Jump to content
YOUR-AD-HERE
HOSTING
TOOLS

All Activity

This stream auto-updates

  1. Today
  2. [Hidden Content]
  3. Acunetix Premium - v24.3.0 NEW FEATURES Smart API Scanning capabilities for Swagger 2 Smart API Scanning capabilities for OpenAPI 3 [Hidden Content] [hide][Hidden Content]] Password: level23hacktools.com
  4. Telegram Users Beware: Potential Vulnerability Exposes You to Attacks A recent report by blockchain security firm CertiK raises concerns about a potential vulnerability within the Telegram messaging app. This "high-risk vulnerability," as CertiK describes it, could leave users susceptible to remote code execution (RCE) attacks. According to CertiK's findings, the vulnerability appears to lie within Telegram Desktop's media processing capabilities. Hackers could potentially exploit this issue by sending specially crafted media files, such as images or videos, that trigger malicious code on the recipient's device. Protecting Yourself: While the full extent of the vulnerability remains under investigation, CertiK offers a simple solution to mitigate the risk. Users can disable the auto-download feature within the Telegram Desktop application. Here's how: Open Telegram Desktop and navigate to "Settings." Click on "Advanced." Locate the "Automatic Media Download" section. Disable auto-download for "Photos," "Videos," and "Files" across all chat types (Private chats, Groups, and Channels). By taking these steps, users can significantly reduce their exposure to potential attacks through this vulnerability.
  5. Yesterday
  6. If you can promote a blackhat crypto project to get good hits, send me a PM lets work together on percentage. I can assure you the percentage is worth it and you will have access to the address of the smart contract so you can see how much is coming in.
  7. Last week
  8. Book description Enhance your skill set to pentest against real-world Microsoft infrastructure with hands-on exercises and by following attack/detect guidelines with OpSec considerations Key Features Find out how to attack real-life Microsoft infrastructure Discover how to detect adversary activities and remediate your environment Apply the knowledge you’ve gained by working on hands-on exercises Purchase of the print or Kindle book includes a free PDF eBook Book Description This book teaches you the tactics and techniques used to attack a Windows-based environment, along with showing you how to detect malicious activities and remediate misconfigurations and vulnerabilities. You’ll begin by deploying your lab, where every technique can be replicated. The chapters help you master every step of the attack kill chain and put new knowledge into practice. You’ll discover how to evade defense of common built-in security mechanisms, such as AMSI, AppLocker, and Sysmon; perform reconnaissance and discovery activities in the domain environment by using common protocols and tools; and harvest domain-wide credentials. You’ll also learn how to move laterally by blending into the environment’s traffic to stay under radar, escalate privileges inside the domain and across the forest, and achieve persistence at the domain level and on the domain controller. Every chapter discusses OpSec considerations for each technique, and you’ll apply this kill chain to perform the security assessment of other Microsoft products and services, such as Exchange, SQL Server, and SCCM. By the end of this book, you'll be able to perform a full-fledged security assessment of the Microsoft environment, detect malicious activity in your network, and guide IT engineers on remediation steps to improve the security posture of the company. What you will learn Understand and adopt the Microsoft infrastructure kill chain methodology Attack Windows services, such as Active Directory, Exchange, WSUS, SCCM, AD CS, and SQL Server Disappear from the defender's eyesight by tampering with defensive capabilities Upskill yourself in offensive OpSec to stay under the radar Find out how to detect adversary activities in your Windows environment Get to grips with the steps needed to remediate misconfigurations Prepare yourself for real-life scenarios by getting hands-on experience with exercises Who this book is for This book is for pentesters and red teamers, security and IT engineers, as well as blue teamers and incident responders interested in Windows infrastructure security. The book is packed with practical examples, tooling, and attack-defense guidelines to help you assess and improve the security of your real-life environments. To get the most out of this book, you should have basic knowledge of Windows services and Active Directory. [Hidden Content] Download: [hide][Hidden Content]]
  9. obfus.h is a macro-only library for compile-time obfuscating C applications, designed specifically for the Tiny C (tcc). It is tailored for Windows x86 and x64 platforms and supports almost all versions of the compiler. Very reliable armor for your C programs! 🔍 Function Call Obfuscation: Confuse function calls to make your code less readable to unauthorized eyes. 🛡️ Anti-Debugging Techniques: Built-in mechanisms to prevent code analysis during runtime. 🔄 Control Flow Code Mutation: Turns code into spaghetti, making it difficult to parse conditions and loops. 🚫 Anti-Decompilation Techniques: Makes many popular decompilers useless visually breaking their output. 😈 Fake Signatures Adding: Can add fake signatures of various packers and protectors to confuse reverse engineers. Download: [hide][Hidden Content]]
  10. Fundamentals of Digital Forensics A Guide to Theory, Research and Applications Textbook © 2024 [Hidden Content] [hide][Hidden Content]]
  11. Burp Suite Professional v2024.3.1 + BurpBounty_Pro 2.8.0 + JDK 22 NOTE - Run this version With Java SE JDK 22 Released Wednesday, 3 April 2024 This release introduces custom Bambda columns, global Collaborator settings, API parameter visibility, and streamlined headers. We've also made other improvements and bug fixes. [Hidden Content] [hide][Hidden Content]]
  12. If you do not have the ability to restart the server, try disconnecting and trying again, the error message will continue that you have too many established connections. The best thing would be to restart.
  13. i need help , trying to figure out how will i recover my rdp without resetting it to the panel because i literally forgot my panel alr
  14. i think this is good to run with a bat file is it?
  15. I really badly wanna learn making payload with metasploit ive beenj studying how to get into sql server via os-shell but i cant make a good payload to inject
  16. thank you for this wonderful technique , im trying to bypass 403 forbidden but it wont let me
  17. Elber Wayber Analog/Digital Audio STL version 4.00 suffers from an unauthenticated device configuration and client-side hidden functionality disclosure vulnerability.View the full article
  18. Elber Wayber Analog/Digital Audio STL version 4.00 suffers from an authentication bypass vulnerability through a direct and unauthorized access to the password management functionality. The issue allows attackers to bypass authentication by manipulating the set_pwd endpoint that enables them to overwrite the password of any user within the system. This grants unauthorized and administrative access to protected areas of the application compromising the device's system security.suffers from a bypass vulnerability.View the full article
  19. Elber ESE DVB-S/S2 Satellite Receiver version 1.5.x suffers from an unauthenticated device configuration and client-side hidden functionality disclosure vulnerability.View the full article
  20. Elber ESE DVB-S/S2 Satellite Receiver version 1.5.x suffers from an authentication bypass vulnerability through a direct and unauthorized access to the password management functionality. The issue allows attackers to bypass authentication by manipulating the set_pwd endpoint that enables them to overwrite the password of any user within the system. This grants unauthorized and administrative access to protected areas of the application compromising the device's system security.View the full article
  21. Elber Reble610 M/ODU XPIC IP-ASI-SDH Microwave Link suffers from an unauthenticated device configuration and client-side hidden functionality disclosure vulnerability.View the full article
  22. Elber Reble610 M/ODU XPIC IP-ASI-SDH Microwave Link suffers from an authentication bypass vulnerability through a direct and unauthorized access to the password management functionality. The issue allows attackers to bypass authentication by manipulating the set_pwd endpoint that enables them to overwrite the password of any user within the system. This grants unauthorized and administrative access to protected areas of the application compromising the device's system security.View the full article
  23. Elber Cleber/3 Broadcast Multi-Purpose Platform version 1.0.0 suffers from an unauthenticated device configuration and client-side hidden functionality disclosure vulnerability.View the full article
  24. Elber Cleber/3 Broadcast Multi-Purpose Platform version 1.0.0 suffers from an authentication bypass vulnerability through a direct and unauthorized access to the password management functionality. The issue allows attackers to bypass authentication by manipulating the set_pwd endpoint that enables them to overwrite the password of any user within the system. This grants unauthorized and administrative access to protected areas of the application compromising the device's system security.View the full article
  25. Elber Signum DVB-S/S2 IRD for Radio Networks version 1.999 suffers from an unauthenticated device configuration and client-side hidden functionality disclosure vulnerability.View the full article
  26. Elber Signum DVB-S/S2 IRD for Radio Networks version 1.999 suffers from an authentication bypass vulnerability through a direct and unauthorized access to the password management functionality. The issue allows attackers to bypass authentication by manipulating the set_pwd endpoint that enables them to overwrite the password of any user within the system. This grants unauthorized and administrative access to protected areas of the application compromising the device's system security.View the full article
  27. Relate learning and teaching system versions prior to 2024.1 suffer from a persistent cross site scripting vulnerability.View the full article
  1. Load more activity
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.