All posts tagged cyber

■■□□□ Struggling RCE on Jenkins Instance. https://medium.com/@imusabkhan/struggling-rce-on-jenkins-instance-8851af98b7e6 https://t.me/cKure/13786

■□□□□ Possible Iranian cyber activity against Israel in next 48 hours as a retaliation to the Israeli attack on their consulate in Syria https://t.me/cKure/13785

■■■■■ CVE-2024-29745 and CVE-2024-29748. Google fixes two Pixel zero-day flaws exploited by forensics firms. https://www.bleepingcomputer.com/news/security/google-fixes-two-pixel-zero-day-flaws-exploited-by-forensics-firms/ https://t.me/cKure/13784

■■■■□ Attacking an EDR. https://riccardoancarani.github.io/2023-08-03-attacking-an-edr-part-1/ https://riccardoancarani.github.io/2023-09-14-attacking-an-edr-part-2/ https://t.me/cKure/13783

Secator: The swiss army knife It is a task and workflow runner used for security assessments. It supports dozens of well-known security tools and is designed to improve productivity for pentesters and security researchers. https://docs.freelabz.com/ https://t.me/cKure/13781

■■■■■ Wireproxy: A wireguard client that exposes itself as a socks5/http proxy or tunnels. https://github.com/pufferffish/wireproxy https://t.me/cKure/13780

■■■■□ Timeline of the xz open source attack. https://research.swtch.com/xz-timeline https://t.me/cKure/13779

■■■■■ From OneNote to RansomNote: An Ice Cold Intrusion. https://thedfirreport.com/2024/04/01/from-onenote-to-ransomnote-an-ice-cold-intrusion/ https://t.me/cKure/13778

■■■■■ Passive DNS For Phishing Link Analysis – Identifying 36 Latrodectus Domains With Historical Records and 302 Redirects. https://embee-research.ghost.io/phishing-domain-analysis-with-passive-dns-latrodectus/ https://t.me/cKure/13774

■■■■■ CVE-2024-0582: Linux Kernel flaw to gain root access: PoC published in tagged (https://t.me/cKure/13761) message. https://cybersecuritynews.com/linux-kernel-flaw/ https://t.me/cKure/13773