es
Feedback
SysAdmin 24x7

SysAdmin 24x7

Ir al canal en Telegram

Noticias y alertas de seguridad informática. Chat y contacto: t.me/sysadmin24x7chat

Mostrar más
4 386
Suscriptores
-124 horas
-77 días
-230 días
Archivo de publicaciones
Escaping Restricted Environments and Bypassing DLP https://www.sixgen.io/single-post/2019/01/22/BreakFree

ReconSpider ReconSpider is most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations and find out information from different sources. ReconSpider can be used by Infosec Researchers, Penetration Testers, Bug Hunters and Cyber Crime Investigators to find deep information about their target. ReconSpider aggregate all the raw data, visualize it on a dashboard and facilitate alerting and monitoring on the data. https://github.com/bhavsec/reconspider

Emergency Directive 19-01 January 22, 2019 Mitigate DNS Infrastructure Tampering https://cyber.dhs.gov/ed/19-01/

Remote Code Execution in apt/apt-get Jan 22, 2019 ⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️ https://justi.cz/security/2019/01/22/apt-rce.html

Heads up: Debian's package manager is APT for root-level malware injection... Fix out now to thwart MITM hijacks Disable redirects before applying update https://www.theregister.co.uk/2019/01/22/debian_package_manager_flaws

DarkHydrus APT Uses Google Drive to Send Commands to RogueRobin Trojan New malicious campaigns attributed to DarkHydrus APT group show the adversary's use of a new variant of the RogueRobin Trojan and of Google Drive as an alternative command and control (C2) communication channel. https://www.bleepingcomputer.com/news/security/darkhydrus-apt-uses-google-drive-to-send-commands-to-roguerobin-trojan/

Linux Privilege Escalation – Using apt-get/apt/dpkg to abuse sudo “NOPASSWD” misconfiguration https://lsdsecurity.com/2019/01/linux-privilege-escalation-using-apt-get-apt-dpkg-to-abuse-sudo-nopasswd-misconfiguration

Universal Radio Hacker v2.5.5 releases: investigate wireless protocols like a boss The Universal Radio Hacker (URH) is a tool for analyzing unknown wireless protocols. With the rise of the Internet of Things (IoT) such protocols often appear in the wild. Many IoT devices operate on frequencies like 433.92 MHz or 868.3 MHz and use proprietary protocols for communication.  https://securityonline.info/universal-radio-hacker-investigate-wireless-protocols-like-boss

Kodachi 5.8 The Secure OS kodachi-5.8-64.iso Released on 2019-01-20 https://www.digi77.com/linux-kodachi/

PortPush PortPush is a small Bash utility used for pivoting into internal networks upon compromising a public-facing host. There are a couple of pre-requisites for this tool to work https://github.com/itsKindred/PortPush

MWDB – our way to share information about malicious software https://www.cert.pl/en/news/single/mwdb-our-way-to-share-information-about-malicious-software/

Faraday v3.5 released: Collaborative Penetration Test & Vulnerability Management Platform https://securityonline.info/faraday/

Tyton - Linux Kernel-Mode Rootkit Hunter for 4.4.0-31+ https://kitploit.com/2019/01/tyton-linux-kernel-mode-rootkit-hunter.html

Five Pentesting Tools and Techniques (That Every Sysadmin Should Know) https://hakin9.org/five-pentesting-tools-and-techniques-that-every-sysadmin-should-know

sherlock v0.2.6 releases: Find usernames across social networks https://securityonline.info/sherlock

WiFi firmware bug affects laptops, smartphones, routers, gaming devices List of impacted devices includes PS4, Xbox One, Samsung Chromebooks, and Microsoft Surface devices. https://www.zdnet.com/article/wifi-firmware-bug-affects-laptops-smartphones-routers-gaming-devices

Introducción al exploiting Parte 1 – Stack 0-2 (Protostar) https://ironhackers.es/tutoriales/introduccion-al-exploiting-parte-1-stack-0-2-protostar/ Introducción al exploiting Parte 2 – Stack 3-4 (Protostar) https://ironhackers.es/tutoriales/introduccion-al-exploiting-parte-2-stack-3-4-protostar/ Introducción al exploiting parte 3 – Mi primer Buffer Overflow – Stack 5 (Protostar) Introducción al exploiting parte 3 – Mi primer Buffer Overflow – Stack 5 (Protostar) Introducción al exploiting parte 4 – ret2libc – Stack 6 (Protostar) https://ironhackers.es/tutoriales/introduccion-al-exploiting-parte-4-ret2libc-stack-6-protostar/