Cobalt Strike: Using Known Private Keys To Decrypt Traffic – Part 2
https://blog.nviso.eu/2021/10/27/cobalt-strike-using-known-private-keys-to-decrypt-traffic-part-2/
https://blog.nviso.eu/2021/10/27/cobalt-strike-using-known-private-keys-to-decrypt-traffic-part-2/
NVISO Labs
Cobalt Strike: Using Known Private Keys To Decrypt Traffic – Part 2
We decrypt Cobalt Strike traffic using one of 6 private keys we found. In this blog post, we will analyze a Cobalt Strike infection by looking at a full packet capture that was taken during the inf…
[webapps] Simplephpscripts Simple CMS 2.1 - 'Multiple' Stored Cross-Site Scripting (XSS)
Simplephpscripts Simple CMS 2.1 - 'Multiple' Stored Cross-Site Scripting (XSS)
hxxps://www.exploit-db.com/exploits/50482
Simplephpscripts Simple CMS 2.1 - 'Multiple' Stored Cross-Site Scripting (XSS)
hxxps://www.exploit-db.com/exploits/50482
Cisco Policy Suite Static SSH Keys Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cps-static-key-JmS92hNv?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Cisco%20Policy%20Suite%20Static%20SSH%20Keys%20Vulnerability&vs_k=1
A vulnerability in the key-based SSH authentication mechanism of Cisco Policy Suite could allow an unauthenticated, remote attacker to log in to an affected system as the root user.
This vulnerability is due to a weakness in the SSH subsystem of an affected system. An attacker could exploit this vulnerability by connecting to an affected device through SSH. A successful exploit could allow the attacker to log in to an affected system as the root user.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cps-static-key-JmS92hNv
Security Impact Rating: Critical
CVE: CVE-2021-40119
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cps-static-key-JmS92hNv?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Cisco%20Policy%20Suite%20Static%20SSH%20Keys%20Vulnerability&vs_k=1
A vulnerability in the key-based SSH authentication mechanism of Cisco Policy Suite could allow an unauthenticated, remote attacker to log in to an affected system as the root user.
This vulnerability is due to a weakness in the SSH subsystem of an affected system. An attacker could exploit this vulnerability by connecting to an affected device through SSH. A successful exploit could allow the attacker to log in to an affected system as the root user.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cps-static-key-JmS92hNv
Security Impact Rating: Critical
CVE: CVE-2021-40119
Cisco
Cisco Security Advisory: Cisco Policy Suite Static SSH Keys Vulnerability
A vulnerability in the key-based SSH authentication mechanism of Cisco Policy Suite could allow an unauthenticated, remote attacker to log in to an affected system as the root user.
This vulnerability is due to a weakness in the SSH subsystem of an affected…
This vulnerability is due to a weakness in the SSH subsystem of an affected…
Game of Hacks: aprende a hackear
https://blog.segu-info.com.ar/2021/11/game-of-hacks-aprende-hackear.html
https://blog.segu-info.com.ar/2021/11/game-of-hacks-aprende-hackear.html
📃 "Documentación y formación en ciberseguridad" https://derechodelared.com/documentacion-y-formacion-en-ciberseguridad/
Derecho de la Red
Documentación y formación en ciberseguridad
documentación y recursos multimedia, así como con oferta de algún tipo de formación, de cualquier tipo de nivel y especialidad, de modo presencial u online.
Hola familia, espero estén bien perdón por estar tan perdido estos días, un saludo a cada uno y gracias por estar aquí.
Cuál es tu interés?
Cuál es tu interés?
Anonymous Poll
18%
Buffer overflow
33%
Pentesting perimetral (dispositivos y AD)
33%
Pentesting web
33%
Cracking
30%
Forense
42%
Wifi hacking
12%
NFTs
15%
Blockchain
15%
IOT
21%
Big data
Windows 11 x64 | 21H2 |
👉5.15 GB | Multi | Build 22000.282 |
👉 Noviembre 2021
👉 Basado en: Windows 11 Pro
👉 Autor: Wender Hack
➰➰➰➰➰➰➰➰
https://mega.nz/file/u943EYpT#UVUr9Oda81cWg_kUjDVEnJSpch4jlWHJZhUrpvvJPE0
👉5.15 GB | Multi | Build 22000.282 |
👉 Noviembre 2021
👉 Basado en: Windows 11 Pro
👉 Autor: Wender Hack
➰➰➰➰➰➰➰➰
https://mega.nz/file/u943EYpT#UVUr9Oda81cWg_kUjDVEnJSpch4jlWHJZhUrpvvJPE0
mega.nz
5.16 GB file on MEGA
Comunidad Pen7esting pinned «Hola familia, espero estén bien perdón por estar tan perdido estos días, un saludo a cada uno y gracias por estar aquí.
Cuál es tu interés?»
Cuál es tu interés?»
[webapps] ImportExportTools NG 10.0.4 - HTML Injection
ImportExportTools NG 10.0.4 - HTML Injection
https://www.exploit-db.com/exploits/50496
ImportExportTools NG 10.0.4 - HTML Injection
https://www.exploit-db.com/exploits/50496
Exploit Database
ImportExportTools NG 10.0.4 - HTML Injection
ImportExportTools NG 10.0.4 - HTML Injection.. webapps exploit for Multiple platform
Descubren “Pink”, una de las botnets más grandes del mundo https://unaaldia.hispasec.com/2021/11/descubren-pink-una-de-las-botnets-mas-grandes-del-mundo.html
Una al Día
Descubren “Pink”, una de las botnets más grandes del mundo
Se ha descubierto lo que dicen que es la “mayor red de bots”, en los últimos seis años con más de 1,6 millones de dispositivos infectados.
📃 "Network Hacking con Impacket"
Parte 1 https://thehackerway.com/2021/04/26/network-hacking-con-impacket-parte-1/
Parte 2 https://thehackerway.com/2021/05/17/network-hacking-con-impacket-parte-2/
Parte 3 https://thehackerway.com/2021/05/24/network-hacking-con-impacket-parte-3/
Parte 4 https://thehackerway.com/2021/05/27/network-hacking-con-impacket-parte-4/
Parte 5 https://thehackerway.com/2021/05/31/network-hacking-con-impacket-parte-5/
Parte 6 https://thehackerway.com/2021/09/13/network-hacking-con-impacket-parte-6/
Parte 1 https://thehackerway.com/2021/04/26/network-hacking-con-impacket-parte-1/
Parte 2 https://thehackerway.com/2021/05/17/network-hacking-con-impacket-parte-2/
Parte 3 https://thehackerway.com/2021/05/24/network-hacking-con-impacket-parte-3/
Parte 4 https://thehackerway.com/2021/05/27/network-hacking-con-impacket-parte-4/
Parte 5 https://thehackerway.com/2021/05/31/network-hacking-con-impacket-parte-5/
Parte 6 https://thehackerway.com/2021/09/13/network-hacking-con-impacket-parte-6/
The Hacker Way
Network Hacking con Impacket - Parte 1 - The Hacker Way
Demostración en vídeo de este post
🔥1
Paquetes NPM modificados e infectados (Verifica!)
https://blog.segu-info.com.ar/2021/11/paquetes-npm-modificados-e-infectados.html
https://blog.segu-info.com.ar/2021/11/paquetes-npm-modificados-e-infectados.html
Segu-Info - Ciberseguridad desde 2000
Paquetes NPM modificados e infectados (Verifica!)
Vulnerabilidad crítica en el kernel de Linux https://unaaldia.hispasec.com/2021/11/vulnerabilidad-critica-en-el-kernel-de-linux.html
Una al Día
Vulnerabilidad crítica en el kernel de Linux
Vulnerabilidad crítica en el kernel de Linux que podría llevar a la ejecución remota de código y a un compromiso total del sistema.
Clave SSH por defecto permitía acceso root en Cisco Policy Suite https://unaaldia.hispasec.com/2021/11/clave-ssh-por-defecto-permitia-acceso-root-en-cisco-policy-suite.html
Una al Día
Clave SSH por defecto permitía acceso root en Cisco Policy Suite
Cisco Policy Suite obligará a cambiar la clave SSH por defecto para el usuario root, debido a que la clave estática utilizada era insegura.
[webapps] FusionPBX 4.5.29 - Remote Code Execution (RCE) (Authenticated)
FusionPBX 4.5.29 - Remote Code Execution (RCE) (Authenticated)
https://www.exploit-db.com/exploits/50505
FusionPBX 4.5.29 - Remote Code Execution (RCE) (Authenticated)
https://www.exploit-db.com/exploits/50505
Exploit Database
FusionPBX 4.5.29 - Remote Code Execution (RCE) (Authenticated)
FusionPBX 4.5.29 - Remote Code Execution (RCE) (Authenticated). CVE-2021-43405 . webapps exploit for PHP platform
📃 "Estudio sobre la ciberseguridad y confianza del ciudadano en la red. Edición Julio 2021" https://unaaldia.hispasec.com/2021/09/estudio-sobre-la-ciberseguridad-y-confianza-del-ciudadano-en-la-red-edicion-julio-2021.html
Una al Día
Estudio sobre la ciberseguridad y confianza del ciudadano en la red. Edición Julio 2021
Los resultados del último estudio sobre la percepción y nivel de confianza en España ya están disponibles para su descarga a través del observatorio de ciberseguridad.
Varias vulnerabilidades de riesgo alto corregidas en Mozilla Firefox 94 https://t.co/7g3rWZJua7
Una al Día
Varias vulnerabilidades de riesgo alto corregidas en Mozilla Firefox 94
Firefox ha anunciado la corrección de varias vulnerabilidades en la versión 94, entre las que se encuentran 8 vulnerabilidades de riesgo alto.