Mastouille

0 message0 participant0 message aujourd’hui

Pen Test PartnersMicrosoft Copilot for SharePoint just made recon a whole lot easier. 🚨   One of our Red Teamers came across a massive SharePoint, too much to explore manually. So, with some careful prompting, they asked Copilot to do the heavy lifting...   It opened the door to credentials, internal docs, and more.   All without triggering access logs or alerts.   Copilot is being rolled out across Microsoft 365 environments, often without teams realising Default Agents are already active.   That’s a problem.   Jack, our Head of Red Team, breaks it down in our latest blog post, including what you can do to prevent it from happening in your environment.   📌Read it here: <a href="https://www.pentestpartners.com/security-blog/exploiting-copilot-ai-for-sharepoint/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.pentestpartners.com/security-blog/exploiting-copilot-ai-for-sharepoint/</a> <a href="https://infosec.exchange/tags/RedTeam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RedTeam</a> <a href="https://infosec.exchange/tags/OffSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OffSec</a> <a href="https://infosec.exchange/tags/AIsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AIsecurity</a> <a href="https://infosec.exchange/tags/Microsoft365" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft365</a> <a href="https://infosec.exchange/tags/SharePoint" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SharePoint</a> <a href="https://infosec.exchange/tags/MicrosoftCopilot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MicrosoftCopilot</a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InfoSec</a> <a href="https://infosec.exchange/tags/CloudSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CloudSecurity</a>

Shawn WebbCool research by my coworkers at IOActive: <a href="https://www.wired.com/story/digital-license-plate-jailbreak-hack/" rel="nofollow noopener noreferrer" target="_blank">https://www.wired.com/story/digital-license-plate-jailbreak-hack/</a><a href="https://bsd.network/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://bsd.network/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a>

Shawn WebbCurrent status: Building a <a href="https://bsd.network/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FreeBSD</a> 14-STABLE VM on the <a href="https://bsd.network/tags/Framework" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Framework</a> laptop specifically for offensive security research and development.Hoping to finish work on a C2 framework that operates over the ptrace boundary.<a href="https://bsd.network/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a> <a href="https://bsd.network/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Shawn WebbI wonder if I could manipulate the process via <code>procfs</code>. Perhaps extract a payload into <code>/proc/self/mem</code> or something.<a href="https://bsd.network/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://bsd.network/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://bsd.network/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a> <a href="https://bsd.network/tags/aws" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#aws</a>

Shawn WebbWhat are some interesting files/directories to overwrite in an AWS Lambda execution environment?I found an unsafe tarball extraction vulnerability in a customer's code, but I'm not the most familiar with AWS.<a href="https://bsd.network/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://bsd.network/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a>

Keith Hoodlet :verified: :donor:🤣 OSCP+ 💰 <a href="https://infosec.exchange/tags/OSCP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OSCP</a> <a href="https://infosec.exchange/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a>

Shawn WebbI'm doing a security code review of a service that uses Smithy ( <a href="https://smithy.io/2.0/quickstart.html" rel="nofollow noopener noreferrer" target="_blank">https://smithy.io/2.0/quickstart.html</a> ).This is the first time I've come across Smithy. Does anyone know of any security issues of Smithy models/code that I should be aware of?<a href="https://bsd.network/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://bsd.network/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a> <a href="https://bsd.network/tags/pentest" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pentest</a> <a href="https://bsd.network/tags/codereview" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#codereview</a>

Lucid.H3X<a href="https://defcon.social/tags/introduction" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#introduction</a> Hi My name is Lucid.H3X im a Infosec nut! I love all things security and tech. My main interests are in WIFI and Cloud based Security as well AI since its the New cutting edge of the cyberworld not to mention I have a huge fascination for malware and how its made and works as well. I also enjoy playing old retro 8bit games It's kinda a problem. When I'm not studying for a cert or in some rabbit hole hacking and tinkering. You can find me most likely out and about at local furry meets or hanging out with my family. FOSS and Crypto supporter ❣️If you love <a href="https://defcon.social/tags/wardriving" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#wardriving</a> <a href="https://defcon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://defcon.social/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://defcon.social/tags/furry" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#furry</a> <a href="https://defcon.social/tags/retrogames" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#retrogames</a> <a href="https://defcon.social/tags/retrogaming" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#retrogaming</a> and all things <a href="https://defcon.social/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tech</a> and <a href="https://defcon.social/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://defcon.social/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a> <a href="https://defcon.social/tags/osint" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#osint</a> <a href="https://defcon.social/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a> related then add me!PS I'm a pretty big dork and tend to go on huge rants so be warned ahead of time nerds!Stay Fluffy and Nerdy,Lucid.H3X

isecjobs.com => foorilla.comHIRING: Technology Security Analyst / Oakville, Ontario, Canada👉 <a href="https://infosec-jobs.com/J120395/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://infosec-jobs.com/J120395/</a><a href="https://mastodon.social/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InfoSec</a> <a href="https://mastodon.social/tags/infosecjobs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosecjobs</a> <a href="https://mastodon.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://mastodon.social/tags/CyberCareer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberCareer</a> <a href="https://mastodon.social/tags/cyber" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cyber</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://mastodon.social/tags/cloudjobs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cloudjobs</a> <a href="https://mastodon.social/tags/cyberjobs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cyberjobs</a> <a href="https://mastodon.social/tags/jobsearch" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#jobsearch</a> <a href="https://mastodon.social/tags/techjobs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#techjobs</a> <a href="https://mastodon.social/tags/hiring" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hiring</a> <a href="https://mastodon.social/tags/CCSK" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CCSK</a> <a href="https://mastodon.social/tags/Canada" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Canada</a> <a href="https://mastodon.social/tags/OntarioJobs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OntarioJobs</a> <a href="https://mastodon.social/tags/Oakville" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Oakville</a> <a href="https://mastodon.social/tags/NIST" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NIST</a> <a href="https://mastodon.social/tags/MSSP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MSSP</a> <a href="https://mastodon.social/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> <a href="https://mastodon.social/tags/CompTIA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CompTIA</a> <a href="https://mastodon.social/tags/XDR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#XDR</a> <a href="https://mastodon.social/tags/EDR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EDR</a> <a href="https://mastodon.social/tags/NDR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NDR</a> <a href="https://mastodon.social/tags/WindowsDefender" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WindowsDefender</a> <a href="https://mastodon.social/tags/AZ900" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AZ900</a> <a href="https://mastodon.social/tags/OffSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OffSec</a> <a href="https://mastodon.social/tags/ISACA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ISACA</a>

BSidesNYC<a href="https://infosec.exchange/@BSidesNYC" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@BSidesNYC</a> 0x03 Recap: In this session, François Proulx discusses what goes on behind the scenes of <a href="https://infosec.exchange/tags/supplychainattacks" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#supplychainattacks</a> through the lens of SLSA (Supply chain Levels for Software Artifacts), a threat model designed to tackle these emergent threats.<a href="https://www.youtube.com/watch?v=gpqLgEqp_jA" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.youtube.com/watch?v=gpqLgEqp_jA</a><a href="https://infosec.exchange/tags/securityconference" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#securityconference</a> <a href="https://infosec.exchange/tags/learncybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#learncybersecurity</a> <a href="https://infosec.exchange/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a>

Shawn WebbIt even works with processes that have entered Capabilities Mode.<a href="https://bsd.network/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FreeBSD</a> <a href="https://bsd.network/tags/Capsicum" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Capsicum</a> <a href="https://bsd.network/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://bsd.network/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a> <a href="https://bsd.network/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#malware</a>

Shawn WebbInjecting a shared object anonymously over the ptrace boundary on <a href="https://bsd.network/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FreeBSD</a> via libhijack now works!<a href="https://github.com/SoldierX/libhijack/commit/18b4ad92c0e41e4b0711484b725646c3f04b51ba" rel="nofollow noopener noreferrer" target="_blank">https://github.com/SoldierX/libhijack/commit/18b4ad92c0e41e4b0711484b725646c3f04b51ba</a><a href="https://bsd.network/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://bsd.network/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a> <a href="https://bsd.network/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#malware</a>

Shawn WebbFirst <a href="https://bsd.network/tags/BSDCan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BSDCan</a> paper submitted. Working on some code to submit a second presentation.I'm a bit skeptical that I'll have the code ready in time for the second one. But if I do, it will be something you won't want to miss. :-)<a href="https://bsd.network/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FreeBSD</a> <a href="https://bsd.network/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://bsd.network/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a>

Shawn WebbI'm not well-versed in the many intricacies of production memory controller hardware devices. For those memory controllers that support ECC RAM, do they usually provide a query interface granular enough to peek at cell parity data?If so, would it at all make sense to use cell parity data as a communications side channel or out-of-band ephemeral storage?<a href="https://bsd.network/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://bsd.network/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a>

averagesecurityguyIt's been about a week since this happened so I'm probably cool-headed enough to talk about it. First a little background info.A sales person from Offensive Security (<a href="https://www.offsec.com/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.offsec.com/</a>) has been trying to reach out to me for days. First by work email, which I ignored, then through my personal LinkedIn account, which I also ignored.Then, last week, my son texts me and says, "some guy called me looking for you." I told him I was your son and he said he would try to email. I know that absolutely no one in my professional circle has my son's personal cell number, so I asked him to send me the number that called him.I call the number back and it's the sales guy from Offensive Security. I immediately asked him how he got my son's number and found out it was part of a ZoomInfo (<a href="https://www.zoominfo.com/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.zoominfo.com/</a>) record for me. I told him to immediately delete any record he has with my son's information.I then let him know in no uncertain terms that his company was using some shady data gathering practices if they had my son's cell number and because of that I will personally never do business with OffSec again. I also made it clear that he should never reach out to me again.Even though I hold the <a href="https://infosec.exchange/tags/OSCP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OSCP</a> and <a href="https://infosec.exchange/tags/OSCE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OSCE</a> certifications and even though they were a career changer for me and for my colleagues, I will no longer do business with their company.<a href="https://infosec.exchange/tags/OffSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OffSec</a> <a href="https://infosec.exchange/tags/OffensiveSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OffensiveSecurity</a>

Shawn WebbI just finished the introductory article on my new offensive security project, aptly named Offensive-OpenSSL:<a href="https://git.hardenedbsd.org/shawn.webb/articles/-/blob/master/infosec/offensive-openssl/2023-02-03_introduction/article.md" rel="nofollow noopener noreferrer" target="_blank">https://git.hardenedbsd.org/shawn.webb/articles/-/blob/master/infosec/offensive-openssl/2023-02-03_introduction/article.md</a><a href="https://bsd.network/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> <a href="https://bsd.network/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://bsd.network/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a> <a href="https://bsd.network/tags/HardenedBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HardenedBSD</a>

alexiaI am proud of myself because today I got my first root shell on a prod network! :blobfoxcomputerowonotice:Some of you may remember back when I only dreamed of hacking for my day job. Many people supported me in various ways like by being welcoming and helpful, providing mentorship, and boosting my work/words. <a href="https://hachyderm.io/tags/InfosecTwitter" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InfosecTwitter</a> (RIP) was a huge part of my journey. <a href="https://hachyderm.io/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a> <a href="https://hachyderm.io/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://hachyderm.io/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a>

Chase :loading:Always interesting to see blue teamers write up <a href="https://infosec.exchange/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a> tools I’ve written. I like how they spent time figuring our TCP packets out to write a snort rule. <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/blueteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#blueteam</a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#redteam</a> <a href="https://www.trendmicro.com/en_us/research/22/k/deimosc2-what-soc-analysts-and-incident-responders-need-to-know.html" rel="nofollow noopener noreferrer" target="_blank">https://www.trendmicro.com/en_us/research/22/k/deimosc2-what-soc-analysts-and-incident-responders-need-to-know.html</a>

Bishop FoxJust a few weeks until <a href="https://infosec.exchange/@cactuscon" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@cactuscon</a> 11! We can't wait; <a href="https://infosec.exchange/@dnsprincess" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@dnsprincess</a> is presenting, there will be plenty of 🦊 swag on hand, and you can chat with our team about <a href="https://infosec.exchange/tags/infosecjobs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosecjobs</a> at Bishop Fox or our industry-leading <a href="https://infosec.exchange/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a> solutions. <a href="https://bishopfox.com/events/cactuscon-11" rel="nofollow noopener noreferrer" target="_blank">https://bishopfox.com/events/cactuscon-11</a>

tomchopWe're looking for interns to work with in Zürich over the summer on a variety of topics: <a href="https://infosec.exchange/tags/offsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#offsec</a>, platform hardening, sandboxing and of course ✨<a href="https://infosec.exchange/tags/DFIR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DFIR</a> ✨The deadline for applications is pretty tight: Jan 20, so please submit soon!<a href="https://careers.google.com/jobs/results/139765941031314118-security-engineer-intern-2023/" rel="nofollow noopener noreferrer" target="_blank">https://careers.google.com/jobs/results/139765941031314118-security-engineer-intern-2023/</a><a href="https://infosec.exchange/tags/internship" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#internship</a> <a href="https://infosec.exchange/tags/job" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#job</a> <a href="https://infosec.exchange/tags/blueteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#blueteam</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#redteam</a> <a href="https://infosec.exchange/tags/google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#google</a>

Recherches récentes

Options de recherche

Administré par :

Statistiques du serveur :

#offsec