Filip Dragovic on Twitter: "Spooler service disabled, RPC filters installed to prevent PetitPotam and File Server VSS Agent Service not installed but you still want to relay DC authentication to ADCS? Don't worry MS-DFSNM have your back ;) https://t.co/idwMnM8nIV https://t.co/pTHePYLLMs" / Twitter
https://twitter.com/filip_dragovic/status/1538154721655103488
Project Zero: An Autopsy on a Zombie In-the-Wild 0-day
https://googleprojectzero.blogspot.com/2022/06/an-autopsy-on-zombie-in-wild-0-day.html
ςεяβεяμs - мαℓωαяε яεsεαяςнεя on Twitter: "Ultimate #Malware #Analysis #KVM Guide ✅ PFSense Router ✅ Remnux VM as Gateway ✅ Windows Dynamic Analysis VM ✅ Spice Agent and Guest Tools ✅ Anonymous VPN Networking ✅ List Malware Analysis Tools (my top picks) https://t.co/QzmlE8e4o5 https://t.co/nVxKUrJ6pG" / Twitter
https://twitter.com/c3rb3ru5d3d53c/status/1538116188118695938
GitHub - elttam/semgrep-rules
https://github.com/elttam/semgrep-rules
Google Researchers Detail 5-Year-Old Apple Safari Vulnerability Exploited in the Wild
https://thehackernews.com/2022/06/google-researchers-detail-5-year-old.html
Finding client-side prototype pollution with DOM Invader | Blog - PortSwigger
https://portswigger.net/blog/finding-client-side-prototype-pollution-with-dom-invader
abuse.ch | Introducing YARAify
https://abuse.ch/blog/introducing-yaraify/
MSRPC-to-ATTACK/MS-DFSNM.md at main · jsecurity101/MSRPC-to-ATTACK · GitHub
https://github.com/jsecurity101/MSRPC-to-ATTACK/blob/main/documents/MS-DFSNM.md
VirusTotal - File - 7e068268ee3b89d1f8800d6354c9f63cd57c00088ce0d850893b4ddd8e750573
https://www.virustotal.com/gui/file/7e068268ee3b89d1f8800d6354c9f63cd57c00088ce0d850893b4ddd8e750573/detection
Recent Windows Server updates break VPN, RDP, RRAS connections
https://www.bleepingcomputer.com/news/microsoft/windows-server-june-updates-break-vpn-rdp-rras-connections/
Malware Hell
https://c3rb3ru5d3d53c.github.io/docs/kvm-malware-lab/
BRATA Android Malware Gains Advanced Mobile Threat Capabilities
https://thehackernews.com/2022/06/brata-android-malware-gains-advanced.html
VirusTotal - File - 211a1f74eea68ebe7178d90f0df0446a87cdda865145c397b7a32e253086139e
https://www.virustotal.com/gui/file/211a1f74eea68ebe7178d90f0df0446a87cdda865145c397b7a32e253086139e/detection
VirusTotal - File - 7913b157495341f990bf2a23187bf36ed9260cf49635c2efee0f6772f76bed8e
https://www.virustotal.com/gui/file/7913b157495341f990bf2a23187bf36ed9260cf49635c2efee0f6772f76bed8e/detection
How I Became a Network Engineer at Cisco - YouTube
https://youtu.be/MbTEOkku3Rg
abuse.ch | Fighting malware and botnets
http://Abuse.ch
r00tz on Twitter: "Happy Sunday! A short 🧵 coming: It’s been an interesting & challenging few years since r00tz IX in August of 2019. We have some bitter-sweet news to share with you all. https://t.co/iBXzQvv7X1" / Twitter
https://twitter.com/r00tzasylum/status/1538691445929824256
VU#405600 - Microsoft Windows Active Directory Certificate Services can allow for AD compromise via PetitPotam NTLM relay attacks
https://www.kb.cert.org/vuls/id/405600
Understanding OLE Objects and Microsoft Magic to mess with with CVE-2022-30190(Follina)
https://danusminimus.github.io/2022/06/18/Understanding-OLE-Objects-and-Microsoft-Magic-to-mess-with-with-CVE-2022-30190(Follina).html
YARAify | YARA File Scan
https://yaraify.abuse.ch/scan/
Why Paper Receipts are Money at the Drive-Thru – Krebs on Security
https://krebsonsecurity.com/2022/06/why-paper-receipts-are-money-at-the-drive-thru/