Help understanding these IP addresses
http://ift.tt/2DyWch5
Submitted March 17, 2018 at 09:18PM by thematrix1001
via reddit http://ift.tt/2FYcbKV
http://ift.tt/2DyWch5
Submitted March 17, 2018 at 09:18PM by thematrix1001
via reddit http://ift.tt/2FYcbKV
Abusing Exported Functions and Exposed DCOM Interfaces for Pass-Thru Command Execution and Lateral Movement
http://ift.tt/2tVgqC6
Submitted March 17, 2018 at 09:16PM by digicat
via reddit http://ift.tt/2HHnIeA
http://ift.tt/2tVgqC6
Submitted March 17, 2018 at 09:16PM by digicat
via reddit http://ift.tt/2HHnIeA
| bohops |
Abusing Exported Functions and Exposed DCOM Interfaces for Pass-Thru Command Execution and Lateral Movement
Background Last Wednesday, I had some down time so I decided to hunt around in \System32 to see if I could find anything of potential interest. I located a few DLL files that shared an interesting…
Empire 2.5 was released 3/15. New features, updates, and bug fixes
http://ift.tt/2gkK39z
Submitted March 17, 2018 at 11:20PM by cpeacock15
via reddit http://ift.tt/2G2hEQA
http://ift.tt/2gkK39z
Submitted March 17, 2018 at 11:20PM by cpeacock15
via reddit http://ift.tt/2G2hEQA
GitHub
EmpireProject/Empire
Empire is a PowerShell and Python post-exploitation agent.
Empire - a PowerShell and Python post-exploitation agent [Full Sources, Video DEMOs and Docs - See Comments]
http://ift.tt/2oJReqM
Submitted March 18, 2018 at 12:08AM by TechLord2
via reddit http://ift.tt/2GARqCE
http://ift.tt/2oJReqM
Submitted March 18, 2018 at 12:08AM by TechLord2
via reddit http://ift.tt/2GARqCE
GitHub
EmpireProject/Empire
Empire is a PowerShell and Python post-exploitation agent. - EmpireProject/Empire
Exploiting Eternalblue for shell with Empire & Msfconsole
http://ift.tt/2poO1iq
Submitted March 18, 2018 at 12:01AM by TechLord2
via reddit http://ift.tt/2tSc9PW
http://ift.tt/2poO1iq
Submitted March 18, 2018 at 12:01AM by TechLord2
via reddit http://ift.tt/2tSc9PW
Hacking Tutorials
Exploiting Eternalblue for shell with Empire & Msfconsole - Hacking Tutorials
In this tutorial we will be exploiting a SMB vulnerability using Eternalblue. Eternalblue exploits a remote code execution vulnerability in SMBv1.
Android Frida library to hunt Android Malware [Sources and Videos - See Comment]
http://ift.tt/2tXvOOk
Submitted March 18, 2018 at 12:17AM by TechLord2
via reddit http://ift.tt/2GDHOHp
http://ift.tt/2tXvOOk
Submitted March 18, 2018 at 12:17AM by TechLord2
via reddit http://ift.tt/2GDHOHp
GitHub
brompwnie/uitkyk
uitkyk - Android Frida library to hunt Android Malware
Tool that monitors OS changes after installation
Is there any tool that can monitor the changes that were made to Windows 10 (Registry, services, startup, etc...) and file system by an installer? If not, is there any tool that can compare the OS and file system before the installation and after?I'm installing some shady software (on a VM of course), and I would love to see the changes made by the installer.
Submitted March 18, 2018 at 12:27AM by xorserq
via reddit http://ift.tt/2pksoR3
Is there any tool that can monitor the changes that were made to Windows 10 (Registry, services, startup, etc...) and file system by an installer? If not, is there any tool that can compare the OS and file system before the installation and after?I'm installing some shady software (on a VM of course), and I would love to see the changes made by the installer.
Submitted March 18, 2018 at 12:27AM by xorserq
via reddit http://ift.tt/2pksoR3
reddit
Tool that monitors OS changes after installation • r/security
Is there any tool that can monitor the changes that were made to Windows 10 (Registry, services, startup, etc...) and file system by an installer?...
The security footgun in etcd
http://ift.tt/2FYPLJk
Submitted March 18, 2018 at 03:44AM by flexterra
via reddit http://ift.tt/2DBmT4G
http://ift.tt/2FYPLJk
Submitted March 18, 2018 at 03:44AM by flexterra
via reddit http://ift.tt/2DBmT4G
elweb
The security footgun in etcd
From an application security perspective databases are the most valuable parts of our systems. They store the data that gives value to our apps and companies. This data which has been entrusted to …
RDP hijacking — how to hijack RDS and RemoteApp sessions transparently to move through an organisation
http://ift.tt/2mKMd0v
Submitted March 18, 2018 at 03:21AM by TechLord2
via reddit http://ift.tt/2HHHRRQ
http://ift.tt/2mKMd0v
Submitted March 18, 2018 at 03:21AM by TechLord2
via reddit http://ift.tt/2HHHRRQ
Medium
RDP hijacking — how to hijack RDS and RemoteApp sessions transparently to move through an organisation
How you can very easily use Remote Desktop Services to gain lateral movement through a network, using no external software — and how to…
Which distro for online banking?
I think about to use a live usb with no persistent to do secure online banking. Do anyone preffer this way and which distro can you recommend?
Submitted March 18, 2018 at 03:53AM by akifxy
via reddit http://ift.tt/2DBVTBU
I think about to use a live usb with no persistent to do secure online banking. Do anyone preffer this way and which distro can you recommend?
Submitted March 18, 2018 at 03:53AM by akifxy
via reddit http://ift.tt/2DBVTBU
reddit
Which distro for online banking? • r/security
I think about to use a live usb with no persistent to do secure online banking. Do anyone preffer this way and which distro can you recommend?
If I tell you what IT stuff I like, could you tell me if a job encompasses it? (i'll keep it brief!)
I'm a controls electrician, stuxnet blew my MIND, and i'm fascinated by the security side of things.. but I don't want to be a pentester or 'hacker' or it sec guyI am super experienced at SCADA, from installing thru coding to commissioning, and I'd like to ask - seeing as how SCADA security is done to such a HIGH standard (lol) and is probably going to keep becoming an issue, do you think sec. will have to exist on the SCADA/LAN network (and hardware) itself (eventually)? Or is realistically just going to be a case of protecting the PC front end (which is usually to gateway to the web? With alot of controls/SCADA gear they're jamming webservers into everything, i'm just thinking that as iot becomes bigger and bigger there'll likely still be more and more stuff coming up on a shodanhq search..In short - how will these networks develop? - cos when I started my apprenticeship the networks were MSTP RS-232, but they're all IP (or will be soon).thanks, (hmmm i didn't keep it that brief)
Submitted March 18, 2018 at 03:08AM by Y34rZer0
via reddit http://ift.tt/2GE3HGK
I'm a controls electrician, stuxnet blew my MIND, and i'm fascinated by the security side of things.. but I don't want to be a pentester or 'hacker' or it sec guyI am super experienced at SCADA, from installing thru coding to commissioning, and I'd like to ask - seeing as how SCADA security is done to such a HIGH standard (lol) and is probably going to keep becoming an issue, do you think sec. will have to exist on the SCADA/LAN network (and hardware) itself (eventually)? Or is realistically just going to be a case of protecting the PC front end (which is usually to gateway to the web? With alot of controls/SCADA gear they're jamming webservers into everything, i'm just thinking that as iot becomes bigger and bigger there'll likely still be more and more stuff coming up on a shodanhq search..In short - how will these networks develop? - cos when I started my apprenticeship the networks were MSTP RS-232, but they're all IP (or will be soon).thanks, (hmmm i didn't keep it that brief)
Submitted March 18, 2018 at 03:08AM by Y34rZer0
via reddit http://ift.tt/2GE3HGK
reddit
If I tell you what IT stuff I like, could you tell me... • r/security
- I'm a controls electrician, stuxnet blew my MIND, and i'm fascinated by the security side of things.. but I don't want to be a pentester or...
Hackers are using a Flash flaw in fake document in this new spying campaign
http://ift.tt/2Isf1WG
Submitted March 18, 2018 at 04:10AM by chull2058
via reddit http://ift.tt/2Ity2Il
http://ift.tt/2Isf1WG
Submitted March 18, 2018 at 04:10AM by chull2058
via reddit http://ift.tt/2Ity2Il
ZDNet
Hackers are using a Flash flaw in fake document in this new spying campaign | ZDNet
The payload is delivered via phishing emails about a real defence conference - but nothing happens until the target scrolls down to the third page...
Chrome unmasks your identity to sites you’ve logged out of.
http://ift.tt/2GzE2yM
Submitted March 18, 2018 at 04:06AM by chull2058
via reddit http://ift.tt/2Ity2YR
http://ift.tt/2GzE2yM
Submitted March 18, 2018 at 04:06AM by chull2058
via reddit http://ift.tt/2Ity2YR
Medium
Chrome unmasks your identity to sites you’ve logged out of. Chrome’s known it’s a problem and has done nothing about it.
I logged an Information Leak bug to Chromium.
U.K. Monitored alarm and cctv
Hello. Does anyone know the cost from Banham for this please? I am looking for a fully monitored, hard wired cctv and alarm system, with auto calling to the police. 1 bedroom flat.
Submitted March 18, 2018 at 05:36AM by iainonline
via reddit http://ift.tt/2G2sKVS
Hello. Does anyone know the cost from Banham for this please? I am looking for a fully monitored, hard wired cctv and alarm system, with auto calling to the police. 1 bedroom flat.
Submitted March 18, 2018 at 05:36AM by iainonline
via reddit http://ift.tt/2G2sKVS
reddit
U.K. Monitored alarm and cctv • r/security
Hello. Does anyone know the cost from Banham for this please? I am looking for a fully monitored, hard wired cctv and alarm system, with auto...
Chrome Extension Protects Against JavaScript-Based CPU Side-Channel Attacks
http://ift.tt/2GEFvUH
Submitted March 18, 2018 at 08:03AM by Horus_Sirius
via reddit http://ift.tt/2tWUTsx
http://ift.tt/2GEFvUH
Submitted March 18, 2018 at 08:03AM by Horus_Sirius
via reddit http://ift.tt/2tWUTsx
TSecurity Portal
Chrome Extension Protects Against JavaScript-Based CPU Side-Channel Attacks
10 Ransomware Facts
http://ift.tt/2tY6jMW
Submitted March 18, 2018 at 12:29PM by Iot_Security
via reddit http://ift.tt/2GEMD3o
http://ift.tt/2tY6jMW
Submitted March 18, 2018 at 12:29PM by Iot_Security
via reddit http://ift.tt/2GEMD3o
Maya | Business. Secure
10 Ransomware Facts | Maya | Business. Secure
Noobs here, please share your expertise
Hi guys,So I'm a semi-literature computer wise ( I can install Windows, assemble components into a full computers, troubleshoot common problems by googling), but I'm not a security expert by any mean.I'm usually pretty paranoid about computer security (I don't go to shady websites or just randomly click on fishy links, etc.)I usually have a "safe" computer to do important stuffs like banking, filing tax, etc. The sensitive stuffs. And I have a "fun" computer that I can do crazy shit on (you know what I mean).My question is, if you reinstall fresh Windows, what is the chance that some shit still remain from the previous windows version? And by fresh reinstall, I mean, stick a USB in, boot from USB, use the Disk tool during install, delete the primary partition, make a new partition, format, and then install.Will this method guarantee that I will get a clean, fresh Windows even if let's say the previous version of Windows on that disk is fucked up and full of malwares?Thanks for your opions.
Submitted March 18, 2018 at 11:49AM by grp78
via reddit http://ift.tt/2IAydBJ
Hi guys,So I'm a semi-literature computer wise ( I can install Windows, assemble components into a full computers, troubleshoot common problems by googling), but I'm not a security expert by any mean.I'm usually pretty paranoid about computer security (I don't go to shady websites or just randomly click on fishy links, etc.)I usually have a "safe" computer to do important stuffs like banking, filing tax, etc. The sensitive stuffs. And I have a "fun" computer that I can do crazy shit on (you know what I mean).My question is, if you reinstall fresh Windows, what is the chance that some shit still remain from the previous windows version? And by fresh reinstall, I mean, stick a USB in, boot from USB, use the Disk tool during install, delete the primary partition, make a new partition, format, and then install.Will this method guarantee that I will get a clean, fresh Windows even if let's say the previous version of Windows on that disk is fucked up and full of malwares?Thanks for your opions.
Submitted March 18, 2018 at 11:49AM by grp78
via reddit http://ift.tt/2IAydBJ
reddit
Noobs here, please share your expertise • r/security
Hi guys, So I'm a semi-literature computer wise ( I can install Windows, assemble components into a full computers, troubleshoot common problems...
Uncovering a Bug in Cloudflare's Minification Service
http://ift.tt/2G17tfs
Submitted March 18, 2018 at 07:42PM by veggiedefender
via reddit http://ift.tt/2FJho9T
http://ift.tt/2G17tfs
Submitted March 18, 2018 at 07:42PM by veggiedefender
via reddit http://ift.tt/2FJho9T
Sudo Science
http://ift.tt/2HG5JW0
Submitted March 18, 2018 at 08:57PM by arcoain
via reddit http://ift.tt/2IAQy1p
http://ift.tt/2HG5JW0
Submitted March 18, 2018 at 08:57PM by arcoain
via reddit http://ift.tt/2IAQy1p
rcoh.me
Sudo Science: A brief tour of how Unix enables regular users to gain super (user) powers
Somehow I made it this far without actually understanding how sudo works. For years, I’ve just typed sudo, typed my password, and revelled in my new, magical, root super powers. The other day and I finally looked into it – to be honest, the mechanism is not…
Best free Antivirus for Windows?
Any recommendations and supporting rationale appreciated. Thank you in advance.
Submitted March 18, 2018 at 09:34PM by Vissuto
via reddit http://ift.tt/2FQO4KG
Any recommendations and supporting rationale appreciated. Thank you in advance.
Submitted March 18, 2018 at 09:34PM by Vissuto
via reddit http://ift.tt/2FQO4KG
reddit
Best free Antivirus for Windows? • r/security
Any recommendations and supporting rationale appreciated. Thank you in advance.
Attack vectors in my online security, feedback needed.
I have envisioned this setup that would fit my needs and keep my online accounts safe, and would appreciate if a more knowledgeable security person would revise it and give me feedback:Using a spare phone for 2fa (kept always offline) with recovery phrases written on a typewriter (printers have caches) and keeping them in a safeUsing lastpass for password management with FIDO u2f keyUsing a FIDO u2f key to access my main google account (which is linked to all my relevant online accounts for communication/password retrieval)My main questions with this are:Currently I use my daily phone for 2fa, but due to malware and theft, I consider this to be vulnerable. Am I paranoid, or is using a second phone offline reasonable? Also, one thing that has been bothering me is that many accounts require a telephone number as a second option in case I lose my 2fa authenticator (paypal offers only sms verification). Is it a big security risk to give these services my phone number for account recovery as someone could theoretically social engineer my operator and get a replacement sim card, or is it just paranoia?Would you reccomend any other app (lastpass seemed to have the best UI and supports u2f)? Is using a password management app a possible attack vector ?Would you reccomend using one main google account which is linked to all of my other accounts, with a very strong (30 char) password and a u2f key, or rather use multiple accounts also using u2f? This is more of a convenience issue, whether it is usefull or just a waste of time to have multiple accounts for every major account (banking, paypal, etc.).Some other question regarding general security:I am using norton antivirus on all devices. I have read very good reviews on kaspersky total security, and using norton mobile has been a total pain (significant performance impact). What alternatives would you recommend, It could even be using multiple programs (anitviruses do not catch everything). I have very limited knowledge of detection rates and benefits of using multiple security programs, so more elaboration on this would be helpful.Any help would be greatly appreciated. I know this is a complex post, so thank you to anyone who bothers reading.
Submitted March 18, 2018 at 10:25PM by RiBc_
via reddit http://ift.tt/2DDi7DH
I have envisioned this setup that would fit my needs and keep my online accounts safe, and would appreciate if a more knowledgeable security person would revise it and give me feedback:Using a spare phone for 2fa (kept always offline) with recovery phrases written on a typewriter (printers have caches) and keeping them in a safeUsing lastpass for password management with FIDO u2f keyUsing a FIDO u2f key to access my main google account (which is linked to all my relevant online accounts for communication/password retrieval)My main questions with this are:Currently I use my daily phone for 2fa, but due to malware and theft, I consider this to be vulnerable. Am I paranoid, or is using a second phone offline reasonable? Also, one thing that has been bothering me is that many accounts require a telephone number as a second option in case I lose my 2fa authenticator (paypal offers only sms verification). Is it a big security risk to give these services my phone number for account recovery as someone could theoretically social engineer my operator and get a replacement sim card, or is it just paranoia?Would you reccomend any other app (lastpass seemed to have the best UI and supports u2f)? Is using a password management app a possible attack vector ?Would you reccomend using one main google account which is linked to all of my other accounts, with a very strong (30 char) password and a u2f key, or rather use multiple accounts also using u2f? This is more of a convenience issue, whether it is usefull or just a waste of time to have multiple accounts for every major account (banking, paypal, etc.).Some other question regarding general security:I am using norton antivirus on all devices. I have read very good reviews on kaspersky total security, and using norton mobile has been a total pain (significant performance impact). What alternatives would you recommend, It could even be using multiple programs (anitviruses do not catch everything). I have very limited knowledge of detection rates and benefits of using multiple security programs, so more elaboration on this would be helpful.Any help would be greatly appreciated. I know this is a complex post, so thank you to anyone who bothers reading.
Submitted March 18, 2018 at 10:25PM by RiBc_
via reddit http://ift.tt/2DDi7DH
reddit
Attack vectors in my online security, feedback needed. • r/security
I have envisioned this setup that would fit my needs and keep my online accounts safe, and would appreciate if a more knowledgeable security...