NidhoggScript is a tool to generate "noscript" file that allows execution of multiple commands and creating playbooks for Nidhogg (https://ift.tt/J0coP6H)
https://ift.tt/6PqWIn2
Submitted February 11, 2024 at 08:24PM by Idov31
via reddit https://ift.tt/cWofKhv
https://ift.tt/6PqWIn2
Submitted February 11, 2024 at 08:24PM by Idov31
via reddit https://ift.tt/cWofKhv
GitHub
GitHub - Idov31/Nidhogg: Nidhogg is an all-in-one simple to use windows kernel rootkit.
Nidhogg is an all-in-one simple to use windows kernel rootkit. - Idov31/Nidhogg
Breach Analysis: APT29’s Attack on Microsoft - Password Spray & OAuth abuse.
https://ift.tt/wmP5cu3
Submitted February 12, 2024 at 09:09AM by jat0369
via reddit https://ift.tt/yLr7Vm6
https://ift.tt/wmP5cu3
Submitted February 12, 2024 at 09:09AM by jat0369
via reddit https://ift.tt/yLr7Vm6
Cyberark
APT29’s Attack on Microsoft: Tracking Cozy Bear’s Footprints
A new and concerning chapter has unfolded in these troubled times of geopolitical chaos. The Cozy Bear threat actor has caused significant breaches targeting Microsoft and HPE, and more are likely...
ChatGPT Account Takeover via Wildcard Web Cache Deception
https://ift.tt/OMo1ULd
Submitted February 12, 2024 at 01:51PM by albinowax
via reddit https://ift.tt/C0d8m19
https://ift.tt/OMo1ULd
Submitted February 12, 2024 at 01:51PM by albinowax
via reddit https://ift.tt/C0d8m19
SQLMap Cheat Sheet - Commands & Examples
https://ift.tt/VZb3hG0
Submitted February 12, 2024 at 03:13PM by HighOnCoffee
via reddit https://ift.tt/4tZkdrF
https://ift.tt/VZb3hG0
Submitted February 12, 2024 at 03:13PM by HighOnCoffee
via reddit https://ift.tt/4tZkdrF
highon.coffee
SQLMap Cheat Sheet - Commands & Examples Tutorial
SQLMap cheat sheet - Learn SQLMap with this Tutorial containing Flags, & SQLMap Command Examples.
Used AI to summarize each week's new security alerts and advisories
https://cyberowl.org/
Submitted February 12, 2024 at 03:52PM by karimhabush
via reddit https://ift.tt/nLlmQ4x
https://cyberowl.org/
Submitted February 12, 2024 at 03:52PM by karimhabush
via reddit https://ift.tt/nLlmQ4x
cyberowl.org
Cyberowl | CyberOwl
Stay informed on the latest cyber threats - a one-stop destination for all the latest alerts and updates from multiple sources.
Evolution of UNC4990: Uncovering USB Malware's Hidden Depths
https://ift.tt/71sEoUV
Submitted February 12, 2024 at 03:40PM by lormayna
via reddit https://ift.tt/At27FLq
https://ift.tt/71sEoUV
Submitted February 12, 2024 at 03:40PM by lormayna
via reddit https://ift.tt/At27FLq
Mandiant
Evolution of UNC4990: Uncovering USB Malware's Hidden Depths | Mandiant
Running BOFs with 'bof-launcher' library
https://ift.tt/WATUZrP
Submitted February 12, 2024 at 08:24PM by mzet-
via reddit https://ift.tt/JQDKrFO
https://ift.tt/WATUZrP
Submitted February 12, 2024 at 08:24PM by mzet-
via reddit https://ift.tt/JQDKrFO
Release 3.0.0.0 | OpalOPC
https://ift.tt/zaYc0RG
Submitted February 12, 2024 at 11:26PM by Salmiakkilakritsi
via reddit https://ift.tt/nKaYsNk
https://ift.tt/zaYc0RG
Submitted February 12, 2024 at 11:26PM by Salmiakkilakritsi
via reddit https://ift.tt/nKaYsNk
Opalopc
Release 3.0.0.0 | OpalOPC
Overview: Evidence Collection of Ivanti Connected Secure Appliances
https://ift.tt/mqziLB9
Submitted February 13, 2024 at 03:29PM by OwnPreparation3424
via reddit https://ift.tt/Bf69bd1
https://ift.tt/mqziLB9
Submitted February 13, 2024 at 03:29PM by OwnPreparation3424
via reddit https://ift.tt/Bf69bd1
Medium
Overview: Evidence Collection of Ivanti Connected Secure Appliances
This article summarizes methods that can be used to gather forensic evidence from Ivanti appliances.
Unpack RedLine stealer using dnSpyEx - Part 3 - Securityinbits
https://ift.tt/o5PqdT1
Submitted February 13, 2024 at 04:09PM by securityinbits
via reddit https://ift.tt/9GRx6ku
https://ift.tt/o5PqdT1
Submitted February 13, 2024 at 04:09PM by securityinbits
via reddit https://ift.tt/9GRx6ku
Securityinbits
Unpack RedLine stealer using dnSpyEx - Part 3 - Securityinbits
Dive into unpacking and extracting config from RedLine Stealer using dnSpyEx. This is the 3rd part in our RedLine malware series.
Security Review Of Okta's TOP-10 Security Posture Features to prevent the next breach
https://ift.tt/VU3b8FY
Submitted February 13, 2024 at 10:01PM by Or1rez
via reddit https://ift.tt/0Fl2QyO
https://ift.tt/VU3b8FY
Submitted February 13, 2024 at 10:01PM by Or1rez
via reddit https://ift.tt/0Fl2QyO
Rezonate - Protect Identities, Everywhere
Top 10 Features to Enhance Your Okta Security Posture - Rezonate
We break down 10 key security configurations and features to ensure robust authentication and identity management within your Okta instance to help prevent future attacks.
Google chronicle - query by subnet
https://ift.tt/mpo8KYg
Submitted February 13, 2024 at 11:49PM by BurkeSooty
via reddit https://ift.tt/JZx7GnB
https://ift.tt/mpo8KYg
Submitted February 13, 2024 at 11:49PM by BurkeSooty
via reddit https://ift.tt/JZx7GnB
Azure Devops Zero-Click CI/CD Vulnerability
https://ift.tt/H7lsgKy
Submitted February 14, 2024 at 03:35AM by roy_6472
via reddit https://ift.tt/1uBUZh7
https://ift.tt/H7lsgKy
Submitted February 14, 2024 at 03:35AM by roy_6472
via reddit https://ift.tt/1uBUZh7
Legitsecurity
Azure Devops Zero-Click CI/CD Vulnerability
The Legit Security research team has found and reported a zero-click attack that allowed attackers to submit malicious code and access secrets.
Can you Tell When A Power Outage Occurred? -- Determining How Long a Wi-Fi AP Has Been Active
https://ift.tt/vHaADyV
Submitted February 14, 2024 at 04:59PM by wirelessbits
via reddit https://ift.tt/pec3MUC
https://ift.tt/vHaADyV
Submitted February 14, 2024 at 04:59PM by wirelessbits
via reddit https://ift.tt/pec3MUC
Medium
Determining How Long a Wi-Fi AP Has Been Active
I spend a decent amount of time looking at IEEE 802.11 (Wi-Fi) packet captures and feel like every time I close Wireshark I’ve learned…
Snap Trap: The Hidden Dangers Within Ubuntu's Package Suggestion System
https://ift.tt/kW654Hy
Submitted February 14, 2024 at 06:50PM by ilay789
via reddit https://ift.tt/AsL2pjf
https://ift.tt/kW654Hy
Submitted February 14, 2024 at 06:50PM by ilay789
via reddit https://ift.tt/AsL2pjf
Aqua
The Hidden Dangers Within Ubuntu's Package Suggestion System
Aqua Nautilus researchers have identified a security issue that arises from the interaction between Ubuntu's command-not-found package and the snap package repository.
Staying ahead of threat actors in the age of AI
https://ift.tt/5WrFIyo
Submitted February 15, 2024 at 12:26AM by SCI_Rusher
via reddit https://ift.tt/gmwbeON
https://ift.tt/5WrFIyo
Submitted February 15, 2024 at 12:26AM by SCI_Rusher
via reddit https://ift.tt/gmwbeON
Microsoft Security Blog
Staying ahead of threat actors in the age of AI | Microsoft Security Blog
Microsoft, in collaboration with OpenAI, is publishing research on emerging threats in the age of AI, focusing on identified activity associated with known threat actors Forest Blizzard, Emerald Sleet, Crimson Sandstorm, and others. The observed activity…
SOC Interview Questions
https://ift.tt/pdaoMPU
Submitted February 15, 2024 at 03:06AM by ogunal00
via reddit https://ift.tt/VDhAF6n
https://ift.tt/pdaoMPU
Submitted February 15, 2024 at 03:06AM by ogunal00
via reddit https://ift.tt/VDhAF6n
GitHub
GitHub - LetsDefend/SOC-Interview-Questions: SOC Interview Questions
SOC Interview Questions. Contribute to LetsDefend/SOC-Interview-Questions development by creating an account on GitHub.
Microsoft 365 AiTM detection: the lessons learned
https://ift.tt/VghIqAu
Submitted February 15, 2024 at 11:10PM by wez32
via reddit https://ift.tt/Tk5chWM
https://ift.tt/VghIqAu
Submitted February 15, 2024 at 11:10PM by wez32
via reddit https://ift.tt/Tk5chWM
Zolder B.V.
Microsoft 365 AiTM detection: the lessons learned
The beginning of January we released a new way to detect AiTM attacks on your Microsoft 365 environment. In just one month, we are protecting over 100 tenants with this new approach. We were able t…
GitHub - deeexcee-io/duppy: python flask app which utilises ngrok and gunicorn to securely download and upload files to local machine over the internet. all handled by the bash noscript.
https://ift.tt/gBj69Rh
Submitted February 16, 2024 at 03:04AM by Leading-Employer-828
via reddit https://ift.tt/7HPEvFZ
https://ift.tt/gBj69Rh
Submitted February 16, 2024 at 03:04AM by Leading-Employer-828
via reddit https://ift.tt/7HPEvFZ
GitHub
GitHub - deeexcee-io/duppy: python flask app which utilises ngrok and gunicorn to securely upload files to local machine and download…
python flask app which utilises ngrok and gunicorn to securely upload files to local machine and download to remote machine over the internet. all handled by the bash noscript. - deeexcee-io/duppy
Exploiting TRACE
https://ift.tt/v7zGeir
Submitted February 16, 2024 at 10:11PM by 6W99ocQnb8Zy17
via reddit https://ift.tt/CTj6pxm
https://ift.tt/v7zGeir
Submitted February 16, 2024 at 10:11PM by 6W99ocQnb8Zy17
via reddit https://ift.tt/CTj6pxm
attackshipsonfi.re
Exploiting TRACE
TL;DR The presence of the TRACE method is generally considered to be at best an informational finding (and in isolation, I wouldn’t disagree with that). But before you deploy your meh, if you know what to look for, the TRACE method (and any other mechanism…
Exploiting Unsynchronised Clocks
https://ift.tt/2SioyCd
Submitted February 16, 2024 at 10:09PM by 6W99ocQnb8Zy17
via reddit https://ift.tt/CpsTRre
https://ift.tt/2SioyCd
Submitted February 16, 2024 at 10:09PM by 6W99ocQnb8Zy17
via reddit https://ift.tt/CpsTRre
attackshipsonfi.re
Exploiting Unsynchronised Clocks
TL;DR According to data from RIPE, over 40% of computers attached to the Internet have a few seconds of clock drift, which with the right combination of headers, will make an HTTP response unintentionally cacheable. Background Like many parts of the HTTP…