JSgen.py – bind and reverse shell JS code generator for SSJI in Node.js with filter bypass encodings
https://ift.tt/2N5RVYq
Submitted June 28, 2018 at 10:55AM by 0x4ndr3
via reddit https://ift.tt/2tJr63f
https://ift.tt/2N5RVYq
Submitted June 28, 2018 at 10:55AM by 0x4ndr3
via reddit https://ift.tt/2tJr63f
Pentester's life
JSgen.py – bind and reverse shell JS code generator for SSJI in Node.js with filter bypass encodings
I wrote a Python noscript (JSgen.py) to generate javanoscript code to be injected in case you find a Server Side Javanoscript Injection (SSJI). It supports both bind and reverse shells, and also two well…
Overcoming (some) Spectre browser mitigations with PoC (See Comment)
https://ift.tt/2tEeP01
Submitted June 28, 2018 at 12:10PM by TechLord2
via reddit https://ift.tt/2Ms4V9E
https://ift.tt/2tEeP01
Submitted June 28, 2018 at 12:10PM by TechLord2
via reddit https://ift.tt/2Ms4V9E
Alephsecurity
Overcoming (some) Spectre browser mitigations
evilSSDP (tool & technical overview): Abusing SSDP/UPNP on Windows networks to phish inside Windows Explorer. How to spawn spoofed devices on machines across the LAN, tricking users into visiting a phishing page and capturing the NTLM hash.
https://ift.tt/2Iy9GMi
Submitted June 28, 2018 at 04:20AM by initstring
via reddit https://ift.tt/2KiLHXy
https://ift.tt/2Iy9GMi
Submitted June 28, 2018 at 04:20AM by initstring
via reddit https://ift.tt/2KiLHXy
GitLab
InitString / evil-ssdp
Spoof SSDP replies to phish for NTLM hashes on a network. Creates a fake UPNP device, tricking users into visiting a malicious phishing page.
Double-free vulnerability in OpenSLP 2.0.0 (Proof-of-concept exploit available)
https://ift.tt/2IzuOSy
Submitted June 28, 2018 at 02:34PM by magnusstubman
via reddit https://ift.tt/2IzlL3Q
https://ift.tt/2IzuOSy
Submitted June 28, 2018 at 02:34PM by magnusstubman
via reddit https://ift.tt/2IzlL3Q
SSL/TLS for dummies part 3 - Understanding Certificate Authority | WST
https://ift.tt/2KsSTMA
Submitted June 28, 2018 at 02:21PM by silentsniffer
via reddit https://ift.tt/2KuuF7Q
https://ift.tt/2KsSTMA
Submitted June 28, 2018 at 02:21PM by silentsniffer
via reddit https://ift.tt/2KuuF7Q
WST
SSL/TLS for dummies part 3 - Understanding Certificate Authority | WST
What is a Certificate Authority?Digital signature.What if the attacker tampered the certificate?Root CA.Chain of Trust.Browser verify the server certificate
Overcoming (some) Spectre Browser Mitigations (long read)
https://ift.tt/2Mu9XCo
Submitted June 28, 2018 at 05:35PM by ericnyamu
via reddit https://ift.tt/2KvaMum
https://ift.tt/2Mu9XCo
Submitted June 28, 2018 at 05:35PM by ericnyamu
via reddit https://ift.tt/2KvaMum
Using the Office 365 Activities API to Investigate Business Email Compromises
https://ift.tt/2K8tpHC
Submitted June 28, 2018 at 06:47PM by BeanBagKing
via reddit https://ift.tt/2IzzMii
https://ift.tt/2K8tpHC
Submitted June 28, 2018 at 06:47PM by BeanBagKing
via reddit https://ift.tt/2IzzMii
Crowdstrike
Using the Office 365 Activities API to Investigate Business Email Compromises
Learn how CrowdStrike Services used the Office 365 Activities API to investigate Business Email Compromises (BECs) involving cyber fraud and theft.
This popular Facebook app publicly exposed your data for years
https://ift.tt/2KtH2hh
Submitted June 28, 2018 at 07:37PM by albinowax
via reddit https://ift.tt/2KeI0lr
https://ift.tt/2KtH2hh
Submitted June 28, 2018 at 07:37PM by albinowax
via reddit https://ift.tt/2KeI0lr
Medium
This popular Facebook app publicly exposed your data for years
Ever took a personality test on Facebook? For years, anyone could have accessed your private information, friends, posts and photos.
The ultimate honeypot
https://ift.tt/2IA2e3r
Submitted June 28, 2018 at 07:32PM by Captain_Zurich
via reddit https://ift.tt/2KvOBE6
https://ift.tt/2IA2e3r
Submitted June 28, 2018 at 07:32PM by Captain_Zurich
via reddit https://ift.tt/2KvOBE6
Telegraph.co.uk
CIA plot led to huge blast in Siberian gas pipeline
A CIA operation to sabotage Soviet industry by duping Moscow into stealing booby-trapped software was spectacularly successful when it triggered a huge explosion in a Siberian gas pipeline.
Frida Engage: Shellcoding an Arm64 In-Memory Reverse TCP Shell with Frida
https://ift.tt/2lHUGTo
Submitted June 28, 2018 at 08:28PM by marketingversprite
via reddit https://ift.tt/2KopFlp
https://ift.tt/2lHUGTo
Submitted June 28, 2018 at 08:28PM by marketingversprite
via reddit https://ift.tt/2KopFlp
VerSprite | Integrated Security Services and Consulting
Shellcoding an Arm64 In-Memory Reverse TCP Shell with Frida | VerSprite
In part two of the series we are going to explore and leverage Frida's new Arm64Writer API to build an in-memory reverse TCP shell.
Reverse Engineering WebAssembly Applications
https://ift.tt/2MxcLPn
Submitted June 28, 2018 at 07:15PM by CyberBullets
via reddit https://ift.tt/2Ki3YUP
https://ift.tt/2MxcLPn
Submitted June 28, 2018 at 07:15PM by CyberBullets
via reddit https://ift.tt/2Ki3YUP
Forcepoint
Analyzing WebAssembly binaries
We recently published a blog post on security issues and fundamental concepts of WebAssembly (Wasm). As a follow-up, this post will give an introduction to reverse engineering of Wasm applications. Think about a scenario where you come across an unknown Wasm…
CVE-2018-0296 Cisco ASA - Exploited ITW & POC avail
Vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. It is also possible on certain software releases that the ASA will not reload, but an attacker could view sensitive system information without authentication by using directory traversal techniques.Patched June 6th by cisco: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-asaftdCisco says exploits observed ITW. POC available at https://github.com/yassineaboukir/CVE-2018-0296 and elsewhere.
Submitted June 28, 2018 at 08:35AM by thehoodedidiot
via reddit https://ift.tt/2tNbVGn
Vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. It is also possible on certain software releases that the ASA will not reload, but an attacker could view sensitive system information without authentication by using directory traversal techniques.Patched June 6th by cisco: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-asaftdCisco says exploits observed ITW. POC available at https://github.com/yassineaboukir/CVE-2018-0296 and elsewhere.
Submitted June 28, 2018 at 08:35AM by thehoodedidiot
via reddit https://ift.tt/2tNbVGn
Cisco
Cisco Security Advisory: Cisco Adaptive Security Appliance Web Services Denial of Service Vulnerability
A vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. It is also possible on…
RAMPAGE AND GUARDION Vulnerabilities in modern phones enable unauthorized access
https://ift.tt/2lKlzGa
Submitted June 29, 2018 at 02:49PM by thedataking
via reddit https://ift.tt/2yQ6kF3
https://ift.tt/2lKlzGa
Submitted June 29, 2018 at 02:49PM by thedataking
via reddit https://ift.tt/2yQ6kF3
[gentoo-announce] Gentoo Github Organization Compromised
https://ift.tt/2lI9kKo
Submitted June 29, 2018 at 05:58PM by Andrew-CS
via reddit https://ift.tt/2tR28Pu
https://ift.tt/2lI9kKo
Submitted June 29, 2018 at 05:58PM by Andrew-CS
via reddit https://ift.tt/2tR28Pu
archives.gentoo.org
[gentoo-announce] Gentoo Github Organization hacked. - gentoo-announce - Gentoo Mailing List Archives
The Gentoo Mailing List Archives
h1-search: Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
https://ift.tt/2NccIJF
Submitted June 29, 2018 at 08:53PM by s0pas
via reddit https://ift.tt/2KmBwkv
https://ift.tt/2NccIJF
Submitted June 29, 2018 at 08:53PM by s0pas
via reddit https://ift.tt/2KmBwkv
GitHub
dsopas/h1-search
h1-search - Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
Extracting Url's from DOC Macro (trickbot)
https://ift.tt/2IC1D1g
Submitted June 29, 2018 at 09:34PM by ericnyamu
via reddit https://ift.tt/2Ktt7Lj
https://ift.tt/2IC1D1g
Submitted June 29, 2018 at 09:34PM by ericnyamu
via reddit https://ift.tt/2Ktt7Lj
"DoublePulsar" Patched to Work on Windows IoT Systems
https://ift.tt/2yWakEb
Submitted June 29, 2018 at 09:27PM by CaptMeelo
via reddit https://ift.tt/2Kzq9F6
https://ift.tt/2yWakEb
Submitted June 29, 2018 at 09:27PM by CaptMeelo
via reddit https://ift.tt/2Kzq9F6
BleepingComputer
NSA Exploit "DoublePulsar" Patched to Work on Windows IoT Systems
An infosec researcher who uses the online pseudonym of Capt. Meelo has modified an NSA hacking tool known as DoublePulsar to work on the Windows IoT operating system (formerly known as Windows Embedded).
Breaking LTE on Layer Two
https://ift.tt/2Mvqru9
Submitted June 29, 2018 at 10:03PM by zexterio
via reddit https://ift.tt/2tP4u1h
https://ift.tt/2Mvqru9
Submitted June 29, 2018 at 10:03PM by zexterio
via reddit https://ift.tt/2tP4u1h
reddit
r/netsec - Breaking LTE on Layer Two
4 votes and 0 so far on reddit
Every Android device is susceptible to a hardware vulnerability called RAMpage
https://ift.tt/2yWTuVw
Submitted June 30, 2018 at 02:12AM by Goovscoov
via reddit https://ift.tt/2yXAciO
https://ift.tt/2yWTuVw
Submitted June 30, 2018 at 02:12AM by Goovscoov
via reddit https://ift.tt/2yXAciO
xda-developers
Every Android device is susceptible to a hardware vulnerability called RAMpage
Every Android device is susceptible to a hardware vulnerability called RAMpage. You can read all about it here, and how to test your own Android device.
PSA: Avoid the fake Android App Runtime (ARC Welder) extension (with over 32,000 installs!) on the Chrome Web Store, as it injects ads and trackers into every webpage you visit. It is the only one that shows up in search results and the real one appears to be installable, but delisted/"noindex"-ed
https://ift.tt/2MtHH2I
Submitted June 30, 2018 at 03:45AM by Walter_Bishop_PhD
via reddit https://ift.tt/2yV5LJZ
https://ift.tt/2MtHH2I
Submitted June 30, 2018 at 03:45AM by Walter_Bishop_PhD
via reddit https://ift.tt/2yV5LJZ
reddit
r/Android - PSA: Avoid the fake Android App Runtime (ARC Welder) extension (with over 32,000 installs!) on the Chrome Web Store…
114 votes and 2 so far on reddit
Transparent Proxy with squid and iptables.
https://ift.tt/2KzWvzF
Submitted June 30, 2018 at 01:09PM by Kythx
via reddit https://ift.tt/2tSxvt9
https://ift.tt/2KzWvzF
Submitted June 30, 2018 at 01:09PM by Kythx
via reddit https://ift.tt/2tSxvt9
LinuxConfig.net
[Manual] Creating Transparent Proxy With squid and IPTables
For creating transparent proxy we need edit squid.conf and add iptables rules. Edit /etc/squid.conf file with your favorite editor, example vi vi /etc/squid.conf Add or change this lines. http_port…