All posts tagged cyber

■■□□□ Geacon Brings Cobalt Strike Capabilities to macOS Threat Actors. https://www.sentinelone.com/blog/geacon-brings-cobalt-strike-capabilities-to-macos-threat-actors https://t.me/cKure/12405

■□□□□ The ‘Babel X’ utility is made by https://www.babelstreet.com/ And it’s used for spring by the US government agencies. https://t.me/cKure/12404

■■■■■ KeePass 2.X Master Password Dumper (CVE-2023-32784). https://github.com/vdohney/keepass-password-dumper https://t.me/cKure/12401

The Dangers of Google’s .zip TLD. First URL is of the domain .zip as an example. https://github.com∕kubernetes∕kubernetes∕archive∕refs∕tags∕@v1271.zip https://github.com/kubernetes/kubernetes/archive/refs/tags/v1.27.1.zip https://medium.com/@bobbyrsec/the-dangers-of-googles-zip-tld-5e1e675e59a5 https://t.me/cKure/12399

■■■□□ Microsoft patches bypass for recently fixed Outlook zero-click bug. https://www.bleepingcomputer.com/news/microsoft/microsoft-patches-bypass-for-recently-fixed-outlook-zero-click-bug/ https://t.me/cKure/12398

■■□□□ Data-Leak: Discord discloses data breach after support agent got hacked. https://www.bleepingcomputer.com/news/security/discord-discloses-data-breach-after-support-agent-got-hacked/ https://t.me/cKure/12397

■■■□□ Attack Trends Related to DangerousPassword. https://blogs.jpcert.or.jp/en/2023/05/dangerouspassword.html https://t.me/cKure/12396

Microsoft Excel Remote Code Execution Vulnerability. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24953 https://twitter.com/TecR0c/status/1656306296931471365 https://t.me/cKure/12395

■■■□□ DetectDee: Hunt down social media accounts by username, email or phone across social networks. OSINT tool. https://github.com/piaolin/DetectDee/tree/main https://t.me/cKure/12394

■■■■■ RedTeam Pentesting – Blog – Introducing resocks – An Encrypted Back-Connect SOCKS Proxy for Network Pivoting. https://blog.redteam-pentesting.de/2023/introducing-resocks/ https://t.me/cKure/12390