Paedy
@compr00t.bsky.social
Hacking stuff at https://www.redguard.ch/
Swiss news talked all day long about a vulnerability in Kanton Aargau‘s tax software Easytax today: „No malicious activity was detected in an immediate post-mortem analysis“ or „no data was accessed by an attacker at any point in time“. One could conclude, that sounds quite alarming, right? (1/2)
November 29, 2024 at 7:52 PM
Swiss news talked all day long about a vulnerability in Kanton Aargau‘s tax software Easytax today: „No malicious activity was detected in an immediate post-mortem analysis“ or „no data was accessed by an attacker at any point in time“. One could conclude, that sounds quite alarming, right? (1/2)
It seems that linpeas[.]sh is hosting a modified version of linpeas with an additional line of code making callbacks to a logging endpoint. Not really malicious though - maybe a researcher showcasing why you should always properly check the sources of your tooling?
github.com/peass-ng/PEA...
github.com/peass-ng/PEA...
https://linpeas.sh ownership · Issue #450 · peass-ng/PEASS-ng
The linpeas.sh version hosted at https://linpeas.sh is sending info to a remote server: curl -s "https://log.linpeas.sh/?uuid=$(cat /proc/sys/kernel/random/uuid)&id=$(cat /var/lib/dbus/machine-id)&...
github.com
November 27, 2024 at 9:00 PM
It seems that linpeas[.]sh is hosting a modified version of linpeas with an additional line of code making callbacks to a logging endpoint. Not really malicious though - maybe a researcher showcasing why you should always properly check the sources of your tooling?
github.com/peass-ng/PEA...
github.com/peass-ng/PEA...
A great example why you should always pin your VPN server endpoints
Today, AmberWolf released two blog posts and our tool "NachoVPN" to target vulnerabilities in major VPNs, including CVE-2024-29014 (SonicWall NetExtender SYSTEM RCE) and CVE-2024-5921 (Palo Alto GlobalProtect RCE and Priv Esc), after our SANS HackFest presentation.🧵
November 26, 2024 at 8:22 PM
A great example why you should always pin your VPN server endpoints
I like #AI chatbots... I asked Microsoft Ignite's #chatbot (who dared me to ask anything about Microsoft Ignite) about the program and it pointed me to an URL for the UAT environment. What could possibly go wrong?
(don't worry, the UAT is not publicly accessible - as it should be for reasons!)
(don't worry, the UAT is not publicly accessible - as it should be for reasons!)
November 22, 2024 at 8:03 PM