liam

187 posts

liam banner
liam

liam

@liamsomerville

Learn more, do more.

Katılım Nisan 2009
105 Takip Edilen262 Takipçiler
Gareth Heyes \u2028
Gareth Heyes \u2028@garethheyes·
You can find me on BlueSky: bsky.app/profile/gareth… It's pretty cool you can have your own domain handle. If anyone I follow wants an invite let me know I have 2 spare.
English
2
0
2
973
liam retweetledi
Josh
Josh@passthehashbrwn·
Come check out @sanjivkawa's Arsenal talk on SQLRecon!
Josh tweet media
English
0
4
16
2.4K
liam retweetledi
James Kettle
James Kettle@albinowax·
One cool thing I didn't mention in the presentation is that you can also use the single-packet attack via Burp Repeater, even in the free edition. This should make testing & creating replication steps for triagers a bit easier!
James Kettle tweet media
English
5
10
105
14.2K
liam retweetledi
Bishop Fox
Bishop Fox@bishopfox·
Attention @BlackHatEvents attendees! 🚨 @2600AltF4 and David Vargas from Bishop Fox present their #security research TODAY; don’t miss “Badge of Shame: Breaking into Secure Facilities with #OSDP” starting at 11:20 AM today in South Seas CD, Level 3. bfx.social/3q5aeoX
English
0
2
5
873
liam retweetledi
Caleb Gross
Caleb Gross@noperator·
A deep dive into crypto vulnerabilities my team discovered that enabled @bishopfox's security research + exploit development in FortiGate firewalls 🔥🧱 bishopfox.com/blog/breaking-…
Bishop Fox@bishopfox

Join us as we dive deeper into #Fortinet #security – this time, we’re taking an in-depth look at breaking firmware #encryption. Doing so enabled our team to perform detection, conduct fingerprinting, and develop an #exploit (the focus of a prior post). See for yourself the detailed step-by-step process that we used. #infosec #cryptography bfx.social/3KtHgpF

English
0
3
7
1K
liam retweetledi
Bishop Fox
Bishop Fox@bishopfox·
We are over the moon to announce that Senior Security Engineer Tom Hudson (@tomnomnom), the mastermind behind popular #opensource gems like jsluice and gron, is gracing our #DEFCON 31 edition of #BFLive! 🚀 Get ready to dive into the secrets of his exceptional #hacking tools and uncover the methodologies fueling them – and hear his unique #offensivesecurity perspective as well. bfx.social/3NNr57F
Bishop Fox tweet media
English
1
8
50
6.2K
liam retweetledi
Ben Lincoln
Ben Lincoln@0x00C651E0·
One week until this talk. I got a preview of Jon's section on building an exploit for a FortiGate CVE and it will be great. Plus, hear the tale of how I accidentally found vulns in Windows and InTune while looking for the same type of issue in a product we assessed.
Bishop Fox@bishopfox

Don’t miss #WhatTheVuln Episode 3! In this #BFLive event, Jon Williams & @0x00C651E0 will be discussing #vulnerabilities in #Microsoft OS environments like #CVE-2023-21541 as well as a novel #exploit we made for #Fortinet CVE-2022-42475! #infosec bfx.social/3qA5aZE

English
0
4
4
1.4K
liam retweetledi
Caleb Gross
Caleb Gross@noperator·
My brilliant team at @bishopfox developed a safe, no-crash vulnerability check for the recent CVE-2023-27997 heap overflow in FortiGate firewalls allowing RCE. You can try the tool out yourself at github.com/BishopFox/CVE-…. Check out the blog, too! Clever technique, worth a read.
Caleb Gross tweet media
Bishop Fox@bishopfox

We’ve created a tool to quickly check if a remote #FortiGate firewall is affected by critical #vulnerability #CVE-2023-27997. @noperator walks through the design of the timely #vulnerabilityassessment tool in this write-up. #infosec bfx.social/3pbdEGj

English
1
28
99
22.3K
liam
liam@liamsomerville·
@TomNomNom Also, you only install it once. You may refer to usage instructions far more often.
English
0
0
1
13
liam
liam@liamsomerville·
@TomNomNom I like Usage, because it sort of fleshes out what the tool does. Then, when you've had a chance to see whether it meets your needs, install instructions
English
1
0
3
74

Keşfet

@garethheyes @TomNomNom @stokfredrik @sanjivkawa @retBandit @capt_red_beardz @djhohnstein @h4wkst3r