Network Security Channel

前往频道在 Telegram

⭕️Start Channel From 2017⭕️ ✅ Security Operation Center (SOC) ✅ Bug Bounty ✅ Vulnerability ✅ Pentest ✅ Hardening ✅ Linux ✅ Reasearch ✅ Security Network ✅ Security Researcher ✅ DevSecOps ✅ Blue Team ✅ Red Team

显示更多

伊朗63 174 技术与应用26 308

2 855

订阅者

+1524 小时

+367 天

+7130 天

460

帖子浏览量

~ 19224 小时

~ 22648 小时

16.34%

参与率

无数据

每日帖子数

Ads index

beta

帖子存档

2 855

مدیریت ریسک سایبری در انگلیس آخرین نسخه ** بخش مرتبط با نظرات و باورها( ی غلط) در خصوص روش کمی در آنالیز ریسک جالب است Quantifying risk allows you to be explicit about how much uncertainty you have in your analysis, by allowing you to represent the likelihood or impact of a risk occurring as a ‘distribution’ rather than a single value. https://www.ncsc.gov.uk/collection/risk-management ⁩@Engineer_Computer

2 855

این روزها که هم کاربران برای به روزرسانی مرورگرهایشان آموزش دیده اند و هم مرورگرهایی چون کروم هفته ای یکبار به روزرسانی می‌دهد لذا به روزرسانی امری متداول شده است ؛ هکرها تلاش دارند از طریق به روزرسانی های قلابی ، بدافزار را به قربانی برسانند . در لینک زیر نحوه عمل ۴ گروه هکری برای توزیع بدافزار به قربانیان را می‌خوانیم #آکادمی_روزبه https://www.tomsguide.com/news/fake-chrome-updates-infecting-pcs-with-malware-what-you-need-to-know

2 855

A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain https://github.com/p0dalirius/ExtractBitlockerKeys ⁩@Engineer_Computer

2 855

۱۰ متخصص امنیت سایبری که دنبال کردن آنها در شبکه های اجتماعی توصیه می‌شود https://www.techtarget.com/whatis/feature/10-cybersecurity-experts-to-follow-on-social-media ⁩@Engineer_Computer

2 855

ترند های فناورانه در سال ۲۰۲۴ https://www-networkworld-com.cdn.ampproject.org/c/s/www.networkworld.com/article/3708635/gartner-top-strategic-technology-trends-for-2024.amp.html ⁩@Engineer_Computer

2 855

یکی از بهترین مخازن کانتنت های اسپلانک رایگان #آکادمی_روزبه This project gives you access to our repository of Analytic Stories, security guides that provide background on tactics, techniques and procedures (TTPs), mapped to the MITRE ATT&CK Framework, the Lockheed Martin Cyber Kill Chain, and CIS Controls. They include Splunk searches, machine learning algorithms and Splunk Phantom playbooks (where available)—all designed to work together to detect, investigate, and respond to threats https://github.com/splunk/security_content ⁩@Engineer_Computer

2 855

hardening Tech book Cloud Security AWS Identity and Access Management User Guide 2023. ⁩@Engineer_Computer

2 855

Tech book Cloud Security Design and Deploy a Secure Azure: Environment Mapping the NIST Cybersecurity Framework to Azure Services 2023. ⁩@Engineer_Computer

2 855

Hardening ‎( امن سازي و مقاوم سازي) Cisco Secure Firewall Management Center Hardening Guide Ver. 7.2 2023 Cisco Hardening Guides: https://www.cisco.com/c/en/us/support/security/defense-center/products-installation-and-configuration-guides-list.html ⁩@Engineer_Computer

2 855

exploit 1. CVE-2023-20198: Cisco ISO XE Software Web Management User Interface Vulnerability https://blog.talosintelligence.com/active-exploitation-of-cisco-ios-xe-software Checkscript: https://github.com/Atea-Redteam/CVE-2023-20198 2. CVE-2023-36728: Windows SQL Server Pre-Auth Overflow Read https://v-v.space/2023/10/16/sqlserver-dos-CVE-2023-36728 3. CVE-2023-38545: Socks5 heap buffer overflow https://github.com/d0rb/CVE-2023-38545 ⁩@Engineer_Computer

2 855

Offensive security Red Team Tactics A Hitch-hacker's Guide to DACL-Based Detections Part 1A: https://trustedsec.com/blog/a-hitchhackers-guide-to-dacl-based-detections-part-1-a Part 1B: https://trustedsec.com/blog/a-hitch-hackers-guide-to-dacl-based-detections-part-1b Part 2: https://trustedsec.com/blog/a-hitch-hackers-guide-to-dacl-based-detections-part-2 Part 3: https://trustedsec.com/blog/a-hitch-hackers-guide-to-dacl-based-detections-part-3 ⁩@Engineer_Computer

2 855

IoT Security IoT Bug Bounty Hunting Part 1: https://bugprove.com/knowledge-hub/iot-bug-bounty-hunting-using-bug-prove Part 2: https://bugprove.com/knowledge-hub/iot-bug-hunting-part-2-walkthrough-of-discovering-command-injections-in-firmware-binaries ⁩@Engineer_Computer

2 855

Fast Detection , Fast Respond PSIRT Advisories FortiOS - Plain-text credentials in GET request via SSL VPN web portal Summary A use of GET request method with sensitive query strings vulnerability [CWE-598] in the FortiOS SSL VPN component may allow an attacker to view plaintext passwords of remote services such as RDP or VNC, if the attacker is able to read the GET requests to those services (found in logs, referers, caches, etc...) Affected Products FortiOS version 7.4.0 FortiOS version 7.2.0 through 7.2.5 FortiOS version 7.0.0 through 7.0.12 Solutions Please upgrade to FortiOS version 7.4.1 or above Please upgrade to FortiOS version 7.2.6 or above Please upgrade to upcoming FortiOS version 7.0.13 or above Timeline 2023-09-29: Initial publication https://www.fortiguard.com/psirt/FG-IR-23-120 ⁩@Engineer_Computer

2 855

https://github.com/jthuraisamy/TelemetrySourcerer @Engineer_Computer

2 855

https://github.com/RoseSecurity/Anti-Virus-Evading-Payloads @Engineer_Computer

2 855

https://github.com/vulncheck-oss/go-exploit @Engineer_Computer

2 855

https://github.com/Octoberfest7/TeamsPhisher @Engineer_Computer

2 855

https://github.com/lrh2000/StackRot @Engineer_Computer

2 855

https://github.com/tangxiaofeng7/CVE-2023-32315-Openfire-Bypass @Engineer_Computer