Telegram Web Link
bootg.com
»
United States
»
Information Security
» Telegram Web
Information Security
https://cyllective.com/blog/post/plone-authenticated-rce-cve-2021-32633/
Cyllective
cyllective AG - Plone Authenticated RCE (CVE-2021-32633)
Join the journey into Plone CMS that lead us to discover an authenticated RCE vulnerability
Information Security
https://www.zerodayinitiative.com/blog/2021/6/1/cve-2021-31181-microsoft-sharepoint-webpart-interpretation-conflict-remote-code-execution-vulnerability
Zero Day Initiative
Zero Day Initiative — CVE-2021-31181: Microsoft SharePoint WebPart Interpretation Conflict Remote Code Execution Vulnerability
In May of 2021, Microsoft released a patch to correct CVE-2021-31181 – a remote code execution bug in the supported versions of Microsoft SharePoint Server. This bug was reported to the ZDI program by an anonymous researcher and is also known as ZDI-21…
Information Security
https://blog.liquidsec.net/2021/06/01/asp-net-cryptography-for-pentesters/
Paul Mueller (@paulmmueller)
ASP.NET Cryptography for Pentesters
If you are coming back, and just here for the cheatsheet, you can find that here. If it’s your first time, hopefully you’ll read through the whole thing. Note: For my own sanity, I have inten…
Information Security
https://gitlab.com/dee-see/notkeyhacks
GitLab
dee-see / notkeyhacks · GitLab
Information Security
https://labs.detectify.com/2021/06/08/what-is-a-prototype-pollution-vulnerability-and-how-does-page-fetch-help/
Labs Detectify
What is a Prototype Pollution vulnerability and how does page-fetch help? - Labs Detectify
Prototype Pollution is a problem affecting JavaScript applications, and now you can use Detectify's page-fetch tool to find it in the wild.
Information Security
https://gccybermonks.com/posts/popups/
Information Security
https://blog.oversecured.com/Two-weeks-of-securing-Samsung-devices-Part-1/
News, Techniques & Guides
Two weeks of securing Samsung devices: Part 1
After spending two weeks looking for security bugs in the pre-installed apps on Samsung devices, we were able to find multiple dangerous vulnerabilities.
Information Security
https://thezerohack.com/apple-vulnerability-bug-bounty
The Zero Hack
How I Found A Vulnerability To Hack iCloud Accounts and How Apple Reacted To It - The Zero Hack
This article is about how I found a vulnerability on Apple forgot password endpoint that allowed me to takeover an iCloud account. The vulnerability is completely patched by Apple security team and it no longer works. Apple Security Team rewarded me $18,000…
Information Security
https://blog.xpnsec.com/debugging-into-net/
XPN InfoSec Blog
@_xpn_ - Debugging into .NET
.NET for post-exploitation is here to stay. It has been bundled with most C2 frameworks, common tools have been ported, AMSI has been added (then bypassed) and new and clever ways have been found to launch unmanaged code. The process of loading a .NET assembly…
Information Security
https://labs.detectify.com/2021/06/28/aem-crx-bypass-0day-control-over-some-enterprise-aem-crx-package-manager/
Labs Detectify
Undocumented authentication bypass issue in AEM Package Manager [Blog updated] - Labs Detectify
Detectify Crowdsource ethical hackers found an undocumented authentication bypass in Adobe Experience Manager. Comments from Adobe added.
Information Security
https://pentestbook.six2dez.com/enumeration/cloud
Six2Dez
Cloud | Pentest Book
Information Security
https://bugs.chromium.org/p/apvi/issues/detail?id=50
Information Security
https://twitter.com/Black2Fan/status/1414946087278977028?s=20
Twitter
Sergey Bobrov
PayPal CSP Bypass <script type="application/x-component" data-component=paypal-checkout> alert(document.domain) </script> <script src="//www.paypalobjects.com/api/checkout.4.0.75.js"> </script>
Information Security
https://blog.ryotak.me/post/cdnjs-remote-code-execution-en/
blog.ryotak.net
Remote code execution in cdnjs of Cloudflare
Preface
(日本語版も公開されています。)
Cloudflare, which runs cdnjs, is running a “Vulnerability Disclosure Program” on HackerOne, which allows hackers to perform vulnerability assessments.
This article describes vulnerabilities reported through this program and published…
Information Security
https://www.checkmarx.com/blog/cve-2021-31800-how-we-used-impacket-to-hack-itself/
Checkmarx
CVE-2021-31800: How We Used Impacket to Hack Itself
After investigating Impacket, the Checkmarx Security Research Team discovered a Path Traversal vulnerability, which could allow an attacker to write malicious files to any path on the target and achieve Remote Code Execution (RCE).
Information Security
https://github.com/HuskyHacks/ShadowSteal
GitHub
GitHub - HuskyHacks/ShadowSteal: Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation
Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation - HuskyHacks/ShadowSteal
Information Security
https://github.com/boku7/HOLLOW
GitHub
GitHub - boku7/HOLLOW: EarlyBird process hollowing technique (BOF) - Spawns a process in a suspended state, inject shellcode, hijack…
EarlyBird process hollowing technique (BOF) - Spawns a process in a suspended state, inject shellcode, hijack main thread with APC, and execute shellcode - boku7/HOLLOW
Information Security
https://twitter.com/NCCGroupInfosec/status/1415645377542475784?s=20
Twitter
NCC Group Research & Technology
Blog: CVE-2021-31956 - Exploiting the Windows Kernel via NTFS with WNF – Part 1 by @alexjplaskett - research.nccgroup.com/2021/07/15/cve…
Information Security
https://hausec.com/2020/10/30/using-a-c-shellcode-runner-and-confuserex-to-bypass-uac-while-evading-av/amp/?__twitter_impression=true
hausec
Using a C# Shellcode Runner and ConfuserEx to Bypass UAC
I was recently on an engagement where we phished in and ran into UAC which gave me more trouble than I expected. When a user logs onto Windows, a logon session is created and the credentials are ti…
Information Security
https://f3real.github.io/ghost_dll_injection.html
f3real.github.io
Ghost dll injections - EnSec blog
Example of simple dll injection
2024/10/01 12:21:51
Back to Top
HTML Embed Code:
TW
HK
DE
US
CA
RU
NO
CN
UA
SG
YE
IN
SA
FR
IQ
UK
EG