Wordpress - Directory Traversal / Denial of Service
https://www.exploit-db.com/exploits/40288/Hello, as I find this exploit still works, if there is no firewall which blocks our requests, after running exploit web server will goes down, tested on Wordpress latest version, also on 8.4.x version.I wrote about this to wordpress security team, but answer was "This bug is fixed, We are not interesting Denial of service attacks".Let's fun, 500 hundreds request is enough.
Submitted January 29, 2018 at 02:18PM by Aietix
via reddit http://ift.tt/2Gq52jR
https://www.exploit-db.com/exploits/40288/Hello, as I find this exploit still works, if there is no firewall which blocks our requests, after running exploit web server will goes down, tested on Wordpress latest version, also on 8.4.x version.I wrote about this to wordpress security team, but answer was "This bug is fixed, We are not interesting Denial of service attacks".Let's fun, 500 hundreds request is enough.
Submitted January 29, 2018 at 02:18PM by Aietix
via reddit http://ift.tt/2Gq52jR
reddit
Wordpress - Directory Traversal / Denial of Service • r/security
https://www.exploit-db.com/exploits/40288/ Hello, as I find this exploit still works, if there is no firewall which blocks our requests, after ...
DCShadow explained
http://ift.tt/2Gomk0N
Submitted January 29, 2018 at 03:48PM by FireFart
via reddit http://ift.tt/2DHC8d6
http://ift.tt/2Gomk0N
Submitted January 29, 2018 at 03:48PM by FireFart
via reddit http://ift.tt/2DHC8d6
Alsid blog
DCShadow explained: A technical deep dive into the latest AD attack technique
A technical deep dive into the latest AD attack technique.
Pown Apps - Rich applications for the Pown framework
http://ift.tt/2GnUWzP
Submitted January 29, 2018 at 04:48PM by ivanpanchev333
via reddit http://ift.tt/2GsIOxM
http://ift.tt/2GnUWzP
Submitted January 29, 2018 at 04:48PM by ivanpanchev333
via reddit http://ift.tt/2GsIOxM
Websecurify
Pown Apps
Together with Pown.js we are very excited to announce a new pown feature, which allows you to use the tools from the online suite directly from the pown command line.
Bitdefender Free Tools for Windows
http://ift.tt/2rMQFCK
Submitted January 29, 2018 at 05:36PM by tomasstatkus
via reddit http://ift.tt/2GqvsBZ
http://ift.tt/2rMQFCK
Submitted January 29, 2018 at 05:36PM by tomasstatkus
via reddit http://ift.tt/2GqvsBZ
Reviewedbypro
Bitdefender Free Tools for Windows
Bitdefender Antivirus Free Edition. Bitdefender offers its customers lightning-fast free antivirus. Bitdefender Antivirus Free Edition provides users only with the main protection layers that
A new sandbox platform. Beta registration is open, the interface and data looks amazing.
https://twitter.com/SNDBOXCOM/status/955938838555320322
Submitted January 29, 2018 at 05:00PM by ta1s0n
via reddit http://ift.tt/2GrGbwb
https://twitter.com/SNDBOXCOM/status/955938838555320322
Submitted January 29, 2018 at 05:00PM by ta1s0n
via reddit http://ift.tt/2GrGbwb
Twitter
SNDBOX
Our #sndbox dynamic analysis interface #teaser. Also integrated in our novel #ML algorithms. Be ready to #analyze like you never analyzed before. Oh, and its going to be #free for researchers. #dynamicanalysis #sandbox #ml #machinelearning #deeplearning #malware…
Exploiting VyprVPN for macOS
http://ift.tt/2rM4VM9
Submitted January 29, 2018 at 06:29PM by rotlogix_
via reddit http://ift.tt/2DHe6il
http://ift.tt/2rM4VM9
Submitted January 29, 2018 at 06:29PM by rotlogix_
via reddit http://ift.tt/2DHe6il
System Bus Radio: Transmit on AM 1560 from your noisy laptop
http://ift.tt/2GaifND
Submitted January 29, 2018 at 06:51PM by ase1590
via reddit http://ift.tt/2GqB3bo
http://ift.tt/2GaifND
Submitted January 29, 2018 at 06:51PM by ase1590
via reddit http://ift.tt/2GqB3bo
fulldecent.github.io
System Bus Radio
System Bus Radio JS Port: Play AM radio waves from a computer without an AM radio using only your web browser.
Security In 5: Episode 162 - Google Is Recording Your Voice, How To Listen To And Delete IT
http://ift.tt/2rPxmZx
Submitted January 29, 2018 at 07:53PM by BinaryBlog
via reddit http://ift.tt/2Gs3wgX
http://ift.tt/2rPxmZx
Submitted January 29, 2018 at 07:53PM by BinaryBlog
via reddit http://ift.tt/2Gs3wgX
Libsyn
Security In Five Podcast: Episode 162 - Google Is Recording Your Voice, How To Listen To And Delete IT
Were you aware Google is recording your voice from your computers and mobile devices? They are. Did you know you can go into your account, listen to all the creepy recordings of you talking at random times but you can also delete and turn it off. This episode…
Hacking With Go: Packet Crafting and Manipulation in Golang Pt 1
http://ift.tt/2DMh0GS
Submitted January 29, 2018 at 08:22PM by secdevops
via reddit http://ift.tt/2Fs8RUl
http://ift.tt/2DMh0GS
Submitted January 29, 2018 at 08:22PM by secdevops
via reddit http://ift.tt/2Fs8RUl
SecDevOps
Hacking With Go: Packet Crafting and Manipulation in Golang Pt 1
“Hacking With Go: Packet Crafting and Manipulation in Golang Pt 1” is published by Ronald Eddings in SecDevOps
E-commerce application security
http://ift.tt/2DU7MaG
Submitted January 29, 2018 at 08:58PM by cryptozone
via reddit http://ift.tt/2DIG6Co
http://ift.tt/2DU7MaG
Submitted January 29, 2018 at 08:58PM by cryptozone
via reddit http://ift.tt/2DIG6Co
Dutch team infiltrated Russian hacker group, witnessing U.S. election meddling, DNC attack: report
http://ift.tt/2nd4e9f
Submitted January 29, 2018 at 10:16PM by NISMO1968
via reddit http://ift.tt/2Gsx3HF
http://ift.tt/2nd4e9f
Submitted January 29, 2018 at 10:16PM by NISMO1968
via reddit http://ift.tt/2Gsx3HF
NL Times
Dutch team infiltrated Russian hacker group, witnessing U.S. election meddling, DNC attack: report
Two Dutch intelligence services uncovered substantial evidence detailing how a Russian-backed hacking group infiltrated the Barack Obama White House, the U.S. Department of State, and the Democratic National Committee, according to a ground breaking report…
The Current State of Office DDE Attacks
http://ift.tt/2nmtSZa
Submitted January 29, 2018 at 09:51PM by TheBananaStand113
via reddit http://ift.tt/2GtqeFE
http://ift.tt/2nmtSZa
Submitted January 29, 2018 at 09:51PM by TheBananaStand113
via reddit http://ift.tt/2GtqeFE
reddit
The Current State of Office DDE Attacks • r/netsec
4 points and 0 comments so far on reddit
Cisco ASA Remote Code Execution and Denial of Service Critical Vulnerability
http://ift.tt/2njrPWE
Submitted January 29, 2018 at 11:50PM by decode1101
via reddit http://ift.tt/2GsIxdV
http://ift.tt/2njrPWE
Submitted January 29, 2018 at 11:50PM by decode1101
via reddit http://ift.tt/2GsIxdV
Cisco
Cisco Security Threat and Vulnerability Intelligence
The Cisco Security portal provides actionable intelligence for security threats and vulnerabilities in Cisco products and services and third-party products.
Crooks Created 28 Fake Ad Agencies to Disguise Massive Malvertising Campaign
http://ift.tt/2ndJ5MR
Submitted January 30, 2018 at 12:16AM by DJRWolf
via reddit http://ift.tt/2nnpGbr
http://ift.tt/2ndJ5MR
Submitted January 30, 2018 at 12:16AM by DJRWolf
via reddit http://ift.tt/2nnpGbr
BleepingComputer
Crooks Created 28 Fake Ad Agencies to Disguise Massive Malvertising Campaign
A group of cyber-criminals created 28 fake ad agencies and bought over 1 billion ad views in 2017, which they used to deliver malicious ads that redirected unsuspecting users to tech support scams or sneaky pages peddling malware-laden software updates or…
Is this safe ?
Hi guys ! Is there in this subb someone that can guarantee me that this noscript is safe ? It's supposed to activate microsoft office for free, and apparently nobody had a problem with it, but i'm a bit paranoid and don't really want to run malicious .cmd on my computer ahah. Thanks !http://textup.fr/188785Qh
Submitted January 30, 2018 at 01:04AM by Daseikay
via reddit http://ift.tt/2rPVewg
Hi guys ! Is there in this subb someone that can guarantee me that this noscript is safe ? It's supposed to activate microsoft office for free, and apparently nobody had a problem with it, but i'm a bit paranoid and don't really want to run malicious .cmd on my computer ahah. Thanks !http://textup.fr/188785Qh
Submitted January 30, 2018 at 01:04AM by Daseikay
via reddit http://ift.tt/2rPVewg
reddit
Is this safe ? • r/security
Hi guys ! Is there in this subb someone that can guarantee me that this noscript is safe ? It's supposed to activate microsoft office for free, and...
All current Cisco ASA and FTD firewalls supporting AnyConnect clients remotely exploitable, vulnerable to DOS
http://ift.tt/2njrPWE
Submitted January 30, 2018 at 02:48AM by honky_tonka
via reddit http://ift.tt/2nm2BHf
http://ift.tt/2njrPWE
Submitted January 30, 2018 at 02:48AM by honky_tonka
via reddit http://ift.tt/2nm2BHf
Cisco
Cisco Security Threat and Vulnerability Intelligence
The Cisco Security portal provides actionable intelligence for security threats and vulnerabilities in Cisco products and services and third-party products.
Microsoft Pulls Update to Mitigate Against Spectre CVE-2017-5715
http://ift.tt/2BBeKMH
Submitted January 30, 2018 at 02:46AM by cyberscumsec
via reddit http://ift.tt/2nmGRed
http://ift.tt/2BBeKMH
Submitted January 30, 2018 at 02:46AM by cyberscumsec
via reddit http://ift.tt/2nmGRed
Cyberscum
#Microsoft Pulls Update to Mitigate Against #Spectre #CVE-2017-5715 #cybersecurity #hackers #infosec
Please follow and like us: Share
Lenovo Fixes Hardcoded Password Flaw Impacting ThinkPad Fingerprint Scanners
http://ift.tt/2GluFCl
Submitted January 30, 2018 at 02:39AM by volci
via reddit http://ift.tt/2GufpTx
http://ift.tt/2GluFCl
Submitted January 30, 2018 at 02:39AM by volci
via reddit http://ift.tt/2GufpTx
Threatpost | The first stop for security news
Lenovo Fixes Hardcoded Password Flaw Impacting ThinkPad Fingerprint Scanners
Lenovo said nearly a dozen ThinkPad and ThinkCentre laptops contain a hardcoded password flaw.
All current Cisco ASA and FTD firewalls supporting AnyConnect clients remotely exploitable, vulnerable to DOS
http://ift.tt/2njrPWE
Submitted January 30, 2018 at 02:58AM by honky_tonka
via reddit http://ift.tt/2Gqko81
http://ift.tt/2njrPWE
Submitted January 30, 2018 at 02:58AM by honky_tonka
via reddit http://ift.tt/2Gqko81
Cisco
Cisco Security Threat and Vulnerability Intelligence
The Cisco Security portal provides actionable intelligence for security threats and vulnerabilities in Cisco products and services and third-party products.
Does "data-in-transit" only refer to data transferring over a network and not on a laptop?
If data-in-transit only refers to data being transferred over a network - what do you call data actually being physically transferred using, for example, a laptop or USB drive?
Submitted January 30, 2018 at 03:06AM by astillero
via reddit http://ift.tt/2rQwR1l
If data-in-transit only refers to data being transferred over a network - what do you call data actually being physically transferred using, for example, a laptop or USB drive?
Submitted January 30, 2018 at 03:06AM by astillero
via reddit http://ift.tt/2rQwR1l
reddit
Does "data-in-transit" only refer to data... • r/security
If data-in-transit only refers to data being transferred over a network - what do you call data actually being physically transferred using, for...
LKRG - Linux Kernel Runtime Guard
http://ift.tt/2FpdbDR
Submitted January 30, 2018 at 04:19AM by 0xdea
via reddit http://ift.tt/2GsgXh5
http://ift.tt/2FpdbDR
Submitted January 30, 2018 at 04:19AM by 0xdea
via reddit http://ift.tt/2GsgXh5
Openwall
LKRG - Linux Kernel Runtime Guard
Linux kernel runtime integrity checking and exploit detection