■■■□□ Tactics, Techniques and Procedures (TTPs) Utilized by FireEye’s Red Team Tools. https://www-picussecurity-com.cdn.ampproject.org/c/s/www.picussecurity.com/resource/blog/techniques-tactics-procedures-utilized-by-fireeye-red-team-tools https://t.me/cKure/6337
All posts tagged news
December 12, 2020 at 07:59PM
■■□□□ SMTP plugin of wordpress allows admin password reset. https://www.zdnet.com/google-amp/article/zero-day-in-wordpress-smtp-plugin-abused-to-reset-admin-account-passwords/ https://t.me/cKure/6336
December 12, 2020 at 07:02PM
■□□□□ https://www.ehackingnews.com/2020/12/pavel-durovs-team-advised-ministry-of.html https://t.me/cKure/6335
December 12, 2020 at 06:25PM
■■■□□ Office 95 Excel 4 Macros. https://isc.sans.edu/diary/rss/26876 https://t.me/cKure/6334
December 12, 2020 at 04:06PM
■■□□□ Process hacker mod: https://github.com/processhacker/processhacker/pull/751 Source: https://mobile.twitter.com/jxy__s/status/1337678321086164992 https://t.me/cKure/6333
December 12, 2020 at 04:02PM
■■■■□ Proxify: Swiss Army Knife Proxy for rapid deployments. Supports multiple operations such as request/response dump, filtering and manipulation via DSL language, upstream HTTP/Socks5 proxy. Additionally a replay utility allows to import the dumped traffic (request/responses with correct domain name) into burp or any other proxy by simply setting the upstream proxy to proxify. https://github.com/projectdiscovery/proxify…
December 12, 2020 at 03:14PM
■□□□□ Point-of-sale terminal vendors Verifone and Ingenico have issued mitigations after researchers found the devices use default passwords. https://t.me/cKure/6331
December 12, 2020 at 01:25PM
■■■■■ Cracked hashes text file 575 MB. https://drive.google.com/file/d/1g-fMAVxGvAHoxOlABVgzp1qL8uBukQUK https://t.me/cKure/6329
December 11, 2020 at 11:33PM
■■■□□ Sophos fixes SQL injection vulnerability in their Cyberoam OS. https://www.bleepingcomputer.com/news/security/sophos-fixes-sql-injection-vulnerability-in-their-cyberoam-os/amp/ https://t.me/cKure/6327
December 11, 2020 at 10:10PM
■■□□□ Sudhish Kasaba Ramesh, a former Cisco engineer, was sentenced on Wednesday to two years in prison and ordered to pay a $15,000 fine for shutting down more than 16,000 WebEx Teams accounts and over 450 virtual machines in 2018. https://www.bleepingcomputer.com/news/security/ex-cisco-engineer-who-nuked-16k-webex-accounts-sent-to-prison/ https://t.me/cKure/6326