Exploiting a barely documented SQL injection in Applications Manager (CVE-2016-9488)
https://ift.tt/2ALPO7P
Submitted November 05, 2018 at 06:28PM by apanonimo
via reddit https://ift.tt/2EZsxn4
https://ift.tt/2ALPO7P
Submitted November 05, 2018 at 06:28PM by apanonimo
via reddit https://ift.tt/2EZsxn4
Tarlogic Security - Cyber Security and Ethical hacking
Red Team Tales 0x02: from SQLi to Domain Admin
One of the activities included in the operation of the Tarlogic Red Team is the search for vulnerabilities in the software used by our clients. Sometimes this activity involves the discovery of 0-days as we have verified in articles previously published in…
DiffAI: A library for provably protecting neural networks against adversarial attacks
https://ift.tt/2umsSrE
Submitted November 05, 2018 at 08:34PM by mmirman
via reddit https://ift.tt/2QlsJOT
https://ift.tt/2umsSrE
Submitted November 05, 2018 at 08:34PM by mmirman
via reddit https://ift.tt/2QlsJOT
GitHub
eth-sri/diffai
A defense against adversarial examples by training neural networks to be provably robust - eth-sri/diffai
Replacing Cloudflare with CSF Firewall (Install Guide)
https://ift.tt/2lMgDlt
Submitted November 05, 2018 at 08:42PM by modelop
via reddit https://ift.tt/2qx0m4J
https://ift.tt/2lMgDlt
Submitted November 05, 2018 at 08:42PM by modelop
via reddit https://ift.tt/2qx0m4J
Linux Systems Analyst | Hayden James
Replacing Cloudflare with CSF Firewall
This guide applies to standalone CSF/LFD install and also cPanel + CSF/LFD install. CSF is a top notch server firewall or Cloudflare alternative.
burp-rest-api v2 released (with many improvements)
https://ift.tt/2SOtm56
Submitted November 05, 2018 at 11:03PM by nibblesec
via reddit https://ift.tt/2AOe3SX
https://ift.tt/2SOtm56
Submitted November 05, 2018 at 11:03PM by nibblesec
via reddit https://ift.tt/2AOe3SX
Doyensec
Introducing burp-rest-api v2 · Doyensec's Blog
Doyensec's Blog :: Doyensec is an independent security research and development company focused on vulnerability discovery and remediation.
Researchers warn of severe SSD hardware encryption vulnerabilities
https://ift.tt/2F1tyuL
Submitted November 06, 2018 at 12:45AM by turtleflax
via reddit https://ift.tt/2zq9iNm
https://ift.tt/2F1tyuL
Submitted November 06, 2018 at 12:45AM by turtleflax
via reddit https://ift.tt/2zq9iNm
Medium
Doh! What My Encrypted Drive Can Be Unlocked By Anyone?
My paper of the week is [link]:
Researchers warn of severe SSD hardware encryption vulnerabilities
https://ift.tt/2F1tyuL
Submitted November 06, 2018 at 12:45AM by turtleflax
via reddit https://ift.tt/2zq9iNm
https://ift.tt/2F1tyuL
Submitted November 06, 2018 at 12:45AM by turtleflax
via reddit https://ift.tt/2zq9iNm
Medium
Doh! What My Encrypted Drive Can Be Unlocked By Anyone?
My paper of the week is [link]:
Perl-Based Shellbot Looks to Target Organizations via C&C
https://ift.tt/2zi8sT4
Submitted November 06, 2018 at 03:54AM by EvanConover
via reddit https://ift.tt/2QrCv24
https://ift.tt/2zi8sT4
Submitted November 06, 2018 at 03:54AM by EvanConover
via reddit https://ift.tt/2QrCv24
Trendmicro
Perl-Based Shellbot Looks to Target Organizations via C&C - TrendLabs Security Intelligence Blog
We uncovered an operation of a hacking group, which we’re naming “Outlaw” (translation derived from the Romanian word haiduc, the hacking tool the group primarily uses), involving the use of an IRC bot built with the help of Perl Shellbot. The group distributes…
Anti-vaccine movement spreading ‘fake news’ online and putting children at risk, England’s top doctor warns
https://ift.tt/2Pax7DV
Submitted November 06, 2018 at 09:48AM by biz_signity
via reddit https://ift.tt/2AO8F2c
https://ift.tt/2Pax7DV
Submitted November 06, 2018 at 09:48AM by biz_signity
via reddit https://ift.tt/2AO8F2c
Yahoo
Anti-vaccine movement spreading ‘fake news’ online and putting children at risk, England’s top doctor warns
England’s most senior doctor has warned that fake news myths pedalled on social media are stoking false fears about vaccinations putting children at risk. Only 87 per cent of children in England have received both doses of the measles, mumps and rubella (MMR)…
Disclosing Multiple Gamasutra Vulnerabilities
https://ift.tt/2Qob3SG
Submitted November 06, 2018 at 09:12PM by QuirkySpiceBush
via reddit https://ift.tt/2PfApp6
https://ift.tt/2Qob3SG
Submitted November 06, 2018 at 09:12PM by QuirkySpiceBush
via reddit https://ift.tt/2PfApp6
Danshumway
Disclosing Multiple Gamasutra Vulnerabilities
After a multi-year responsible disclosure period, I am publicly disclosing 4 different Gamasutra vulnerabilities.
[ANN] [SECURITY] Immediately upgrade commons-fileupload to version 1.3.3 when running Struts 2.3.36 or prior
https://ift.tt/2yUsl3f
Submitted November 06, 2018 at 10:22PM by TheDamnburger
via reddit https://ift.tt/2AR0VMX
https://ift.tt/2yUsl3f
Submitted November 06, 2018 at 10:22PM by TheDamnburger
via reddit https://ift.tt/2AR0VMX
WordPress Design Flaw Leads to WooCommerce RCE
https://ift.tt/2Pgr9Bm
Submitted November 06, 2018 at 10:42PM by rips-hb
via reddit https://ift.tt/2qEkjad
https://ift.tt/2Pgr9Bm
Submitted November 06, 2018 at 10:42PM by rips-hb
via reddit https://ift.tt/2qEkjad
reddit
r/netsec - WordPress Design Flaw Leads to WooCommerce RCE
15 votes and 0 comments so far on Reddit
China Telecom's Internet Traffic (BGP) Misdirection
https://ift.tt/2F2WLpn
Submitted November 06, 2018 at 11:57PM by WildVelociraptor
via reddit https://ift.tt/2F8t3iS
https://ift.tt/2F2WLpn
Submitted November 06, 2018 at 11:57PM by WildVelociraptor
via reddit https://ift.tt/2F8t3iS
Oracle
Oracle Internet Intelligence Blog
Internet outages are a business liability. Monitor global internet connectivity with Oracle's Internet Intelligence Map.
Suricata 4.1 released with SMB and TLS 1.3 support
https://ift.tt/2zzRH5E
Submitted November 07, 2018 at 01:00AM by inliniac
via reddit https://ift.tt/2AQIwjv
https://ift.tt/2zzRH5E
Submitted November 07, 2018 at 01:00AM by inliniac
via reddit https://ift.tt/2AQIwjv
Suricata
Suricata 4.1 released!
After a longer than intended release development cycle, the OISF development team is proud to present Suricata 4.1. Main new features are inclusion of the protocols SMBv1/2/3, NFSv4, Kerberos, FTP,…
Suricata 4.1 released with SMB and TLS 1.3 support
https://ift.tt/2zzRH5E
Submitted November 07, 2018 at 01:00AM by inliniac
via reddit https://ift.tt/2AQIwjv
https://ift.tt/2zzRH5E
Submitted November 07, 2018 at 01:00AM by inliniac
via reddit https://ift.tt/2AQIwjv
Suricata
Suricata 4.1 released!
After a longer than intended release development cycle, the OISF development team is proud to present Suricata 4.1. Main new features are inclusion of the protocols SMBv1/2/3, NFSv4, Kerberos, FTP,…
poshkatz: PowerShell module for Mimikatz
https://ift.tt/2Dq8TPr
Submitted November 07, 2018 at 02:29AM by l33t_d0nut
via reddit https://ift.tt/2DtDwng
https://ift.tt/2Dq8TPr
Submitted November 07, 2018 at 02:29AM by l33t_d0nut
via reddit https://ift.tt/2DtDwng
GitHub
STEALTHbits/poshkatz
PowerShell module for Mimikatz. Contribute to STEALTHbits/poshkatz development by creating an account on GitHub.
Full Disclosure: VirtualBox E1000 Guest-to-Host Escape
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 04:16AM by MorteNoir1
via reddit https://ift.tt/2qvHW4D
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 04:16AM by MorteNoir1
via reddit https://ift.tt/2qvHW4D
GitHub
MorteNoir1/virtualbox_e1000_0day
VirtualBox E1000 Guest-to-Host Escape. Contribute to MorteNoir1/virtualbox_e1000_0day development by creating an account on GitHub.
Walkthrough How We Discovered Running Arbitrary Commands on the ZyXEL NSA325v2
https://www.youtube.com/watch?v=F7O9-OJv6kY
Submitted November 06, 2018 at 08:42PM by goopcat
via reddit https://ift.tt/2Qk6WH3
https://www.youtube.com/watch?v=F7O9-OJv6kY
Submitted November 06, 2018 at 08:42PM by goopcat
via reddit https://ift.tt/2Qk6WH3
YouTube
LIVESTREAM: Walkthrough on Running Arbitrary Commands on the ZyXEL NSA325v2
Follow us on:
https://twitter.com/ISEsecurity
https://twitter.com/iotvillage
Website:
https://www.securityevaluators.com
https://blog.securityevaluators.com
Abstract:
ISE Labs’ continuing research into the security of IoT and embedded devices has uncovered…
https://twitter.com/ISEsecurity
https://twitter.com/iotvillage
Website:
https://www.securityevaluators.com
https://blog.securityevaluators.com
Abstract:
ISE Labs’ continuing research into the security of IoT and embedded devices has uncovered…
ADV180028 | Guidance for configuring BitLocker to enforce software encryption
https://ift.tt/2yUaAB5
Submitted November 07, 2018 at 06:35AM by jdrch
via reddit https://ift.tt/2DoMeTV
https://ift.tt/2yUaAB5
Submitted November 07, 2018 at 06:35AM by jdrch
via reddit https://ift.tt/2DoMeTV
VirtualBox Escape 0-Day
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 07:21AM by GenghisChaim
via reddit https://ift.tt/2qwKcsp
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 07:21AM by GenghisChaim
via reddit https://ift.tt/2qwKcsp
GitHub
MorteNoir1/virtualbox_e1000_0day
VirtualBox E1000 Guest-to-Host Escape. Contribute to MorteNoir1/virtualbox_e1000_0day development by creating an account on GitHub.
PortSmash CPU Side-Channel Attack (Hyper-Threading Vulnerability)
https://ift.tt/2QdOH6r
Submitted November 07, 2018 at 02:57PM by CyberBullets
via reddit https://ift.tt/2yX7JXP
https://ift.tt/2QdOH6r
Submitted November 07, 2018 at 02:57PM by CyberBullets
via reddit https://ift.tt/2yX7JXP
GitHub
bbbrumley/portsmash
Contribute to bbbrumley/portsmash development by creating an account on GitHub.
Zero Day Vulnerability on Virtualbox Allows Code Execution on Host
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 02:22PM by iYassr
via reddit https://ift.tt/2JOEQS8
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 02:22PM by iYassr
via reddit https://ift.tt/2JOEQS8
GitHub
MorteNoir1/virtualbox_e1000_0day
VirtualBox E1000 Guest-to-Host Escape. Contribute to MorteNoir1/virtualbox_e1000_0day development by creating an account on GitHub.