF) – Part 2
We look at exploitation without the CVE-2021-31955 information disclosure, enabling better exploit primitives through PreviousMode, reliability, stability and exploit clean-up and well as thoughts …
CompTIA Certification Training Bundle
https://ift.tt/3iT90H2
Submitted August 17, 2021 at 02:25PM by Education_growth_123
via reddit https://ift.tt/3jVAuei
https://ift.tt/3iT90H2
Submitted August 17, 2021 at 02:25PM by Education_growth_123
via reddit https://ift.tt/3jVAuei
CompTIA Practice Exam Tests
CompTIA Certification Training Bundle - Practice Exam Tests
CompTIA Training Free and Paid Practice Exam Tests and Performance-based Questions for CompTIA A+ Network+ Security+ and more. Become a CompTIA Certified.
Enumerating .gov.af
https://ift.tt/3xVIhh0
Submitted August 17, 2021 at 05:04PM by kpcyrd
via reddit https://ift.tt/3swaERZ
https://ift.tt/3xVIhh0
Submitted August 17, 2021 at 05:04PM by kpcyrd
via reddit https://ift.tt/3swaERZ
vulns.xyz
Enumerating .gov.af - vulns.xyz
Due to recent political events there’s an increased interest in Afghanistan’s websites. This is a tutorial on how to run sn0int on .gov.af to enumerate as many sites as possible for archival purpose.
Secure Coding Gitbook Notes
https://ift.tt/37OD4wS
Submitted August 17, 2021 at 06:20PM by Joswha
via reddit https://ift.tt/2W5TTBf
https://ift.tt/37OD4wS
Submitted August 17, 2021 at 06:20PM by Joswha
via reddit https://ift.tt/2W5TTBf
GitHub
GitHub - joswha/Secure-Coding-Handbook: Web Application Secure Coding Handbook resource.
Web Application Secure Coding Handbook resource. Contribute to joswha/Secure-Coding-Handbook development by creating an account on GitHub.
What it Takes for TLS Clients to Establish Trust with a Server
https://ift.tt/3ssVNHV
Submitted August 17, 2021 at 06:08PM by ssh-bi
via reddit https://ift.tt/3sploBt
https://ift.tt/3ssVNHV
Submitted August 17, 2021 at 06:08PM by ssh-bi
via reddit https://ift.tt/3sploBt
Medium
What it Takes for TLS Clients to Establish Trust with a Server
Authenticity of TLS certificate issued by a Public CA is no longer sufficient
Domain Escalation – PrintNightmare
https://ift.tt/2XCWEL3
Submitted August 17, 2021 at 09:52PM by netbiosX
via reddit https://ift.tt/37TZtsV
https://ift.tt/2XCWEL3
Submitted August 17, 2021 at 09:52PM by netbiosX
via reddit https://ift.tt/37TZtsV
Penetration Testing Lab
Domain Escalation – PrintNightmare
Printers are part of every corporate infrastructure therefore Windows environments they have a number of embedded drivers installed. The Print Spooler (spoolsv.exe) service is responsible for print…