De momento solo se ha montado contenido de Azure: https://discord.gg/5JRzRhyc

📃 "Cómo buscar vulnerabilidades en SmartContracts, SQL Injection, XSS o bugs Python con ChatGPT" https://www.elladodelmal.com/2023/01/como-buscar-vulnerabilidades-en.html

OWASP API Security 2023:
- Broken object level authorization
- Broken authentication
- Broken object property level authorization
- Unrestricted resource consumption
- Broken function level authorization
- Server side request forgery
- Security misconfiguration
- Lack of protection from authentication threats
- Improper assets management
- Unsafe consumption of APIs

https://github.com/OWASP/API-Security/tree/master/2023/en/src

Decider: herramienta gratuita para generar informes de MITRE ATT&CK
https://blog.segu-info.com.ar/2023/03/decider-herramienta-gratuita-para.html

📃 "10 Herramientas esenciales para pentesting en Active Directory – Parte 1 de 2" https://thehackerway.com/2023/01/18/10-herramientas-imprescindibles-para-pentesting-en-active-directory/
📃 "10 Herramientas esenciales para pentesting en Active Directory – Parte 2 de 2" https://thehackerway.com/2023/01/25/10-herramientas-esenciales-para-pentesting-en-active-directory-parte-2-de-2/

🛠 Evil-WinRM https://t.me/seguridadinformatic4/2984
🛠 GhostPack https://t.me/seguridadinformatic4/3708
🛠 CrackMapExec https://t.me/seguridadinformatic4/2659
🛠 ADReaper https://github.com/AidenPearce369/ADReaper
🛠 Certify https://github.com/GhostPack/Certify y Certipy https://github.com/ly4k/Certipy
🛠 BloodHound https://github.com/BloodHoundAD/BloodHound y SilentHound https://github.com/layer8secure/SilentHound
🛠 PingCastle https://www.pingcastle.com/
🛠 Impacket https://github.com/fortra/impacket
🛠 WinPEAS https://github.com/carlospolop/PEASS-ng/tree/master/winPEAS
🛠 Mimikatz https://github.com/gentilkiwi/mimikatz

Researchers Released MS Office Zero-Day Vulnerability Details and Exploit Code https://www.cyberkendra.com/2023/03/researchers-released-ms-office-zero-day.html

QRExfiltrate: exfiltrar datos mediante un QR animado
https://blog.segu-info.com.ar/2023/03/qrexfiltrate-exfiltrar-datos-mediante.html

Quien interesados en presentar un examen de certificacion Microsoft (𝐍𝐨 𝐢𝐦𝐩𝐨𝐫𝐭𝐚 𝐜𝐮𝐚𝐥 𝐬𝐞𝐚) Se esta 𝐨𝐟𝐫𝐞𝐜𝐢𝐞𝐧𝐝𝐨 𝐯𝐨𝐮𝐜𝐡𝐞𝐫𝐬 𝐪𝐮𝐞 𝐜𝐮𝐛𝐫𝐞 𝐥𝐚 𝐦𝐢𝐭𝐚𝐝 𝟓𝟎% 𝐝𝐞𝐥 𝐯𝐚𝐥𝐨𝐫 𝐝𝐞𝐥 𝐞𝐱𝐚́𝐦𝐞𝐧𝐞𝐬 𝐌𝐢𝐜𝐫𝐨𝐬𝐨𝐟𝐭 (𝐄𝐱𝐚𝐦𝐞𝐧 𝐭𝐨𝐭𝐚𝐥 𝐯𝐚𝐥𝐞 𝟖𝟎 𝐝𝐨𝐥𝐚𝐫𝐞𝐬) 𝐩𝐞𝐫𝐨 𝐜𝐨𝐧 𝐞𝐥 𝐯𝐨𝐮𝐜𝐡𝐞𝐫 𝐪𝐮𝐞𝐝𝐚 𝐞𝐧 𝟒𝟎 𝐝𝐨𝐥𝐚𝐫𝐞𝐬, 𝐄𝐥 𝐜𝐨𝐬𝐭𝐨 𝐝𝐞𝐥 𝐯𝐨𝐮𝐜𝐡𝐞𝐫 𝐞𝐬 𝐝𝐞 𝟏𝟎𝟎 𝐦𝐢𝐥 𝐩𝐞𝐬𝐨𝐬 𝐜𝐨𝐥𝐨𝐦𝐛𝐢𝐚𝐧𝐨𝐬, 𝐐𝐮𝐢𝐞𝐫𝐞 𝐝𝐞𝐜𝐢𝐫 𝐪𝐮𝐞 𝐬𝐨𝐥𝐨 𝐯𝐚𝐬 𝐢𝐧𝐯𝐞𝐫𝐭𝐢𝐫 𝐚𝐥𝐫𝐞𝐝𝐞𝐝𝐨𝐫 𝐝𝐞 𝟔𝟎 𝐝𝐨𝐥𝐚𝐫𝐞𝐬 𝐞𝐧 𝐭𝐨𝐭𝐚𝐥 𝐩𝐨𝐫 𝐞𝐥 𝐞𝐱𝐚𝐦𝐞𝐧, 𝐎𝐬𝐞𝐚 𝐪𝐮𝐞 𝐚𝐡𝐨𝐫𝐫𝐚𝐬 𝟐𝟎 𝐝𝐨𝐥𝐚𝐫𝐞𝐬.

Comunicarse por Whastapp: +573147102178
Comunicarse por LinkedIn: https://lnkd.in/ekKZYjw6

Listado Oficial Certificaciones Microsoft:
https://lnkd.in/eD2NpXck

CVE-2023-21716: vulnerabilidad crítica en MS Word al abrir documento RTF malicioso (CVE-2023-21716)
https://blog.segu-info.com.ar/2023/03/cve-2023-21716-vulnerabilidad-critica.html

CorePlague: vulnerabilidades graves en Jenkins
https://blog.segu-info.com.ar/2023/03/coreplague-vulnerabilidades-graves-en.html

os comparto para los nuevos del grupo el canal de youtube perteneciente a este canal de telegram.

Saludos.

https://www.youtube.com/@Anonimo501

(Otra) vulnerabilidad crítica en Fortinet (CVE-2023-25610)
https://blog.segu-info.com.ar/2023/03/otra-vulnerabilidad-critica-en-fortinet.html

comparte secretos de manera segura.

https://yopass.se/#/