Citrix Systems Breached 'for 10 Years by Iran,' Claims Unknown Infosec Firm - Security Boulevard
https://ift.tt/2NXWiFI
Submitted March 12, 2019 at 06:01PM by ilamont
via reddit https://ift.tt/2VUO3Nh
https://ift.tt/2NXWiFI
Submitted March 12, 2019 at 06:01PM by ilamont
via reddit https://ift.tt/2VUO3Nh
Security Boulevard
Citrix Systems Breached 'for 10 Years by Iran,' Claims Unknown Infosec Firm - Security Boulevard
Citrix Systems’ networks were infested with hackers, who stole terabytes of data. So says a security service provider who nobody’s heard of.
BountyHQ - Pre-compiled Bug Bounty Recon Datasets
https://ift.tt/2Ut4sbD
Submitted March 12, 2019 at 05:41PM by _pdp_
via reddit https://ift.tt/2UtyEmN
https://ift.tt/2Ut4sbD
Submitted March 12, 2019 at 05:41PM by _pdp_
via reddit https://ift.tt/2UtyEmN
reddit
r/netsec - BountyHQ - Pre-compiled Bug Bounty Recon Datasets
0 votes and 0 comments so far on Reddit
Blind Cross-Site noscripting to RCE in Cerberus FTP version 9 and 10
https://ift.tt/2Cr0mtN
Submitted March 12, 2019 at 05:36PM by ggisz
via reddit https://ift.tt/2Cjg226
https://ift.tt/2Cr0mtN
Submitted March 12, 2019 at 05:36PM by ggisz
via reddit https://ift.tt/2Cjg226
Security Uncut
Blind Cross-Site noscripting to RCE in Cerberus FTP version 9 and 10
Penetration Testing Active Directory, Part II
https://ift.tt/2Hg0srU
Submitted March 12, 2019 at 06:44PM by Hausec
via reddit https://ift.tt/2Ht8cWX
https://ift.tt/2Hg0srU
Submitted March 12, 2019 at 06:44PM by Hausec
via reddit https://ift.tt/2Ht8cWX
root@Hausec
Penetration Testing Active Directory, Part II
In the previous article, I obtained credentials to the domain three different ways. For most of this part of the series, I will use the rsmith user credentials, as they are low-level, forcing us to…
Orc - post-exploitation tool for Linux (written in Bash)
https://ift.tt/2O08p53
Submitted March 12, 2019 at 07:52PM by zipcloak
via reddit https://ift.tt/2F7IJRi
https://ift.tt/2O08p53
Submitted March 12, 2019 at 07:52PM by zipcloak
via reddit https://ift.tt/2F7IJRi
GitHub
zMarch/Orc
Orc is a post-exploitation framework for Linux written in Bash - zMarch/Orc
Exploiting CVE-2018-1335: command injection in Apache Tika
https://ift.tt/2XXdkIu
Submitted March 12, 2019 at 08:40PM by hackers_and_builders
via reddit https://ift.tt/2EZ7G03
https://ift.tt/2XXdkIu
Submitted March 12, 2019 at 08:40PM by hackers_and_builders
via reddit https://ift.tt/2EZ7G03
Rhino Security Labs
Exploiting CVE-2018-1335: Command Injection in Apache Tika
A walk-through of steps taken to go from an undisclosed CVE for a command injection vulnerability in the Apache tika-server to a complete exploit.
Sneaking into Blackhat 2018
https://ift.tt/2J9aPj0
Submitted March 12, 2019 at 10:00PM by ret2got
via reddit https://ift.tt/2u3GS9S
https://ift.tt/2J9aPj0
Submitted March 12, 2019 at 10:00PM by ret2got
via reddit https://ift.tt/2u3GS9S
Analyzing of CoinHive.JS
https://ift.tt/2u4VKF2
Submitted March 12, 2019 at 10:53PM by SwordSec
via reddit https://ift.tt/2VOWee0
https://ift.tt/2u4VKF2
Submitted March 12, 2019 at 10:53PM by SwordSec
via reddit https://ift.tt/2VOWee0
SwordSec
Analyzing Coinhive.JS - SwordSec
We’ve heard that the coinhive site will be closed and we analyzed 3.1 billion web sites and found sites that host CoinHive malware. We focused on javanoscript files that contain ‘coinhive’ in HTML headers. These websites were cached by some sources in December…
New Ursnif Trojan popping back up stealing cryptocurrency + email ...with Bebloh as a dropper!
https://ift.tt/2HgiVoa
Submitted March 12, 2019 at 10:43PM by hackerxbella
via reddit https://ift.tt/2VWusg2
https://ift.tt/2HgiVoa
Submitted March 12, 2019 at 10:43PM by hackerxbella
via reddit https://ift.tt/2VWusg2
Cybereason
New Ursnif Variant Comes with Enhanced Information Stealing Features
The Cybereason research team observed a new campaign involving Ursnif in the beginning of 2019 attacking users in Japan across multiple customer environments. This Ursnif variant has enhanced stealing modules focused on taking data from mail clients and email…
RFC 8555: Automatic Certificate Management Environment (ACME)
https://ift.tt/2UtdHIO
Submitted March 13, 2019 at 05:31AM by throw0101a
via reddit https://ift.tt/2TKgjVr
https://ift.tt/2UtdHIO
Submitted March 13, 2019 at 05:31AM by throw0101a
via reddit https://ift.tt/2TKgjVr
reddit
r/sysadmin - RFC 8555: Automatic Certificate Management Environment (ACME)
0 votes and 1 comment so far on Reddit
N Ways to Unpack Mobile Malware
https://ift.tt/2J8EGbt
Submitted March 13, 2019 at 01:33PM by wtfse
via reddit https://ift.tt/2u5tGRG
https://ift.tt/2J8EGbt
Submitted March 13, 2019 at 01:33PM by wtfse
via reddit https://ift.tt/2u5tGRG
Pentest Blog
N Ways to Unpack Mobile Malware
This article will briefly explain methods behind the mobile malware unpacking. It will be focusing on Anubis since it is the latest trending malware for almost a year now. Actors use dropper applications as their primary method of distribution. Droppers find…
DLL Hijacking with Ghidra - Practical Examples
https://ift.tt/2u7ZrJO
Submitted March 13, 2019 at 03:34PM by _creosote
via reddit https://ift.tt/2F9xVlJ
https://ift.tt/2u7ZrJO
Submitted March 13, 2019 at 03:34PM by _creosote
via reddit https://ift.tt/2F9xVlJ
reddit
r/netsec - DLL Hijacking with Ghidra - Practical Examples
0 votes and 0 comments so far on Reddit
CVE-2019-0539 Microsoft Edge Chakra Exploitation: Achieving memory full R\W primitive
https://ift.tt/2TyeYRy
Submitted March 13, 2019 at 07:07PM by v0yAgEr
via reddit https://ift.tt/2HAJOT8
https://ift.tt/2TyeYRy
Submitted March 13, 2019 at 07:07PM by v0yAgEr
via reddit https://ift.tt/2HAJOT8
Perception Point
CVE-2019-0539 Exploitation | Perception Point
Achieving full R\W primitive with CVE-2019-0539
WordPress 5.1 CSRF to RCE
https://ift.tt/2T7NkH6
Submitted March 13, 2019 at 07:25PM by albinowax
via reddit https://ift.tt/2Uv7a0h
https://ift.tt/2T7NkH6
Submitted March 13, 2019 at 07:25PM by albinowax
via reddit https://ift.tt/2Uv7a0h
reddit
r/netsec - WordPress 5.1 CSRF to RCE
0 votes and 1 comment so far on Reddit
Smartphones, il est temps d'adopter une approche holistique de la sécurité
https://ift.tt/2HvjsSH
Submitted March 13, 2019 at 08:14PM by KeyDutch
via reddit https://ift.tt/2VWcKsT
https://ift.tt/2HvjsSH
Submitted March 13, 2019 at 08:14PM by KeyDutch
via reddit https://ift.tt/2VWcKsT
Linkedin
Smartphones, il est temps d'adopter une approche holistique de la sécurité
#FSoS (False Sens of Security). L'exemple du déverrouillage d’un Galaxy S10 au moyen d’une simple photo de son détenteur est utile pour démontrer que la "sécurité", dans les faits, c'est la prise en compte de tout un ensemble de nuances.
A Saga of Code Executions on Zimbra
https://ift.tt/2Hw5VdF
Submitted March 13, 2019 at 09:18PM by albinowax
via reddit https://ift.tt/2J8izlq
https://ift.tt/2Hw5VdF
Submitted March 13, 2019 at 09:18PM by albinowax
via reddit https://ift.tt/2J8izlq
Tint0
A Saga of Code Executions on Zimbra
Zimbra is well known for its signature email product, Zimbra Collaboration Suite. Putting client-side vulnerabilities aside, Zimbra seems to...
Millions of Binaries Later: a Look Into Linux Hardening in the Wild
https://ift.tt/2TjSVhv
Submitted March 13, 2019 at 09:08PM by eberkut
via reddit https://ift.tt/2XW2ItJ
https://ift.tt/2TjSVhv
Submitted March 13, 2019 at 09:08PM by eberkut
via reddit https://ift.tt/2XW2ItJ
Capsule8
Millions of Binaries Later: a Look Into Linux Hardening in the Wild • Capsule8
TL;DR In this post, we explore the adoption of Linux hardening schemes across five popular distributions by examining their out-of-the-box properties. For each distribution, we analyzed its default kernel configuration, … Read of "Millions of Binaries Later:…
Docker container for creating the phishing sites using Blackeye
https://ift.tt/2HuE5OY
Submitted March 14, 2019 at 12:20AM by vishnudxb
via reddit https://ift.tt/2Hjdllc
https://ift.tt/2HuE5OY
Submitted March 14, 2019 at 12:20AM by vishnudxb
via reddit https://ift.tt/2Hjdllc
GitHub
vishnudxb/docker-blackeye
Docker container for creating the phishing sites using Blackeye - vishnudxb/docker-blackeye
Extracting BitLocker keys from a TPM
https://ift.tt/2Uz4U8n
Submitted March 14, 2019 at 04:04AM by fuckup1337
via reddit https://ift.tt/2F8xS9z
https://ift.tt/2Uz4U8n
Submitted March 14, 2019 at 04:04AM by fuckup1337
via reddit https://ift.tt/2F8xS9z
reddit
r/netsec - Extracting BitLocker keys from a TPM
0 votes and 1 comment so far on Reddit
Amazon CloudWatch suspicious behavior 2019
https://ift.tt/2Falsye
Submitted March 14, 2019 at 01:43PM by gorblefork
via reddit https://ift.tt/2THEiVz
https://ift.tt/2Falsye
Submitted March 14, 2019 at 01:43PM by gorblefork
via reddit https://ift.tt/2THEiVz
reddit
r/aws - Amazon CloudWatch suspicious behavior 2019
0 votes and 3 comments so far on Reddit
More than 300 plugins could be used to exploit Wordpress Phar injection
https://ift.tt/2Jbwpna
Submitted March 14, 2019 at 02:27PM by shin2903
via reddit https://ift.tt/2O58d4u
https://ift.tt/2Jbwpna
Submitted March 14, 2019 at 02:27PM by shin2903
via reddit https://ift.tt/2O58d4u
CyStack Security Blog
Further attack surface of Wordpress PHAR injection
SummaryIn August 2018, Sam Thomas presented a new vulnerability of Wordpress at Black Hat USA 2018. The PHP object injection vulnerability is not new, but the way attacker can trigger this error is worth mentioning. In this article, I will go over the detail…