Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @EranShimony
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @EranShimony
-
EranShimony proslijedio/la je Tweet
In the past year, I was researching Azure Stack, which is an on-premise version of Azure Cloud. In the following blog posts, we present information on what is Azure Stack and its architecture and disclose a vulnerability in Azure App Service that allowed a sandbox escape.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
After examining and rereading
@tiraniddo, MS solution to most Elevation of Privilege (Symbolic\Hard Link) attacks is: Either keeping an open handle to the exploited resource or doing local impersonation correctly. Like in https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0635 … Or in https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1161 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kaspersky, paying bounty only three days after the initial report. I'm impressed.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I got swag, not really. I would really appreciate however, if someone from Microsoft would explain once and for all, which vulnerability is worthy of a bounty and which vulnerability is just is a CVE with swag points.pic.twitter.com/TtUx9pc8eV
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Sometimes in the world of InfoSec, you have to wait, right? Lenovo patches CVE-2019-6173, CVE-2019-6196, after around 9 months since the initial report. I'm not sure it is a good practice
https://support.lenovo.com/us/en/product_security/LEN-27431 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
First CVE of the year; Intel releases a fix to CVE-2019-14596, and MS releases a fix to CVE-2020-0635. A writeup should come soon.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I like vendors who work well with security researches, providing immediate response, and fast patching rate. Good job Trend Micro and Symantec: CVE-2019-19688, CVE-2019-19689, CVE-2019-19548
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
EranShimony proslijedio/la je Tweet
For anyone interested in my presentation on Local RPC in .NET the HITB version is now up on YouTube.https://youtu.be/2GJf8Hrxm4k
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
So let me get it straight. High severity bugs get me points? Thanks, Microsoft
pic.twitter.com/wt9roiX9KR
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
EranShimony proslijedio/la je Tweet
Here is a short blog post showing how a service running with the LocalServiceAndNoImpersonation flag may get all its privileges back.
https://itm4n.github.io/localservice-privileges/ …pic.twitter.com/18vRPXaqq3
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Arbitrary delete vulnerability, seems too common. CVE-2019-3749, CVE-2019-3750 https://www.dell.com/support/article/il/en/ilbsdt1/sln319697/dsa-2019-162-dell-command-update-dcu-multiple-arbitrary-file-deletion-vulnerabilities?lang=en …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
EranShimony proslijedio/la je Tweet
I wrote up my comments on the technical aspect of the WhatsApp Vs NSO lawsuit herehttps://acepace.net/security/history/2019/11/29/NSO_whatsapp.html …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Update programs are quite problematic - CVE-2019-6176. I wonder how many are there. https://support.lenovo.com/il/en/solutions/len-27886 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
EranShimony proslijedio/la je Tweet
Released to go with my
#POC2019 talk, a project which contains a C# client for almost every ALPC RPC server on Windows 7 through Windows 10 1909. Could be useful for EoP research, fuzzing etc.https://github.com/tyranid/WindowsRpcClients …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
EranShimony proslijedio/la je Tweet
Finally had some time to write about the autochk rootkit Nothing too fancy, but I do think it's nice :) The rootkit redirects hidden files and hides network connections. It's signed by a chinese company. I reconstructed the full source code just for fun;) https://repnz.github.io/posts/autochk-rootkit-analysis/ …pic.twitter.com/MyoF8dR8Be
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Dell CVE-2019-3726 write-up. One of many in recent vulnerabilities in Dell. DLL hijacking to the rescue :)https://www.cyberark.com/threat-research-blog/lazy-privilege-escalation-abusing-dells-dup-framework-cve-2019-3726/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
EranShimony proslijedio/la je Tweet
Finally got around to writing a bit about some prior work, so here's some COM, SxS, random Windows stuff, unstable persistence/abuse opportunities, and me manually discovering things I should have read in documentationhttps://medium.com/@philiptsukerman/activation-contexts-a-love-story-5f57f82bccd …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
EranShimony proslijedio/la je Tweet
Security Descriptor Auditing Methodology: Investigating Event Log Security https://posts.specterops.io/security-descriptor-auditing-methodology-investigating-event-log-security-d64f4289965d … In this post, I establish my process for identifying access rights, determining default security, consideration of abuse implications, audit automation, and SACL research. Enjoy!
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Got CVE-2019-3745 from Dell. Using installers incorrectly seems to be a plage. Soon I'll have a blog about it. https://www.dell.com/support/article/SLN318889 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.