SoheilSec

Disclosure of a bug in Adobe’s content-management solution – used by Mastercard, LinkedIn and PlayStation – were released.
https://threatpost.com/rce-bug-in-adobe-revealed/167382/
#adobe
#0day

Threat Post

Details of RCE Bug in Adobe Experience Manager Revealed

Disclosure of a bug in Adobe’s content-management solution - used by Mastercard, LinkedIn and PlayStation – were released.

173 views12:13

SoheilSec

CVE-2021-35523: Local Privilege Escalation in Securepoint SSL VPN Client 2.0.30
https://bogner.sh/2021/06/local-privilege-escalation-in-securepoint-ssl-vpn-client-2-0-30/

155 views12:19

SoheilSec

Google Compute Engine (GCE) VM takeover via DHCP flood - gain root access by getting SSH keys added by google_guest_agent

https://github.com/irsl/gcp-dhcp-takeover-code-exec
#googlecloud
#takeover

GitHub

GitHub - irsl/gcp-dhcp-takeover-code-exec: Google Compute Engine (GCE) VM takeover via DHCP flood - gain root access by getting…

Google Compute Engine (GCE) VM takeover via DHCP flood - gain root access by getting SSH keys added by google_guest_agent - irsl/gcp-dhcp-takeover-code-exec

172 views12:23

SoheilSec

https://twitter.com/gentilkiwi/status/1410066827590447108?s=28

Twitter

🥝 Benjamin Delpy

This #printnightmare / CVE-2021-1675 is really serious 🤪 Just adapted/simplified original POC then: *From Remote standard user to SYSTEM* Here on a domain controller, but valid on all systems with RPC to spooler available, remote or local ➡️ disable service…

151 views06:36

SoheilSec

CVE-2020-1170 - Microsoft Windows Defender Elevation of Privilege Vulnerability

CVE-2020-1170, an elevation of privilege bug in Windows Defender

https://itm4n.github.io/cve-2020-1170-windows-defender-eop/

itm4n’s blog

CVE-2020-1170 - Microsoft Windows Defender Elevation of Privilege Vulnerability

Here is my writeup about CVE-2020-1170, an elevation of privilege bug in Windows Defender. Finding a vulnerability in a security-oriented product is quite satisfying. Though, there was nothing groundbreaking. It’s quite the opposite actually and I’m surprised…

144 views12:08

SoheilSec

Top 10 Vulnerabilities: Internal Infrastructure Pentest

https://www.infosecmatter.com/top-10-vulnerabilities-internal-infrastructure-pentest/

InfosecMatter

Top 10 Vulnerabilities: Internal Infrastructure Pentest - InfosecMatter

Top #10 vulnerabilities found during internal infrastructure penetration tests. Weak and default passwords, outdated software, insufficient network segregation..

147 views12:09

SoheilSec

https://twitter.com/gentilkiwi/status/1410066827590447108?s=28

https://github.com/stong/CVE-2020-15368

GitHub

GitHub - stong/CVE-2020-15368: CVE-2020-15368, aka "How to exploit a vulnerable driver"

CVE-2020-15368, aka "How to exploit a vulnerable driver" - stong/CVE-2020-15368

149 views14:41

SoheilSec

IBM Gifts Threat Hunting Tool to Open Cybersecurity Alliance
Kestrel Threat Hunting Language
https://github.com/opencybersecurityalliance/kestrel-lang
#threathunting #opensource

GitHub

GitHub - opencybersecurityalliance/kestrel-lang: Kestrel threat hunting language: building reusable, composable, and shareable…

Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel. - opencybersecurityalliance/kestrel-lang

160 views18:40

SoheilSec

Pwning Cisco ISE: From Cross Site Scripting to Root Shell!
https://www.reddit.com/r/ReverseEngineering/comments/oasy1n/pwning_cisco_ise_from_cross_site_scripting_to/

Pwning Cisco ISE: From Cross Site Scripting to Root Shell!

Posted in r/ReverseEngineering by u/ChoiceGrapefruit0 • 53 points and 5 comments

167 views06:48

SoheilSec

Operation Eagle Eye - RCE to Enterprise Man-In-The-Middle
https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/

Securifera

Operation Eagle Eye

This article is in no way affiliated, sponsored, or endorsed with/by Fidelis Cybersecurity. All graphics are being displayed under fair use for the purposes of this article.

Operation Eagle Eye
Who remembers that movie about 15 years ago called Eagle…

166 views06:49

SoheilSec

IoT tools
#radereye
A tool made for specially scanning nearby devices[BLE, Bluetooth & Wifi] and execute our given command on our system when the target device comes in-between range.

https://github.com/souravbaghz/RadareEye

#canghost
Automated Script For Hacking Into CAN Bus - Car Hacking

https://github.com/souravbaghz/CANghost

GitHub

GitHub - souravbaghz/RadareEye: Tool for especially scanning nearby devices and execute a given command on its own system while…

Tool for especially scanning nearby devices and execute a given command on its own system while the target device comes in range. - souravbaghz/RadareEye

297 views06:56

SoheilSec

روند افزایش امنیت توییتر
سال 2018 2FA فعال کرد.
2019 برای جلوگیری از SIM-Swapping اجازه داد بدون شماره تلفن 2FA فعال کنند.
2020 اجازه استفاده اضافه کردن چند 2FA به کاربران داد.
و اکنون کلیدهای امنیتی رو به مکانیزم های امنیتی 2FA خودش اضافه کرده جالبی قضیه اینکه این مکانیزم بر پایه استانداردهای FIDO و WebAuthn هست که در صورت سواستفاده سایت های فیشینگ تشخیص میدند !

https://help.twitter.com/en/managing-your-account/two-factor-authentication

پ.ن امنیت بانک ها و بقیه زیرساخت های ما تو چه سطح هستند ؟

How to use two-factor authentication (2FA) on X

Two-factor authentication is an extra layer of security for your X account. Get an overview of this feature, including how to enable it.

167 views12:45

SoheilSec

image_2021-07-01_17-17-39.png

17.8 KB

settings and privacy - > security and account Access - > Two Factor Authentication | additional password protection

168 views12:47

SoheilSec

https://twitter.com/gentilkiwi/status/1410066827590447108?s=28