#ITSecurity #ITSec Anti-DDOS - Anti DDOS Bash Script - KitPloit - PenTest Tools…
https://t.co/auLgQAXlCy
https://t.co/auLgQAXlCy
KitPloit - PenTest Tools for your Security Arsenal ☣
Anti-DDOS - Anti DDOS Bash Script
Programming Languages : BASH
WPA2: Broken with KRACK. What now?
https://www.alexhudson.com/2017/10/15/wpa2-broken-krack-now/
En diciembre se expondrá en la BlackHat:
https://www.blackhat.com/eu-17/briefings.html#key-reinstallation-attacks-breaking-the-wpa2-protocol
Fuente:
https://arstechnica.com/information-technology/2017/10/severe-flaw-in-wpa2-protocol-leaves-wi-fi-traffic-open-to-eavesdropping/?amp=1
Aquí se publicarán detalles a lo largo del día de hoy:
https://www.krackattacks.com/
https://www.alexhudson.com/2017/10/15/wpa2-broken-krack-now/
En diciembre se expondrá en la BlackHat:
https://www.blackhat.com/eu-17/briefings.html#key-reinstallation-attacks-breaking-the-wpa2-protocol
Fuente:
https://arstechnica.com/information-technology/2017/10/severe-flaw-in-wpa2-protocol-leaves-wi-fi-traffic-open-to-eavesdropping/?amp=1
Aquí se publicarán detalles a lo largo del día de hoy:
https://www.krackattacks.com/
Alex Hudson
WPA2: Broken with KRACK. What now?
On social media right now, strong rumours are spreading that the WPA2 encryption scheme has been broken in a fundamental way. What this means: the security built into WiFi is likely ineffective, and we should not assume it provides any security.
The current…
The current…
Adobe Patches Flash Zero-Day Used by BlackOasis APT
https://t.co/aY3ZqgNcmJ
https://t.co/aY3ZqgNcmJ
BleepingComputer
Adobe Patches Flash Zero-Day Used by BlackOasis APT
Last week, Adobe claimed it wouldn't release security updates for the first time since July 2012 because it had nothing to patch. Less than six days later, the company released a critical update for Flash Player that fixes a zero-day vulnerability exploited…
Vulnerabilidad de denegación de servicio en ImageMagick
http://unaaldia.hispasec.com/2017/10/vulnerabilidad-de-denegacion-de.html
http://unaaldia.hispasec.com/2017/10/vulnerabilidad-de-denegacion-de.html
Hispasec
Vulnerabilidad de denegación de servicio en ImageMagick
Boletín de noticias de seguridad informática unaaldia, ofrecido por Hispasec
Microsoft responded quietly after detecting secret database hack in 2013
http://www.reuters.com/article/amp/idUSKBN1CM0D0
http://www.reuters.com/article/amp/idUSKBN1CM0D0
U.S.
Microsoft responded quietly after detecting secret database hack in 2013
Microsoft Corp's secret internal database for tracking bugs in its own software was broken into by a highly sophisticated hacking group more than four years ago, according to five former employees, in only the second known breach of such a corporate database.
PoC Video:
1. How works Reverse Shells through Tor
2. HID attack + Reverse Meterpreter + Tor
https://youtu.be/cKYGTMkIDyE
1. How works Reverse Shells through Tor
2. HID attack + Reverse Meterpreter + Tor
https://youtu.be/cKYGTMkIDyE
YouTube
Sunshade and Blinds
1 - Connect backdoors through Tor
2 - Nethunter HID attack - powershell - Tor backdoor
https://goo.gl/U9eRWd
2 - Nethunter HID attack - powershell - Tor backdoor
https://goo.gl/U9eRWd
Con la Fall Creators Update, Linux ya es parte integral de Windows 10.
Y esto abre un mundo nuevo a fuente de amenazas, salto de restricciones, etc.
https://www.genbeta.com/windows/con-la-fall-creators-update-linux-ya-es-parte-integral-de-windows-10/amp
Y esto abre un mundo nuevo a fuente de amenazas, salto de restricciones, etc.
https://www.genbeta.com/windows/con-la-fall-creators-update-linux-ya-es-parte-integral-de-windows-10/amp
#Debian Aplicado parche para #KRACK vía apt "wpasupplicant (2:2.4-1+deb9u1) sobre (2:2.4-1)" info:
https://www.debian.org/security/2017/dsa-3999
https://www.debian.org/security/2017/dsa-3999
New Adobe Flash zero-day exploit used in targeted attacks by the BlackOasis APT - patch available now:
https://helpx.adobe.com/security/products/flash-player/apsb17-32.html
https://helpx.adobe.com/security/products/flash-player/apsb17-32.html
Adobe
Free and discontinued products | Support options
Phone and chat support is not available for free or discontinued software or services. Learn what other support resources might be available.
Adobe Releases Security Updates
https://t.co/dQHITcBeo0
https://t.co/dQHITcBeo0
www.us-cert.gov
Adobe Releases Security Updates
Adobe has released security updates to address a vulnerability in Adobe Flash Player. A remote attacker could exploit this vulnerability to take control of an affected system.US-CERT encourages users and administrators to review Adobe Security Bulletin APSB17…
Serious Crypto-Flaw Lets Hackers Recover Private RSA Keys Used in Billions of Devices.
#ROCA
https://thehackernews.com/2017/10/rsa-encryption-keys.html?m=1
#ROCA
https://thehackernews.com/2017/10/rsa-encryption-keys.html?m=1
The Hacker News
Serious Crypto-Flaw Lets Hackers Recover Private RSA Keys Used in Billions of Devices
Vulnerable Infineon’s Trusted Platform Module (TPM) Allows Hackers to Recover Private RSA Encryption Keys From Public Keys
Múltiples vulnerabilidades en #Citrix XenServer https://t.co/Mb0Q82EaA4
CERTSI
Múltiples vulnerabilidades en Citrix XenServer
Han sido identificadas múltiples vulnerabilidades en el producto XenServer de la compañía Citrix las cuales pueden permitir a un atacante comprometer el servidor anfitrión de la máquina virtual afectada.
Open Source Security Incident and Event Management: SIEMonster
https://t.co/fv09TBzkww #InfoSec #CyberSecurity
https://t.co/fv09TBzkww #InfoSec #CyberSecurity