Last Week in Security (LWiS) - 2024-11-12
2024-11-13 12:59:0 Author: blog.badsectorlabs.com(查看原文) 阅读量:1 收藏

🕵️📱 Mysterious iPhone reboots, Tor under attack, Citrix Unauth RCE (@SinSinology), GitHub Actions attack (@adnanthekhan), and more!

Last Week in Security is a summary of the interesting cybersecurity news, techniques, tools and exploits from the past week. This post covers 2024-11-04 to 2024-11-12.

News

Techniques and Write-ups

Tools and Exploits

  • Command Injection Vulnerability in 'name' parameter for D-Link NAS - Unauthenticated remote code execution against a four different network attached storage devices, with over 60,000 on the internet.
  • CVE-2024-44258 - Proof of concept of a symlink vulnerability within the ManagedConfiguration framework and the profiled daemon in Apple devices. When restoring a crafted backup, the migration process fails to validate whether the destination folder is a symbolic link (symlink), leading to unauthorized file migration into restricted areas.
  • Carseat is a python implementation of Seatbelt. This tool contains all (all minus one technically) modules in Seatbelt that support remote execution as an option.
  • ShadowDumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advanced techniques to dump memory, allowing to access sensitive data in LSASS memory. [Note: feels largely AI generated]
  • BlindBrute is a highly customizable Python tool designed for blind SQL injection attacks. It supports multiple detection methods, including status code, content length, keyword comparison, and time-based. It also allows for flexible payload injection using headers, query strings, request data, and raw HTTP request templates, making it adaptable to a wide range of scenarios.

New to Me and Miscellaneous

This section is for news, techniques, write-ups, tools, and off-topic items that weren't released last week but are new to me. Perhaps you missed them too!

Techniques, tools, and exploits linked in this post are not reviewed for quality or safety. Do your own research and testing.


文章来源: https://blog.badsectorlabs.com/last-week-in-security-lwis-2024-11-12.html
如有侵权请联系:admin#unsafe.sh