Authentication Bypass(es) in CasaOS (CVE-2023-37265, CVE-2023-37266)
https://ift.tt/Yw9sRyB
Submitted October 17, 2023 at 03:25PM by monoimpact
via reddit https://ift.tt/fXl27no
https://ift.tt/Yw9sRyB
Submitted October 17, 2023 at 03:25PM by monoimpact
via reddit https://ift.tt/fXl27no
Sonarsource
Security Vulnerabilities in CasaOS
We recently uncovered two critical code vulnerabilities in the personal cloud system CasaOS. Let's see what we can learn from them.
The MGM Resorts Attack: How Attackers Gained Highly Privileged Access Through Social Engineering
https://ift.tt/aIWwzxp
Submitted October 17, 2023 at 03:18PM by geewasfee
via reddit https://ift.tt/JjOaDNe
https://ift.tt/aIWwzxp
Submitted October 17, 2023 at 03:18PM by geewasfee
via reddit https://ift.tt/JjOaDNe
www.reco.ai
The MGM Resorts Cyber Attack
Learn how SaaS super admins targeted Okta in a social engineering campaign, and how to keep your Okta tenant and highly privileged SaaS identities secure using Reco’s AI-driven approach and comprehensive mapping of data, apps, and identities.
BLE Spam allows now to send unwanted notifications to iOS, Android and Windows at once using Flipper Zero or Android
https://ift.tt/8t4UoFY
Submitted October 17, 2023 at 03:43PM by barakadua131
via reddit https://ift.tt/C0WutX7
https://ift.tt/8t4UoFY
Submitted October 17, 2023 at 03:43PM by barakadua131
via reddit https://ift.tt/C0WutX7
Mobile Hacker
Spam iOS, Android and Windows with Bluetooth pairing messages using Flipper Zero or Android smartphone Mobile Hacker
So far, it was possible to spam through proximity paring messages only iOS devices, either using Flipper Zero, Arduino board or any Android as explained in my previous blog here. However, recently developers of Xtreme firmware for Flipper Zero pushed and…
Widespread Cisco IOS XE Implants in the Wild
https://ift.tt/qkVcxDa
Submitted October 17, 2023 at 05:24PM by chicksdigthelongrun
via reddit https://ift.tt/A7I96RY
https://ift.tt/qkVcxDa
Submitted October 17, 2023 at 05:24PM by chicksdigthelongrun
via reddit https://ift.tt/A7I96RY
VulnCheck
VulnCheck - Outpace Adversaries
Vulnerability intelligence that predicts avenues of attack with speed and accuracy.
Finding a POP chain on a common Symfony bundle : part 2
https://ift.tt/ptkZwEn
Submitted October 17, 2023 at 06:29PM by meowerguy
via reddit https://ift.tt/BXft3lA
https://ift.tt/ptkZwEn
Submitted October 17, 2023 at 06:29PM by meowerguy
via reddit https://ift.tt/BXft3lA
Synacktiv
Finding a POP chain on a common Symfony bundle : part 2
Bluetooth paring notifications can be now send to iOS, Android and Windows at once using Flipper Zero or any Android
https://ift.tt/8t4UoFY
Submitted October 17, 2023 at 10:06PM by barakadua131
via reddit https://ift.tt/c8T9NRw
https://ift.tt/8t4UoFY
Submitted October 17, 2023 at 10:06PM by barakadua131
via reddit https://ift.tt/c8T9NRw
Mobile Hacker
Spam iOS, Android and Windows with Bluetooth pairing messages using Flipper Zero or Android smartphone Mobile Hacker
So far, it was possible to spam through proximity paring messages only iOS devices, either using Flipper Zero, Arduino board or any Android as explained in my previous blog here. However, recently developers of Xtreme firmware for Flipper Zero pushed and…
Tool to perform GCP Domain Wide Delegation abuse and access Gmail and Drive data
https://ift.tt/3BHe2nG
Submitted October 17, 2023 at 09:43PM by lutzenfried
via reddit https://ift.tt/HRJPcTd
https://ift.tt/3BHe2nG
Submitted October 17, 2023 at 09:43PM by lutzenfried
via reddit https://ift.tt/HRJPcTd
GitHub
GitHub - lutzenfried/Delegate: Tool to perform GCP Domain Wide Delegation abuse and access Gmail and Drive data
Tool to perform GCP Domain Wide Delegation abuse and access Gmail and Drive data - lutzenfried/Delegate
PsMapExec - Windows and Active Directory Lateral Movement Tool
https://ift.tt/g4wzaAr
Submitted October 17, 2023 at 11:15PM by AkimboViper
via reddit https://ift.tt/ATb7R0N
https://ift.tt/g4wzaAr
Submitted October 17, 2023 at 11:15PM by AkimboViper
via reddit https://ift.tt/ATb7R0N
GitHub
GitHub - The-Viper-One/PsMapExec: Dominate Active Directory with PowerShell.
Dominate Active Directory with PowerShell. . Contribute to The-Viper-One/PsMapExec development by creating an account on GitHub.
Synology Replaces Weak PRNG in its NAS Devices, Shuts Down Account Takeover
https://ift.tt/B2ej3x0
Submitted October 18, 2023 at 12:41AM by derp6996
via reddit https://ift.tt/b5GtlM1
https://ift.tt/B2ej3x0
Submitted October 18, 2023 at 12:41AM by derp6996
via reddit https://ift.tt/b5GtlM1
Claroty
Synology NAS DSM Account Takeover: When Random is not Secure
Getting RCE in Chrome with incomplete object initialization in the Maglev compiler
https://ift.tt/GPySdvV
Submitted October 18, 2023 at 12:47PM by poltess0
via reddit https://ift.tt/n2KO1hf
https://ift.tt/GPySdvV
Submitted October 18, 2023 at 12:47PM by poltess0
via reddit https://ift.tt/n2KO1hf
The GitHub Blog
Getting RCE in Chrome with incomplete object initialization in the Maglev compiler
In this post, I'll exploit CVE-2023-4069, a type confusion in Chrome that allows remote code execution (RCE) in the renderer sandbox of Chrome by a single visit to a malicious site.
Snapshot fuzzing Windows' direct composition with WTF
https://ift.tt/pINWw8f
Submitted October 18, 2023 at 01:53PM by poltess0
via reddit https://ift.tt/7pg5TOP
https://ift.tt/pINWw8f
Submitted October 18, 2023 at 01:53PM by poltess0
via reddit https://ift.tt/7pg5TOP
Cisco Talos Blog
Snapshot fuzzing direct composition with WTF
Although there is public research on Direct Composition, only a few discuss fuzzing this feature, and none, to our knowledge, that covers snapshot fuzzing.
The single-packet attack: making remote race-conditions 'local'
https://ift.tt/jE4Z6Nc
Submitted October 18, 2023 at 06:34PM by albinowax
via reddit https://ift.tt/i4cnve5
https://ift.tt/jE4Z6Nc
Submitted October 18, 2023 at 06:34PM by albinowax
via reddit https://ift.tt/i4cnve5
PortSwigger Research
The single-packet attack: making remote race-conditions 'local'
The single-packet attack is a new technique for triggering web race conditions. It works by completing multiple HTTP/2 requests with a single TCP packet, which effectively eliminates network jitter an
I made a quick and dirty DLL spoofer in python for DLL hijacking POC's. Makes life a little easier.
https://ift.tt/ebJWBqy
Submitted October 18, 2023 at 08:29PM by thehunter699
via reddit https://ift.tt/kxm4g7z
https://ift.tt/ebJWBqy
Submitted October 18, 2023 at 08:29PM by thehunter699
via reddit https://ift.tt/kxm4g7z
GitHub
GitHub - MitchHS/DLL-Spoofer: POC for a DLL spoofer to determine DLL Hijacking
POC for a DLL spoofer to determine DLL Hijacking. Contribute to MitchHS/DLL-Spoofer development by creating an account on GitHub.
GitHub - n0mi1k/subby: An uber fast and simple subdomain enumeration tool using DNS and web requests with support for detecting wildcard DNS records.
https://ift.tt/Hs3lJyZ
Submitted October 18, 2023 at 10:35PM by n0mi1k
via reddit https://ift.tt/a1ExkWK
https://ift.tt/Hs3lJyZ
Submitted October 18, 2023 at 10:35PM by n0mi1k
via reddit https://ift.tt/a1ExkWK
GitHub
GitHub - n0mi1k/subby: An uber fast and simple subdomain enumeration tool using DNS and web requests with support for detecting…
An uber fast and simple subdomain enumeration tool using DNS and web requests with support for detecting wildcard DNS records. - GitHub - n0mi1k/subby: An uber fast and simple subdomain enumeration...
Multiple North Korean threat actors exploiting the TeamCity CVE-2023-42793 vulnerability
https://ift.tt/lf15HVO
Submitted October 18, 2023 at 10:26PM by SCI_Rusher
via reddit https://ift.tt/56zRe8b
https://ift.tt/lf15HVO
Submitted October 18, 2023 at 10:26PM by SCI_Rusher
via reddit https://ift.tt/56zRe8b
Microsoft Security Blog
Multiple North Korean threat actors exploiting the TeamCity CVE-2023-42793 vulnerability | Microsoft Security Blog
Since early October 2023, Microsoft has observed North Korean nation-state threat actors Diamond Sleet and Onyx Sleet exploiting the Jet Brains TeamCity CVE-2023-42793 remote-code execution vulnerability. Given supply chain attacks carried out by these threat…
Blog post regarding GCP Domain Wide Delegation abuses
https://ift.tt/Xfln4zq
Submitted October 18, 2023 at 09:50PM by lutzenfried
via reddit https://ift.tt/IO6NgFY
https://ift.tt/Xfln4zq
Submitted October 18, 2023 at 09:50PM by lutzenfried
via reddit https://ift.tt/IO6NgFY
Medium
GCP — Domain Wide Delegation Abuses
In today’s dynamic technological landscape, the shift to cloud environments has become a cornerstone of business innovation. As companies…
301party.com: The intentionally open redirect
https://301party.com/
Submitted October 19, 2023 at 07:48PM by EightNinerNinerTwo
via reddit https://ift.tt/z5QPA0N
https://301party.com/
Submitted October 19, 2023 at 07:48PM by EightNinerNinerTwo
via reddit https://ift.tt/z5QPA0N
Reddit
301party.com: The intentionally open redirect : r/netsec
15 votes, 11 comments. 492K subscribers in the netsec community. /r/netsec is a community-curated aggregator of technical information security…
Protobuf Magic: Burp Extension for Deserializing Protobuf Without .proto Files
https://ift.tt/mfD8Ulw
Submitted October 20, 2023 at 01:55AM by SuspiciousIsland2682
via reddit https://ift.tt/vqY3ZnO
https://ift.tt/mfD8Ulw
Submitted October 20, 2023 at 01:55AM by SuspiciousIsland2682
via reddit https://ift.tt/vqY3ZnO
GitHub
GitHub - DeiteriyLab/protobuf-magic
Contribute to DeiteriyLab/protobuf-magic development by creating an account on GitHub.
IoT-Security/Development-Lab-Setup
https://ift.tt/e97lyNU
Submitted October 20, 2023 at 02:29PM by v33ruiot
via reddit https://ift.tt/862Ornz
https://ift.tt/e97lyNU
Submitted October 20, 2023 at 02:29PM by v33ruiot
via reddit https://ift.tt/862Ornz
GitHub
GitHub - IoTSecurity101/IoT-Lab-Setup-Guide
Contribute to IoTSecurity101/IoT-Lab-Setup-Guide development by creating an account on GitHub.
Exploiting Zenbleed from Chrome
https://ift.tt/yxhOHdF
Submitted October 20, 2023 at 02:54PM by poltess0
via reddit https://ift.tt/m6aJeb4
https://ift.tt/yxhOHdF
Submitted October 20, 2023 at 02:54PM by poltess0
via reddit https://ift.tt/m6aJeb4
Ghost In The Wire, Sonic In The Wall - Adventures With SonicWall - watchTowr Labs
https://ift.tt/I8KJBcW
Submitted October 20, 2023 at 04:50PM by dx7r__
via reddit https://ift.tt/PBd3u9S
https://ift.tt/I8KJBcW
Submitted October 20, 2023 at 04:50PM by dx7r__
via reddit https://ift.tt/PBd3u9S
watchTowr Labs - Blog
Ghost In The Wire, Sonic In The Wall - Adventures With SonicWall
Here at watchTowr, we just love attacking high-privilege devices (and spending hours thinking of awful noscripts [see above]).
A good example of these is the device class of ‘next generation’ firewalls, which usually include VPN termination functionality (meaning…
A good example of these is the device class of ‘next generation’ firewalls, which usually include VPN termination functionality (meaning…