Collaborate Disseminate
With the leaking of code signing certificates and exploits for vulnerable drivers becoming common occurrences, adversaries are adopting the kernel as their new playground. And with Microsoft making technologies like Virtualization Based Security (VBS) and Hypervisor Code Integrity (HVCI) available, I wanted to take some time to understand just how vulnerable endpoints are when faced…
The post g_CiOptions in a Virtualized World appeared first on TrustedSec.
Since Russia’s invasion of Ukraine, companies based in the United States have been on alert for potential cyberattacks on IT infrastructure. Multi-Factor Authentication (MFA) has been one of the most recommended settings for organizations to turn on. Recently, the White House issued a FACT SHEET on how organizations can protect themselves against potential cyberattacks from…
The post Defending the Gates of Microsoft Azure With MFA appeared first on TrustedSec.
Continue reading Defending the Gates of Microsoft Azure With MFA
In this video for Help Net Security, Vijay Kumar Velu, Technical Director for Offensive Security and DFIR at BDO UK, talks about his latest book: Mastering Kali Linux for Advanced Penetration Testing (4th Edition). Readers will be introduced to their o… Continue reading Advance your penetration testing skills by mastering Kali Linux
XSS Iframe Traps Longer Running XSS Payloads An issue with cross-site scripting (XSS) attacks is that our injected JavaScript might not run for an extended period of time. It may be a reflected XSS vulnerability where we’ve tricked our user into clicking a link, but when they land on the page where we were able…
The post Persisting XSS With IFrame Traps appeared first on TrustedSec.
This week, I dusted off my reading list and saw that I’d previously bookmarked an interesting article about the introduction of SMB over QUIC. The article from Microsoft showed that Windows was including support for SMB to be used over the QUIC protocol, which should immediately spark interest for anyone who includes SMB attacks as…
The post Making SMB Accessible with NTLMquic appeared first on TrustedSec.
“Red Team” is an expression coined in the 19th century, related to German military preparedness exercises conducted as realistic board games between two adversaries operating under time constraints and certain rules. In cybersecurity, Red Team exercise… Continue reading Cybersecurity Red Team 101
By Owais Sultan
Microsoft Azure is a cloud platform that offers a wide range of services to its users. It’s used…
This is a post from HackRead.com Read the original post: Penetration Testing Azure: The User-Friendly Guide
Continue reading Penetration Testing Azure: The User-Friendly Guide
When investigating my laptop, I stumbled upon something interesting that resulted in privilege escalation. I use a Lenovo ThinkPad X1 Extreme Gen 1, which has an installed software named Glance, for my day-to-day work. The purpose of this software is to use the advanced web camera to figure out if you are speaking when the…
The post CVE-2022-24696 – Glance by Mirametrix Privilege Escalation appeared first on TrustedSec.
Continue reading CVE-2022-24696 – Glance by Mirametrix Privilege Escalation
The Offensive Security team has released Kali Unkaputtbar, a new feature that allows Kali Linux installed on bare-metal to make system snapshots automatically, thus enabling users to roll back to a previous system state after a botched upgrade. Kali Un… Continue reading Kali Linux on bare-metal gets snapshotting functionality
Introduction When doing an Internal Penetration Test, it is not uncommon to run BloodHound at one point or another. In case you are not familiar with BloodHound, it’s a tool that automatically fires off a bunch of LDAP queries and Windows API calls to collect various data in an Active Directory environment. Data can range…
The post Expanding the Hound: Introducing Plaintext Field to Compromised Accounts appeared first on TrustedSec.
Continue reading Expanding the Hound: Introducing Plaintext Field to Compromised Accounts