Some fun with a miner
https://ift.tt/2GBSXH5
Submitted May 21, 2018 at 04:17PM by tiger6700
via reddit https://ift.tt/2IAbzgz
https://ift.tt/2GBSXH5
Submitted May 21, 2018 at 04:17PM by tiger6700
via reddit https://ift.tt/2IAbzgz
Fumik0
Some fun with a miner
A few weeks ago I came across a malware that gave me some interests to dig more into it. It has a curious way to deploy itself, set up a miner on the machine and hide it behind some legit processes…
Kerberoasting, exploiting unpatched systems – a day in the life of a Red Teamer
https://ift.tt/2IzPPgM
Submitted May 21, 2018 at 05:34PM by sandmaxprime
via reddit https://ift.tt/2KHliyl
https://ift.tt/2IzPPgM
Submitted May 21, 2018 at 05:34PM by sandmaxprime
via reddit https://ift.tt/2KHliyl
Checkmate
Kerberoasting, exploiting unpatched systems – a day in the life of a Red Teamer - Checkmate
The Scope Recently, we conducted a red team assessment for a large enterprise client where the scenarios allowed were to either use the hardened laptop of the client or to [more]
GitBucket RCE explanation, weak 4 digit secret token
https://ift.tt/2wYw9BF
Submitted May 21, 2018 at 05:28PM by kszurek
via reddit https://ift.tt/2LfK8X0
https://ift.tt/2wYw9BF
Submitted May 21, 2018 at 05:28PM by kszurek
via reddit https://ift.tt/2LfK8X0
Security In 5: Episode 242 - Net Neutrality Is Not Quite Dead
https://ift.tt/2x2Asfy
Submitted May 21, 2018 at 06:34PM by BinaryBlog
via reddit https://ift.tt/2IBVZRu
https://ift.tt/2x2Asfy
Submitted May 21, 2018 at 06:34PM by BinaryBlog
via reddit https://ift.tt/2IBVZRu
Libsyn
Security In Five Podcast: Episode 242 - Net Neutrality Is Not Quite Dead
Last year the government voted to remove 'Net Neutrality' which forced Internet providers to treat all Internet traffic equally, they couldn't speed up one service and slow down another. Recently the Senate voted to bring it back. This episode goes into what…
Student snags $36k Google bounty for RCE vulnerability
https://ift.tt/2x1IuoU
Submitted May 21, 2018 at 07:38PM by albinowax
via reddit https://ift.tt/2IUOsNc
https://ift.tt/2x1IuoU
Submitted May 21, 2018 at 07:38PM by albinowax
via reddit https://ift.tt/2IUOsNc
The Daily Swig | Web security digest
Student snags $36k Google bounty for RCE vulnerability
Top-tier payout for Google App Engine flaw that enabled access to hidden APIs.
DrayTek Router Zero-Day Under Attack
https://ift.tt/2k70WTN
Submitted May 21, 2018 at 07:18PM by Iot_Security
via reddit https://ift.tt/2IyHlKR
https://ift.tt/2k70WTN
Submitted May 21, 2018 at 07:18PM by Iot_Security
via reddit https://ift.tt/2IyHlKR
BleepingComputer
DrayTek Router Zero-Day Under Attack
DrayTek, a Taiwan-based manufacturer of broadband CPE (Customer Premises Equipment) such as routers, switches, firewalls, and VPN devices, announced today that hackers are exploiting a zero-day vulnerability to change DNS settings on some of its routers.
Nebula Level00: A Newbie's Approach - MOVEAX.ME
https://ift.tt/2GFCi5G
Submitted May 21, 2018 at 08:30PM by moveaxme
via reddit https://ift.tt/2GCKbsd
https://ift.tt/2GFCi5G
Submitted May 21, 2018 at 08:30PM by moveaxme
via reddit https://ift.tt/2GCKbsd
MOVEAX.ME
Nebula Level00: A Newbie's Approach - MOVEAX.ME
This challenge marks the beginning of a new series of exercises, Nebula. Level00 will make you discover a SUID program in order to get the flag and complete the challenge. It's a very naive challenge, but still, something new for me.
.bip Ransomware unable to boot in safemode
Hey guys! Not sure if I am allowed to post this here or not, but here goes.So my Windows Server was recently hit with this ransomware, iv been researching and there's apparently no decryption yet out there for this ransomware. I "Quarantined" it but all the files are obviously still encrypted. Its got everything, along with other admin users as well.I tried booting it up in safemode but can't as its saying "BOOTMGR is missing"... im guessing cause its encrypted the Windows OS as well?Before I tried to boot into safemode I used RKill to see that the hosts file was edited, however i was going to edit it back in safemode...well that was the plan anyway.Is there anything left for me to do? Is there anything I can do? Anything/any ideas would be appreciated! Thanks <3
Submitted May 21, 2018 at 09:42PM by RockiRider
via reddit https://ift.tt/2rYUwu9
Hey guys! Not sure if I am allowed to post this here or not, but here goes.So my Windows Server was recently hit with this ransomware, iv been researching and there's apparently no decryption yet out there for this ransomware. I "Quarantined" it but all the files are obviously still encrypted. Its got everything, along with other admin users as well.I tried booting it up in safemode but can't as its saying "BOOTMGR is missing"... im guessing cause its encrypted the Windows OS as well?Before I tried to boot into safemode I used RKill to see that the hosts file was edited, however i was going to edit it back in safemode...well that was the plan anyway.Is there anything left for me to do? Is there anything I can do? Anything/any ideas would be appreciated! Thanks <3
Submitted May 21, 2018 at 09:42PM by RockiRider
via reddit https://ift.tt/2rYUwu9
reddit
r/security - .bip Ransomware unable to boot in safemode
1 votes and 0 so far on reddit
A Docker environment to securely render images, videos, sounds and more
I am working on a project to open videos, images, pdf in a Docker container. The goal is to be protected from potentially harmful files at execution. The Docker container connects to your X11 display to render the media. https://github.com/lapwat/secure-open
Submitted May 21, 2018 at 09:41PM by KeNt178
via reddit https://ift.tt/2GDf2VG
I am working on a project to open videos, images, pdf in a Docker container. The goal is to be protected from potentially harmful files at execution. The Docker container connects to your X11 display to render the media. https://github.com/lapwat/secure-open
Submitted May 21, 2018 at 09:41PM by KeNt178
via reddit https://ift.tt/2GDf2VG
GitHub
lapwat/secure-open
secure-open - A virtual docker environment to securely open images, videos, sounds and more.
Breaking namespace isolation with PF_RING (pre v7.0.0)
https://ift.tt/2ICsGKz
Submitted May 21, 2018 at 10:21PM by Gallus
via reddit https://ift.tt/2ICrLOg
https://ift.tt/2ICsGKz
Submitted May 21, 2018 at 10:21PM by Gallus
via reddit https://ift.tt/2ICrLOg
reddit
r/netsec - Breaking namespace isolation with PF_RING (pre v7.0.0)
3 votes and 0 so far on reddit
Is it possible that a USB reader/writer (which I want to use to run DBAN) get infected with a malware after I connect it to a PC that had a lot of malwares? Thanks.
No text found
Submitted May 21, 2018 at 11:59PM by aymanbt
via reddit https://ift.tt/2GD4Qg2
No text found
Submitted May 21, 2018 at 11:59PM by aymanbt
via reddit https://ift.tt/2GD4Qg2
reddit
r/security - Is it possible that a USB reader/writer (which I want to use to run DBAN) get infected with a malware after I connect…
1 votes and 0 so far on reddit
Web fingerprinting tool that scans a target based on the files a git repository and compares cryptographic hashes of each file per revision to that of a live server
https://ift.tt/2KGEoEG
Submitted May 21, 2018 at 11:41PM by nauseate
via reddit https://ift.tt/2wYKXAp
https://ift.tt/2KGEoEG
Submitted May 21, 2018 at 11:41PM by nauseate
via reddit https://ift.tt/2wYKXAp
GitHub
Paradoxis/Git-Fingerprint
Git-Fingerprint - Git Fingerprint is a web fingerprinting tool that attempts to scan a target based on the files a git repository by enumerating over all files ever found in the public web root and...
$36k Google App Engine RCE
https://ift.tt/2s2ZCWz
Submitted May 22, 2018 at 12:17AM by speckz
via reddit https://ift.tt/2IZQvPV
https://ift.tt/2s2ZCWz
Submitted May 22, 2018 at 12:17AM by speckz
via reddit https://ift.tt/2IZQvPV
Google
$36k Google App Engine RCE - Ezequiel Pereira
Testing
What is your recommended pentesting / hacking distro for pendrive?
No text found
Submitted May 22, 2018 at 12:15AM by AwayGate
via reddit https://ift.tt/2x02vMJ
No text found
Submitted May 22, 2018 at 12:15AM by AwayGate
via reddit https://ift.tt/2x02vMJ
reddit
r/security - What is your recommended pentesting / hacking distro for pendrive?
1 votes and 2 so far on reddit
Shining a Light on OAuth Abuse with PwnAuth (Article,wiki and Full Sources)
https://ift.tt/2s0bZ4M
Submitted May 22, 2018 at 12:20AM by PeterG45
via reddit https://ift.tt/2keDDHP
https://ift.tt/2s0bZ4M
Submitted May 22, 2018 at 12:20AM by PeterG45
via reddit https://ift.tt/2keDDHP
FireEye
Shining a Light on OAuth Abuse with PwnAuth « Shining a Light on OAuth Abuse with PwnAuth
PwnAuth is a web application framework that makes it easier for organizations to test their ability to detect and respond to OAuth abuse campaigns.
[META] Thoughts on a rule saying articles submitted must be recent?
I've noticed a lot of articles posted recently that are at least a few years old, and not really relevant anymore. Does anyone else think the quality of the sub would go up if we had a rule restricting it so that articles must be posted within x amount of time of their publishing?
Submitted May 22, 2018 at 01:46AM by Bioman312
via reddit https://ift.tt/2IEn7zh
I've noticed a lot of articles posted recently that are at least a few years old, and not really relevant anymore. Does anyone else think the quality of the sub would go up if we had a rule restricting it so that articles must be posted within x amount of time of their publishing?
Submitted May 22, 2018 at 01:46AM by Bioman312
via reddit https://ift.tt/2IEn7zh
reddit
[META] Thoughts on a rule saying articles submitted... • r/security
I've noticed a lot of articles posted recently that are at least a few years old, and not really relevant anymore. Does anyone else think the...
Kernel Side-Channel Attack using Speculative Store Bypass (CVE-2018-3639)
https://ift.tt/2KIZrXj
Submitted May 22, 2018 at 03:08AM by CodeBlock
via reddit https://ift.tt/2Ixq0lo
https://ift.tt/2KIZrXj
Submitted May 22, 2018 at 03:08AM by CodeBlock
via reddit https://ift.tt/2Ixq0lo
reddit
r/netsec - Kernel Side-Channel Attack using Speculative Store Bypass (CVE-2018-3639)
1 votes and 0 so far on reddit
Speculative Store Bypass explained: what it is, how it works
https://ift.tt/2Li5Aut
Submitted May 22, 2018 at 03:22AM by stephstad
via reddit https://ift.tt/2IASwmf
https://ift.tt/2Li5Aut
Submitted May 22, 2018 at 03:22AM by stephstad
via reddit https://ift.tt/2IASwmf
Redhat
Speculative Store Bypass explained: what it is, how it works
New Spectre vulnerabilities officially disclosed by Intel
https://ift.tt/2ApdRGr
Submitted May 22, 2018 at 04:28AM by Neo-Bubba
via reddit https://ift.tt/2rZwaAC
https://ift.tt/2ApdRGr
Submitted May 22, 2018 at 04:28AM by Neo-Bubba
via reddit https://ift.tt/2rZwaAC
Intel
Side Channel Methods – Analysis, News and Updates
Get the facts, news, and updates on the current side channel attack issue (Spectre and Meltdown) and steps to protect your systems and information.
AMD “Speculative Store Bypass” Vulnerability Mitigations
https://ift.tt/2IBtjnB
Submitted May 22, 2018 at 04:17AM by Hobophilia
via reddit https://ift.tt/2rXuhnM
https://ift.tt/2IBtjnB
Submitted May 22, 2018 at 04:17AM by Hobophilia
via reddit https://ift.tt/2rXuhnM
INTEL-SA-00115: Speculative Store Bypass
https://ift.tt/2IGDxmY
Submitted May 22, 2018 at 03:22AM by CodeBlock
via reddit https://ift.tt/2IZqfFp
https://ift.tt/2IGDxmY
Submitted May 22, 2018 at 03:22AM by CodeBlock
via reddit https://ift.tt/2IZqfFp
reddit
INTEL-SA-00115: Speculative Store Bypass • r/security
2 points and 0 comments so far on reddit