Security

This week, we discuss high-severity vulnerabilities in Rubygems and Rsyslogs as well as the importance of defining secure coding practices.

In this video in our Hackersploit Red Team series, we will cover Linux Persistence Techniques. This is a method of establishing and maintaining access to a remote server using back door or web shell.

This week, we discuss a Linux privilege escalation issue and vulnerabilities related to Rancher and Redis.

In this video in our Hackersploit Red Team Series, we will cover Linux privilege escalation techniques. This includes obtaining root access, and exploiting permissions or binaries to achieve access.

This week, we cover a Jira Security Advisory and other high-severity vulnerabilities in Java and Kubernetes’ ingress-nginx module. 

In the eighth video in our series on Red Team Techniques, we will talk about Privilege Escalation Techniques in Windows. We will cover how to bypass UAC and use both Kernel and Token Impersonation Exploits.

In the seventh video in our series on Red Team Techniques we will explore Defense Evasion in Windows. We will cover how to use tools to evade Anti-Virus systems, scripting through PowerShell, and more.

We discuss a vulnerability in GNU gzip's zgrep utility, new GitHub functionality that expands visibility into supply chain bugs, and more.

This guide is part of the HackerSploit Red Team series of guides. Credential Access consists of techniques for stealing credentials like account names and passwords. Techniques used to get credentials include: keylogging or credential dumping. Using legitimate credentials can give adversaries access to systems, make them harder to detect, and provide the opportunity to create more accounts to help achieve their goals.

This week, we discuss Linux kernel and LDAP server vulnerabilities and a zero-day in a popular Java framework.