■■■■□ dnsReaper – Subdomain Takeover Tool For Attackers, Bug Bounty Hunters And The Blue Team! https://github.com/punk-security/dnsReaper https://t.me/cKure/11719
All posts tagged cyber
August 22, 2022 at 10:58AM
■■■■■ Hoaxshell – An unconventional Windows reverse shell tool, currently undetected by Microsoft defender and various other AV solutions, solely based on http(s) traffic. https://github.com/t3l3machus/hoaxshell https://t.me/cKure/11718
August 22, 2022 at 01:11AM
■■■■■ Overview of the Cyber Weapons Used in the Ukraine – Russia Cyber-War. https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/overview-of-the-cyber-weapons-used-in-the-ukraine-russia-war/ https://t.me/cKure/11717
August 22, 2022 at 12:36AM
■■■■■ 11 vulnerabilities fixed by Google in Chrome and one of these, there is an exploit for CVE-2022-2856 that exists in the wild. https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_16.html https://t.me/cKure/11715
August 22, 2022 at 12:34AM
■■□□□ Apple patches two zero-days in macOs, iOS. https://support.apple.com/en-us/HT201222 https://t.me/cKure/11714
August 20, 2022 at 11:33PM
DPRK state-sponsored actors are using cryptographically signed MacOS (Apple ) executables to impersonate coinbase and lure potential jobseekers in installing their spyware. https://t.me/cKure/11713
August 19, 2022 at 11:47AM
■■■■■ Apple’s iOS devices don’t fully route all network traffic through VPNs as a user might expect, a potential security issue the device maker has known about for years. https://arstechnica.com/information-technology/2022/08/ios-vpns-still-leak-traffic-more-than-2-years-later-researcher-claims/ https://www.michaelhorowitz.com/VPNs.on.iOS.are.scam.php https://t.me/cKure/11711
August 19, 2022 at 01:24AM
Zero-Day: 3 in-the-wild 0-days patched in the last two days: * CVE-2022-2856 in Chrome discovered by twitter.com/ashl3y_shen & twitter.com/0xbadcafe1 of Google TAG * CVE-2022-32893 in Safari * CVE-2022-32894 in iOS/macOS kernel https://docs.google.com/spreadsheets/u/0/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/htmlview#gid=1662223764 https://t.me/cKure/11708
August 19, 2022 at 12:51AM
■■■■□ New Google Chrome Zero-Day Vulnerability Exploited in the Wild. https://cybersecuritynews.com/chrome-0-day-vulnerability/ https://t.me/cKure/11707
August 17, 2022 at 12:41AM
● CVE-2022-36966 has been assigned as the Zero-Day for the escalation of privilege in Orion platform. The exploit requires internal + initial access. Details will be shared as SolarWinds provides official feedback. The vulnerability was identified by ‘Asim Khan’. https://t.me/cKure/11705