Comunidad Pen7esting pinned «Hola, he creado un pequeño Script en python, un generador de diccionarios espero les guste. https://github.com/Anonimo501/DiccionarioMrRobot/blob/main/README.md»
Apuntan a dispositivos Cisco ASA después de la publicación de una PoC
https://blog.segu-info.com.ar/2021/06/apuntan-dispositivos-cisco-asa-despues.html
https://blog.segu-info.com.ar/2021/06/apuntan-dispositivos-cisco-asa-despues.html
Segu-Info - Ciberseguridad desde 2000
Apuntan a dispositivos Cisco ASA después de la publicación de una PoC
🔰 USEFUL WEBSITES FOR PENTESTERS & HACKERS
______________________
Exploits Database 💥
http://www.exploit-db.com/
http://www.intelligentexploit.com
http://www.shodanhq.com/
http://packetstormsecurity.com/
Vulnerabilities Database 🎯
https://cve.mitre.org/cve/
http://www.cvedetails.com/
https://nvd.nist.gov/
http://osvdb.org/
https://www.kb.cert.org/vuls/
https://secunia.com/community/advisories/search/
http://www.securityfocus.com/bid
http://lwn.net/Vulnerabilities/
http://denimgroup.com/resources-threadfix/
http://www.vulnerability-lab.com
http://www.secdocs.org/
Hacking Tutorials 💻
https://www.offensive-security.com/
http://www.kalitutorials.net/2013/08/kali-linux.html
https://www.youtube.com/user/DEFCONConference
https://www.youtube.com/user/Hak5Darren
https://www.youtube.com/user/sansinstitute
https://en.wikibooks.org/wiki/Metasploit/VideoTutorials
http://www.hacking-tutorial.com/
http://breakthesecurity.cysecurity.org/
http://www.securitytube.net/
http://www.ehacking.net/
https://vimeo.com/channels/fullscopesecurity
http://www.spacerogue.net/wordpress/
Virus Scan 🦠
https://www.virustotal.com/nl/
http://anubis.iseclab.org/
http://virusscan.jotti.org/it
--Not distribute to AV--
http://v2.scan.majyx.net/?page=home
http://fuckingscan.me/
https://anonscanner.com/
http://nodistribute.com/
http://www.file2scan.net/
Tools Download 🛠
http://tools.kali.org/tools-listing
http://insecure.org/
http://www.hackersonlineclub.com/hacking-tools
https://www.concise-courses.com/hacking-tools/
http://www.darknet.org.uk/category/hacking-tools/
http://www.kitploit.com/
http://www.toolswatch.org/
http://www.blackarch.org/tools.html
https://pentest-tools.com/reconnaissance/google-hacking
https://gexos.github.io/Hacking-Tools-Repository/
http://www.romhacking.net/utilities/
Network Online Tools 🌐
http://www.yougetsignal.com/
http://www.dnswatch.info/
http://www.nirsoft.net/countryip/
http://www.tcpiputils.com/
http://www.coffer.com/mac_find/
http://bgp.he.net/
http://www.sockets.com/services.htm
http://services.ce3c.be/ciprg/
IP Lookup 🔎
http://ip-api.com/#
http://www.my-ip-neighbors.com/
http://www.whatismyip.com/
http://www.ip2location.com/demo
http://freegeoip.net/static/index.html
http://whatstheirip.com
http://ipaddress.com
http://www.ip-adress.com/ipaddresstolocation/
Encrypt / Decrypt ⛓
http://crypo.in.ua/tools/
http://www.tools4noobs.com/online_tools/decrypt/
http://codebeautify.org/encrypt-decrypt
http://textmechanic.com/Encryption-Generator.html
http://www.yellowpipe.com/yis/tools/encrypter/
Online Hash Crackers 🧱
http://www.hashkiller.co.uk/
http://www.md5online.org/
http://www.cmd5.org/
http://www.md5crack.com/
http://www.netmd5crack.com/cracker/
http://md5decryption.com/
http://md5.rednoize.com/
http://www.md5this.com/index.php
http://www.tydal.nu/article/md5-crack/
http://passcracking.com/
https://hdb.insidepro.com/en
https://crackstation.net/
http://www.cloudcracker.net/
https://isc.sans.edu/tools/reversehash.html
http://www.onlinehashcrack.com/ [$]
http://hashcrack.in/en [$]
File Upload 📁
https://mega.co.nz/
https://www.mediafire.com/
https://infotomb.com/m/welcome
http://sharesend.com/
http://www.wss-coding.com/upload
http://zippyshare.com/
http://filetolink.com/
http://ge.tt/
http://largedocument.com/
http://rghost.net/
http://dox.abv.bg/files/share
http://secureupload.eu/
Anonymous Test 🕵
https://ipleak.net/
https://www.dnsleaktest.com/
https://diafygi.github.io/webrtc-ips/
Torcheck 🧅
http://5deqglhxcoy3gbx6.onion - Xenobite
http://tmkloc6vhxos3nde.onion
SMS 📩
http://receive-sms-now.com/
http://www.receive-sms-online.info/
http://www.receivesmsonline.net/
Fake Identity 🙃
http://www.fakenamegenerator.com/
https://fakena.me/
http://names.igopaygo.com/people/fake_person
🔰 USEFUL WEBSITES FOR PENTESTERS & HACKERS
______________________
Exploits Database 💥
http://www.exploit-db.com/
http://www.intelligentexploit.com
http://www.shodanhq.com/
http://packetstormsecurity.com/
Vulnerabilities Database 🎯
______________________
Exploits Database 💥
http://www.exploit-db.com/
http://www.intelligentexploit.com
http://www.shodanhq.com/
http://packetstormsecurity.com/
Vulnerabilities Database 🎯
https://cve.mitre.org/cve/
http://www.cvedetails.com/
https://nvd.nist.gov/
http://osvdb.org/
https://www.kb.cert.org/vuls/
https://secunia.com/community/advisories/search/
http://www.securityfocus.com/bid
http://lwn.net/Vulnerabilities/
http://denimgroup.com/resources-threadfix/
http://www.vulnerability-lab.com
http://www.secdocs.org/
Hacking Tutorials 💻
https://www.offensive-security.com/
http://www.kalitutorials.net/2013/08/kali-linux.html
https://www.youtube.com/user/DEFCONConference
https://www.youtube.com/user/Hak5Darren
https://www.youtube.com/user/sansinstitute
https://en.wikibooks.org/wiki/Metasploit/VideoTutorials
http://www.hacking-tutorial.com/
http://breakthesecurity.cysecurity.org/
http://www.securitytube.net/
http://www.ehacking.net/
https://vimeo.com/channels/fullscopesecurity
http://www.spacerogue.net/wordpress/
Virus Scan 🦠
https://www.virustotal.com/nl/
http://anubis.iseclab.org/
http://virusscan.jotti.org/it
--Not distribute to AV--
http://v2.scan.majyx.net/?page=home
http://fuckingscan.me/
https://anonscanner.com/
http://nodistribute.com/
http://www.file2scan.net/
Tools Download 🛠
http://tools.kali.org/tools-listing
http://insecure.org/
http://www.hackersonlineclub.com/hacking-tools
https://www.concise-courses.com/hacking-tools/
http://www.darknet.org.uk/category/hacking-tools/
http://www.kitploit.com/
http://www.toolswatch.org/
http://www.blackarch.org/tools.html
https://pentest-tools.com/reconnaissance/google-hacking
https://gexos.github.io/Hacking-Tools-Repository/
http://www.romhacking.net/utilities/
Network Online Tools 🌐
http://www.yougetsignal.com/
http://www.dnswatch.info/
http://www.nirsoft.net/countryip/
http://www.tcpiputils.com/
http://www.coffer.com/mac_find/
http://bgp.he.net/
http://www.sockets.com/services.htm
http://services.ce3c.be/ciprg/
IP Lookup 🔎
http://ip-api.com/#
http://www.my-ip-neighbors.com/
http://www.whatismyip.com/
http://www.ip2location.com/demo
http://freegeoip.net/static/index.html
http://whatstheirip.com
http://ipaddress.com
http://www.ip-adress.com/ipaddresstolocation/
Encrypt / Decrypt ⛓
http://crypo.in.ua/tools/
http://www.tools4noobs.com/online_tools/decrypt/
http://codebeautify.org/encrypt-decrypt
http://textmechanic.com/Encryption-Generator.html
http://www.yellowpipe.com/yis/tools/encrypter/
Online Hash Crackers 🧱
http://www.hashkiller.co.uk/
http://www.md5online.org/
http://www.cmd5.org/
http://www.md5crack.com/
http://www.netmd5crack.com/cracker/
http://md5decryption.com/
http://md5.rednoize.com/
http://www.md5this.com/index.php
http://www.tydal.nu/article/md5-crack/
http://passcracking.com/
https://hdb.insidepro.com/en
https://crackstation.net/
http://www.cloudcracker.net/
https://isc.sans.edu/tools/reversehash.html
http://www.onlinehashcrack.com/ [$]
http://hashcrack.in/en [$]
File Upload 📁
https://mega.co.nz/
https://www.mediafire.com/
https://infotomb.com/m/welcome
http://sharesend.com/
http://www.wss-coding.com/upload
http://zippyshare.com/
http://filetolink.com/
http://ge.tt/
http://largedocument.com/
http://rghost.net/
http://dox.abv.bg/files/share
http://secureupload.eu/
Anonymous Test 🕵
https://ipleak.net/
https://www.dnsleaktest.com/
https://diafygi.github.io/webrtc-ips/
Torcheck 🧅
http://5deqglhxcoy3gbx6.onion - Xenobite
http://tmkloc6vhxos3nde.onion
SMS 📩
http://receive-sms-now.com/
http://www.receive-sms-online.info/
http://www.receivesmsonline.net/
Fake Identity 🙃
http://www.fakenamegenerator.com/
https://fakena.me/
http://names.igopaygo.com/people/fake_person
🔰 USEFUL WEBSITES FOR PENTESTERS & HACKERS
______________________
Exploits Database 💥
http://www.exploit-db.com/
http://www.intelligentexploit.com
http://www.shodanhq.com/
http://packetstormsecurity.com/
Vulnerabilities Database 🎯
Exploit-Db
OffSec’s Exploit Database Archive
The Exploit Database - Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, Security Articles, Tutorials and more.
#Google: adiós a las # cookies en 2023
https://underc0de.org/foro/noticias-informaticas-120/google-adios-a-las-cookies-en-2023/
https://underc0de.org/foro/noticias-informaticas-120/google-adios-a-las-cookies-en-2023/
Underc0de
Google: Adiós a las cookies en 2023
Google pone fecha de caducidad a este mecanismo y confirma su (polémica) apuesta por FLoCGoogle quiere decir adiós a las cookies. Este sistema que durante años ha servido para recolectar datos de los usuarios de cara a los usuarios tiene los días contados:…
📃 "¿Por qué son tóxicas las redes sociales? ¿Cómo abordarlas adecuadamente?" https://www.liberties.eu/es/stories/redes-sociales-toxicas/43494
Liberties.eu
¿Por qué son tóxicas las redes sociales? ¿Cómo abordarlas adecuadamente?
Las redes sociales se han convertido en una parte inherente de nuestras vidas. Pero es importante ser conscientes de que pueden ser adictivas, y saber cómo abordarlo. Pero, ¿por qué son tan tóxicas?
China con el ejército de piratas informáticos es de casi 800.000, mientras que Estados Unidos puede tener menos de 50.000. Como la mayoría de las miras no pueden defenderse de los ataques APT, esta es una disparidad enorme. Y India El ejército de hackers es cero. https://www.ft.com/content/3350bce7-7f19-4a45-a749-79aa9b3b265e
Ft
China’s cyber power at least a decade behind the US, new study finds
International Institute for Strategic Studies says Beijing’s online capabilities have been ‘exaggerated’
sn0int: Framework #OSINT semiautomático y gestor de paquetes 🎛
https://github.com/kpcyrd/sn0int?_unique_id=60dbd1c8e7fcc
https://github.com/kpcyrd/sn0int?_unique_id=60dbd1c8e7fcc
GitHub
GitHub - kpcyrd/sn0int: Semi-automatic OSINT framework and package manager
Semi-automatic OSINT framework and package manager - GitHub - kpcyrd/sn0int: Semi-automatic OSINT framework and package manager
📃 "Mejores prácticas para configurar cualquier firewall en cualquier sistema" https://www.redeszone.net/tutoriales/seguridad/configurar-firewall-mejores-practicas/
Redes Zone
Mejores prácticas para configurar cualquier firewall en cualquier sistema
Los firewalls son una herramienta fundamental para proteger adecuadamente tanto nuestros PC, el router y toda la red de intrusiones externas. Los firewalls nos permitirán controlar el tráfico desde y hacia un destino, incorporando diferentes reglas. Si el…
https://blog.segu-info.com.ar/2021/06/poc-y-exploit-para-vulnerabilidad-de.html
CVE-2021-1675
Relacionados:
https://thehackernews.com/2021/06/researchers-leak-poc-exploit-for.html
CVE-2021-1675
Relacionados:
https://thehackernews.com/2021/06/researchers-leak-poc-exploit-for.html
Segu-Info - Ciberseguridad desde 2000
PoC y exploit para vulnerabilidad de Windows se filtra por error (CVE-2021-1675) - Actualizado CVE-2021-34527
VMware has released security patches for Carbon Black App Control to fix a critical vulnerability (CVE-2021-21998, CVSS 9.4) that could allow attackers to access targeted servers without authentication.
Details: https://thehackernews.com/2021/06/critical-auth-bypass-bug-affects-vmware.html
Details: https://thehackernews.com/2021/06/critical-auth-bypass-bug-affects-vmware.html
PoC y exploit para vulnerabilidad de Windows se filtra por error (CVE-2021-1675)
https://blog.segu-info.com.ar/2021/06/poc-y-exploit-para-vulnerabilidad-de.html
https://blog.segu-info.com.ar/2021/06/poc-y-exploit-para-vulnerabilidad-de.html
Segu-Info - Ciberseguridad desde 2000
PoC y exploit para vulnerabilidad de Windows se filtra por error (CVE-2021-1675) - Actualizado CVE-2021-34527
Las alertas mensuales de vulnerabilidades en App’s aumentan
https://cybersecuritynews.es/las-alertas-mensuales-de-vulnerabilidades-en-apps-aumentan/
https://cybersecuritynews.es/las-alertas-mensuales-de-vulnerabilidades-en-apps-aumentan/
CyberSecurity News
Las alertas de vulnerabilidades en App's aumentan
Las alertas mensuales de vulnerabilidades en App's aumentan entre las organizaciones según un estudio realizado por Dynatrace
‼ CVE-2021-22353 ‼
There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause the kernel to restart.
https://nvd.nist.gov/vuln/detail/CVE-2021-22353
There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause the kernel to restart.
https://nvd.nist.gov/vuln/detail/CVE-2021-22353
Gracias a todos los nuevos integrantes del grupo, por estar aquí y a los que siempre han estado desde el comienzo, un saludo y no olviden compartir el canal para que podamos seguir creciendo muchas gracias.
Canal en telegram
⚔🛡☣ Comunidad Anonimo501 💻📱🖥
https://t.me/Pen7esting
Canal de Youtube
https://youtube.com/c/Anonimo501
Github
https://github.com/Anonimo501
Canal en telegram
⚔🛡☣ Comunidad Anonimo501 💻📱🖥
https://t.me/Pen7esting
Canal de Youtube
https://youtube.com/c/Anonimo501
Github
https://github.com/Anonimo501
GitHub
Anonimo501 - Overview
Anonimo501 has 184 repositories available. Follow their code on GitHub.
#cve #windows #spooler #rce
PrintNightmare (CVE-2021-1675): Remote code execution in Windows Spooler Service
Source :
https://github.com/afwu/PrintNightmare
PrintNightmare (CVE-2021-1675): Remote code execution in Windows Spooler Service
Source :
https://github.com/afwu/PrintNightmare
Researchers Leak PoC Exploit for a Critical Windows RCE Vulnerability
[...]
Update — There are now indications that the fix released by Microsoft for the critical remote code execution vulnerability in the Windows Print spooler service in June does not completely remediate the root cause of the bug, according to the CERT Coordination Center, raising the possibility that it's a zero-day flaw in need of a patch.
[...]
https://thehackernews.com/2021/06/researchers-leak-poc-exploit-for.html
[...]
Update — There are now indications that the fix released by Microsoft for the critical remote code execution vulnerability in the Windows Print spooler service in June does not completely remediate the root cause of the bug, according to the CERT Coordination Center, raising the possibility that it's a zero-day flaw in need of a patch.
[...]
https://thehackernews.com/2021/06/researchers-leak-poc-exploit-for.html
PrintNightmare, Critical Windows Print Spooler Vulnerability
https://us-cert.cisa.gov/ncas/current-activity/2021/06/30/printnightmare-critical-windows-print-spooler-vulnerability
https://us-cert.cisa.gov/ncas/current-activity/2021/06/30/printnightmare-critical-windows-print-spooler-vulnerability