2022-07-01 | Hacker Trends

06/30

07/01

07/02

23 Posts

#1622449 June 2022 Incident Report

https://hackerone.com/reports/1622449

#1622449 June 2022 Incident Report

10 Posts

Microsoft Defender for Endpoint Internals 0x02 — Audit Settings and Telemetry | by Olaf Hartong | FalconForce | Jul, 2022 | Medium

https://medium.com/falconforce/microsoft-defender-for-endpoint-internals-0x02-audit-settings-and-telemetry-1d0af3ebfb27?source=friends_link&sk=3e9535b02aa9a18de324298609fb1753

Microsoft Defender for Endpoint Internals 0x02 — Audit Settings and Telemetry | by Olaf Hartong | FalconForce | Jul, 2022 | Medium

9 Posts

Jenkins discloses dozens of zero-day bugs in multiple plugins

https://www.bleepingcomputer.com/news/security/jenkins-discloses-dozens-of-zero-day-bugs-in-multiple-plugins/

Jenkins discloses dozens of zero-day bugs in multiple plugins

9 Posts

Home | Hacker Lab Coffee

http://www.hackerlabcoffee.com

Home | Hacker Lab Coffee

8 Posts

The Official BloodHound Swag Store Custom Ink Fundraising

https://www.customink.com/fundraising/bloodhound-swag

The Official BloodHound Swag Store Custom Ink Fundraising

8 Posts

Jeff Geerling on Twitter: "lol for one of my #opensource projects, an #infosec employee at @EpicGames emailed me this questionnaire with over 100 questions and wants me to fill it out so they can use my freely available open source software. No. https://t.co/IcRgh12LWc" / Twitter

https://twitter.com/geerlingguy/status/1542589998725300229

Jeff Geerling on Twitter: "lol for one of my #opensource projects, an #infosec employee at @EpicGames emailed me this questionnaire with over 100 questions and wants me to fill it out so *they* can use my freely available open source software. No. https://t.co/IcRgh12LWc" / Twitter

7 Posts

Project Zero: 2022 0-day In-the-Wild Exploitation…so far

https://googleprojectzero.blogspot.com/2022/06/2022-0-day-in-wild-exploitationso-far.html

Project Zero: 2022 0-day In-the-Wild Exploitation…so far

7 Posts

GitHub - chvancooten/maldev-for-dummies: A workshop about Malware Development

https://github.com/chvancooten/maldev-for-dummies

GitHub - chvancooten/maldev-for-dummies: A workshop about Malware Development

7 Posts

Black Basta Ransomware Operators Expand Their Attack Arsenal With QakBot Trojan and PrintNightmare Exploit

https://www.trendmicro.com/en_us/research/22/f/black-basta-ransomware-operators-expand-their-attack-arsenal-wit.html

Black Basta Ransomware Operators Expand Their Attack Arsenal With QakBot Trojan and PrintNightmare Exploit

7 Posts

Twitter

https://twitter.com/budweiserbreath/status/1542700633068916737

6 Posts

PSBits/GetSysmonTree.ps1 at master · gtworek/PSBits · GitHub

https://github.com/gtworek/PSBits/blob/master/DFIR/GetSysmonTree.ps1

PSBits/GetSysmonTree.ps1 at master · gtworek/PSBits · GitHub

6 Posts

Red Team Operations and Adversary Emulation for Security Controls | SANS SEC565

https://www.sans.org/cyber-security-courses/red-team-operations-adversary-emulation/

Red Team Operations and Adversary Emulation for Security Controls | SANS SEC565

6 Posts

Weaponizing and Abusing Hidden Functionalities Contained in Office Document Properties | Offensive Security

https://www.offensive-security.com/offsec/macro-weaponization/

Weaponizing and Abusing Hidden Functionalities Contained in Office Document Properties | Offensive Security

6 Posts

GitLab Critical Security Release: 15.1.1, 15.0.4, and 14.10.5 | GitLab

https://about.gitlab.com/releases/2022/06/30/critical-security-release-gitlab-15-1-1-released/#remote-command-execution-via-project-imports

GitLab Critical Security Release: 15.1.1, 15.0.4, and 14.10.5 | GitLab

6 Posts

Microsoft Warns of Cryptomining Malware Campaign Targeting Linux Servers

https://thehackernews.com/2022/06/microsoft-warns-of-cryptomining-malware.html

Microsoft Warns of Cryptomining Malware Campaign Targeting Linux Servers