Penetration Testing Active Directory, Part I Security News & Discussion

---

• Penetration Testing Active Directory, Part I
• Speculative Load Hazards Boost Rowhammer and Cache Attacks (PDF)
• Windows 7 may insecurely load Dynamic Link Libraries (CVE-2019-5921)
• Exploiting MySQL arbitrary file read: a honeypot that kicks
• Great Scott! Timing Attack Demo for the Everyday Webdev
• Facebook exploit – Confirm website visitor identities
• Finding and exploiting CVE-2018–7445 (unauthenticated RCE in MikroTik’s RouterOS SMB)
• Quick Guide - wardriving with kismet, gps and google earth
• Combining NTLM Relaying and Kerberos delegation
• Auditing Github Repo Wikis
• Privilege Escalation in Quora, which can compromise all users on Quora
• Automated Phishing Email Tool
• Automated/declarative "pen testing as code"

Penetration Testing Active Directory, Part I Posted: 05 Mar 2019 11:26 AM PST submitted by /u/Hausec [link] [comments]

Speculative Load Hazards Boost Rowhammer and Cache Attacks (PDF) Posted: 05 Mar 2019 06:01 AM PST submitted by /u/visionviper [link] [comments]

Windows 7 may insecurely load Dynamic Link Libraries (CVE-2019-5921) Posted: 05 Mar 2019 03:57 AM PST submitted by /u/Dormidera [link] [comments]

Exploiting MySQL arbitrary file read: a honeypot that kicks Posted: 05 Mar 2019 02:31 AM PST submitted by /u/lamiska [link] [comments]

Great Scott! Timing Attack Demo for the Everyday Webdev Posted: 05 Mar 2019 06:15 AM PST submitted by /u/abaldwin7302 [link] [comments]

Facebook exploit – Confirm website visitor identities Posted: 05 Mar 2019 01:08 AM PST submitted by /u/TomAnthony [link] [comments]

Finding and exploiting CVE-2018–7445 (unauthenticated RCE in MikroTik’s RouterOS SMB) Posted: 05 Mar 2019 12:48 PM PST submitted by /u/maximilianov [link] [comments]

Quick Guide - wardriving with kismet, gps and google earth Posted: 05 Mar 2019 02:25 PM PST submitted by /u/smittix [link] [comments]

Combining NTLM Relaying and Kerberos delegation Posted: 04 Mar 2019 06:44 PM PST submitted by /u/got_nations [link] [comments]

Auditing Github Repo Wikis Posted: 05 Mar 2019 09:03 AM PST submitted by /u/iphelix [link] [comments]

Privilege Escalation in Quora, which can compromise all users on Quora Posted: 05 Mar 2019 12:00 PM PST submitted by /u/tarunkant [link] [comments]

Automated Phishing Email Tool Posted: 05 Mar 2019 08:20 AM PST submitted by /u/IAintShootinMister [link] [comments]

Automated/declarative "pen testing as code" Posted: 04 Mar 2019 11:17 PM PST submitted by /u/DeviantJuiceBox [link] [comments]

You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States