Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @devinbfergy
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @devinbfergy
-
Prikvačeni tweet
For those that follow me because we are friends I'm sorry not sorry that I retweet all the info sec stuff...
#addicted#informationsecurityHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
If you are on iOS 13.3.1, you still have a chance to downgrade to iOS 13.3. If you are on iOS 13.0-13.2.3, you can update to iOS 13.3. If you are already jailbroken, save blobs and consider staying on your current version for now.
#unc0verHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
A tool for automating cracking methodologies through Hashcat from
@TrustedSec#infosec#pentest#redteamhttps://github.com/trustedsec/hate_crack …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
I've just released new version of the iOS Security Suite
* New verbose&filterable amIJailbrokenWithFailedChecks() method
* New anti-re indicator
pic.twitter.com/JADIHxgzzY
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
Something I've been working on a lot, an update to infosec_getting_started! A collection of useful Infosec links separated by topic! Share this if you think it'll help someone learn more about Infosec or its sub-topics!
#infosec#learning#security https://infosec.grds.ioPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
RE just retired from
@hackthebox_eu. As the creator of the box, I tried to bring phishing/macro obfuscation concepts to the initial access. The intended privescs were the WinRar ACE file exploit, and XXE in Ghidra. I'll show two unintended privescs too.https://0xdf.gitlab.io/2020/02/01/htb-re.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
Want to see how the
@Mandiant red team weaponizes@FireEye threat intel for R&D and TTP development? Check out some research I did with@evan_pena2003 and@FuzzySec. Also includes some new executables that can be used for DLL abuse.https://www.fireeye.com/blog/threat-research/2020/01/abusing-dll-misconfigurations.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
I found this article to be excellent. From building Windbg Tooling to working exploits. Its a dense and rich read. Really well done. I thought. Introduction to SpiderMonkey exploitation. https://doar-e.github.io/blog/2018/11/19/introduction-to-spidermonkey-exploitation/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
Just published my latest blog titled (Ab)using Kerberos from Linux, which covers common Kerberos abuse vectors, as well as how to exploit them from Linux using Impacket. Check it out here:https://www.onsecurity.co.uk/blog/abusing-kerberos-from-linux …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
Denying workstation to workstation communication makes lateral movement harder for attackers. Windows Firewall, FTW!https://twitter.com/jhencinski/status/1221819451617705984 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
I'm excited to share my post about discovering & exploiting multiple critical vulnerabilities in Cisco's DCNM. Busting Cisco's Beans :: Hardcoding Your Way to Hell https://srcincite.io/blog/2020/01/14/busting-ciscos-beans-hardcoding-your-way-to-hell.html … PoC exploit code: https://srcincite.io/pocs/cve-2019-15975.py.txt … https://srcincite.io/pocs/cve-2019-15976.py.txt … https://srcincite.io/pocs/cve-2019-15977.py.txt …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
Blog describing how to decrypt passwords stored in Citrix Netscaler config Two likely attack paths post Netscaler compromise
Decrypt AD service account password in ns.conf
Steal session token & take over user’s session (similar to Heartbleed)
https://dozer.nz/citrix-decrypt/ Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
Just posted Remote Code Execution in Three Acts: Chaining Exposed Actuators and H2 Database Aliases in Spring Boot 2. Using a payload containing three different programming languages :)https://spaceraccoon.dev/remote-code-execution-in-three-acts-chaining-exposed-actuators-and-h2-database …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
Surprise: you can search GreyNoise by CVE now. Shoutout
@obsecurus and@ackmage for pulling this together these past few days at breakneck speed.https://twitter.com/GreyNoiseIO/status/1215818626055528453 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
New tool release for exploiting CVE-2019-19781. All for responsible disclosure and wish there had been a longer period before researchers had posted this publicly to give defenders a chance to fix. No sense in keeping private now, and hopefully this can be used to test and fix.https://twitter.com/TrustedSec/status/1215790049859710982 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
Remember that nation states don't start hacking during moments of instability or crisis. They've been compromising systems and putting implants in place for years. You cannot just look at the parameter. You need to look in your network for existing footholds - yesterday.https://twitter.com/a_greenberg/status/1215360066334920704 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
I just published "Hunting Good Bugs with only <HTML>" https://link.medium.com/oTrMsKEM72
#bugbounty#infosec I hope you enjoy this post!Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
People that doubt malicious actors are innovating peep this post => https://blog.talosintelligence.com/2019/07/rats-and-stealers-rush-through-heavens.html …. Naturally, at the end of it they are serving the victim with some hot garbage implant but there is proper tradecraft in the loader.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
One of the scarier bugs I’ve found: with Microsoft’s go-ahead & after many hours spent, I’m excited to finally publish this writeup and PoC!
https://www.allysonomalley.com/2020/01/06/saying-goodbye-to-my-favorite-5-minute-p1/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
BattlEye has for the past year been detecting unknown cheats using memory heuristics combined with a method known as stack walking: https://vmcall.blog/battleye-stack-walking/ …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Devin Ferguson proslijedio/la je Tweet
To bring in the new year here's a new blog post about empirically testing Windows Service Hardening to see if it is really not a security boundary even on Windows 10. https://tyranidslair.blogspot.com/2020/01/empirically-assessing-windows-service.html … h/t
@cesarcerHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.