2分钟
Metasploit
Metasploit周报04/19/24
欢迎Ryan和新的CrushFTP模块
It's not every week we add an awesome new exploit module to the Framework while
adding the original discoverer of the vulnerability to the Rapid7 team as well.
We're very excited to welcome Ryan Emmons to the 紧急威胁响应 team,
which works alongside Metasploit here at Rapid7. 瑞安发现了一个不合适的
Controlled Modification of Dynamically-Determined Object Attributes
vulnerability in CrushFTP (CVE-2023-43177) versions prior to 10.5.1制作
6分钟
一种总线标准
Enforce 和 Report on 一种总线标准 DSS v4 Compliance with Rapid7
The 一种总线标准 Security St和ards Council (一种总线标准 SSC) is a global forum that connects stakeholders from the payments 和 payment processing industries to craft 和 facilitate adoption of data security st和ards 和 relevant resources that enable safe payments worldwide.
2分钟
Rapid7 了解平台 Achieves Level 2 TX-Ramp Authorization
Rapid7's 了解平台 has officially achieved Level 2 Texas Risk 和 Authorization Management Program (TX-RAMP) authorization. This milestone marks a significant step forward in providing our customers peace-of-mind as well as the best end-to-end cloud security solutions.
3分钟
Metasploit
Metasploit周报04/12/24
使用影子凭证接管帐户
The new release of Metasploit Framework includes a Shadow Credentials module
由smashery添加
used for reliably taking over an Active 导演y user account or computer, 和
letting future authentication to happen as that account. 这可以被链接起来
with other modules present in Metasploit Framework such as windows_secrets_dump.
Details
The module targets a ‘victim’ account that is part of a
4分钟
紧急威胁响应
CVE-2024-3400: Critical Comm和 Injection 脆弱性 in Palo Alto Networks Firewalls
在周五, 4月12日, Palo Alto Networks published an advisory on CVE-2024-3400, a CVSS 10 vulnerability in several versions of PAN-OS, the operating system that runs on the company’s firewalls. CVE-2024-3400 allows for arbitrary code execution as root.
7分钟
研究
Stories from the SOC Part 2: MSIX Installer Utilizes Telegram Bot to Execute IDAT Loader
在我们的博客系列的第一部分, we discussed how a Rust based application was used to download 和 execute the IDAT Loader. 在本系列的第二部分中, we will be providing analysis of how an MSIX installer led to the download 和 execution of the IDAT Loader.
13分钟
星期二补丁
补丁星期二- 2024年4月
一个最新的零日攻击. 物联网关键rce的防御者. 几十个SQL OLE DB驱动程序rce. Microsoft adds CWE 和 Vector String Source to advisories.
3分钟
Metasploit
Metasploit周报04/05/2024
新增ESC4 AD CS模板
Metasploit增加了功能
for exploiting the ESC family of flaws in AD CS in Metasploit 6.3. 的ESC4
technique in particular has been supported for some time now thanks to the
ad_cs_cert_templates module which enables users to read 和 write certificate
模板对象. This facilitates the exploitation of ESC4 which is a
错误配置在
5分钟
管理检测和响应(耐多药)
Rapid7产品的新功能 & 服务业:2024年第一季度回顾
We kicked off 2024 with a continued focus on bringing security professionals the tools 和 functionality needed to anticipate risks, 查明威胁, 自信地更快地做出反应.
3分钟
Rapid7披露
CVE-2024-0394: Rapid7 Minerva Armor Privilege Escalation (FIXED)
Rapid7公开了CVE-2024-0394, a privilege escalation vulnerability in Rapid7 Minerva’s Armor product family. The root cause of this vulnerability is Minerva’s implementation of OpenSSL’s OPENSSLDIR parameter, which was set to a path accessible to low-privileged users.
4分钟
职业发展
Challenges Drive Career Growth: Meet Rudina Tafhasaj
Starting a career for the first time in a new country can be intimidating. 为Rudina Tafhasaj, her path to Senior Application Engineer at Rapid7 was paved with both unique challenges, 以及令人难以置信的回报.
3分钟
紧急威胁响应
XZ Utils后门漏洞(CVE-2024-3094)
在周五, 3月29日, after investigating anomalous behavior in his Debian sid environment, developer Andres Freund contacted an open-source security mailing list to share that he had discovered an upstream backdoor in widely used comm和 line tool XZ Utils (liblzma).
3分钟
Metasploit
Metasploit每周总结2024年3月29日
Metasploit adds three new exploit modules including an RCE for SharePoint.
10分钟
恶意软件
Stories from the SOC Part 1: IDAT Loader to BruteRatel
Rapid7’s 管理检测和响应(耐多药) team continuously monitors our customers' environments, identifying emerging threats 和 developing new detections.
12分钟
Metasploit
Metasploit框架.4发布
Today, Metasploit is pleased to announce the release of Metasploit Framework
6.4. It has been just over a year since the release of version 6.3
和 the team has added many new features 和 improvements since then.
For news reporters, please reach out to press@krissystems.com.
Kerberos的改进
Metasploit 6.3 included initial support for Kerberos authentication within
Metasploit 和 was one of the larger features i