Correlate network connections with community ID in osquery.
https://ift.tt/3a9zoHh
Submitted October 06, 2021 at 04:22AM by Silly-Pop-7437
via reddit https://ift.tt/3BkgF7W
https://ift.tt/3a9zoHh
Submitted October 06, 2021 at 04:22AM by Silly-Pop-7437
via reddit https://ift.tt/3BkgF7W
Medium
Correlate network connections with community ID in osquery.
Interested in correlating events from network monitoring tools to host activity? Support for Community ID hashing in osquery allows osquery’s endpoint instrumentation to be easily correlated with…
Yet another PHP 7.0-8.0 disable_functions bypass 0day PoC
https://ift.tt/3DaieFS
Submitted October 06, 2021 at 09:42AM by dradzenglor
via reddit https://ift.tt/3uKvUV7
https://ift.tt/3DaieFS
Submitted October 06, 2021 at 09:42AM by dradzenglor
via reddit https://ift.tt/3uKvUV7
GitHub
exploits/php-filter-bypass at master · mm0r1/exploits
Pwn stuff. Contribute to mm0r1/exploits development by creating an account on GitHub.
Breakdown of a New Novel Exploit Using REBOL for Malicious Purposes
https://ift.tt/3Ac6mkR
Submitted October 06, 2021 at 07:44PM by FRSecure
via reddit https://ift.tt/3lepCKk
https://ift.tt/3Ac6mkR
Submitted October 06, 2021 at 07:44PM by FRSecure
via reddit https://ift.tt/3lepCKk
FRSecure
The REBOL Yell: A New Novel REBOL Exploit | FRSecure
We recently discovered a novel REBOL exploit technique used for command-and-control. We've coined this the REBOL Yell. Read about the exploit and preventing it.
GitOops! Attacking and defending CI/CD pipelines.
https://ift.tt/3CNIvJW
Submitted October 06, 2021 at 09:20PM by alexksak
via reddit https://ift.tt/3Bjc3z0
https://ift.tt/3CNIvJW
Submitted October 06, 2021 at 09:20PM by alexksak
via reddit https://ift.tt/3Bjc3z0
Running the Tpot honeypot on Google Cloud Platform - Part 1
https://ift.tt/3afOJGi
Submitted October 06, 2021 at 10:47PM by gamingalife
via reddit https://ift.tt/3Bizk45
https://ift.tt/3afOJGi
Submitted October 06, 2021 at 10:47PM by gamingalife
via reddit https://ift.tt/3Bizk45
blog.chy.la
Running the Tpot honeypot on Google Cloud Platform - Part 1
Deploying the Tpot honeypot on Google Cloud using Terraform
Vulnerability Remediation cheat sheet (free) just released:
https://ift.tt/3uL7zi8
Submitted October 07, 2021 at 08:55AM by blokdijkg
via reddit https://ift.tt/3uNzii4
https://ift.tt/3uL7zi8
Submitted October 07, 2021 at 08:55AM by blokdijkg
via reddit https://ift.tt/3uNzii4
Theartofservice
Vulnerability Remediation Kanban- The Art of Service, Standard Requirements Self Assessments
Ready to use prioritized Vulnerability Remediation requirements, to: Make sure the Information Security team is responsible for incident response,
Active Directory Certificate Services to Domain Admin
https://ift.tt/3iELoW9
Submitted October 07, 2021 at 12:24PM by ollypwn
via reddit https://ift.tt/3iG0PNx
https://ift.tt/3iELoW9
Submitted October 07, 2021 at 12:24PM by ollypwn
via reddit https://ift.tt/3iG0PNx
GitHub
GitHub - ly4k/Certipy: Tool for Active Directory Certificate Services enumeration and abuse
Tool for Active Directory Certificate Services enumeration and abuse - ly4k/Certipy
Wireshark 3.4.9 Released
https://ift.tt/3FprV5f
Submitted October 07, 2021 at 02:54PM by securehoney
via reddit https://ift.tt/3Fqjs1F
https://ift.tt/3FprV5f
Submitted October 07, 2021 at 02:54PM by securehoney
via reddit https://ift.tt/3Fqjs1F
reddit
Wireshark 3.4.9 Released
Posted in r/netsec by u/securehoney • 2 points and 0 comments
CryptoCurrency is The Flag Vol 7., Round 1. is starting tomorrow
https://cryptoctf.org/
Submitted October 07, 2021 at 03:49PM by Alcoholas
via reddit https://ift.tt/3iBDmgn
https://cryptoctf.org/
Submitted October 07, 2021 at 03:49PM by Alcoholas
via reddit https://ift.tt/3iBDmgn
CCTF – Crypto CTF OÜ – Web3 & Blockchain Security and Events
CCTF by Crypto CTF OÜ
Advisory: Cisco ATA19X Privilege Escalation and RCE - IoT Inspector
https://ift.tt/3BkV53l
Submitted October 07, 2021 at 04:16PM by g_e_r_h_a_r_d
via reddit https://ift.tt/2ZYJ6ud
https://ift.tt/3BkV53l
Submitted October 07, 2021 at 04:16PM by g_e_r_h_a_r_d
via reddit https://ift.tt/2ZYJ6ud
IoT Inspector
Advisory: Cisco ATA19X Privilege Escalation and RCE - IoT Inspector
We found lacking user privilege separation enforcement and post-authentication command injection remote code execution within Cisco ATA19X firmware.
Introducing Shisho Cloud: Autofixes for Your Infrastructure as Code are Just a Click Away - Shisho Blog
https://ift.tt/3Di7uWk
Submitted October 07, 2021 at 04:48PM by oigong
via reddit https://ift.tt/3DhfarK
https://ift.tt/3Di7uWk
Submitted October 07, 2021 at 04:48PM by oigong
via reddit https://ift.tt/3DhfarK
Shisho Cloud - IaC security automation for developers
Introducing Shisho Cloud: Autofixes for Your Infrastructure as Code are Just a Click Away - Shisho Blog
Today we are introducing Shisho Cloud, a SaaS solution that supports an entire process of improving your infrastructure-as-code security with intelligent autofixes of security issues.Securing Infrastr...
Announcing osquery 5: Now with EndpointSecurity on macOS
https://ift.tt/3ljFLOR
Submitted October 07, 2021 at 06:51PM by yossarian_flew_away
via reddit https://ift.tt/3llTPHE
https://ift.tt/3ljFLOR
Submitted October 07, 2021 at 06:51PM by yossarian_flew_away
via reddit https://ift.tt/3llTPHE
The Trail of Bits Blog
Since 2012, Trail of Bits has helped secure some of the world's most targeted organizations and products. We combine high-end security research with a real world attacker mentality to reduce risk and fortify code.
Kape Technologies and ExpressVPN's new owner Teddy Sagi avoids assassination by the Russian mafia
https://ift.tt/3Fe18ZS
Submitted October 07, 2021 at 09:04PM by MaleficentYellow3
via reddit https://ift.tt/3Afdmh2
https://ift.tt/3Fe18ZS
Submitted October 07, 2021 at 09:04PM by MaleficentYellow3
via reddit https://ift.tt/3Afdmh2
The Jerusalem Post
Israeli businessmen targeted by attempted assassinations in Cyprus
Israeli businessmen were reportedly targeted by an assassin in Cyprus who was caught. Targeted Israeli businessman Teddy Sagi's company has called the incident Iranian terror.
weggli: fast and robust semantic search tool for C and C++ codebases
https://ift.tt/3zR0wp7
Submitted October 07, 2021 at 09:45PM by 0xdea
via reddit https://ift.tt/3FtQq18
https://ift.tt/3zR0wp7
Submitted October 07, 2021 at 09:45PM by 0xdea
via reddit https://ift.tt/3FtQq18
GitHub
GitHub - weggli-rs/weggli: weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security…
weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security researchers identify interesting functionality in large codebases. - weggli-rs/weggli
kdigger: a Context Discovery Tool for Kubernetes Security Audits
https://ift.tt/2ZW31tM
Submitted October 07, 2021 at 10:58PM by guedou
via reddit https://ift.tt/3mzDbUg
https://ift.tt/2ZW31tM
Submitted October 07, 2021 at 10:58PM by guedou
via reddit https://ift.tt/3mzDbUg
Quarkslab
kdigger: a Context Discovery Tool for Kubernetes
The Security Engineer Handbook
https://ift.tt/3tuharu
Submitted October 08, 2021 at 01:09AM by davidw_-
via reddit https://ift.tt/3uTfOc8
https://ift.tt/3tuharu
Submitted October 08, 2021 at 01:09AM by davidw_-
via reddit https://ift.tt/3uTfOc8
reddit
The Security Engineer Handbook
Posted in r/netsec by u/davidw_- • 0 points and 1 comment
Fleet 4.4.0 releases aggregated software inventory, team policies, and improved team scheduling.
https://ift.tt/3uPgBe1
Submitted October 08, 2021 at 04:10AM by Silly-Pop-7437
via reddit https://ift.tt/3ak8j4c
https://ift.tt/3uPgBe1
Submitted October 08, 2021 at 04:10AM by Silly-Pop-7437
via reddit https://ift.tt/3ak8j4c
Medium
Fleet 4.4.0 releases aggregated software inventory, team policies, and improved team scheduling.
Today we are excited to announce the release of Fleet 4.4.0 which brings new and improved features for our osquery and Fleet users.
Path Traversal and Remote Code Execution in Apache HTTP Server 2.4.51 (incomplete fix of CVE-2021-41773)
https://ift.tt/3lkb9MY
Submitted October 08, 2021 at 06:18AM by Gallus
via reddit https://ift.tt/3mCl3sC
https://ift.tt/3lkb9MY
Submitted October 08, 2021 at 06:18AM by Gallus
via reddit https://ift.tt/3mCl3sC
httpd.apache.org
Apache HTTP Server 2.4 vulnerabilities - The Apache HTTP Server Project
CTO (Call Tree Overviewer): An IDA plugin for creating a simple and efficient function call tree graph
https://ift.tt/3lpqoEB
Submitted October 08, 2021 at 02:57PM by Titokhan
via reddit https://ift.tt/2YtfHI6
https://ift.tt/3lpqoEB
Submitted October 08, 2021 at 02:57PM by Titokhan
via reddit https://ift.tt/2YtfHI6
GitHub
GitHub - herosi/CTO: Call Tree Overviewer
Call Tree Overviewer. Contribute to herosi/CTO development by creating an account on GitHub.
Reverse engineering and decrypting CyberArk vault credential files
https://ift.tt/3FtKWUj
Submitted October 09, 2021 at 12:13AM by digicat
via reddit https://ift.tt/3iKbFlM
https://ift.tt/3FtKWUj
Submitted October 09, 2021 at 12:13AM by digicat
via reddit https://ift.tt/3iKbFlM
NCC Group Research
Reverse engineering and decrypting CyberArk vault credential files
This blog will be a technical deep-dive into CyberArk credential files and how the credentials stored in these files are encrypted and decrypted. I discovered it was possible to reverse engineer the encryption and key generation algorithms and decrypt the…
HOW TO DEFEAT THE RUSSIAN DUKES: A STEP-BY-STEP ANALYSIS OF MINIDUKE USED BY APT29/COZY BEAR
https://ift.tt/3BtFm1S
Submitted October 09, 2021 at 11:16PM by CyberMasterV
via reddit https://ift.tt/3ADky6Z
https://ift.tt/3BtFm1S
Submitted October 09, 2021 at 11:16PM by CyberMasterV
via reddit https://ift.tt/3ADky6Z