Hacker News
- Unparalleled RDP Monitoring Reveal Attackers’ Tradecraft https://www.gosecure.net/blog/2023/08/09/how-unparalleled-rdp-monitoring-reveal-attackers-tradecraft/ 3 comments
- Current MFA fatigue attack campaign targeting Microsoft Office 365 users https://www.gosecure.net/blog/2022/02/14/current-mfa-fatigue-attack-campaign-targeting-microsoft-office-365-users/ 184 comments
- Scientific notation bug in MySQL left AWS WAF vulnerable to SQL injection https://www.gosecure.net/blog/2021/10/19/a-scientific-notation-bug-in-mysql-left-aws-waf-clients-vulnerable-to-sql-injection/ 41 comments
- Another AWS WAF bypass allowing SQLi caused by an unorthodox MSSQL design choice https://www.gosecure.net/blog/2023/06/21/aws-waf-clients-left-vulnerable-to-sql-injection-due-to-unorthodox-mssql-design-choice/ 17 comments netsec
- RDP is susceptible to a transparent Net-NTLMv2 hash-stealing attack. When disclosed, Microsoft responded: “not a vulnerability, […] by design”. https://www.gosecure.net/blog/2023/04/26/never-connect-to-rdp-servers-over-untrusted-networks/ 56 comments netsec
- PyRDP 1.2.0 released – Can perform Net-NTLM hash capture before the certificate error on RDP https://www.gosecure.net/blog/2022/12/23/a-new-pyrdp-release-the-rudolph-desktop-protocol/ 7 comments netsec
- A study of cracked passwords from breaches demonstrates which geographical factors have the most impact on password strength https://www.gosecure.net/blog/2022/09/26/tell-me-where-you-live-and-i-will-tell-you-about-your-password-understanding-the-macrosocial-factors-influencing-passwords-strength/ 2 comments technology
- A study of cracked passwords from breaches demonstrates which geographical factors have the most impact on password strength https://www.gosecure.net/blog/2022/09/26/tell-me-where-you-live-and-i-will-tell-you-about-your-password-understanding-the-macrosocial-factors-influencing-passwords-strength/ 8 comments netsec
- How to Steal Browser’s Autofill Credentials via Cross-Site Scripting (XSS) https://www.gosecure.net/blog/2022/06/29/did-you-know-your-browsers-autofill-credentials-could-be-stolen-via-cross-site-scripting-xss/ 4 comments netsec
- Capturing RDP NetNTLMv2 Hashes: Attack details and a Technical How-To Guide - GoSecure https://www.gosecure.net/blog/2022/01/17/capturing-rdp-netntlmv2-hashes-attack-details-and-a-technical-how-to-guide/ 2 comments netsec
- Achieve RCE or lateral movement by abusing WSUS to perform NTLM relay attacks https://www.gosecure.net/blog/2021/11/22/gosecure-investigates-abusing-windows-server-update-services-wsus-to-enable-ntlm-relaying-attacks/ 6 comments netsec
- A Scientific Notation Bug in MySQL left AWS WAF Clients Vulnerable to SQL Injection https://www.gosecure.net/blog/2021/10/19/a-scientific-notation-bug-in-mysql-left-aws-waf-clients-vulnerable-to-sql-injection/ 2 comments netsec
- Write-up on the Authenticated Remote Code Execution in Pulse Secure VPN (CVE-2020-8218) https://www.gosecure.net/blog/2020/08/26/forget-your-perimeter-rce-in-pulse-connect-secure/ 4 comments netsec
- Paper: Cybersecurity Perception vs Reality. A study of the disconnect between defenders' perception of security measures and their real efficiency according to pentesters. https://www.gosecure.net/blog/2020/07/16/research-on-perceptions-vs-reality-in-cybersecurity/ 3 comments netsec
- A Frida Script to Bypass Mono/Xamarin based Certificate Pinning on Android Devices for Mobile Assessments and Man-in-the-Middle https://www.gosecure.net/blog/2020/04/06/bypassing-xamarin-certificate-pinning-on-android/ 3 comments netsec
- Open source Malboxes now deploys Windows desktop OS to AWS ready for malware detonation and analysis with many tools preinstalled https://www.gosecure.net/blog/2020/02/21/cloudy-with-a-chance-of-malware-malboxes-now-deploys-to-aws/ 3 comments netsec
- Combine a subtle bug in shrinkwrap software with unsafe ADI DNS defaults and you get more NTLM hashes than you can wish for. Even in a hardened environment. https://gosecure.net/2019/02/20/abusing-unsafe-defaults-in-active-directory/ 4 comments netsec
- PyRDP: a new open-source RDP MITM that records screens and collects files, credentials, and clipboard data. Bonus: Office Christmas Prank https://gosecure.net/2018/12/19/rdp-man-in-the-middle-smile-youre-on-camera/ 13 comments netsec
- Beyond XSS: Edge Side Include Injection. Abusing Caching Servers into SSRF and Client-Side Attacks http://gosecure.net/2018/04/03/beyond-xss-edge-side-include-injection/ 6 comments netsec
- VMware Horizon desktop agent privilege escalation vulnerability (CVE-2017-4946) https://gosecure.net/2018/01/10/vmware-horizon-v4h-v4pa-desktop-agent-privilege-escalation-vulnerability-cve-2017-4946/ 3 comments netsec
- malboxes: open source tool that automates the setup of virtual machines for malware analysis http://gosecure.net/2017/02/16/introducing-malboxes-a-tool-to-build-malware-analysis-virtual-machines/ 24 comments netsec
- How we pranked a colleague by accessing his VoIP phone's filesystem and changed his ringtone to a Christmas song http://gosecure.net/2016/12/23/embedded-prank-christmas-spirit-injection-for-your-voip-phone/ 25 comments netsec
- Linux/Moose botnet attacked to expose an EGO-Market https://gosecure.net/2016/11/02/exposing-the-ego-market-the-cybercrime-performed-by-the-linux-moose-botnet/ 3 comments netsec