Critical flaw in Microsoft Hyper-V could allow RCE and DoS
Experts disclose details about a critical flaw in Microsoft Hyper-V, tracked as CVE-2021-28476, that can allow executing arbitrary code on it.
Researchers Peleg Hadar of SafeBreach and Ophir Harpaz of Guardicore disclose details about a critical flaw in Microsoft Hyper-V, tracked as CVE-2021-28476, that can allow triggering a DoS condition ot executing arbitrary code on it.
https://securityaffairs.co/wordpress/120654/hacking/critical-microsoft-hyper-v-bug.html
Experts disclose details about a critical flaw in Microsoft Hyper-V, tracked as CVE-2021-28476, that can allow executing arbitrary code on it.
Researchers Peleg Hadar of SafeBreach and Ophir Harpaz of Guardicore disclose details about a critical flaw in Microsoft Hyper-V, tracked as CVE-2021-28476, that can allow triggering a DoS condition ot executing arbitrary code on it.
https://securityaffairs.co/wordpress/120654/hacking/critical-microsoft-hyper-v-bug.html
Security Affairs
Critical flaw in Microsoft Hyper-V could allow RCE and DoS
Experts disclose details about a critical flaw in Microsoft Hyper-V, tracked as CVE-2021-28476, that can allow executing arbitrary code on it.
Sábado 31/07/21 EkoParty UniTalks: https://underground.org.mx/index.php?topic=181.0
Top 30 de vulnerabilidades críticas explotadas in-the-wild
https://blog.segu-info.com.ar/2021/07/top-30-de-vulnerabilidades-criticas.html
https://blog.segu-info.com.ar/2021/07/top-30-de-vulnerabilidades-criticas.html
Segu-Info - Ciberseguridad desde 2000
Top 30 de vulnerabilidades críticas explotadas in-the-wild
Facebook Vulnerability: Expose Group Member — $3000
https://medium.com/@muhammadsholikhin/facebook-vulnerability-expose-group-member-3000-cca809a53f6b
https://medium.com/@muhammadsholikhin/facebook-vulnerability-expose-group-member-3000-cca809a53f6b
Medium
Facebook Vulnerability: Expose Group Member — $3000
The issue is Insecure Direct Object with impact malicious user can expose or determine member on closed group. But the issue have limits…
PunkSpider: el retorno del polémico 'buscador para hackers' que escaneará y publicará las vulnerabilidades de los ...
https://www.genbeta.com/seguridad/punkspider-retorno-polemico-buscador-para-hackers-que-escaneara-publicara-vulnerabilidades-sitios-web
https://www.genbeta.com/seguridad/punkspider-retorno-polemico-buscador-para-hackers-que-escaneara-publicara-vulnerabilidades-sitios-web
Genbeta
PunkSpider: el retorno del polémico 'buscador para hackers' que escaneará y publicará las vulnerabilidades de los sitios web
Podemos encontrar casi cualquier cosa en Internet: sólo hace falta recurrir a un buscador y tendremos en unos segundos esa noticia, receta o artículo de...
📃 "ProtOSINT, un script que te ayuda a investigar cuentas de ProtonMail y las IP de ProtonVPN" https://derechodelared.com/protosint-cuentas-protonmail-protonvpn/
Derecho de la Red
ProtOSINT, un script que te ayuda a investigar cuentas de ProtonMail y las IP de ProtonVPN.
ProtOSINT es un script en Python 3 que nos ayuda a investigar cuentas de ProtonMail y las direcciones IP que se encuentran detrás de las cuentas de ProtonVPN.
Decryption Tools for Many Different Ransomware Encrypted Files
https://www.nomoreransom.org/en/decryption-tools.html
It has almost 50+ different Popular Ransom Decrypter
https://www.nomoreransom.org/en/decryption-tools.html
It has almost 50+ different Popular Ransom Decrypter
The No More Ransom Project
Decryption Tools | The No More Ransom Project
IMPORTANT! Before downloading and starting the solution, read the how-to guide. Make sure you remove the malware from your system first, otherwise it will repeatedly lock your system or encrypt files. Any reliable antivirus solution can do this for you.
Node.js fixes severe HTTP bug that could let attackers crash apps.
[...]
The fixes landed in the latest Node.js release 16.6.0 and were also backported to versions 12.22.4 (LTS) and 14.17.4 (LTS).
[...]
https://www.bleepingcomputer.com/news/security/nodejs-fixes-severe-http-bug-that-could-let-attackers-crash-apps/
[...]
The fixes landed in the latest Node.js release 16.6.0 and were also backported to versions 12.22.4 (LTS) and 14.17.4 (LTS).
[...]
https://www.bleepingcomputer.com/news/security/nodejs-fixes-severe-http-bug-that-could-let-attackers-crash-apps/
BleepingComputer
Node.js fixes severe HTTP bug that could let attackers crash apps
Node.js has released updates for a high severity vulnerability that could be exploited by attackers to crash the process and cause unexpected behaviors. The use-after-free vulnerability, tracked as CVE-2021-22930 is to do with how HTTP2 streams are handled…
📃 "Comprueba si tu IP o dominio está en una lista negra con estas webs" https://www.redeszone.net/tutoriales/seguridad/averiguar-ip-dominio-lista-negra/
🛠 blacklist alert https://blacklistalert.org
🛠 MX ToolBox https://mxtoolbox.com/
🛠 spamhaus https://www.spamhaus.org/lookup/
🛠 DNS queries https://www.dnsqueries.com/es/mi_ip_esta_en_lista_negra.php
🛠 blacklist alert https://blacklistalert.org
🛠 MX ToolBox https://mxtoolbox.com/
🛠 spamhaus https://www.spamhaus.org/lookup/
🛠 DNS queries https://www.dnsqueries.com/es/mi_ip_esta_en_lista_negra.php
Redes Zone
Comprueba si tu IP o dominio está en una lista negra con estas webs
Los propietarios deben comprobar periódicamente si sus direcciones IP y dominios están dentro de una lista negra. Esto, no se trata de una cuestión sin importancia, ya que si nuestra organización está dentro de alguna de esas listas puede hacerle perder reputación.…
Public print server gives anyone Windows admin privileges
https://www.bleepingcomputer.com/news/microsoft/public-print-server-gives-anyone-windows-admin-privileges/
https://www.bleepingcomputer.com/news/microsoft/public-print-server-gives-anyone-windows-admin-privileges/
BleepingComputer
Remote print server gives anyone Windows admin privileges on a PC
A researcher has created a remote print server allowing any Windows user with limited privileges to gain complete control over a device simply by installing a print driver.
Vulnerabilidades de Software: La historia interminable
https://cybersecuritynews.es/vulnerabilidades-de-software-la-historia-interminable/
https://cybersecuritynews.es/vulnerabilidades-de-software-la-historia-interminable/
CyberSecurity News
Vulnerabilidades de Software: La historia interminable
Vulnerabilidades de Software: La historia interminable | Cómo protegerse contra ataques a vulnerabilidades de software
Estos son los CVE’s más explotados 💣 del 2020 y lo que va del 2021, sorprende ver fallos con más de 4 años de antigüedad 🗝 en la lista 😱https://t.co/2qIdgd1F8F https://t.co/xaxr1k6uRH
Twitter
DragonJAR - Seguridad Informática
Estos son los CVE’s más explotados 💣 del 2020 y lo que va del 2021, sorprende ver fallos con más de 4 años de antigüedad 🗝 en la lista 😱djar.me/cve
Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
https://github.com/boku7/injectAmsiBypass
https://github.com/boku7/injectAmsiBypass
GitHub
GitHub - boku7/injectAmsiBypass: Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
Cobalt Strike BOF - Bypass AMSI in a remote process with code injection. - boku7/injectAmsiBypass
Fuzzing Windows RPC with RpcView https://itm4n.github.io/fuzzing-windows-rpc-rpcview/
itm4n’s blog
Fuzzing Windows RPC with RpcView
The recent release of PetitPotam by @topotam77 motivated me to get back to Windows RPC fuzzing. On this occasion, I thought it would be cool to write a blog post explaining how one can get into this security research area.