Rubella Macro Kit: Indicators of Compromise (IOCs)
https://ift.tt/2vSBjyC
Submitted April 28, 2018 at 09:40PM by digicat
via reddit https://ift.tt/2r77i9v
https://ift.tt/2vSBjyC
Submitted April 28, 2018 at 09:40PM by digicat
via reddit https://ift.tt/2r77i9v
A SOCless Detection Team at Netflix
https://ift.tt/2HEWiqo
Submitted April 28, 2018 at 09:21PM by digicat
via reddit https://ift.tt/2jdQNUJ
https://ift.tt/2HEWiqo
Submitted April 28, 2018 at 09:21PM by digicat
via reddit https://ift.tt/2jdQNUJ
Linkedin
A SOCless Detection Team at Netflix
I am excited to share that we are investing in additional detection capabilities as part of the SIRT mission. There are a number of existing detection
Password Protect Factory Reset
Is there a way to password protect factory resetting Windows PCs? Or is there a way to do a lockout so that even after a reset, a password would be needed to access the PC (like locking out a Mac)? If this is possible, how?
Submitted April 28, 2018 at 09:46PM by Averyoffthegrid
via reddit https://ift.tt/2JzGAgx
Is there a way to password protect factory resetting Windows PCs? Or is there a way to do a lockout so that even after a reset, a password would be needed to access the PC (like locking out a Mac)? If this is possible, how?
Submitted April 28, 2018 at 09:46PM by Averyoffthegrid
via reddit https://ift.tt/2JzGAgx
reddit
Password Protect Factory Reset • r/security
Is there a way to password protect factory resetting Windows PCs? Or is there a way to do a lockout so that even after a reset, a password would...
Abusing DCOM For Yet Another Lateral Movement Technique (Bohops)
https://ift.tt/2r6QbEK
Submitted April 28, 2018 at 11:41PM by TechLord2
via reddit https://ift.tt/2JzRnax
https://ift.tt/2r6QbEK
Submitted April 28, 2018 at 11:41PM by TechLord2
via reddit https://ift.tt/2JzRnax
| bohops |
Abusing DCOM For Yet Another Lateral Movement Technique
TL;DR This post discusses an alternate DCOM lateral movement discovery and payload execution method. The primary gist is to locate DCOM registry key/values that point to the path of a binary on th…
The Cloud Shadow Admin Threat: 10 Permissions to Protect (With Open Source Tool SkyArk - See Comment)
https://ift.tt/2HzINrP
Submitted April 29, 2018 at 12:05AM by TechLord2
via reddit https://ift.tt/2HDgYDe
https://ift.tt/2HzINrP
Submitted April 29, 2018 at 12:05AM by TechLord2
via reddit https://ift.tt/2HDgYDe
CyberArk
The Cloud Shadow Admin Threat: 10 Permissions to Protect - CyberArk
Organizations worldwide are moving to the cloud – and that migration is creating the threat of shadow admins. On-premises shadow admin accounts have sensitive privileges and are typically overlooked because they are not members of a privileged Active Directory…
Exploring Branch Target Injection (Google Project Zero PDF Slides)
https://ift.tt/2KmJgiH
Submitted April 28, 2018 at 11:51PM by TechLord2
via reddit https://ift.tt/2r6y8Pe
https://ift.tt/2KmJgiH
Submitted April 28, 2018 at 11:51PM by TechLord2
via reddit https://ift.tt/2r6y8Pe
Google Docs
branch injection infiltrate slides.pdf
NTLM Credentials Theft via PDF Files
https://ift.tt/2KlcEpV
Submitted April 29, 2018 at 12:52AM by TechLord2
via reddit https://ift.tt/2KoZJ6i
https://ift.tt/2KlcEpV
Submitted April 29, 2018 at 12:52AM by TechLord2
via reddit https://ift.tt/2KoZJ6i
Check Point Research
NTLM Credentials Theft via PDF Files - Check Point Research
Just a few days after it was reported that malicious actors can exploit a vulnerability in MS outlook using OLE to steal a Windows user’s NTLM hashes, the Check Point research team can also reveal that NTLM hash leaks can also be achieved via PDF files with…
NTLM Credentials Theft via PDF Files
https://ift.tt/2KlcEpV
Submitted April 29, 2018 at 12:52AM by TechLord2
via reddit https://ift.tt/2KoZJ6i
https://ift.tt/2KlcEpV
Submitted April 29, 2018 at 12:52AM by TechLord2
via reddit https://ift.tt/2KoZJ6i
Check Point Research
NTLM Credentials Theft via PDF Files - Check Point Research
Just a few days after it was reported that malicious actors can exploit a vulnerability in MS outlook using OLE to steal a Windows user’s NTLM hashes, the Check Point research team can also reveal that NTLM hash leaks can also be achieved via PDF files with…
Why You Should Hire Security Guards from SFHSS ?
Safehandsecurity services focuses on provided security services of top-notch quality and maintaining all the standards. We are equipped with a team who are not only well-skilled but are well-experienced as well. Our approach is to keep our clients, their family and their valuable property with great care and we do not hesitate in taking any extra effort for the same. We are full-fledged with the latest techniques and machinery so that not a single point in terms of security is missed.https://www.safehandssecurityservices.com.au/
Submitted April 29, 2018 at 01:29AM by sallarbaloch
via reddit https://ift.tt/2r6Gd5z
Safehandsecurity services focuses on provided security services of top-notch quality and maintaining all the standards. We are equipped with a team who are not only well-skilled but are well-experienced as well. Our approach is to keep our clients, their family and their valuable property with great care and we do not hesitate in taking any extra effort for the same. We are full-fledged with the latest techniques and machinery so that not a single point in terms of security is missed.https://www.safehandssecurityservices.com.au/
Submitted April 29, 2018 at 01:29AM by sallarbaloch
via reddit https://ift.tt/2r6Gd5z
www.safehandssecurityservices.com.au
Security Guards Services & Companies | Hire Security Guard Australia
SFHSS provides professional Security Guards Services in Australia. So now its easy to Hire Security Guards for Private Parties, Corporate Office & Home.
Benefits of Hiring SCH Blinds
https://ift.tt/2KoZCay
Submitted April 28, 2018 at 11:58PM by schblinds
via reddit https://ift.tt/2FpfGp2
https://ift.tt/2KoZCay
Submitted April 28, 2018 at 11:58PM by schblinds
via reddit https://ift.tt/2FpfGp2
SchBlinds
Benefits of Hiring SCH Blinds - SchBlinds
If you are in Adelaide & you think about repairing or installing any sort of door or security device, SCH Blinds is the name that you hear.
Code Published for Triggering a BSOD on Windows Computers -- Even If They're Locked
https://ift.tt/2HAp9jy
Submitted April 29, 2018 at 03:55PM by grepnork
via reddit https://ift.tt/2Hy4hct
https://ift.tt/2HAp9jy
Submitted April 29, 2018 at 03:55PM by grepnork
via reddit https://ift.tt/2Hy4hct
GitHub
mtivadar/windows10_ntfs_crash_dos
windows10_ntfs_crash_dos - PoC for a NTFS crash that I discovered, in various Windows versions
Over the past year, it has become a requirement for HTTPS certificate issuers to honor a new CAA DNS record for limiting issuance
https://blog.qualys.com/ssllabs/2017/03/13/caa-mandated-by-cabrowser-forumhttps://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorizationhttps://cabforum.org/pipermail/public/2017-March/009917.html
Submitted April 29, 2018 at 09:54AM by unquietwiki
via reddit https://ift.tt/2r51xcE
https://blog.qualys.com/ssllabs/2017/03/13/caa-mandated-by-cabrowser-forumhttps://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorizationhttps://cabforum.org/pipermail/public/2017-March/009917.html
Submitted April 29, 2018 at 09:54AM by unquietwiki
via reddit https://ift.tt/2r51xcE
Qualys
CAA Mandated by CA/Browser Forum | Qualys
Certification Authority Authorization (CAA), specified in RFC 6844 in 2013, is a proposal to improve the strength of the PKI ecosystem with a new control to restrict which CAs can issue certificates…
Google Inbox spoofing vulnerability lets attackers fake email recipients
https://ift.tt/2HyQJ0t
Submitted April 29, 2018 at 08:38AM by Sephr
via reddit https://ift.tt/2r6mzY2
https://ift.tt/2HyQJ0t
Submitted April 29, 2018 at 08:38AM by Sephr
via reddit https://ift.tt/2r6mzY2
xda-developers
Google Inbox emails can be spoofed to fake the recipient
A Google Inbox spoofing issue has been discovered which could let an attacker fake the email recipients through a cleverly constructed mailto link.
Write-up of the Mobile Pwn2Own 2017 Android Huawei Mate 9 Pro Chain [PDF]
https://ift.tt/2Hvtkx2
Submitted April 29, 2018 at 07:46AM by cbolat
via reddit https://ift.tt/2jgFhrI
https://ift.tt/2Hvtkx2
Submitted April 29, 2018 at 07:46AM by cbolat
via reddit https://ift.tt/2jgFhrI
Hyperoptic router ‘at risk of being hacked’
https://ift.tt/2KdEW5l
Submitted April 29, 2018 at 07:08PM by Iot_Security
via reddit https://ift.tt/2jjS0u1
https://ift.tt/2KdEW5l
Submitted April 29, 2018 at 07:08PM by Iot_Security
via reddit https://ift.tt/2jjS0u1
Which? News
Hyperoptic router ‘at risk of being hacked’ – Which? News
Up to 400,000 Hyperoptic customers at risk of critical flaw that could give an attacker full control over their home wi-fi network from anywhere in the world.
To hack into IoT devices, all you really need is an orange vest...
https://ift.tt/2Ftlj5E
Submitted April 29, 2018 at 07:50PM by Iot_Security
via reddit https://ift.tt/2Kla7vI
https://ift.tt/2Ftlj5E
Submitted April 29, 2018 at 07:50PM by Iot_Security
via reddit https://ift.tt/2Kla7vI
Amass Subdomain Enumeration Tool Reaches 23 Data Sources
https://ift.tt/2KoiVRl
Submitted April 29, 2018 at 11:34PM by jeff_foley
via reddit https://ift.tt/2FrCvZm
https://ift.tt/2KoiVRl
Submitted April 29, 2018 at 11:34PM by jeff_foley
via reddit https://ift.tt/2FrCvZm
GitHub
caffix/amass
amass - In-depth subdomain enumeration written in Go
RSA 2018 - Buzzword Bingo
https://ift.tt/2w03ufc
Submitted April 30, 2018 at 04:00AM by Iot_Security
via reddit https://ift.tt/2r8KvKv
https://ift.tt/2w03ufc
Submitted April 30, 2018 at 04:00AM by Iot_Security
via reddit https://ift.tt/2r8KvKv
Anitian
RSA 2018 - Buzzword Bingo - Anitian
Buzzwords from the 2018 RSA Conference.
SHA256, a by The Books Implementation
https://ift.tt/2HCuov7
Submitted April 30, 2018 at 06:01AM by Tazebr123
via reddit https://ift.tt/2r9bsgi
https://ift.tt/2HCuov7
Submitted April 30, 2018 at 06:01AM by Tazebr123
via reddit https://ift.tt/2r9bsgi
reddit
SHA256, a by The Books Implementation • r/security
1 points and 0 comments so far on reddit
W7 Security vs W10
Im still using w7, in terms of security, is the upgrade really worthy?Is true that microsoft will stop releasing updates for w7?
Submitted April 30, 2018 at 05:36AM by guardsbank
via reddit https://ift.tt/2KjJasp
Im still using w7, in terms of security, is the upgrade really worthy?Is true that microsoft will stop releasing updates for w7?
Submitted April 30, 2018 at 05:36AM by guardsbank
via reddit https://ift.tt/2KjJasp
reddit
r/security - W7 Security vs W10
1 votes and 0 so far on reddit
Infection Monkey - An Automated Pentest Tool
https://ift.tt/2aLWTXo
Submitted April 30, 2018 at 07:48AM by PeterG45
via reddit https://ift.tt/2HXIRVM
https://ift.tt/2aLWTXo
Submitted April 30, 2018 at 07:48AM by PeterG45
via reddit https://ift.tt/2HXIRVM
GitHub
GitHub - guardicore/monkey: Infection Monkey - An open-source adversary emulation platform
Infection Monkey - An open-source adversary emulation platform - guardicore/monkey