Blog post: From email to phone number, a new OSINT approach - martinvigo.com/email2phonenumb
Reading: 16 min
Published: 08/13/2019

Webcast by SANS: Legacy Authentication and Spray, Understanding and Stopping Attackers Favorite TTPs in AD at Monday, August 19th, 2019 at 1:00 PM EDT (17:00:00 UTC) - sans.org/webcasts/111460

POC: Use-After-Free (UAF) Vulnerability CVE-2019-1199 in Microsoft Outlook - lares.com/use-after-free-uaf-v
Reading: 6 min
Published: 08/14/2019

Blog post: Bypassing the Fix for Steam Reg-symlink Privilege Escalation Vulnerability - xiaoyinl.github.io/steam_EoP_b
Reading: 3 min
Published: 08/16/2019

Wi1lson boosted

Blog post by BHIS: Using CloudFront to Relay Cobalt Strike Traffic - blackhillsinfosec.com/using-cl
Reading: 11 min
Published: 08/15/2019

Blog post: From email to phone number, a new OSINT approach - martinvigo.com/email2phonenumb
Reading: 16 min
Published: 08/13/2019

Webcast by Trustedsec: Going Purple: Measurably improving your security posture with engagements at Join us Wednesday, August 10th at 1.00 PM EST - trustedsec.com/2019/08/going-p

Blog post: Kiosk Escapes Pt 2 - Ft. Microsoft Edge - h4cklife.org/posts/kiosk-escap
Reading: 3 min
Published: 08/11/2019

Wi1lson boosted

Google Online Security Blog: Making authentication even easier with FIDO2-based local user verification for Google Accounts

security.googleblog.com/2019/0

Tools: RedELK - Red Team's SIEM - tool for used for tracking and alarming about Blue Team activities as well as better usability in long term operations - github.com/outflanknl/RedELK/

Blog post by Rhino Security: Bypassing IP Based Blocking with AWS API Gateway - rhinosecuritylabs.com/aws/bypa
Reading: 4 min
Published: 08/13/2019

Blog post by BHIS: PyFunnels: Data Normalization for InfoSec Workflows - blackhillsinfosec.com/pyfunnel
Reading: 6 min
Published: 08/13/2019

Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.