Latest Infosec News and Articles
- Win32k System Call Filtering Deep Dive https://improsec.com/tech-blog/win32k-system-call-filtering-deep-dive
- Bypassing Windows protection mechanisms & Playing with OffensiveNim https://s3cur3th1ssh1t.github.io/Playing-with-OffensiveNim/
- SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket https://github.com/NotMedic/NetNTLMtoSilverTicket
- Publicly Open Amazon AWS S3 Bucket Viewer https://github.com/SharonBrizinov/s3viewer
- How To Unpack Malware: Personal Notes https://marcoramilli.com/2020/10/09/how-to-unpack-malware-personal-notes/?utm_source=twitter&utm_medium=social&utm_campaign=ReviveOldPost
- CVE-2020-11851 Remote Code Execution vulnerability on ArcSight Logger https://github.com/ch1nghz/CVE-2020-11851
- MyJWT v1.4 releases: cracking, testing vulnerabilities on Json Web Token(JWT) https://securityonline.info/myjwt-cracking-testing-vulnerabilities-on-json-web-tokenjwt/
- Carnivore: Microsoft External Attack Tool https://securityonline.info/carnivore-microsoft-external-attack-tool/
- ImHex: Hex Editor for Reverse Engineers, Programmers https://securityonline.info/imhex-hex-editor-for-reverse-engineers-programmers/
- CVE-2020-36179~82 Jackson-databind SSRF&RCE https://github.com/Al1ex/CVE-2020-36179
Latest Vulnerabilities, POCs, and Exploit
- Cisco RV110W 1.2.1.7 – ‘vpn_account’ Denial of Service (PoC) https://www.exploit-db.com/exploits/49425
- Laravel 8.4.2 debug mode – Remote code execution
- https://www.exploit-db.com/exploits/49424
- Nagios XI 5.7.X – Remote Code Exection RCE (Authenticated) https://www.exploit-db.com/exploits/49422
- Erlang Cookie – Remote Code Execution https://www.exploit-db.com/exploits/49418
- SmartAgent 3.1.0 – Privilege Escalation https://www.exploit-db.com/exploits/49415 Gila CMS 2.0.0 – Remote Code Execution (Unauthenticated) https://www.exploit-db.com/exploits/49412
- PortableKanban 4.3.6578.38136 – Encrypted Password Retrieval https://www.exploit-db.com/exploits/49409