CVE-2020-2555: Deserialization bug in Oracle’s Weblogic server
https://www.thezdi.com/blog/2020/3/5/cve-2020-2555-rce-through-a-deserialization-bug-in-oracles-weblogic-server
https://www.thezdi.com/blog/2020/3/5/cve-2020-2555-rce-through-a-deserialization-bug-in-oracles-weblogic-server
Zero Day Initiative
Zero Day Initiative — CVE-2020-2555: RCE Through a Deserialization Bug in Oracle’s WebLogic Server
Insecure deserialization vulnerabilities have become a popular target for attackers/researchers against Java web applications. These vulnerabilities often lead to reliable remote code execution and are generally difficult to patch. In this blog post, we will…
Forwarded from r0 Crew (Channel)
Canadian Furious Beaver is a tool for hijacking IRPs handler in Windows drivers https://github.com/hugsy/CFB #exploitation #windows #dukeBarman
Exploiting an accidentally discovered V8 RCE
https://zon8.re/posts/exploiting-an-accidentally-discovered-v8-rce/
https://zon8.re/posts/exploiting-an-accidentally-discovered-v8-rce/
zon8.re
Exploiting an Accidentally Discovered V8 RCE
Please start opening your eyes, if you have something that crashes, don’t just ignore it, don’t just click away…
Take the time to look at what happened, if you surf to a page with your web browser and your web browser disappears, and you surf to the page…
Take the time to look at what happened, if you surf to a page with your web browser and your web browser disappears, and you surf to the page…
Callidus. C2 tool that uses O365 services as communication channels
https://3xpl01tc0d3r.blogspot.com/2020/03/introduction-to-callidus.html
https://3xpl01tc0d3r.blogspot.com/2020/03/introduction-to-callidus.html
Blogspot
Introduction to Callidus
Blogs related to information security.
Pass-the-Hash & Administrative Tier Model
https://windowssecurity.ca/2020/03/09/pass-the-hash-is-still-a-threat/
https://windowssecurity.ca/2020/03/09/pass-the-hash-is-still-a-threat/
Avast Antivirus JavaScript Interpreter
The main Avast antivirus process is called AvastSvc.exe, which runs as SYSTEM.
https://github.com/taviso/avscript
The main Avast antivirus process is called AvastSvc.exe, which runs as SYSTEM.
https://github.com/taviso/avscript
GitHub
GitHub - taviso/avscript: Avast JavaScript Interactive Shell
Avast JavaScript Interactive Shell . Contribute to taviso/avscript development by creating an account on GitHub.
C3 integration with Covenant and Donut
https://labs.f-secure.com/blog/making-donuts-explode-updates-to-the-c3-framework/
https://labs.f-secure.com/blog/making-donuts-explode-updates-to-the-c3-framework/
An Offensive Kerberos Overview
https://posts.specterops.io/kerberosity-killed-the-domain-an-offensive-kerberos-overview-eb04b1402c61
https://posts.specterops.io/kerberosity-killed-the-domain-an-offensive-kerberos-overview-eb04b1402c61
Medium
Kerberosity Killed the Domain: An Offensive Kerberos Overview
Kerberos is the preferred way of authentication in a Windows domain, with NTLM being the alternative. Kerberos authentication is a very…
This video presents two demos of LVI (Load Value Injection) proof of concept attacks.
https://www.youtube.com/watch?v=goy8XRXFlh4
https://www.youtube.com/watch?v=goy8XRXFlh4
YouTube
LVI (Load Value Injection) Demo Video
This video presents two demos of LVI (Load Value Injection) proof of concept attacks. In the first, the attacker redirects the victim code execution like in a ROP (return-oriented programming) attack. In the second, zero is injected as an AES-NI round key…
Advanced process monitoring techniques in offensive operations
https://outflank.nl/blog/2020/03/11/red-team-tactics-advanced-process-monitoring-techniques-in-offensive-operations/
https://outflank.nl/blog/2020/03/11/red-team-tactics-advanced-process-monitoring-techniques-in-offensive-operations/