Twitter Hack Investigation Report Security News & Discussion

---

• Twitter Hack Investigation Report
• GitHub Pages - Multiple RCEs via insecure Kramdown configuration
• A script i wrote that automates the exfiltration of data over dns in case we have a blind command execution with restricted outbound connectivity. Works with bash and powershell and is compatible with exec style command execution (e.g. java.lang.Runtime)
• The Cybersecurity Community Demands Transparency, Not Legal Threats
• Newly released PyRDP 1.0 has many new features including CredSSP support and clipboard file transfer interception
• Segmentation Vault: Cloning Thick Client Access

Twitter Hack Investigation Report Posted: 20 Oct 2020 02:41 AM PDT submitted by /u/bharatsb [link] [comments]

GitHub Pages - Multiple RCEs via insecure Kramdown configuration Posted: 20 Oct 2020 07:14 AM PDT submitted by /u/albinowax [link] [comments]

A script i wrote that automates the exfiltration of data over dns in case we have a blind command execution with restricted outbound connectivity. Works with bash and powershell and is compatible with exec style command execution (e.g. java.lang.Runtime) Posted: 20 Oct 2020 10:13 AM PDT submitted by /u/Apprehensive-Dust189 [link] [comments]

The Cybersecurity Community Demands Transparency, Not Legal Threats Posted: 20 Oct 2020 02:03 PM PDT submitted by /u/magenta_placenta [link] [comments]

Newly released PyRDP 1.0 has many new features including CredSSP support and clipboard file transfer interception Posted: 20 Oct 2020 07:49 AM PDT submitted by /u/alxbl [link] [comments]

Segmentation Vault: Cloning Thick Client Access Posted: 20 Oct 2020 07:12 AM PDT submitted by /u/gid0rah [link] [comments]

You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States