Red Team & Penetration Testing using Intel AMT: The DEATHMETAL suite Security News & Discussion

---

• Red Team & Penetration Testing using Intel AMT: The DEATHMETAL suite
• CVE-2019-0227: Remote Code Execution in Apache Axis
• Running a .NET Assembly in Memory with Meterpreter
• [oss-security] DLL injection in Go < 1.12.2 [CVE-2019-9634]
• Verizon FiOS Router Authenticated Command Injection
• Attacking exposed Selenium Grids (tool for enumeration + RCE in nodes)
• Intro into abusing and identifying WMI Event Subscriptions for persistence
• Cuppa CMS unauthenticated RCE
• DACL Permissions Overwrite Privilege Escalation (CVE-2019-0841)
• RCE in Confluence via Widget connector
• How regular expression and fuzzing change my approach for finding vulnerabilities (Series part 1.)
• Scripts to execute enumeration via LFI

Red Team & Penetration Testing using Intel AMT: The DEATHMETAL suite Posted: 09 Apr 2019 12:53 PM PDT submitted by /u/coalfirelabs [link] [comments]

CVE-2019-0227: Remote Code Execution in Apache Axis Posted: 09 Apr 2019 07:05 AM PDT submitted by /u/hackers_and_builders [link] [comments]

Running a .NET Assembly in Memory with Meterpreter Posted: 09 Apr 2019 12:51 PM PDT submitted by /u/myover [link] [comments]

[oss-security] DLL injection in Go < 1.12.2 [CVE-2019-9634] Posted: 09 Apr 2019 03:56 AM PDT submitted by /u/the_gnarts [link] [comments]

Verizon FiOS Router Authenticated Command Injection Posted: 09 Apr 2019 09:26 AM PDT submitted by /u/lynerc [link] [comments]

Attacking exposed Selenium Grids (tool for enumeration + RCE in nodes) Posted: 09 Apr 2019 07:50 AM PDT submitted by /u/gid0rah [link] [comments]

Intro into abusing and identifying WMI Event Subscriptions for persistence Posted: 09 Apr 2019 04:14 AM PDT submitted by /u/Griffnut [link] [comments]

Cuppa CMS unauthenticated RCE Posted: 09 Apr 2019 09:58 AM PDT submitted by /u/mthbernardes [link] [comments]

DACL Permissions Overwrite Privilege Escalation (CVE-2019-0841) Posted: 09 Apr 2019 01:35 PM PDT submitted by /u/Pr0bes [link] [comments]

RCE in Confluence via Widget connector Posted: 09 Apr 2019 04:16 AM PDT https://chybeta.github.io/2019/04/06/Analysis-for-%E3%80%90CVE-2019-3396%E3%80%91-SSTI-and-RCE-in-Confluence-Server-via-Widget-Connector/ submitted by /u/bugdiscloseguy [link] [comments]

How regular expression and fuzzing change my approach for finding vulnerabilities (Series part 1.) Posted: 09 Apr 2019 12:22 PM PDT submitted by /u/beyonderdabas [link] [comments]

Scripts to execute enumeration via LFI Posted: 08 Apr 2019 03:17 PM PDT submitted by /u/mthbernardes [link] [comments]

You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States