Will Dormann

@wdormann

Vulnerability Analyst at the CERT/CC. My thoughts are my own, not my employer's.

Vrijeme pridruživanja: kolovoz 2012.

Tweetovi

Blokirali ste korisnika/cu @wdormann

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @wdormann

  1. proslijedio/la je Tweet
    prije 19 sati

    Holy shit. Researcher discovers that TeamViewer stores user passwords encrypted and finds the encryption key and initialization vector in the windows registry

    Poništi
  2. proslijedio/la je Tweet

    OK Google: bypass the authentication! Fascinating blog - highlighting the risks when so many complex systems interact.

    Poništi
  3. proslijedio/la je Tweet
    2. velj

    And here’s a wonderful post by OpenSMTPD’s main developer : Very interesting insight on how a bug enters the code and becomes exploitable over time.

    Poništi
  4. proslijedio/la je Tweet
    28. sij

    Qualys Security Advisory: LPE and RCE (CVE-2020-7247) in OpenSMTPD, OpenBSD's mail server. Erroneous logic in smtp_mailaddr() which validates user and domain. More details and PoC at: PS: "Did you ever play tic-tac-toe?"

    Poništi
  5. 29. sij

    I think I'd like to have a word with the folks involved with the creation/distribution of this sign.

    Poništi
  6. proslijedio/la je Tweet

    macOS 10.15.3 is out, fixing a bunch of nasty (remote) bugs! 🍎🐛 ...go patch! 🛡️

    Poništi
  7. proslijedio/la je Tweet
    28. sij

    BREAKING: We’ve confirmed that the Ring doorbell app on Android covertly shares personally identifiable information on its users with third-party companies, including Facebook.

    Prikaži ovu nit
    Poništi
  8. proslijedio/la je Tweet
    27. sij

    New: leaked documents, data, contracts show how hugely popular antivirus Avast now harvests internet browsing data and sells it for millions of dollars. Clients included Home Depot, Google, Microsoft. Documents show a product called "All Clicks Feed"

    Prikaži ovu nit
    Poništi
  9. 26. sij

    I'll move to Hyper-V for virtualization on my home computer... Smaller attack surface, and enables the ability to use extra exploit mitigations. 1) Broadcom network driver causes BSODs when Hyper-V bridges a VM to that network. 2) Hyper-V NAT doesn't even provide DHCP. Sigh...

    Poništi
  10. 26. sij

    Hey , Find somebody at your organization that appreciates the difference between HTTP and HTTPS, and listen to them. Thanks.

    Poništi
  11. proslijedio/la je Tweet
    24. sij

    Mini-scoop: Hackers exploited a zero-day in the Trend Micro OfficeScan antivirus to plant malicious files on Mitsubishi Electric servers

    Prikaži ovu nit
    Poništi
  12. proslijedio/la je Tweet
    16. sij

    CVE-2020-2551 WebLogic RCE via IIOP protocol.

    Poništi
  13. 24. sij

    Based on suggestions from and I've updated No longer requires dumpbin.exe or listdlls.exe (if Python pefile and psutil are available). Also exports the findings as a CSV. Any reported app is a good candidate for EMET or WDEG force ASLR!

    Prikaži ovu nit
    Poništi
  14. 22. sij

    I would love to see a "wall of shame" to call out vendors/applications that aren't ASLR compliant. Anybody who runs this script on a real-world system would be able to help contribute!

    Prikaži ovu nit
    Poništi
  15. 22. sij

    Since this doesn't seem to be a thing, I've created a rudimentary python script that does it. Seems useful. Note: For now it requires both Sysinternals ListDLLs and Microsoft dumpbin.exe

    Prikaži ovu nit
    Poništi
  16. 22. sij

    Are there any tools to auto-enumerate any running processes in Windows that don't leverage ASLR themselves, or have libraries loaded that don't leverage ASLR? Sort of like what's outlined at but without requiring any user interaction.

    Prikaži ovu nit
    Poništi
  17. proslijedio/la je Tweet
    22. sij

    There is a high probability that Citrix ADC servers with no mitigation applied on or after January 9, 2020, have been taken over and their TLS certificates and associated keys have been stolen. [2/2] Please patch AND revoke your certificates.

    Prikaži ovu nit
    Poništi
  18. 22. sij

    I think that forgot the "viable" part when making the minimum viable product that is the Apple TV+ app for the It sort of works, but is by far the most buggy app on the device.

    Poništi
  19. proslijedio/la je Tweet
    21. sij

    I suspected this was true ever since Apple released iCloud Keychain and did nothing interesting with it. Government pressure works.

    Prikaži ovu nit
    Poništi
  20. proslijedio/la je Tweet
    17. sij

    Last month I canceled a random charge for $4.99 per month from HP called "InstantInk". Wasn't sure what it was for. I've had it for over a year but had no idea what it did. I just found out what it did

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·