Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @vinegrep
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @vinegrep
-
Isakov Denis proslijedio/la je Tweet
For relatives that are more prone to installing junk software bundlers, Windows Defender has protections for it that are only intended for Enterprise customers. However, you can force it on with this PowerShell: Set-MpPreference -PUAProtection enable It’s completely hidden...
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
It's here!!! Tell your colleagues, tell your friends, tell your grandma. https://www.zeropointsecurity.co.uk/red-team-ops
#RedTeamOpsPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
Red Team Methodology - A Naked Look - great slides by my friend
@curi0usJack#infosec#pentest#redteamhttps://www.slideshare.net/mobile/JasonLang1/red-team-methodology-a-naked-look-169879355?ref= …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
My first blog post on browser exploitation for
@infosectcbr. I'll look at how to pop xcalc on current Linux Spidermonkey given a relative (oob) rw bug. Spidermonkey is the JavaScript Engine in Firefox. Exploit code also supplied. https://blog.infosectcbr.com.au/2020/01/firefox-spidermonkey-js-engine.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
#Shitrix exploit landed in#metasploit ! With a useful 'check' command to check if you have vulnerable assets. And a meterpreter session if you need to demo something :) CVE-2019-19781 https://github.com/rapid7/metasploit-framework/pull/12816 …pic.twitter.com/xmMrgUfj4i
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
We need your help to select the top 10 web hacking techniques of 2019! Cast your vote here:https://portswigger.net/polls/top-10-web-hacking-techniques-2019 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
New http://ADSecurity.org blog post on the Microsoft Cloud: What is Azure Active Directory? https://adsecurity.org/?p=4211 Post covers what Azure AD is, how it compares to on-prem Active Directory, connecting via PowerShell, and password spraying attacks, mitigation, & detection.pic.twitter.com/GDS3rOzsW0
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
Announcing BLAKE3!
* Faster than MD5, SHA-1, SHA-2, SHA-3, and BLAKE2
* Merkle tree: unlimited parallelism, verified streaming
* Builtin MAC, KDF, XOF
* One algorithm, no variants
* Rust crate: https://crates.io/crates/blake3
Try it: cargo install b3sum
http://blake3.io pic.twitter.com/QJWIwi44go
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
My
@thepine64 pinebook pro arrived yesterday, initial impressions are that this is the hacker friendly laptop of your dreams. You can kill (without OS involved) the mic / cam and wireless with fast button presses. It’s got 6 ARMv8 cores and enough RAM to qemu an iPhone.
it.pic.twitter.com/0VwiDN6HKH
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
Windows Debugging & Exploiting 1. Environment Setup https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/windows-debugging-exploiting-part-1-environment-setup/ … 2. WinDBG 101 https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/windows-debugging-exploiting-part-2-windbg-101/ … 3. WinDBG Time Travel Debugging https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/windows-debugging-exploiting-part-3-windbg-time-travel-debugging/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
Just published a new blogpost with more details about the Citrix ADC Remote Command Execution.https://twitter.com/MDSecLabs/status/1215611640885972992 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
I'll take a crack at this
1. Identify SCCM Admin accounts
2. Compromise workstation in use by SCCM admin
3. Dump LSASS / keylog RDP to get account credentials
4. Connect to SCCM as admin
5. Build new package "Windows App Updates 20191229b" & deploy
or something similarHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
I'm very excited to share my blogpost series (including PoC code) about a remote, interactionless iPhone exploit over iMessage: https://googleprojectzero.blogspot.com/2020/01/remote-iphone-exploitation-part-1.html …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
Spray-AD, a new
@OutflankNL Kerberos password spraying tool for Cobalt Strike that might come in handy when assessing Active Directory environments for weak passwords (generates event IDs 4771 instead of 4625).https://github.com/outflanknl/Spray-AD …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
I was able to reproduce the Citrix ADC Remote Command Execution in one day. Guess you need to patch ASAP.
#CVE-2019-19781#Citrixpic.twitter.com/KjsUOJQsLt
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
How can you tell if someone works for a Fortune500? Don’t worry, they’ll tell you.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
Problem: Key management is hard. Solution: Just don’t.https://boingboing.net/2019/01/02/caterpillar-padlocks-all-use-t.html …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
Why not step into the next decade with WAF bypasses? Here are some gifts.
- Imperva
<a69/onclick=write()>pew
- DotDefender
<a69/onclick=[0].map(alert)>pew
- Cloudbric
<a69/onclick=[1].findIndex(alert)>pew
Happy 0x32303230.
#infosec#bugbounty#bugbountytipspic.twitter.com/74KGzwMqME
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
It must be DNS Appreciation Day because I’m seeing a lot of resolutions.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Isakov Denis proslijedio/la je Tweet
I have published a blog post: "Active Directory Security Fundamentals" - It contains a PDF with hands-on recommendations that you use to secure AD.https://identityaccess.management/2019/12/30/active-directory-security-fundamentals/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.