SysAdmin 24x7
Відкрити в Telegram
Noticias y alertas de seguridad informática. Chat y contacto: t.me/sysadmin24x7chat
Показати більше4 386
Підписники
-124 години
-77 днів
-230 день
Архів дописів
4 387
Escaping Restricted Environments and Bypassing DLP
https://www.sixgen.io/single-post/2019/01/22/BreakFree
4 387
ReconSpider
ReconSpider is most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations and find out information from different sources.
ReconSpider can be used by Infosec Researchers, Penetration Testers, Bug Hunters and Cyber Crime Investigators to find deep information about their target.
ReconSpider aggregate all the raw data, visualize it on a dashboard and facilitate alerting and monitoring on the data.
https://github.com/bhavsec/reconspider
4 387
Emergency Directive 19-01
January 22, 2019
Mitigate DNS Infrastructure Tampering
https://cyber.dhs.gov/ed/19-01/
4 387
Remote Code Execution in apt/apt-get
Jan 22, 2019
⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️
https://justi.cz/security/2019/01/22/apt-rce.html
4 387
Heads up: Debian's package manager is APT for root-level malware injection... Fix out now to thwart MITM hijacks
Disable redirects before applying update
https://www.theregister.co.uk/2019/01/22/debian_package_manager_flaws
4 387
Twitter bug exposed some Android private tweets to public view
https://nakedsecurity.sophos.com/2019/01/21/twitter-bug-exposed-some-android-private-tweets-to-public-view/
4 387
DarkHydrus APT Uses Google Drive to Send Commands to RogueRobin Trojan
New malicious campaigns attributed to DarkHydrus APT group show the adversary's use of a new variant of the RogueRobin Trojan and of Google Drive as an alternative command and control (C2) communication channel.
https://www.bleepingcomputer.com/news/security/darkhydrus-apt-uses-google-drive-to-send-commands-to-roguerobin-trojan/
4 387
Linux Privilege Escalation – Using apt-get/apt/dpkg to abuse sudo “NOPASSWD” misconfiguration
https://lsdsecurity.com/2019/01/linux-privilege-escalation-using-apt-get-apt-dpkg-to-abuse-sudo-nopasswd-misconfiguration
4 387
Universal Radio Hacker v2.5.5 releases: investigate wireless protocols like a boss
The Universal Radio Hacker (URH) is a tool for analyzing unknown wireless protocols. With the rise of the Internet of Things (IoT) such protocols often appear in the wild. Many IoT devices operate on frequencies like 433.92 MHz or 868.3 MHz and use proprietary protocols for communication.
https://securityonline.info/universal-radio-hacker-investigate-wireless-protocols-like-boss
4 387
Kodachi 5.8 The Secure OS
kodachi-5.8-64.iso
Released on 2019-01-20
https://www.digi77.com/linux-kodachi/
4 387
PortPush
PortPush is a small Bash utility used for pivoting into internal networks upon compromising a public-facing host.
There are a couple of pre-requisites for this tool to work
https://github.com/itsKindred/PortPush
4 387
MWDB – our way to share information about malicious software
https://www.cert.pl/en/news/single/mwdb-our-way-to-share-information-about-malicious-software/
4 387
Faraday v3.5 released: Collaborative Penetration Test & Vulnerability Management Platform
https://securityonline.info/faraday/
4 387
Tyton - Linux Kernel-Mode Rootkit Hunter for 4.4.0-31+
https://kitploit.com/2019/01/tyton-linux-kernel-mode-rootkit-hunter.html
4 387
Five Pentesting Tools and Techniques (That Every Sysadmin Should Know)
https://hakin9.org/five-pentesting-tools-and-techniques-that-every-sysadmin-should-know
4 387
sherlock v0.2.6 releases: Find usernames across social networks
https://securityonline.info/sherlock
4 387
WiFi firmware bug affects laptops, smartphones, routers, gaming devices
List of impacted devices includes PS4, Xbox One, Samsung Chromebooks, and Microsoft Surface devices.
https://www.zdnet.com/article/wifi-firmware-bug-affects-laptops-smartphones-routers-gaming-devices
4 387
Introducción al exploiting Parte 1 – Stack 0-2 (Protostar)
https://ironhackers.es/tutoriales/introduccion-al-exploiting-parte-1-stack-0-2-protostar/
Introducción al exploiting Parte 2 – Stack 3-4 (Protostar)
https://ironhackers.es/tutoriales/introduccion-al-exploiting-parte-2-stack-3-4-protostar/
Introducción al exploiting parte 3 – Mi primer Buffer Overflow – Stack 5 (Protostar)
Introducción al exploiting parte 3 – Mi primer Buffer Overflow – Stack 5 (Protostar)
Introducción al exploiting parte 4 – ret2libc – Stack 6 (Protostar)
https://ironhackers.es/tutoriales/introduccion-al-exploiting-parte-4-ret2libc-stack-6-protostar/
4 387
Oracle corrige 284 vulnerabilidades en su actualización de seguridad de enero
https://unaaldia.hispasec.com/2019/01/oracle-corrige-232-vulnerabilidades-en-su-actualizacion-de-seguridad-de-enero.html
