Collaborate Disseminate
Is it possible to gain code execution on a machine through access to CIFS service? And if so, how? In my case, I have a valid Kerberos TGS to CIFS service running on a host and I am able to copy and download files. I want to get a shell au… Continue reading How to gain code execution through access to CIFS service on Windows?
F5 Networks, a leading provider of enterprise networking equipment, disclosed four critical vulnerabilities and 17 others on Wednesday as the recent parade of major flaws needing patches marches ahead. Three of the vulnerabilities would allow hackers to remotely execute code on target networks. It’s the second time in in two years that F5 has disclosed such a flaw. In 2020, both Cyber Command and the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency issued warnings about the earlier reported vulnerabilities. F5 joins Microsoft, SolarWinds and Accellion on the list of companies that have needed to release major patches in recent months. In the case of F5 so far, “We are not aware of any active exploits for these vulnerabilities,” spokesperson Rob Gruening said. The flaws affect both the F5 BIG-IP local traffic manager and BIG-IQ centralized management software. The company announced fixes for all of the vulnerabilities. Despite the […]
The post F5 releases patches for nearly two dozen vulnerabilities, some critical appeared first on CyberScoop.
Continue reading F5 releases patches for nearly two dozen vulnerabilities, some critical
I recently had a breach on my site (laravel), i got aware of it after i tried to pull the code from github and found out that some files were modified.
files modified were mostly storage – logs/cache and index.php had error_reporting(E_ALL… Continue reading Is there any way an attacker can access the server and modify the site (php) code?
Researchers at security firm Trustwave on Wednesday disclosed two critical vulnerabilities in the same software that suspected Russian spies have exploited to infiltrate multiple U.S. government agencies. One of the bugs could offer an attacker a similar level of control over the software made by federal contractor SolarWinds that the alleged Russians enjoyed, the researchers said. The analysis of SolarWinds’ Orion software platform — which is used by numerous Fortune 500 firms — illustrates the greater scrutiny the firm is under since disclosing the supply-chain hack. But it also shows the security benefits of having more outside researchers sift through Orion’s code. “As people were patching against the implant backdoor [used in the espionage campaign], this would provide the ability to get back into those systems, even though the backdoor had been removed,” Trustwave’s Karl Sigler said of one of the vulnerabilities, which could allow an attacker to remotely execute […]
The post SolarWinds issues patches for two new critical bugs found in Orion software appeared first on CyberScoop.
Continue reading SolarWinds issues patches for two new critical bugs found in Orion software
I’ve analyzed an app where I’ve found different vulnerabilities.
I could upload/overwrite, delete and download anything. All critical vulns, but I didn’t know how I could get rce without making damages. I thought that I could replace the e… Continue reading RCE on a server running nodejs
I am given a task to poc Bluekeep exploit. I have found a working exploit here which gave me two options, one is bluescreen which works fine for me but when I want a shell, target (windows server 2008 R2) resets the connection immediatel… Continue reading Server sends reset during TLS connection: Bluekeep POC
I’m fallen deep into what I see as The Rabbit Hole of the tech world/technology. I started having very odd things happening with my phone & laptop a year ago. I won’t go into too much detail in this post because as I said… it becomes… Continue reading Looking for recommendations for my Personal [closed]
TLDR: Trying to execute commands on site thats got a LFI vuln.
So I am making my post request to my vulnerable site and
import requests
header = {
‘User-Agent’:’Mozilla/5.0 (Windows; U; Windows NT 6.1; rv:2.2) Gecko/20110201′,
… Continue reading LFI php://input returning initial argument?
I read this very strange story yesterday, and I really need to ask about it:
Hackers knew that everyone would be staring at the sun and away from their computers, so they chose that precise moment to pounce. Erik watched the eclipse like … Continue reading What’s with this seemingly nonsensical Bitcoin "hack" story about a kid with 400 BTC live on his malware-infested PC?
If someone is having a Remote Code Execution, that means, one can run the commands on the server, then why does he need to get the Reverse Shell?
Even though I can run system commands, then why do I go for Reverse Shell?
I am finding the p… Continue reading Why is the first step for an attacker to get Reverse Shell after getting RCE?