Finally got around to posting the solution and dockerfile to NoBots from AppSecUSA. dejandayoff.com/nobots---appse…

The book "Advanced Penetration Testing: Hacking AWS" by Richard Knowell plagiarized my DNS exfil article. I've included a snippet of the comparison in the book. I tried to contact the publisher (CreateSpace, run by Amazon) and they didn't do anything about it. PSA: don't buy it!

Here is a good reason to not expose the Docker socket in a container or remotely: dejandayoff.com/the-danger-of-… #security #exploit #Docker #DevOps

Coming soon to Burp Suite ... WebSockets in Burp Repeater

openITCOCKPIT 3.7.3 got released! 🥳🎉 This release resolve critical #security #vulnerabilities discovered by Dejan Zelic Dejan Zelic and Offensive Security OffSec - Update now! ↗️ openitcockpit.io/2020/2020/03/2… #monitoringLove #securityLove

So CSC is doing take down requests on Exploit Database for any entry that contains the string “IBM” on behalf of Business Software Alliance and IBM. Very interesting. Anyone want to place bets on how this is going to turn out? exploit-db.com/exploits/41613

mDNS is the devil 👿

Imagine if the USA collapsed. Not this but rather total chaos, not hunger but starvation. A real war. Suddenly they’re targeting groups of people. People like you. So you run to another country and when you get there they throw your kids in a cage. You fuckin people get it now?

Arizona DPS shot someone having a mental health crisis yesterday. ktar.com/story/3251988/…

Jennifer Senior What does being "partial to Slavs" mean in these days of fight against racism? Or are we fair game?

We’ve updated AWAE with 50% more material, including: ✔️ XML external entity injection ✔️ Weak random token generation ✔️ DOM XSS And more. Students currently in the course update for free! Explore the update: offs.ec/3fuIE9V

AWAE content developer Dejan Zelic discovered and reported an authentication bypass vulnerability in Wekan. Check out the walkthrough: offs.ec/2R8ockW

Github Hall-of-fame alert 🚨 Earlier this year, our team discovered vulnerabilities in Wekan. Step 1, exploit Meteor: offs.ec/3or6Iim

A few quick posts for the "Beyond the good ol' LaunchAgents" series. Ideas from dade, Bradley Kemp and Dejan Zelic Part 6: SSHRC - theevilbit.github.io/beyond/beyond_… Part 7: xbar - theevilbit.github.io/beyond/beyond_… Part 8: Hammerspoon - theevilbit.github.io/beyond/beyond_…

jacobinmag.com/2018/06/yugosl…

In case you want a more traditional prompt for your Kali Linux terminal screenshots, pressing Ctrl+P switches it instantly 😌👌 You can permanently configure it and much more with the new kali-tweaks command

I just got my first blog article posted with Offensive Security. Check it out! offensive-security.com/offsec/game-ha…

I'm not good at bragging, but I'm proud of this. I discovered an authentication bypass vulnerability which leads compromise of a K8s Cluster. I flexed some new muscles and learned to reverse a go binary. github.com/neuvector/neuv… Kudos to SUSE and NeuVector, now part of SUSE for the quick fix!

This was a fun one to find, Arbitrary File Read via Symbolic links in Artifact Hub github.com/artifacthub/hu… Also found SSRF via Rego Policy (github.com/artifacthub/hu…) and Docker Credential Hijacking (github.com/artifacthub/hu…)

I'm happy to publish a blog post regarding some Red Team tradecraft around Slack Impersonation tthat I've been working on. Please see falconspy.org/redteam/tradec… for more info. Big thanks Topher Timzen r00t killah Dejan Zelic for their help.