CISO as a Service
@CISOasaService
5.17K subscribers
4.74K photos
770 videos
1.89K files
6.98K links
Founder @ DiyakoSecureBow | CISO as a Service (vCISO)
About Me
http://about.me/Alirezaghahrood

Follow Me on
🔵LinkedIn
https://www.linkedin.com/in/AlirezaGhahrood
🔴YouTube
https://www.youtube.com/AlirezaGhahrood
X
https://twitter.com/AlirezaGhahrood
Download Telegram
About
Blog
Apps
Platform
Join
CISO as a Service
5.17K subscribers
CISO as a Service
Malware analysis
1. Guide to a new Fivehands ransomware variant
https://research.nccgroup.com/2021/06/15/handy-guide-to-a-new-fivehands-ransomware-variant
2. Hades Ransomware Operators Use Distinctive Tactics and Infrastructure
https://www.secureworks.com/blog/hades-ransomware-operators-use-distinctive-tactics-and-infrastructure

Threat Research
EIP Stack Group OpENer information disclosure vulnerability (PoC for CVE-2021- 21777)
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1234
// information disclosure vulnerability in EIP Stack Group OpENer’s Ethernet/IP UDP handler


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.27
Nccgroup
Cyber Security Research
Cutting-edge cyber security research from NCC Group. Find public reports, technical advisories, analyses, & other novel insights from our global experts.
285 viewsAlireza Ghahrood
CISO as a Service
making_visibility_definable_measurable.pdf
2.4 MB
Whitepaper
A SANS 2021 Report:
"Making Visibility Definable and Measurable", 2021.


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.27
303 viewsAlireza Ghahrood, edited  
CISO as a Service
Telegram and Psiphon VPN users in #Iran are being targeted by new spyware from Ferocious Kitten—a covert surveillance APT group that's been in play for six years.
Details: https://thehackernews.com/2021/06/a-new-spyware-is-targeting-telegram-and.html


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.27
The Hacker News
A New Spyware is Targeting Telegram and Psiphon VPN Users in Iran
A spyware in a 6-year-old Ferocious Kitten covert surveillance campaign now targets Telegram and Psiphon VPN users in Iran.
294 viewsAlireza Ghahrood
CISO as a Service
https://docs.microsoft.com/en-us/learn/roles/security-engineer?WT.mc_id=Security%20_Twitter-wwl


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.27
Docs
Training for Security Engineers
Microsoft Learn helps you discover the tools and skills you need to become a security engineer.
233 viewsAlireza Ghahrood
CISO as a Service
Offensive security
Compromising Triager Zoom Account (PoC)
https://rakesh-thodupunoori.medium.com/part-1-dive-into-zoom-applications-d70f3de53ec5

Blue Team Techniques
Smoking Out a DARKSIDE Affiliate’s Supply Chain Software Compromise
https://www.fireeye.com/blog/threat-research/2021/06/darkside-affiliate-supply-chain-software-compromise.html


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.27
Medium
Part-1 Dive into Zoom Applications
TL;DR
226 viewsAlireza Ghahrood
CISO as a Service
این است که اگر کسی را دوست میداری، ـبسیار دوست میداریـ بی حساب دوست بدار اما حساب دوست داشتنت را داشته باش، گاهی.
کسی در کاسه چینی طلا پیشکش نمیکند به در خانه همسایه، که خجل شود از نداری و بهراسد و بگریزد و در خانه بر روش خویش ببندد.


-از کتاب عین عاشقی-


Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.27
276 viewsAlireza Ghahrood
CISO as a Service
This media is not supported in your browser
VIEW IN TELEGRAM
-بدانيم-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.27
322 viewsAlireza Ghahrood
CISO as a Service
GEA_1_2.pdf
778 KB
Research
"Cryptanalysis of the GPRS Encryption Algorithms GEA-1/GEA-2", 2021.

// GPRS-era mobile data encryption algorithm GEA/1 was 'weak by design', still lingers in today's phones...


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.28
293 viewsAlireza Ghahrood, edited  
CISO as a Service
cta.pdf
13.3 MB
Research Report:
"Threat Activity Group RedFoxtrot Linked to China’s PLA Unit 69010; Targets Bordering Asian Countries", 2021.


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.28
295 viewsAlireza Ghahrood, edited  
CISO as a Service
Practical_Windows_Forensics_1623945400.pdf
5.6 MB
Practical Windows Forensics
Experiments and Forensic Artifacts Windows Registry, Event Logs Analysis Email Forensics And Practical Examples


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.28
357 viewsAlireza Ghahrood, edited  
CISO as a Service
مثل انرژي گرفتن و لبخند
كمك به يكديگر سرشار از ورودي هاي خاص و متحير كننده✌🏼❤️🙏👍🏽😇
مي شود ساخت گرچه يك دانه گندم در مزرعه🤓


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.28
233 viewsAlireza Ghahrood
CISO as a Service
در سازمان شما طبقه بندي اطلاعات انجام شده!؟دارايي ها وزن دارند!؟ انباشت دارايي هاي مهم، اطلاعات و داده مشخص شده!؟

ريسك هاي آن چطور!؟

مسير هاي جلوگيري از نشت اطلاعات و يا دسترسي هاي غير مجاز به دارايي هاي طبقه بندي شده بواسطه ابزار و تكنولوژي مسدود و مديريت شده است!؟


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.28
227 viewsAlireza Ghahrood
CISO as a Service
Your platform for software quality management
The best toolbox for building better software. From continuous integration, and continuous analysis to empowering human code reviews with code intelligence
جذاب و كارا
https://scrutinizer-ci.com/


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.28
230 viewsAlireza Ghahrood
CISO as a Service
دوره ترند و كارگاهي
دواپس😀


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.28
252 viewsAlireza Ghahrood
CISO as a Service
بعد تصرف خرمشهر سربازان عراقی نوشته بودند «آمدیم بمانیم» خرمشهر که ازاد شد رزمندگان ایرانی نوشتند آمدیم نبودید.

آری ایرانی شکست ناپذیر نیست می‌توان او را از خانه‌اش بیرون راند، خون‌ش بر زمین ریخت و سرزمینش را آتش کشید و تصرف کرد ولی بدانید روزی از همین خون برمیخیزد و انتقامش را میگیرد!


‎- كاش قسمت اعظم مسولين رو ميشد تگ ضد انقلاب زد زنداني كرد و مملكت رو درست ميساختيم
(هيچكس)-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.28
320 viewsAlireza Ghahrood
CISO as a Service
https://www.secjuice.com/blue-team-detection-darkside-ransomware/


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.28
287 viewsAlireza Ghahrood
CISO as a Service
Threat Research
An Information Disclosure Bug in ISC BIND Server (PoC)
https://www.zerodayinitiative.com/blog/2021/6/15/zdi-21-502-an-information-disclosure-bug-in-isc-bind-server

Malware analysis
APT Ferocious Kitten
https://securelist.com/ferocious-kitten-6-years-of-covert-surveillance-in-iran/102806

exploit
CVE-2020-8300:
Detect Citrix ADC SAML action or SAML iDP Profile config vulnerable to CVE-2020-8300 using Citrix ADC NITRO API (PoC)
https://github.com/stuartcarroll/CitrixADC-CVE-2020-8300

CVE-2021-31159:
Zoho ManageEngine ServiceDesk Plus MSP - Active Directory User Enumeration (PoC)
https://github.com/ricardojoserf/CVE-2021-31159

Offensiv security
Router (D-Link, Zyxel, TP-Link, Huawei) exploitation tool that allows to disclosure network router admin password😁
https://github.com/EntySec/RomBuster


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.28
Zero Day Initiative
Zero Day Initiative — ZDI-21-502: An Information Disclosure Bug in ISC BIND server
Last year, we received a submission of a remote code execution vulnerability in the ISC BIND server. Later, that same anonymous researcher submitted a second bug in this popular DNS server. Similar to the first bug, it exists within the Simple and Protected…
304 viewsAlireza Ghahrood
CISO as a Service
Certified_Pre_Owned.pdf
9.9 MB
Blue Team Techniques
"Certified Pre-Owned: Abusing Active Directory Certificate Services", 2021.
https://posts.specterops.io/certified-pre-owned-d95910965cd2
]-> Defensive Toolkit:مميزي اكتيو امن
PowerShell toolkit for AD CS auditing based on the PSPKI toolkit
https://github.com/GhostPack/PSPKIAudit


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.28
310 viewsAlireza Ghahrood, edited  
CISO as a Service
spoofing_downloaded_filename.pdf
1.9 MB
Whitepaper
"Spoofing Downloaded Filename's Extension
in Chromium", 2021.

// This whitepaper illustrates exploitation of an insufficient data validation vulnerability in the Chromium framework (CVE-2021-21123)


‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.28
327 viewsAlireza Ghahrood, edited  
CISO as a Service
یه گله از فیل‌های چینی که ۱۵ ماهه در حال سفرند، حدودا ۵۰۰ کیلومتر دورتر از زیستگاه طبیعی خودشون دارن استراحت می‌کنن.
تو این مدت یک تیم هشت‌نفره ۲۴ ساعته اینها رو تحت نظر داشتن و این تصویر ناب رو امروز منتشر کردن.


‎-تصاوير ناب-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.28
405 viewsAlireza Ghahrood
CISO as a Service
This media is not supported in your browser
VIEW IN TELEGRAM
‎-قابل تامل و كمي فكر-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.03.28
348 viewsAlireza Ghahrood