Month: September 2016

CVE-2016-6415 – CISCO confirms a new Zero-Day linked to Equation Group hack

CVE-2016-6415 – CISCO confirms a new Zero-Day linked to Equation Group hack http://ift.tt/2cjsvYs Cisco revealed the existence of another zero-day vulnerability, tracked as CVE-2016-6415, in the Equation Group archive leaked by the Shadow Broker hackers. This summer a group of hackers known as Shadow Brokers hacked into the arsenal of the NSA-linked group Equation Group and leaked…

September 19, 2016
Security alert – All geth nodes crash due to an out of memory bug

Security Alert Affected configurations: Geth Likelihood: High Severity: High Summary: geth nodes running out of memory and crashing on block http://ift.tt/2cUzDIB Details: TBD Proposed solution: Switch to an alternative client until fix is provided: Parity implementation The post Security alert – All geth nodes crash due to an out of memory bug appeared first on…

September 19, 2016
Bypass-UAC, PowerShell framework for UAC attacks (no injecting dll’s into explorer!) via /r/netsec

Bypass-UAC, PowerShell framework for UAC attacks (no injecting dll’s into explorer!) http://ift.tt/2cRGgM5 Submitted September 18, 2016 at 04:55PM by In7rud3R via reddit http://ift.tt/2cKbJgU

September 18, 2016
Reverse Engineering Cisco ASA for EXTRABACON Offsets via /r/netsec

Reverse Engineering Cisco ASA for EXTRABACON Offsets http://ift.tt/2cffgTS Submitted September 18, 2016 at 01:01AM by zerosum0x0 via reddit http://ift.tt/2cVt9Ms

September 18, 2016
Twice the Bits, Twice the Trouble: Vulnerabilities Induced by Migrating to 64-Bit Platforms (pdf) via /r/netsec

Twice the Bits, Twice the Trouble: Vulnerabilities Induced by Migrating to 64-Bit Platforms (pdf) http://ift.tt/2cJJpvb Submitted September 18, 2016 at 01:32PM by based2 via reddit http://ift.tt/2cHDfx4

September 18, 2016
Fixing Unquoted Search Paths Using Powershell via /r/netsec

Fixing Unquoted Search Paths Using Powershell http://ift.tt/2czq6KM Submitted September 18, 2016 at 12:31AM by stackcrash via reddit http://ift.tt/2daIaJI

September 18, 2016
Blind Java Deserialization Vulnerability with Apache CommonsCollections and ysoserial via /r/netsec

Blind Java Deserialization Vulnerability with Apache CommonsCollections and ysoserial http://ift.tt/2cmPXCK Submitted September 18, 2016 at 02:05PM by ph4r05 via reddit http://ift.tt/2d3LcAB

September 18, 2016
Mass-analyzing a chunk of the Internet via /r/netsec

Mass-analyzing a chunk of the Internet http://ift.tt/2cyrkWG Submitted September 18, 2016 at 11:46AM by bemmu via reddit http://ift.tt/2czd4wv

September 18, 2016
HSTSPreload.com: A simple API to check browser HSTS preload status via /r/netsec

HSTSPreload.com: A simple API to check browser HSTS preload status http://ift.tt/2cmsLV1 Submitted September 18, 2016 at 08:25AM by PlenoJure via reddit http://ift.tt/2czyM08

September 18, 2016
Active or aspiring pentester? Here are 13 helpful pentesting blogs. via /r/netsec

Active or aspiring pentester? Here are 13 helpful pentesting blogs. http://ift.tt/2bZtlGG Submitted September 18, 2016 at 08:39AM by paullikesapps via reddit http://ift.tt/2cvHg6x

September 18, 2016