Incident response at your fingertips with Microsoft Defender ATP live response
http://bit.ly/2HuUrH2
Submitted May 21, 2019 at 12:30PM by digicat
via reddit http://bit.ly/2YGqDgi
http://bit.ly/2HuUrH2
Submitted May 21, 2019 at 12:30PM by digicat
via reddit http://bit.ly/2YGqDgi
TECHCOMMUNITY.MICROSOFT.COM
Incident response at your fingertips with Microsoft Defender ATP live response
Conducting a thorough forensic investigation of compromised machines is integral to incident response. However, it can be a challenging task because it requires the device to be in the corporate network and for additional software to be deployed, or for SecOps…
Linux privilege escalation via LXD & relayed UNIX socket credentials
http://bit.ly/2w7D4FF
Submitted May 21, 2019 at 04:20PM by initstring
via reddit http://bit.ly/2LVqwf8
http://bit.ly/2w7D4FF
Submitted May 21, 2019 at 04:20PM by initstring
via reddit http://bit.ly/2LVqwf8
Shenanigans Labs
Linux Privilege Escalation via LXD & Hijacked UNIX Socket Credentials
Linux systems running LXD are vulnerable to privilege escalation via multiple attack paths, two of which are published in my “lxd_root” GitHub repository. This blog will go into the details of what I think is a very interesting path - abusing relayed UNIX…
Network detection rule for CVE-2019-0708 in RDP tested with #Suricata
http://bit.ly/2M0jK85
Submitted May 21, 2019 at 03:46PM by digicat
via reddit http://bit.ly/2WgaLDy
http://bit.ly/2M0jK85
Submitted May 21, 2019 at 03:46PM by digicat
via reddit http://bit.ly/2WgaLDy
GitHub
nccgroup/Cyber-Defence
Information released publicly by NCC Group's Cyber Defence team - nccgroup/Cyber-Defence
A Curious Case of Malwarebytes - Malware
http://bit.ly/2QblHwG
Submitted May 21, 2019 at 06:02PM by Evil1337
via reddit http://bit.ly/2WbOSFx
http://bit.ly/2QblHwG
Submitted May 21, 2019 at 06:02PM by Evil1337
via reddit http://bit.ly/2WbOSFx
0x00sec - The Home of the Hacker
A Curious Case of Malwarebytes
Introduction Recently, I installed Malwarebytes on my machine. I played around with it for a little and I noticed that something was off with the scanning of files on disk. Naturally, it tempted me into digging further to identify the root cause but I had…
The Most Expensive Lesson Of My Life: Details of SIM port hack
http://bit.ly/2VWUVP2
Submitted May 21, 2019 at 06:15PM by hakluke
via reddit http://bit.ly/2LVoGL9
http://bit.ly/2VWUVP2
Submitted May 21, 2019 at 06:15PM by hakluke
via reddit http://bit.ly/2LVoGL9
Medium
The Most Expensive Lesson Of My Life: Details of SIM port hack
I lost north of $100,000 last Wednesday. It evaporated over a 24 hour timespan in a “SIM port attack” that drained my Coinbase account.
Even more secret Telegrams
http://bit.ly/2WVvaLp
Submitted May 21, 2019 at 08:21PM by atomlib_com
via reddit http://bit.ly/2WUB536
http://bit.ly/2WVvaLp
Submitted May 21, 2019 at 08:21PM by atomlib_com
via reddit http://bit.ly/2WUB536
Habr
Even more secret Telegrams
We used to think of Telegram as a reliable and secure transmission medium for messages of any sort. But under the hood, it has a rather common combination of a-...
DDOSing a firewall for a few dollars a month
http://bit.ly/2WftBup
Submitted May 21, 2019 at 10:09PM by le-quack
via reddit http://bit.ly/2Ma7GAW
http://bit.ly/2WftBup
Submitted May 21, 2019 at 10:09PM by le-quack
via reddit http://bit.ly/2Ma7GAW
Secjuice Infosec Writers Guild
Shooting Rubber Bands At Firewalls
How to defend against this denial of service attack which can be used to deactivate firewalls from a number of vendors, for less than five dollars.
Pymetasploit3: Automate Metasploit with Python3
http://bit.ly/2VQ0YVk
Submitted May 21, 2019 at 09:54PM by coalfirelabs
via reddit http://bit.ly/2M9xIVk
http://bit.ly/2VQ0YVk
Submitted May 21, 2019 at 09:54PM by coalfirelabs
via reddit http://bit.ly/2M9xIVk
Coalfire.com
pymetasploit3 – Metasploit Automation Library
Have a checklist of tasks you perform every penetration test, such as SSH bruteforcing or port mapping? Automate it with Python and Metasploit! Unfortunately, there hasn’t been a working, full-featured Python library for making these tasks easy for many years…
The Tier of Threat Actors - Cheatsheet
http://bit.ly/2Wh7qnK
Submitted May 21, 2019 at 10:58PM by oakeye
via reddit http://bit.ly/2LYUTS3
http://bit.ly/2Wh7qnK
Submitted May 21, 2019 at 10:58PM by oakeye
via reddit http://bit.ly/2LYUTS3
IT BlogR
The Tier of Threat Actors - Cheatsheet | IT BlogR
python-iocextract: Advanced Indicator of Compromise (IOC) extractor
http://bit.ly/2VTozo7
Submitted May 21, 2019 at 09:37PM by amusciano
via reddit http://bit.ly/2VVxNjG
http://bit.ly/2VTozo7
Submitted May 21, 2019 at 09:37PM by amusciano
via reddit http://bit.ly/2VVxNjG
GitHub
InQuest/python-iocextract
Advanced Indicator of Compromise (IOC) extractor. Contribute to InQuest/python-iocextract development by creating an account on GitHub.
On February 1 2020, DNS servers that don’t support DNS both over UDP and TCP may stop working
http://bit.ly/2EqaPq9
Submitted May 22, 2019 at 12:13AM by atomlib_com
via reddit http://bit.ly/2X0cpGG
http://bit.ly/2EqaPq9
Submitted May 22, 2019 at 12:13AM by atomlib_com
via reddit http://bit.ly/2X0cpGG
Habr
What is gonna happen on February 1, 2020?
TL;DR: starting February 2020, DNS servers that don’t support DNS both over UDP and TCP may stop working. Bangkok, in general, is a strange place to stay. Of c...
XSS without parentheses and semi-colons
http://bit.ly/2VCt8Di
Submitted May 20, 2019 at 07:34PM by albinowax
via reddit http://bit.ly/2M1piPz
http://bit.ly/2VCt8Di
Submitted May 20, 2019 at 07:34PM by albinowax
via reddit http://bit.ly/2M1piPz
portswigger.net
XSS without parentheses and semi-colons | Blog
A few years ago I discovered a technique to call functions in JavaScript without parentheses using onerror and the throw statement. It works by setting the onerror handler to the function you want to
AWS Security Incident Response Guide
http://bit.ly/2HOSALQ
Submitted May 22, 2019 at 12:48AM by digicat
via reddit http://bit.ly/2VHGRDY
http://bit.ly/2HOSALQ
Submitted May 22, 2019 at 12:48AM by digicat
via reddit http://bit.ly/2VHGRDY
The U.S. Navy "attacked" the U.S. Air Force with a "Splunk Tool"
http://bit.ly/30wSilD
Submitted May 22, 2019 at 02:01AM by tacobelldog52
via reddit http://bit.ly/2MeM9rd
http://bit.ly/30wSilD
Submitted May 22, 2019 at 02:01AM by tacobelldog52
via reddit http://bit.ly/2MeM9rd
Military Times
Why the Air Force is investigating a cyber attack from the Navy
The Air Force has reportedly seized an attorney's computer and phone as part of an investigation into whether the Navy improperly spied on defense attorneys.
Secure and Scalable Secrets Management in the Cloud
http://bit.ly/2WfVvGF
Submitted May 22, 2019 at 02:32AM by myover
via reddit http://bit.ly/2M0I4Xa
http://bit.ly/2WfVvGF
Submitted May 22, 2019 at 02:32AM by myover
via reddit http://bit.ly/2M0I4Xa
Praetorian
Secure and Scalable Secrets Management in the Cloud for DevOps
Regardless of industry, size, or tech stack, modern organizations rely on secrets to operate their infrastructure. Increasingly, DevOps teams elect to build or migrate their infrastructure with the cloud. All too often, secure and scalable secret management…
UXSS in Safari
http://bit.ly/2HvKBoc
Submitted May 22, 2019 at 01:03PM by i_bo0om
via reddit http://bit.ly/2EmzL1W
http://bit.ly/2HvKBoc
Submitted May 22, 2019 at 01:03PM by i_bo0om
via reddit http://bit.ly/2EmzL1W
Speaker Deck
2000day in Safari
Unauthenticated CVE-2019-0708 (RDP RCE) scanner PoC
http://bit.ly/2EprIRK
Submitted May 22, 2019 at 12:41PM by Fugitif
via reddit http://bit.ly/2Eo7FU2
http://bit.ly/2EprIRK
Submitted May 22, 2019 at 12:41PM by Fugitif
via reddit http://bit.ly/2Eo7FU2
GitHub
zerosum0x0/CVE-2019-0708
Scanner PoC for CVE-2019-0708 RDP RCE vuln. Contribute to zerosum0x0/CVE-2019-0708 development by creating an account on GitHub.
Online dating: best sites and how to avoid dating scams
http://bit.ly/2VW5Nwe
Submitted May 22, 2019 at 02:19PM by MoneyShoulder
via reddit http://bit.ly/2HLXNUL
http://bit.ly/2VW5Nwe
Submitted May 22, 2019 at 02:19PM by MoneyShoulder
via reddit http://bit.ly/2HLXNUL
Medium
Online dating: best sites and how to avoid dating scams
Online dating is a common thing now, it is hard to find people to date and online dating apps makes it easier to do so and it is more…
[Squally] - New Mini-Game to Teach x86/x64 Registers, Pointers, Segfaults, Addressing
http://bit.ly/2vEochC
Submitted May 22, 2019 at 03:26PM by Aecial
via reddit http://bit.ly/30EJKJ8
http://bit.ly/2vEochC
Submitted May 22, 2019 at 03:26PM by Aecial
via reddit http://bit.ly/30EJKJ8
reddit
[Squally] - New Mini-Game to Teach x86/x64 Registers, Pointers,...
Posted in r/programming by u/Aecial • 2,404 points and 73 comments
Possible Windows 10 Zero Day LPE PoC Code Released
http://bit.ly/2LZsviA
Submitted May 22, 2019 at 05:54PM by da7rutrak
via reddit http://bit.ly/2WXMO15
http://bit.ly/2LZsviA
Submitted May 22, 2019 at 05:54PM by da7rutrak
via reddit http://bit.ly/2WXMO15
GitHub
SandboxEscaper/polarbearrepo
Contribute to SandboxEscaper/polarbearrepo development by creating an account on GitHub.
My first professional article: "Static Code Analysis — A Personal Research Story"
http://bit.ly/2EqW06E
Submitted May 22, 2019 at 07:34PM by mjalt96
via reddit http://bit.ly/2WmLIP6
http://bit.ly/2EqW06E
Submitted May 22, 2019 at 07:34PM by mjalt96
via reddit http://bit.ly/2WmLIP6
Medium
Static Code Analysis — A Personal Research Story
Whether you have never heard of this before, you don’t know enough about it, or you already know but care to hear different perspectives…