Jump to content
OpenSecurity.global

All Activity

This stream auto-updates     

  1. Yesterday
  2. Trey Blalock
    https://www.defcon.org/html/defcon-safemode/dc-safemode-index.html
  3. Last week
  4. Arslan Masood Arslan Masood changed their profile photo
  5. Earlier
  6. Alex Vasiliu Alex Vasiliu joined the community
  7. Tim Casey
    HBO Westworld (has a simulation in the plot, but does not suggest we are living in one) FX HULU series Devs Netflix Series The Midnight Gospel with comedian Duncan Trussell https://www.youtube.com/watch?v=0kQWAqjFJS0
  8. Steven Wright Steven Wright joined the community
  9. Hannan Pervez Hannan Pervez joined the community
  10. Kevin Beaumont
    Nobody tell them very few people run this version of Windows, nor are still vulnerable.
  11. james mckinlay
  12. james mckinlay
    today starts with
  13. james mckinlay
    today finishes with
  14. james mckinlay
    https://havoc.hackersacademy.com/
  15. james mckinlay
    Today starts with
  16. Nicholas L
    SoFi forces password resets after claiming a small set of passwords were leaked to a third party....haven't seen this in the news yet.
  17. Brad Woodcock started following Remote Security Work
  18. Brad Woodcock
    Greetings all. I've been a unix/linux sysadmin since 1998 and working in IT security since 2007 or so. I just finished the first Splunk class and passed my Splunk Certified Core User certification. I decided that was a good path to choose when my contract was pulled in January. Now I'm looking for a remote security position where I can use my experience to help a company with their projects and switch my career path finally entirely into security. I've attached my resume for your perusal. This is a very trying time for all of us, and being unemployed makes it more complex and difficult. I'd appreciate any help I can get with finding a position. Thanks! Be safe and well out there. resume_brad_woodcock_2020-NoContactInfo.pdf
  19. Kevin Beaumont
    Didn't atmfd.dll get removed from Windows 10? I cannae remember.
  20. Nicholas L
    They updated the advisory https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV200006, and
  21. james mckinlay
    Today starts with
  22. james mckinlay
    today starts with
  23. james mckinlay
    https://www-zdnet-com.cdn.ampproject.org/c/s/www.zdnet.com/google-amp/article/microsoft-warns-of-windows-zero-day-exploited-in-the-wild/ not checked personally
  24. james mckinlay
    today starts with this bleepy gem from 1988
  25. Mehmet Leblebici started following Cyber Security Awareness for General Pubic
  26. Mehmet Leblebici
    Hello all, Do you know any orgazation, platform or web site where articles for increasing public awareness on cyber security are published? The articles should not be so technical that general public can also understand the contents.
  27. Dragan Stevanovic Dragan Stevanovic joined the community
  28. james mckinlay
    today starts with
  29. Kevin Beaumont
    The documentation is in line now and up to date:
  30. Zolton Williams Zolton Williams joined the community
  31. Chris Wheeler started following Pulse Secure SSL VPN vulnerability being exploited in wild
  32. Lizzy Higgins started following Dean O'Neill
  33. james mckinlay
    today starts with
  34. Harry Hali Harry Hali joined the community
  35. Tommy J Tommy J joined the community
  36. Tim Wilkes started following Lizzy Higgins
  37. Toley Clague started following Scott Link
  38. james mckinlay
    today starts with -
  39. Kevin Beaumont
    Seeing some minor variation of BlueKeep attack behaviour (maybe attackers updated Metasploit finally), I'm seeing some stable'ish exploitation of Windows 7 this week however they're failing to run commands properly. Example commands; Additional IoCs. Application event 1000, spawning Powershell.exe: This event spawns from C:\Windows\system32\UI0Detect.exe and UI0Detect.exe 224 (224 is the parameter). spoolsv.exe crash: They check the device has more than 3.5gb of RAM, and is 64 bit, then try running a payload. Network IOC 78.46.124.69 port 10095
  40. Kevin Beaumont
    So I saw some exploitation of this in wild yesterday, looks like: Obviously the POST statements aren't there. Triggers code execution like this:
  41. Kevin Beaumont
    There’s a public write up for triggering this vulnerability now (not RCE). https://www.coresecurity.com/blog/dejablue-vulnerabilities-windows-7-windows-10-cve-2019-1181-and-cve-2019-1182 @MalwareTech
  42. Sandon Morrell Sandon Morrell joined the community
  43. Bill Knaffl
    Hello All I am a security "engineer" at a government contractor and I am currently looking at a possible change in direction. I have been in infosec about 11 years and the career had started to stagnate. I am currently teaching a little for SANS as a Community instructor for 401 and I started my expansion of certs by focusing on AWS and or Azure in 2020. Not sure what the future holds but perhaps will start doing contract/consulting shortly after my oldest daughter moves off to school. If you are a consultant these days and willing to help a n00b break into the biz.....just let me know!
  1. Load more activity
×
×
  • Create New...

Important Information

We use cookies as we're cookie monsters. Privacy Policy

  I accept