SysAdmin 24x7
Kanalga Telegram鈥檇a o鈥榯ish
Noticias y alertas de seguridad inform谩tica. Chat y contacto: t.me/sysadmin24x7chat
Ko'proq ko'rsatish4 388
Obunachilar
+224 soatlar
+17 kunlar
-530 kunlar
Postlar arxiv
4 389
C贸mo saltarse el bloqueo a un sitio web sin tener que usar un proxy o VPN
https://www.genbeta.com/paso-a-paso/como-saltarse-el-bloqueo-a-un-sitio-web-sin-tener-que-usar-un-proxy-o-vpn/
4 389
Varias vulnerabilidades en IBM Notes
Fecha de publicaci贸n: 12/03/2018
Importancia: 4 - Alta
Recursos afectados:
IBM Notes v9.0.1 hasta la v9.0.1 FP10 IF1IBM Notes v9.0 hasta la v9.0 IF4IBM Notes v8.5.3 hasta la v8.5.3 FP6 IF15IBM Notes v8.5.2 hasta la v8.5.2 FP4 IF3IBM Notes v8.5.1 hasta la v8.5.1 FP5 IF3IBM Notes v8.5
Descripci贸n:
Se han reportado dos vulnerabilidades en el producto IBM Notes que podr铆an causar una escalada de privilegios y la ejecuci贸n remota de c贸digo.
https://www.certsi.es/alerta-temprana/avisos-seguridad/varias-vulnerabilidades-ibm-notes
4 389
THRecon
-Threat Hunting Reconnaissance Toolkit-
Collect pertitent information for cyber threat hunting on your systems using this toolkit. Alternatively, ingest the output into an analysis tool like ELK or Splunk to quickly pinpoint anomolous systems. Requires Powershell 5.0 or above on the "scanning" device (requirements vary on target devices per tool).
https://github.com/TonyPhipps/THRecon
4 389
Kaspersky open-sources KLARA, a YARA rules scanning framework developed by the company's GReAT APT research team
https://github.com/KasperskyLab/klara
4 389
Fully Integrated Defense Operation
Fully Integrated Defense Operation (FIDO) plays a important role in the defense of the Netflix corporate network.
https://n0where.net/fully-integrated-defense-operation-fido
Relacionada:
https://t.me/sysadmin24x7/261
4 389
Cyber-Espionage Group Infects Victims Through MicroTik Routers
https://www.bleepingcomputer.com/news/security/cyber-espionage-group-infects-victims-through-microtik-routers/
4 389
Descubren 200 millones de cuentas en la Dark Web
https://blog.segu-info.com.ar/2018/03/descubren-200-millones-de-cuentas-en-la.html
4 389
How to bypass authentication on Windows Server 2008 R2
https://www.hackingtutorials.org/general-tutorials/bypass-authentication-windows-server-2008-r2/
4 389
Cisco soluciona 23 vulnerabilidades en m煤ltiples dispositivos
http://unaaldia.hispasec.com/2018/03/cisco-soluciona-23-vulnerabilidades-en.html
4 389
Wild Wild Wifi "Dancing with wolves": 3.- PsicoWiFi
http://www.elladodelmal.com/2018/03/wild-wild-wifi-dancing-with-wolves-3.html
4 389
Vulnerable Apache Solr, Redis, Windows servers hit with cryptominers
https://www.helpnetsecurity.com/2018/03/09/vulnerable-apache-solr/
4 389
Vulnerabilidad en la gesti贸n de roles de BIG-IQ Centralized Management de F5
Fecha de publicaci贸n: 09/03/2018
Importancia: 4 - Alta
Recursos afectados:
BIG-IQ Centralized Management versi贸n 5.1.0 a versi贸n 5.2.0
Descripci贸n:
El fabricante F5 ha informado de una vulnerabilidad en la gesti贸n de roles y permisos de los usuarios en sus productos BIG-IQ Centralized Management que permitir铆a cambiar la contrase帽a de un administrador local.
https://www.certsi.es/alerta-temprana/avisos-seguridad/vulnerabilidad-gestion-roles-big-iq-centralized-management-f5
4 389
Any.Run: una herramienta interactiva de an谩lisis de malware que ahora esta abierta al p煤blico
https://tecnonucleous.com/2018/03/09/any-run-una-herramienta-interactiva-de-analisis-de-malware-ahora-esta-abierta-al-publico/
4 389
Cisco hard-coded password bug gives attackers root on Linux machines
https://www.cso.com.au/article/634395/cisco-hard-coded-password-bug-gives-attackers-root-linux-machines
4 389
Cisco fixes critical flaw in its Secure Access Control System
https://www.helpnetsecurity.com/2018/03/08/cisco-acs-pcp-flaws/
4 389
Facebook Onavo VPN app collects user data even when its off
https://www.hackread.com/facebook-onavo-vpn-app-collects-user-data-even-when-its-off/
4 389
[NEW-TOOL] CTFR - get subdomains of an HTTPS website in a few seconds, abusing Certificate Transparency logs ;) you won't miss AXFR anymore 馃槣
#pentest
https://github.com/UnaPibaGeek/ctfr
4 389
#offtopic #recomendaci贸n
Para los que administran desde entorno Windows la mejor aplicaci贸n que conozco que resuelve 茅sto a la perfecci贸n y con muchas m谩s utilidades:
https://mobaxterm.mobatek.net/
4 389
Run a Command on Multiple Servers: ClusterSSH
https://n0where.net/run-a-command-on-multiple-servers
4 389
Second company claims it can unlock iPhone X
A tiny US company called Grayshift is reportedly quietly touting software it claims can unlock Apple鈥檚 flagship handsets, the iPhone X and 8.
This follows a similar claim by Israeli company Cellebrite last week which, it later emerged, was good for every iPhone up to the latest version of iOS, 11.2.6.
https://nakedsecurity.sophos.com/2018/03/07/second-company-claims-it-can-unlock-iphone-x/amp/
