securityXspace

Month: August 2019

  • HTTP Desync attacks

    New research from the PortSwigger team blog to accompany their demonstrations at DEFCON and BlackHat. This detailed paper introduces their new method of attack, with clear examples and impacts. A very concise description of mitigation options. Check out the detail here.

  • Superhedgy’s AttackSurfaceMapper

    AttackSurfaceMapper is an OSINT reconnaissance tool for use in the initial stages of a penetration test. I suppose it could also be used by internal teams to monitor an organisation’s digital footprint and attack surface for changes over time. This version requires python3 and has just been released on Github.

  • Scapy – A packet manipulation tool

    The latest version of Scapy, a python-based PCAP packet manipulation tool, has been released on Aug 07. Scapy enables scanning, fingerprinting, sniffing and packet forging. Scapy required python and runs on pretty much any platform that support python. The documentation is rich and details and covers all the major features. Check out the installation page…

  • Cisco Patches Critical Flaws in Network Switches

    Cisco this week released patches to address several vulnerabilities in its Small Business 220 Series Smart Switches, including two bugs rated Critical severity. Source: Cisco Patches Critical Flaws in Network Switches

  • Severe local 0-Day escalation exploit found in Steam Client Services

    Gamers beware! Ars Technica: A security flaw in Steam’s client service allows easy execution of arbitrary code as LOCALSYSTEM. Earlier today, disgruntled security researcher Vasily Kravets released a zero-day vulnerability in the Windows version of the ubiquitous gaming service Steam. Source: Severe local 0-Day escalation exploit found in Steam Client Services

  • Reverse RDP Attack Also Enables Guest-to-Host Escape in Microsoft Hyper-V

    The Hacker News: Remember the Reverse RDP Attack? Earlier this year, researchers disclosed clipboard hijacking and path-traversal issues in Microsoft’s Windows built-in RDP client that could allow a malicious RDP server to compromise a client computer, reversely. (You can find details and a video demonstration for this security vulnerability, along with dozens of critical flaws…

  • KDE Linux Desktops Could Get Hacked Without Even Opening Malicious Files

    If you are running a KDE desktop environment on your Linux operating system, you need to be extra careful and avoid downloading any “.desktop” or “.directory” file for a while. A cybersecurity researcher has disclosed an unpatched zero-day vulnerability in the KDE software framework that could allow maliciously crafted .desktop and .directory files to silently…

  • SQLMAP – Automatic SQL Injection Tool 1.3.8

    The latest version of the popular SQL attack automation tool, SQLMAP, has been released. This new release includes the following features: Full support for MySQL, Oracle, PostgreSQL, MS SQL Server, MS Access, IBM DB2, SQLite, Firebird, Sybase, SQP, MaxDB, Informix, HSQLDB and H2; Full support for six SQL injection types: boolean-based blind; time-base blind; error-based;…

  • Microsoft detects Russian state hackers using compromised IoT devices to launch attacks

    Microsoft has detected that Russian government-sponsored hackers are using IoT devices, such as internet-connected printers, to target and launch attacks against computer networks. Source: Microsoft catches Russian state hackers using IoT devices to breach networks

  • New Flaws in Qualcomm Chips Expose Millions of Android Devices to Hacking

    A series of critical vulnerabilities have been discovered in Qualcomm chipsets that could allow hackers to compromise Android devices remotely just by sending malicious packets over-the-air with no user interaction. Reality check: These flaws have been fixed on Android, so make sure your phone is up to date. These vulnerabilities are not being exploited in…