Three Byte Overwrite to Exploit Vulnserver TRUN
http://bit.ly/2U47z9n
Submitted January 20, 2019 at 07:33AM by doylersec
via reddit http://bit.ly/2FNAx9p
http://bit.ly/2U47z9n
Submitted January 20, 2019 at 07:33AM by doylersec
via reddit http://bit.ly/2FNAx9p
doyler.net
Three Byte Overwrite to Exploit Vulnserver TRUN | doyler.net
For my vulnserver TRUN exploit, I decided to use a three byte overwrite to jump to EAX. Three Byte Overwrite (Vulnserver TRUN) - Introduction As I mentioned in my earlier post, I am going through vulnserver for OSCE/binary exploitation practice. … Continue…
Digital Safety: Using security keys to secure accounts against phishing
http://bit.ly/2MfDota
Submitted January 20, 2019 at 09:34AM by Privatrics
via reddit http://bit.ly/2FC3ENI
http://bit.ly/2MfDota
Submitted January 20, 2019 at 09:34AM by Privatrics
via reddit http://bit.ly/2FC3ENI
cpj.org
Digital Safety: Using security keys to secure accounts against phishing
Hackers are using more sophisticated methods to target journalists, including those who use two-step authentication (2FA)....
0xgalz/Virtuailor - IDAPython tool for creating automatic C++ virtual tables in IDA Pro
http://bit.ly/2HomjOG
Submitted January 20, 2019 at 05:21PM by GelosSnake
via reddit http://bit.ly/2FDh2RR
http://bit.ly/2HomjOG
Submitted January 20, 2019 at 05:21PM by GelosSnake
via reddit http://bit.ly/2FDh2RR
GitHub
0xgalz/Virtuailor
IDAPython tool for creating automatic C++ virtual tables in IDA Pro - 0xgalz/Virtuailor
GitHub - fs0c131y/CVE-2018-20555: Social Network Tabs Wordpress Plugin Vulnerability - Leaks tokens
http://bit.ly/2Mlp2HB
Submitted January 20, 2019 at 05:41PM by thms00
via reddit http://bit.ly/2szz0fB
http://bit.ly/2Mlp2HB
Submitted January 20, 2019 at 05:41PM by thms00
via reddit http://bit.ly/2szz0fB
GitHub
fs0c131y/CVE-2018-20555
Social Network Tabs Wordpress Plugin Vulnerability - CVE-2018-20555 - fs0c131y/CVE-2018-20555
Wizard labs - Dummy write-up by 0xRick
http://bit.ly/2CApHR1
Submitted January 20, 2019 at 10:38PM by Ahm3d_H3sham
via reddit http://bit.ly/2szMQi3
http://bit.ly/2CApHR1
Submitted January 20, 2019 at 10:38PM by Ahm3d_H3sham
via reddit http://bit.ly/2szMQi3
0xRick Owned Root !
Wizard Labs - Dummy
Quick Summary Hey guys this is my write-up about Dummy from Wizard Labs. If you don’t know them , They are a new penetration testing lab, They have 16 boxes so far and Dummy is their first box to retire. This lab is nice I definitely recommend checking it…
xioc: Extract IOCs from text, including "escaped" ones.
http://bit.ly/2sDAi9k
Submitted January 21, 2019 at 01:00AM by assafmo
via reddit http://bit.ly/2RCRsTf
http://bit.ly/2sDAi9k
Submitted January 21, 2019 at 01:00AM by assafmo
via reddit http://bit.ly/2RCRsTf
GitHub
assafmo/xioc
Extract IOCs from text, including "escaped" ones. Contribute to assafmo/xioc development by creating an account on GitHub.
Abusing firewall rules for a root shell on OpenWRT-based devices.
http://bit.ly/2U7xrkv
Submitted January 21, 2019 at 05:04PM by AVERAGE_TEST_DUMMY
via reddit http://bit.ly/2T5wVng
http://bit.ly/2U7xrkv
Submitted January 21, 2019 at 05:04PM by AVERAGE_TEST_DUMMY
via reddit http://bit.ly/2T5wVng
neonsea.uk
Unsafe firewall includes allowing for remote code execution on Inteno's IOPSYS devices
In Inteno’s IOPSYS devices, and very possibly other devices running firewall3 (which is included by default on most OpenWRT-based firmwares), it is possible ...
BlackEnergy Analysis
http://bit.ly/2ATXfcI
Submitted January 21, 2019 at 05:29PM by m_edmondson
via reddit http://bit.ly/2T7Q5ZM
http://bit.ly/2ATXfcI
Submitted January 21, 2019 at 05:29PM by m_edmondson
via reddit http://bit.ly/2T7Q5ZM
Marcus Edmondson | Malware Analysis | Security Analytics
Black Energy – Analysis
So today I wanted to do a blog post on Black Energy. The sample I will be working with was sourced from hybrid analysis here: This particular piece of malware was used to target the networks used t…
Profiling Jodel users with image (meta)data
http://bit.ly/2DqmTHT
Submitted January 21, 2019 at 06:30PM by h43z
via reddit http://bit.ly/2CDANVE
http://bit.ly/2DqmTHT
Submitted January 21, 2019 at 06:30PM by h43z
via reddit http://bit.ly/2CDANVE
reddit
r/netsec - Profiling Jodel users with image (meta)data
2 votes and 0 comments so far on Reddit
PowerShell Downloader - Emotet
http://bit.ly/2WaBHBZ
Submitted January 21, 2019 at 07:48PM by m_edmondson
via reddit http://bit.ly/2R4pQl5
http://bit.ly/2WaBHBZ
Submitted January 21, 2019 at 07:48PM by m_edmondson
via reddit http://bit.ly/2R4pQl5
Marcus Edmondson | Malware Analysis | Security Analytics
PowerShell Downloader – Emotet
Today I wanted to do a real quick post on a PowerShell downloader linked to Emotet. Here is a little background on what Emotet is according to Malwarebytes: Emotet is a Trojan that is primarily spr…
Unpatched Apache use after free bug infos / ASAN stack traces
http://bit.ly/2FF0EAb
Submitted January 21, 2019 at 09:09PM by KernelJay
via reddit http://bit.ly/2FE42eJ
http://bit.ly/2FF0EAb
Submitted January 21, 2019 at 09:09PM by KernelJay
via reddit http://bit.ly/2FE42eJ
GitHub
hannob/apache-uaf
Apache use after free bug infos / ASAN stack traces - hannob/apache-uaf
Packet Editing Live Connections with Python
http://bit.ly/2RHxiYB
Submitted January 22, 2019 at 08:56AM by netsecfriends
via reddit http://bit.ly/2FRRq2T
http://bit.ly/2RHxiYB
Submitted January 22, 2019 at 08:56AM by netsecfriends
via reddit http://bit.ly/2FRRq2T
Medium
Packet Editing Live Connections with Python
When I was a kid I played a lot of a game called Runescape. For those of you unaware, this is a Massive Multiplayer Online Roleplaying…
Abusing Exchange: One API call away from Domain Admin
http://bit.ly/2DqEhMH
Submitted January 22, 2019 at 01:00PM by dirkjanm
via reddit http://bit.ly/2UbE2L7
http://bit.ly/2DqEhMH
Submitted January 22, 2019 at 01:00PM by dirkjanm
via reddit http://bit.ly/2UbE2L7
dirkjanm.io
Abusing Exchange: One API call away from Domain Admin
In most organisations using Active Directory and Exchange, Exchange servers have such high privileges that being an Administrator on an Exchange server is enough to escalate to Domain Admin. Recently I came across a blog from the ZDI, in which they detail…
Evilginx 2.3.0 "Phisherman's Dream" Update - 2FA bypassing reverse proxy phishing framework (Tool)
http://bit.ly/2HnuKKl
Submitted January 22, 2019 at 04:11PM by kgretzky
via reddit http://bit.ly/2DrosoT
http://bit.ly/2HnuKKl
Submitted January 22, 2019 at 04:11PM by kgretzky
via reddit http://bit.ly/2DrosoT
reddit
r/netsec - Evilginx 2.3.0 "Phisherman's Dream" Update - 2FA bypassing reverse proxy phishing framework (Tool)
1 vote and 0 comments so far on Reddit
One... Two... Three Micropatches For Three Windows 0days
http://bit.ly/2WcxflV
Submitted January 22, 2019 at 05:32PM by dielel
via reddit http://bit.ly/2RGLTDC
http://bit.ly/2WcxflV
Submitted January 22, 2019 at 05:32PM by dielel
via reddit http://bit.ly/2RGLTDC
0Patch
One... Two... Three Micropatches For Three Windows 0days
A Short Micropatching Trilogy by Mitja Kolsek, the 0patch Team While we're busy ironing out the wrinkles before 0patch finally exits i...
ANALYSIS OF THE AMCACHE - by Blanche Lagny - ANSSI (CERT-FR)
http://bit.ly/2MpJTtr
Submitted January 22, 2019 at 07:59PM by spread_awareness
via reddit http://bit.ly/2RJvZIC
http://bit.ly/2MpJTtr
Submitted January 22, 2019 at 07:59PM by spread_awareness
via reddit http://bit.ly/2RJvZIC
SSRF’s up! Real World Server-Side Request Forgery
http://bit.ly/2MpvmxU
Submitted January 22, 2019 at 08:25PM by vonpecker
via reddit http://bit.ly/2U7CDVB
http://bit.ly/2MpvmxU
Submitted January 22, 2019 at 08:25PM by vonpecker
via reddit http://bit.ly/2U7CDVB
Shorebreak Security, Inc
SSRF’s up! Real World Server-Side Request Forgery (SSRF)
In this blog post we’re going to explain what an SSRF attack is, how to test for it, and some basic guidelines on how to fix it
Rooting Nagios Via Outdated Libraries
http://bit.ly/2DrzDy4
Submitted January 22, 2019 at 08:10PM by chicksdigthelongrun
via reddit http://bit.ly/2U6T6ti
http://bit.ly/2DrzDy4
Submitted January 22, 2019 at 08:10PM by chicksdigthelongrun
via reddit http://bit.ly/2U6T6ti
Medium
Rooting Nagios Via Outdated Libraries
Nagios XI vulnerable since 2012
winPortPush - A PowerShell Utility for Pivoting into Internal Networks via a Compromised Windows Host
http://bit.ly/2AV8RfK
Submitted January 22, 2019 at 09:17PM by kindredsec
via reddit http://bit.ly/2T85XLF
http://bit.ly/2AV8RfK
Submitted January 22, 2019 at 09:17PM by kindredsec
via reddit http://bit.ly/2T85XLF
GitHub
itsKindred/winPortPush
A simple PowerShell utility used for pivoting into internal networks via a compromised Windows host. - itsKindred/winPortPush
checking keepass against PwnedPasswords
http://bit.ly/2Mpbfjp
Submitted January 22, 2019 at 11:35PM by skewlboy
via reddit http://bit.ly/2sFKrlO
http://bit.ly/2Mpbfjp
Submitted January 22, 2019 at 11:35PM by skewlboy
via reddit http://bit.ly/2sFKrlO
GitHub
fopina/kdbxpasswordpwned
Check keepass passwords against https://haveibeenpwned.com/Passwords - fopina/kdbxpasswordpwned
Atlantic Security Conference (AtlSecCon) Call for Papers
EVENT DATEThe Atlantic Security Conference (AtlSecCon) will take place April 24th & 25th, 2019 at the Halifax Convention Centre in Halifax, Nova Scotia, Canada.ABOUT USAtlSecCon, is the first non-profit security conference in Atlantic Canada focusing on bringing some of the world’s brightest and darkest minds together with one common goal – to expand the pool of IT Security knowledge beyond its typical confines.The conference runs for two days and features a diverse selection of presentations prepared by experienced professionals. Multiple presentation tracks are available. Three open for vendor neutral and one track to talk about your next-gen, HD 1080p 4k, 2nd edition, advanced APT product/service.AtlSecCon provides an unmatched opportunity for anyone from Students and IT Professionals, to Managers and C-level folks to collaborate with their peers and learn from the leading industry experts.We look for speakers that are true security professionals, with a depth of understanding on topics that matter and want to teach others.SPEAKER PERKSAll speakers will be given free admission to the 2 day conference, access to the VIP lounge and admission to the speaker’s dinner and after party.SELECTION INFORMATIONThe AtlSecCon board of directors carefully selects talks based on interest and value it may bring to the community. Not sure about your talk? Only one way to find out!Successful speakers will be notified via email as papers are received and selected. Get your papers in soon!October 1st, 2018 – CFP openDecember 31st, 2018 – CFP round 1 complete, speaker announcements madeJanuary 1st, 2019 – CFP round 2 startsFebruary 28th, 2019 – CFP closed, final speaker announcements madeApril 24th & 25th – AtlSecCon 2019!More Info and Submit: https://atlseccon.com/cfp
Submitted January 21, 2019 at 09:53PM by AtlSecCon
via reddit http://bit.ly/2Tds03P
EVENT DATEThe Atlantic Security Conference (AtlSecCon) will take place April 24th & 25th, 2019 at the Halifax Convention Centre in Halifax, Nova Scotia, Canada.ABOUT USAtlSecCon, is the first non-profit security conference in Atlantic Canada focusing on bringing some of the world’s brightest and darkest minds together with one common goal – to expand the pool of IT Security knowledge beyond its typical confines.The conference runs for two days and features a diverse selection of presentations prepared by experienced professionals. Multiple presentation tracks are available. Three open for vendor neutral and one track to talk about your next-gen, HD 1080p 4k, 2nd edition, advanced APT product/service.AtlSecCon provides an unmatched opportunity for anyone from Students and IT Professionals, to Managers and C-level folks to collaborate with their peers and learn from the leading industry experts.We look for speakers that are true security professionals, with a depth of understanding on topics that matter and want to teach others.SPEAKER PERKSAll speakers will be given free admission to the 2 day conference, access to the VIP lounge and admission to the speaker’s dinner and after party.SELECTION INFORMATIONThe AtlSecCon board of directors carefully selects talks based on interest and value it may bring to the community. Not sure about your talk? Only one way to find out!Successful speakers will be notified via email as papers are received and selected. Get your papers in soon!October 1st, 2018 – CFP openDecember 31st, 2018 – CFP round 1 complete, speaker announcements madeJanuary 1st, 2019 – CFP round 2 startsFebruary 28th, 2019 – CFP closed, final speaker announcements madeApril 24th & 25th – AtlSecCon 2019!More Info and Submit: https://atlseccon.com/cfp
Submitted January 21, 2019 at 09:53PM by AtlSecCon
via reddit http://bit.ly/2Tds03P
Halifaxconventioncentre
Halifax Convention Centre
We’re here to make your planning and event experience seamless and straightforward.