ImpressCMS: from unauthenticated SQL injection to RCE
https://ift.tt/dNBszE6
Submitted April 08, 2022 at 04:31PM by eg1x
via reddit https://ift.tt/ISVuAr0
https://ift.tt/dNBszE6
Submitted April 08, 2022 at 04:31PM by eg1x
via reddit https://ift.tt/ISVuAr0
reddit
ImpressCMS: from unauthenticated SQL injection to RCE
Posted in r/netsec by u/eg1x • 61 points and 1 comment
Exploiting CVE-2022-0778, a bug in OpenSSL vis-à-vis WebRTC platforms
https://ift.tt/xc6v7rM
Submitted April 08, 2022 at 04:24PM by EnableSecurity
via reddit https://ift.tt/wkMdDZ0
https://ift.tt/xc6v7rM
Submitted April 08, 2022 at 04:24PM by EnableSecurity
via reddit https://ift.tt/wkMdDZ0
Rtcsec
Exploiting CVE-2022-0778, a bug in OpenSSL vis-à-vis WebRTC platforms
Exploiting CVE-2022-0778 in a WebRTC context requires that you get a few things right first. But once that is sorted, DoS (in RTC) is the new RCE!
Russia’s certificate authority for sanctioned organizations
https://ift.tt/nMcEGOB
Submitted April 08, 2022 at 08:03PM by koenrh
via reddit https://ift.tt/8wNL1bm
https://ift.tt/nMcEGOB
Submitted April 08, 2022 at 08:03PM by koenrh
via reddit https://ift.tt/8wNL1bm
Medium
Russia’s certificate authority for sanctioned organizations
After Russia’s invasion of Ukraine, it has created a new certificate authority to support sanctioned organizations.
Exploiting a User-After-Free on PHP to bypass disable_functions
https://ift.tt/EWbK85Q
Submitted April 09, 2022 at 02:50AM by gid0rah
via reddit https://ift.tt/Px0oLKf
https://ift.tt/EWbK85Q
Submitted April 09, 2022 at 02:50AM by gid0rah
via reddit https://ift.tt/Px0oLKf
Retain Top Talent with Better Pentest Reporting
https://ift.tt/0lP4b3e
Submitted April 09, 2022 at 04:19AM by jpierini
via reddit https://ift.tt/zFE1CbH
https://ift.tt/0lP4b3e
Submitted April 09, 2022 at 04:19AM by jpierini
via reddit https://ift.tt/zFE1CbH
PlexTrac
Retain Top Cybersecurity Talent with Better Pentest Reporting - PlexTrac
How do you retain those cybersecurity professionals you already have on the team. How do you keep them engaged and challenged?
Wrote about Azure AD Consent bypass - disclosure
https://ift.tt/9zd8Ima
Submitted April 09, 2022 at 12:20PM by jsantasalo
via reddit https://ift.tt/oZr2VG0
https://ift.tt/9zd8Ima
Submitted April 09, 2022 at 12:20PM by jsantasalo
via reddit https://ift.tt/oZr2VG0
SecureCloudBlog
MSRC – Joint security research write up – Azure AD Consent bypass disclosure with Kim Jamia – Q1/2022
I decided to post a short write-up on this MSRC case as this case was first one I worked with co-contributor @KimJamia Consent hack timeline Initial submission Q1 2022Microsoft proactively addresse…
socialhunter: crawls the website and finds broken social media links that can be hijacked
https://ift.tt/r5MSQ64
Submitted April 09, 2022 at 08:50PM by utku1337
via reddit https://ift.tt/NlEuk7P
https://ift.tt/r5MSQ64
Submitted April 09, 2022 at 08:50PM by utku1337
via reddit https://ift.tt/NlEuk7P
GitHub
GitHub - utkusen/socialhunter: crawls the website and finds broken social media links that can be hijacked
crawls the website and finds broken social media links that can be hijacked - GitHub - utkusen/socialhunter: crawls the website and finds broken social media links that can be hijacked
Firewall analysis: A portable graph based approach
https://ift.tt/i86XDYj
Submitted April 10, 2022 at 01:32AM by DiabloHorn
via reddit https://ift.tt/VwWLBao
https://ift.tt/i86XDYj
Submitted April 10, 2022 at 01:32AM by DiabloHorn
via reddit https://ift.tt/VwWLBao
DiabloHorn
Firewall analysis: A portable graph based approach
Sometimes you are asked to perform a firewall analysis to determine if the configuration can be improved upon to reduce the ability for an attacker to move laterally through the network or identify…
Hackers Exploiting Spring4Shell Vulnerability to Deploy Mirai Botnet Malware. This is far from the first time the botnet operators have quickly added newly publicized flaws to their exploit toolset. last year, multiple botnets were uncovered leveraging the Log4Shell to breach susceptible servers.
https://ift.tt/jbtpe6T
Submitted April 11, 2022 at 10:47AM by Late_Ice_9288
via reddit https://ift.tt/JMKFsau
https://ift.tt/jbtpe6T
Submitted April 11, 2022 at 10:47AM by Late_Ice_9288
via reddit https://ift.tt/JMKFsau
Trend Micro
CVE-2022-22965 Analyzing the Exploitation of Spring4Shell Vulnerability in Weaponizing and Executing the Mirai Botnet Malware
Semgrep ruleset for C/C++ vulnerability research
https://ift.tt/q2cMztC
Submitted April 11, 2022 at 02:21PM by 0xdea
via reddit https://ift.tt/Dro7vbt
https://ift.tt/q2cMztC
Submitted April 11, 2022 at 02:21PM by 0xdea
via reddit https://ift.tt/Dro7vbt
hn security
Semgrep ruleset for C/C++ vulnerability research - hn security
“Humans are more suited to recognize […]
CI/CD Goat - A deliberately vulnerable CI/CD environment (CTF)
https://ift.tt/xLSBIO1
Submitted April 11, 2022 at 06:04PM by TupleType1
via reddit https://ift.tt/wNjOXo6
https://ift.tt/xLSBIO1
Submitted April 11, 2022 at 06:04PM by TupleType1
via reddit https://ift.tt/wNjOXo6
GitHub
GitHub - cider-security-research/cicd-goat: A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple…
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges. - GitHub - cider-security-research/cicd-goat: A deliberately vulnerable CI/CD environment. Learn CI/CD...
AWS RDS Vulnerability Leads to AWS Internal Service Credentials
https://ift.tt/m2Ydce5
Submitted April 12, 2022 at 04:42AM by freakwin
via reddit https://ift.tt/1SKP9Vr
https://ift.tt/m2Ydce5
Submitted April 12, 2022 at 04:42AM by freakwin
via reddit https://ift.tt/1SKP9Vr
blog.lightspin.io
AWS RDS Vulnerability Leads to AWS Internal Service Credentials
Lightspin obtains credentials to an internal AWS service by exploiting a local file read vulnerability on the RDS EC2 instance using the log_fdw extension.
CVE-2022-25165: Privilege Escalation to SYSTEM in AWS VPN Client
https://ift.tt/9JgTU1I
Submitted April 12, 2022 at 07:20PM by rhino_security_labs_
via reddit https://ift.tt/HNKbJG8
https://ift.tt/9JgTU1I
Submitted April 12, 2022 at 07:20PM by rhino_security_labs_
via reddit https://ift.tt/HNKbJG8
Rhino Security Labs
CVE-2022-25165: Privilege Escalation to SYSTEM in AWS VPN Client - Rhino Security Labs
The AWS VPN Client application is affected by an arbitrary file write as SYSTEM, which can lead to privilege escalation.
Round Two: An Updated Universal Deserialisation Gadget for Ruby 2.x-3.x
https://ift.tt/O3CXYyd
Submitted April 12, 2022 at 08:13PM by Gallus
via reddit https://ift.tt/8DwreKA
https://ift.tt/O3CXYyd
Submitted April 12, 2022 at 08:13PM by Gallus
via reddit https://ift.tt/8DwreKA
devcraft.io
Round Two: An Updated Universal Deserialisation Gadget for Ruby 2.x-3.x
A few months ago I noticed the gadget in my previous article had been patched and no longer worked in Ruby 3.0.3, so I spent a bit of time dusting off the old tools to see if I could find another one.
The Security Risks of Open Source Dependencies and Some npm Flaws That Leverage Them
https://ift.tt/QYMsO2u
Submitted April 13, 2022 at 12:07AM by mkatch
via reddit https://ift.tt/e8tZ4uG
https://ift.tt/QYMsO2u
Submitted April 13, 2022 at 12:07AM by mkatch
via reddit https://ift.tt/e8tZ4uG
Aquasec
New npm Flaws Let Attackers Better Target Packages for Account Takeover
Team Nautilus discovered & analyzed two npm flaws related to 2FA that can allow attackers to target packages for account takeover & supply chain attacks
Russian Malware Targeting Ukrainian Energy Sector
https://ift.tt/eaZxV75
Submitted April 13, 2022 at 02:01AM by entropydaemon5
via reddit https://ift.tt/rZkGi1y
https://ift.tt/eaZxV75
Submitted April 13, 2022 at 02:01AM by entropydaemon5
via reddit https://ift.tt/rZkGi1y
Medium
Industroyer2: The Worst Sequel
Background:
A real PoC for CVE-2022-21907 RCE DoS IIS
https://ift.tt/rdAX64u
Submitted April 13, 2022 at 10:41AM by yoursisterboy
via reddit https://ift.tt/WyaiEbJ
https://ift.tt/rdAX64u
Submitted April 13, 2022 at 10:41AM by yoursisterboy
via reddit https://ift.tt/WyaiEbJ
GitHub
GitHub - polakow/CVE-2022-21907: A REAL DoS exploit for CVE-2022-21907
A REAL DoS exploit for CVE-2022-21907. Contribute to polakow/CVE-2022-21907 development by creating an account on GitHub.
OpenSSH 9 released on 2022-04-08. By default it uses NTRU algorithm which is believed to resist attacks enabled by future quantum computers.
https://ift.tt/85xnWlS
Submitted April 13, 2022 at 01:28PM by mstromich
via reddit https://ift.tt/ejasx3d
https://ift.tt/85xnWlS
Submitted April 13, 2022 at 01:28PM by mstromich
via reddit https://ift.tt/ejasx3d
reddit
OpenSSH 9 released on 2022-04-08. By default it uses NTRU...
Posted in r/netsec by u/mstromich • 276 points and 34 comments
Around 50,000 GitHub credentials leaked as metadata inside commits
https://ift.tt/vljUn69
Submitted April 13, 2022 at 07:20PM by gid0rah
via reddit https://ift.tt/CX1f8iB
https://ift.tt/vljUn69
Submitted April 13, 2022 at 07:20PM by gid0rah
via reddit https://ift.tt/CX1f8iB
Notgitbleed
NotGitBleed - TL;DR
Research into potential credential leaks within github metadata
TallGrass: An AV exclusion enumeration tool written in Python
https://ift.tt/gyM6RsE
Submitted April 13, 2022 at 07:53PM by UnwearableCactus
via reddit https://ift.tt/Ik9LNQf
https://ift.tt/gyM6RsE
Submitted April 13, 2022 at 07:53PM by UnwearableCactus
via reddit https://ift.tt/Ik9LNQf
GitHub
GitHub - tid4l/TallGrass: An AV exclusion enumeration tool written in Python.
An AV exclusion enumeration tool written in Python. - GitHub - tid4l/TallGrass: An AV exclusion enumeration tool written in Python.
Citrix SDWAN Hard-Coded Credentials
https://ift.tt/MNDUopP
Submitted April 13, 2022 at 10:32PM by k1dney
via reddit https://ift.tt/xtuamD7
https://ift.tt/MNDUopP
Submitted April 13, 2022 at 10:32PM by k1dney
via reddit https://ift.tt/xtuamD7
CIS
Multiple Vulnerabilities in Citrix SD-WAN Contains Hard-Coded Credentials
<p>Multiple vulnerabilities have been discovered in Citrix SD-WAN. Citrix SD-WAN is a software defined Wide Area Network (WAN) which can allow for easier management of multiple networks. The most severe of these vulnerabilities contains hard-coded credentials.…