The attack consists in 'guessing' the passwords of some dailymotion accounts by automatically trying a large number of combinations.

In this post I explore the uses and limitations of the “perimeter” metaphor and look at the impact from the growth of OSINT in recent…

Along the years, I've been influenced by many great minds on how to do research. I thought I would paste a few of their advice here.
Disregard.
That advice from Feynman’s Breakthrough, Disregard Others!
was really useful to me as I realized that I HAD to…

Back in March 2018, I embarked on an arguably pointless crusade to prove that the TrustedToAuthForDelegation attribute was meaningless, and that “protocol transition” can be achieved without it. I believed that security wise, once constrained delegation was…

13 votes and 35 comments so far on Reddit

On Friday, January 25, 2019, our honeypots detected opportunistic scanning activity from multiple hosts targeting Cisco Small Business RV320 and RV325 routers. A vulnerability exists in these route…

分享奇虎360公司的技术，与安全的互联网共同成长。

I’ve been doing InfoSec stuff for ~20 years now (warning: time sneaks up on you!) and every 3–5 years I discover a better understanding of…

1 vote and 0 comments so far on Reddit

AZORult attackers continue to adjust tactics to increase the chances that they’ll evade detection. This malware is a common information stealer, capable of exfiltrating a wide range of sensitive artifacts from an endpoint, including files, cached passwords…

This post on AWS role enumeration demonstrations a new IAM vulnerability in Amazon Web Services. Attackers can use account roles in larger cloud attacks.

Local Exploitation of WCF Services within ZoneAlarm Anti-Virus Software to Escalate Privileges General Overview Illumant has discovered a critical vulnerability in Check Point’s ZoneAlarm anti-virus software. This vulnerability allows a low-privileged user…

Security expert Fabian Wosar shares his advice on saying safe from this year's biggest threats – and what to do if you fall victim.

Many users with older versions of Android are prime targets with less hardend security. We will briefly look at the attack surface of an Android device.

Techniques I used when starting a startup and keeping my job as a day trader

It happens to all testers eventually. You come across a file share hosting dozens of database backups. Giddiness ensues as you realize you have full read access and can copy any of them down to your dropbox, until you notice the database backups are tens…

A significant bug has been discovered in FaceTime and is currently spreading virally over social media. The bug lets you call anyone with FaceTime, and immediately hear the audio coming from their …

Earlier today, we open-source ee-outliers, our in-house developed framework to detect outliers in events stored in Elasticsearch. This blog post is the first of several in which we want to dive a b…

Thread by @3lbios: "So I wanted to encrypt some files. Thought about using 7z+password. Stackexchange folks said "Didn't review it but it sho I did. After a few mins I noticed they use 8byte "random" IV. Yes, h […]" #7zip #encryption #facepalm #randomness

In most organisations using Active Directory and Exchange, Exchange servers have such high privileges that being an Administrator on an Exchange server is enough to escalate to Domain Admin. Recently I came across a blog from the ZDI, in which they detail…

Semi-automatic OSINT framework and package manager - kpcyrd/sn0int