Learn how to exploit Symantec Endpoint Protection on all versions of Windows (CVE-2019-12750). Part 2 of this series by kyREcon delves into a more advanced method of exploitation! https://t.co/1LBcHOkQT7
LRQA
CVE-2019-12750: Symantec Endpoint Protection Local Privilege Escalation – Part 2
In this post we will walk you through a more sophisticated method of exploiting CVE-2019-12750. This is a local privilege escalation vulnerability that affects Symantec Endpoint Protection. The method of exploitation described in this post works, at the…
Bash one liner to take screenshot of web services running on an IP range.
IP="192.168.0"; for p in '80' '443'; do for i in $(seq 0 5); do TAKE_SS=$(cutycapt --url=$IP.$i:$p --out=$IP.$i:$p.png); done; done
IP="192.168.0"; for p in '80' '443'; do for i in $(seq 0 5); do TAKE_SS=$(cutycapt --url=$IP.$i:$p --out=$IP.$i:$p.png); done; done
OpenBSD Local Privilege Escalation Vulnerability (CVE-2019-19726) | Qualys Blog
https://blog.qualys.com/laws-of-vulnerabilities/2019/12/11/openbsd-local-privilege-escalation-vulnerability-cve-2019-19726
https://blog.qualys.com/laws-of-vulnerabilities/2019/12/11/openbsd-local-privilege-escalation-vulnerability-cve-2019-19726
Qualys
OpenBSD Local Privilege Escalation Vulnerability (CVE-2019-19726) | Qualys
Qualys Research Labs discovered a local privilege escalation vulnerability in OpenBSD’s dynamic loader. The vulnerability could allow local users or malicious software to gain full root privileges.
I made Silver public, mass vulnerability scanner 🔥
Github: https://t.co/jGZSPSFqnT
- Scans are resumable by default
- Get notified on Slack if a vulnerability is found
- Designed for large volume scans
- Caches vuln. data to improve performance over time
- Shodan integration
Github: https://t.co/jGZSPSFqnT
- Scans are resumable by default
- Get notified on Slack if a vulnerability is found
- Designed for large volume scans
- Caches vuln. data to improve performance over time
- Shodan integration
GitHub
s0md3v/Silver
Mass scan IPs for vulnerable services. Contribute to s0md3v/Silver development by creating an account on GitHub.
WhatsApp Protocol Decryption Burp Tool
https://t.co/SVlBsZou50
https://t.co/SVlBsZou50
GitHub
romanzaikin/BurpExtension-WhatsApp-Decryption-CheckPoint
This tool was created during our research at Checkpoint Software Technologies on Whatsapp Protocol (This repository will be updated after BlackHat 2019) - romanzaikin/BurpExtension-WhatsApp-Decrypt...
Writeup on how I made $40,000 breaking the new Chromium Edge using essentially two XSS flaws.
https://t.co/VZ3QGbxDF5
https://t.co/VZ3QGbxDF5
Leucosite
Microsoft Edge (Chromium) - EoP to RCE
With some luck and a couple of XSS bugs I was able to break the new Edge
Reverse Engineering with Ghidra - Part 0 (Main Windows & CrackMe) : https://t.co/AZaneRmO34
Part 1 (Data, Functions & Scripts) : https://t.co/wl7JIuFgxw
Part 1 (Data, Functions & Scripts) : https://t.co/wl7JIuFgxw
Powershell for exploitation and post exploitation : https://t.co/jpxupp5wPW
Peerlyst
Powershell for exploitation and post exploitation
Image credit: Powershell Magazine
Introduction
This time I’ll be taking a look at the Windows Powershell, and how it can be used during the exploitation and post exploitation phases of a penetration test. I’ll also be looking at the relationship b...
Introduction
This time I’ll be taking a look at the Windows Powershell, and how it can be used during the exploitation and post exploitation phases of a penetration test. I’ll also be looking at the relationship b...