Spectre exploit, tons of malware and a lot of updates in one digest

According by the new botnets and ransomware, malware creators are increasingly trying to automate the exploitation of new vulnerabilities (like ProxyLogon or others). And at the same time, Microsoft continues to try to fix / detect / somehow help vulnerable mail Exchange servers. 15 Years Linux Kernel Subsystem Vulnerabilities and Specter vulnerability PoC code - … Continue reading Spectre exploit, tons of malware and a lot of updates in one digest

Too burning/hot weekly digest 🔥

Upgrade your Exchange servers, now! Some attackers/pentesters/red teamers/researchers have already converted Proxylogon PoCs into first versions of RCEs to exploit these vulnerabilities.Microsoft has released another big and important update this week. Apart from that, there were many small but important updates with zero-day vulnerabilities. + There were various attacks, malware, and data centers burning. Vulnerabilities: … Continue reading Too burning/hot weekly digest 🔥

Payload detection WAF challenge

One of the things that we implemented early on in our lab is an semi-automated process of collecting some new payloads/exploits/bypass techniques from the public feeds (including Twitter) and checking whether our current WAF solutions can detect it. The Go Test WAF Introduction What if we can test their essential capability of payload detection with … Continue reading Payload detection WAF challenge

Vulners weekly digest #14

There are 4 sections:Vulnerabilities Tools News Research Feedback: https://forms.gle/D17BaFwD5hJnKkUUA Vulnerabilities Not so long ago, the 0-day vulnerability of CVE-2019-19781 was discussed in Citrix ADC and Citrix Gateway, which went unnoticed for at least a month and was used by various hacker groups. This week, Citrix released security updates for Citrix ADC, Citrix Gateway and Citrix SD-WAN … Continue reading Vulners weekly digest #14

Vulners weekly digest #13

There are 4 sections:VulnerabilitiesToolsNewsResearch Feedback: https://forms.gle/D17BaFwD5hJnKkUUA Vulnerabilities Vulnerability CVE-2020-5902 in F5 BIG-IP received a CVSS score of 10. Exploiting the vulnerability allows executing commands on behalf of an unauthorized user and completely compromising the system, for example, intercepting the traffic of web resources controlled by the controller. https://twitter.com/i/status/1280008779359125504 https://vulners.com/thn/THN:02088F21DB6E2D58FA2FBFDB5C735108 Multiple vulnerabilities in popular remote desktop … Continue reading Vulners weekly digest #13