#Beacon – Telegram

#Beacon

1.18K subscribers

270 photos

26 videos

130 files

1.83K links

Прожаренный цуберпохек

[educational channel/white hat only] - do not try the knowledge from here on your home or other people's microwaves

Download Telegram

About

Blog

Apps

Platform

1.18K subscribers

Forwarded from Cybred

Самый уязвимый сервер

В 2021 году исследователь Джошуа Роджерс обнаружил 55 уязвимостей в популярном кэширующем прокси-сервере Squid. С тех пор прошло два года, — за это время разработчики исправили только 20 из них, а для остальных до сих пор нет патчей или иных способов защиты.

Уязвимости были найдены с помощью фаззинга, ручной проверки кода и статического анализа. Для каждой из них есть PoC. Не смотря на это, разработчики сервера жалуются на нехватку ресурсов и предлагают присылать патчи самим пользователям.

Список проблем, которые можно прямо сейчас гарантированно эксплуатировать в Squid 5.0.5:
— Stack Buffer Overflow in Digest Authentication
— Use-After-Free in TRACE Requests
— Partial Content Parsing Use-After-Free
— X-Forwarded-For Stack Overflow
— Use-After-Free in Cache Manager Errors
— Memory Leak in CacheManager URI Parsing
— Memory Leak in HTTP Response Parsing
— Memory Leak in ESI Error Processing

все остальные перечислено тут

772 views16:13

https://blog.malicious.group/from-akamai-to-f5-to-ntlm/

Malicious Group

From Akamai to F5 to NTLM... with love.

In this paper I will expose critical flaws in Akamai's implementation that lead to NTLM credential exposure. I'll demonstrate how these vulnerabilities chain across F5 infrastructure, presenting attack techniques and essential mitigations for defenders.

833 views20:01

https://portswigger.net/research/blind-css-exfiltration

763 views14:16

https://www.acceis.fr/ffuf-advanced-tricks/

737 views17:32

https://bishopfox.com/blog/json-interoperability-vulnerabilities

An Exploration & Remediation of JSON Interoperability Vulnerabilities

Learn more about how the same JSON document can be parsed with different values across microservices, leading to a variety of potential security risks.

805 views14:16

https://sysdig.com/blog/fuzzing-and-bypassing-the-aws-waf/

Fuzzing and Bypassing the AWS WAF

The Sysdig Threat Research Team discovered techniques that allowed the AWS WAF to be bypassed using a specialized DOM event. Web Application Firewalls

679 views23:07

https://github.com/0x999-x/jsluicepp

GitHub - 0x999-x/jsluicepp: jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic…

jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice - 0x999-x/jsluicepp

539 views21:08

Война_Израиля_и_ХАМАС_в_киберпространстве_2024.pdf

Война_Израиля_и_ХАМАС_в_киберпространстве_2024.pdf

451 views00:27

BLACKSTEM
exploited XSS bug on police site to deliver malware, lol

Starting in early September 2023, BLACKSTEM exploited a reflected cross-
site scripting (XSS) vulnerability on the website of the Palestinian Civil Police
Force (palpolice[.]ps). The link created a browser popup that redirected
the visitor to a “news.rar” archive containing an exploit for a known bug
(CVE-2023-38831) in the popular Windows file archiver tool WinRAR.
The final payload was the MAGNIFI backdoor.

382 viewsedited 00:29

This media is not supported in your browser

VIEW IN TELEGRAM

342 views02:15

Forwarded from PWN AI

AI Security 101

В интернете практически нету ресурсов, где был-бы собран глоссарий освещающий тему безопасности ИИ. Но недавно я обнаружил такой - AI Security 101 от Nightfall AI.

В глоссарии вы найдёте множество терминов от названий атак для ИИ до этико-правовых терминов. Каждый из терминов подкреплён небольшой статьёй, в которой могут быть описаны дополнительные аспекты.

BTW, ресурс постепенно пополняется новыми терминами.

310 views07:43

https://habr.com/ru/articles/516842/

HackTheBox. Прохождение Quick. QUIC HTTP/3, XSLT инъекция, Race condition

Продолжаю публикацию решений, отправленных на дорешивание машин с площадки HackTheBox . В данной статье разбираемся с подключением по QUIC HTTP/3, получаем RCE благодаря XSLT инъекции и используем...

329 views18:53

https://m.youtube.com/watch?v=2lBHvh0X42E

095 - Discourse SNS RCE, a Stored XSS in GitLab, and a Reddit Race Condition [Bug Hunting Podcast]

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/discourse-sns-rce-a-stored-xss-in-gitlab-and-a-reddit-race-condition.html

A couple unique vulns this week involving getting extra coins on Reddit, and bypassing…

357 views19:02

https://www.youtube.com/watch?v=mBcVUK7gG3U

How I Hacked NASA! - Medium Reading

https://medium.com/@Jh0n_0x/how-i-found-a-reflected-xss-at-nasa-cc8b7584dee7

https://github.com/tomnomnom/gf

311 views21:11

How i found Stored XSS in Google Books
https://www.youtube.com/watch?v=eZBGBMQzmGI

How i found Stored XSS in Google Books

#bugbounty #hacking #cybersecurity #ethicalhacking #hacker #infosec #kalilinux #pentesting #linux #informationsecurity #hackers #ethicalhacker #hackernews #ransomware #cybercrime #cybersecurityawareness #python #termux #exploit #security #malware #hack #cyberattack…

327 views21:20

Steam XSS $7,500 | Bug bounty 2018
https://www.youtube.com/watch?v=aybCeXhEjsA

Steam XSS $7,500 | Bug bounty 2018

xss
by zemnmez

For contact :-
https://www.instagram.com/gaurrravluthra/

364 views21:22

https://github.com/GhostTroops/TOP

GitHub - GhostTroops/TOP: TOP All bugbounty pentesting CVE-2023- POC Exp RCE example payload Things

TOP All bugbounty pentesting CVE-2023- POC Exp RCE example payload Things - GhostTroops/TOP

324 views21:29

https://github.com/GhostTroops/TOP

https://redteamrecipe.com/top-50-vulnerabilities-leading-to-rce-in-public-facing-applicationsrtc0016

Top 50 Vulnerabilities Leading to RCE in Public-Facing Applications

Vulnerability NameCVE IDHint

Log4Shell Vulnerability in Log4jCVE-2021-44228Link

ProxyLogon Vulnerability in Microsoft Exchange ServerCVE-2021-26855Link

BlueKeep Vulnerability in Windows RDPCVE-2019-0708Link

TMUI RCE Vulnerability in BIG-IPCVE-2...

408 views21:32

https://hackerone.com/reports/922456

GitLab disclosed on HackerOne: Ability to bypass email verification...

### Summary
There's a limitation that requires a validated email before going through the OAuth flow, however this is bypassable. Bypassing this means the target site assumes your email is...

460 views21:37

The Ultimate Red Team Roadmap | from indus
https://www.youtube.com/watch?v=XvUFd71HljE

The Ultimate Red Team Roadmap | اقوى خريطة تعلم فريق الاحمر

هل أنت مهتم بعالم الأمن السيبراني وترغب في التعرف على الاستراتيجيات والتقنيات التي تستخدمها الفرق الحمراء؟ لا تنظر أبعد من أحدث فيديو لدينا! نكشف عن خارطة طريق الفريق الأحمر النهائية، ونوفر لك دليلًا تفصيليًا لبناء مهاراتك والنهوض بحياتك المهنية في مجال الأمن…

534 views08:37

https://samcurry.net/web-hackers-vs-the-auto-industry/

Web Hackers vs. The Auto Industry: Critical Vulnerabilities in Ferrari, BMW, Rolls Royce, Porsche, and More

While we were visiting the University of Maryland, we came across a fleet of electric scooters scattered across the campus and couldn't resist poking at the scooter's mobile app. To our surprise, our actions caused the horns and headlights on all of the scooters…

448 views12:43