Tuits
- Tuits, pàgina actual.
- Tuits i respostes
- Continguts
Has blocat @codewhitesec
Estàs segur que vols veure aquests tuits? Això no desblocarà @codewhitesec.
-
PIC your Katz! Say hello to HandleKatz, our position independent Lsass dumper abusing cloned handles, direct system calls and a modified version of minidumpwritedump() brought to you by
@thefLinkk#BruCON0x0Dhttps://github.com/codewhitesec/HandleKatz …Gràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
Getting RCE with a Razor! Our walk-through of CVE-2021-22941 affecting Citrix ShareFile Storage Zones Controller by
@mwulftange is now livehttps://codewhitesec.blogspot.com/2021/09/citrix-sharefile-rce-cve-2021-22941.html …Gràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
ADFS endpoints are now supported in CredMaster tnx to
@frycos#passwordspraying#weakpasswords#redteaminghttps://github.com/knavesec/CredMaster …Gràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
.
@citrix published a security bulletin regarding a pre-auth RCE in@sharefile Storage Zones Controller (CVE-2021-22941) found by@mwulftange: https://support.citrix.com/article/CTX328123 … Details will follow on our blog athttps://codewhitesec.blogspot.comGràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
How the search for deser bugs in
#SAP sent@kaidentity down a rabbit hole where he winded up stumbling upon a completely unrelated unauth'ed admin access#CVE-2021-21481https://codewhitesec.blogspot.com/2021/06/about-unsuccessful-quest-for.html …Gràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
Happy to announce that our talk 'PIC Your Malware' was accepted
@BruCON!@thefLinkk and@b00n10 will share their experiences on leveraging fully position independent code to avoid suspicious memory artifacts & other useful techniques to stay under the radar of EDRs & BlueTeamsGràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
Unauth'd admin access to
#SAP#Netweaver? Our very own@kaidentity has you covered, see#CVE-2021-21481 and SAP Security Note 3022422. Better patch than sorry. Our customers got their heads-up already and we'll publish a detailed blog post when appropriate.Gràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
Beware: we found that MS Lync/Skype for Business is also vulnerable to CVE-2020-1147; endpoint requires auth'd user with SIP enabled
Gràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
Gràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés
-
For your reading pleasure: Liferay Portal unauth'd RCE vulns affecting all versions from 6.1 to 7.2, found by our very own
@mwulftange https://codewhitesec.blogspot.com/2020/03/liferay-portal-json-vulns.html …pic.twitter.com/lnXWvSuw6sGràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
We're giving away 6
#cidersecuritycon tickets for students! First come, first serve: just DM usGràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
We're excited to support
#cidersecuritycon and its great cause taking place near our#mannheim office at the#technoseumhttps://twitter.com/CiderSecCon/status/1222411250849718272 …Gràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
Rumble in the pipe - a nice writeup about a
#privesc vuln in#tinywall by our teammate@frycoshttps://codewhitesec.blogspot.com/2020/01/cve-2019-19470-rumble-in-pipe.html …Gràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
There is a special Friday after-work tradition at Code White - today powered by a very nice RCE-Redwine sponsored by
@C1_CMS. We appreciate! Thx@frycos ;)pic.twitter.com/ICTAUwnv4wGràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
We are proud to announce the new Code White office location in Mannheim downtown. Lets have a great start over there guys!pic.twitter.com/lhGinQRpu9
Gràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
Struggling to exploit H2 DB? This may help: we found a new way utilizing native libraries and JNI. Kudos to
@mwulftange https://codewhitesec.blogspot.com/2019/08/exploit-h2-database-native-libraries-jni.html …pic.twitter.com/fbiXw7inY2Gràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
Let's break the dAM-SIng - a heap-based AMSI bypass for VBA. Follow
@danshaqfu of@codewhitesec into the rabbit hole in our latest blog post:https://codewhitesec.blogspot.com/2019/07/heap-based-amsi-bypass-in-vba.html …Gràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
Critical vulns in
#FortiOS reversed & exploited by our colleagues@niph_ and@ramoliks - patch your#FortiOS asap and see the#bh2019 talk of@orange_8361 and@mehqq_ for details (tnx guys for the teaser that got us started)pic.twitter.com/TLLEbXKnJ4Gràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
It is always good to take a 2nd look at existing vulns. So
@mwulftange found a new rock-solid exploitation technique for the Telerik UI framework (hint: affects an Avast product ;) Enjoy: https://codewhitesec.blogspot.com/2019/02/telerik-revisited.html …#CVE-2017-11317Gràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés -
Toys for red teams! Headache for blue teams? LethalHTA - a new lateral movement technique brought to you by
@matthias_kaiser and @marpie0 of Code White. Check out our new blog post at https://codewhitesec.blogspot.com/2018/07/lethalhta.html …#wearehiringGràcies. El Twitter ho farà servir per millorar-te la cronologia. DesfésDesfés
Sembla que triga molt a carregar-se.
És possible que el Twitter hagi assolit el límit de capacitat o que experimenti una sobrecàrrega momentània. Torna-ho a provar o vés a l'estat del Twitter si en vols obtenir més informació.