Yorick Koster

@yorickkoster

Offensive security research & tools

Netherlands
Vrijeme pridruživanja: lipanj 2013.

Tweetovi

Blokirali ste korisnika/cu @yorickkoster

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @yorickkoster

  1. 2. velj

    Hi I'm looking for a security contact, but can't seem to find it on your site. Can you direct me to it? Thanks

    Poništi
  2. proslijedio/la je Tweet
    19. srp 2019.
    Odgovor korisniku/ci
    Poništi
  3. proslijedio/la je Tweet
    31. sij

    Pushed a new Rubeus release after getting some additional feedback from our most recent AT:RTO students. The full changes are detailed here . To highlight a few new features- "/nowrap" globally prevents base64 blobs from line-wrapping, (1/4)

    Prikaži ovu nit
    Poništi
  4. 31. sij

    "FireEye Mandiant was one of the first to discover the DLL side-loading technique along with DLL search order hijacking back in 2010" 🤔🤔🤔

    Poništi
  5. proslijedio/la je Tweet
    30. sij

    For the past few months, I've been diving into Apple's Endpoint Security Framework. This post shares how I use the framework for detection engineering purposes.

    Prikaži ovu nit
    Poništi
  6. proslijedio/la je Tweet
    28. sij
    Poništi
  7. proslijedio/la je Tweet
    28. sij

    Some things make more sense when one realizes that there are at least 5 distinct security communities: Security product people (people that view security as something that can be added by buying/selling products), Security Infrastructure people (people that view security as ...

    Prikaži ovu nit
    Poništi
  8. proslijedio/la je Tweet
    24. sij

    Microsoft this week announced the availability of Azure Security Benchmark v1 (ASB), a collection of more than 90 security best practices recommendations for Azure customers.

    Poništi
  9. proslijedio/la je Tweet
    24. sij

    Here's a cool trick to break out of AppLocker in Citrix environment: 1. Open a dummy RTF file in wordpad 2. Add ftp.exe as an object 3. Click to open ftp (or other similar apps) 4. ftp>!{commmand/app to run} for example: ftp>!cmd <-- blocked? ftp>!powershell <-- not blocked?:)

    Poništi
  10. proslijedio/la je Tweet
    23. sij

    VivienneVMM is a stealthy debugging framework implemented via an Intel VT-x hypervisor

    Poništi
  11. proslijedio/la je Tweet
    Poništi
  12. 20. sij

    Hi do you have a security contact to report a vulnerability to? I can't seem to find it on your site. Thanks

    Poništi
  13. 9. sij
    Poništi
  14. proslijedio/la je Tweet
    7. sij

    My CVE ID (CVE-2019-19496) was published for a Blind XSS vulnerability identified in Alfresco (Enterprise Edition).

    Poništi
  15. proslijedio/la je Tweet
    2. sij

    To bring in the new year here's a new blog post about empirically testing Windows Service Hardening to see if it is really not a security boundary even on Windows 10. h/t

    Poništi
  16. 29. pro 2019.

    AlienVault Agent for Windows versions prior to 19.07.0803.0301 also install Osquery in ProgramData and are thus affected by this issue

    Poništi
  17. 29. pro 2019.

    Proof of concept PowerShell module for CVE-2019-3567 - Osquery for Windows access right misconfiguration Elevation of Privilege, discovered by

    Poništi
  18. proslijedio/la je Tweet
    5. pro 2019.

    Here is a short blog post showing how a service running with the LocalServiceAndNoImpersonation flag may get all its privileges back. 👌 👉

    Poništi
  19. 28. lis 2019.
    Poništi
  20. proslijedio/la je Tweet
    30. kol 2019.

    If you're not a student, you can still register for the learning system and play with it:

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·