June 2023 - rwth-security - lists.rwth-aachen.de

Bypassing LDAP Channel Binding with StartTLS (Active Directory)
by Bernd Kohler 08 Jan '24

08 Jan '24

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Bypassing LDAP Channel Binding with StartTLS" VG Bernd [0] https://offsec.almond.consulting/bypassing-ldap-channel-binding-with-startt… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 1

Cert-EU: Hardening Signal
by Bernd Kohler 20 Sep '23

20 Sep '23

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Hardening Signal" VG Bernd [0] https://media.cert.europa.eu/static/WhitePapers/TLP-WHITE-CERT-EU_Security_… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 1

VirusTotal += Docguard
by Bernd Kohler 20 Jun '23

20 Jun '23

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "VirusTotal += Docguard" --> "... analysis of Office documents, PDFs and other file types as a behavioral analysis engine ..." --> es gilt hier nach wie vor, nicht alles darf zur Analyse hochgeladen werden VG Bernd [0] https://blog.virustotal.com/2023/06/virustotal-docguard.html -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

KeePassXC Vulnerability CVE-2023-35866 allows attackers to change the
by Bernd Kohler 19 Jun '23

19 Jun '23

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "KeePassXC Vulnerability CVE-2023-35866 allows attackers to change the master password and second-factor authentication settings" (leider hat die Seite für meinen Geschmack zu viel SchnickSchnack, also Obach beim Öffnen) VG Bernd [0] https://securityonline.info/keepassxc-vulnerability-cve-2023-35866-allows-a… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

MoveIT-WebShellCheck
by Bernd Kohler 16 Jun '23

16 Jun '23

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "MoveIT-WebShellCheck" VG Bernd [0] https://github.com/ZephrFish/MoveIT-WebShellCheck -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 3

Free Webinar zum Thema "Getting Started with Content Security Policy!
by Bernd Kohler 12 Jun '23

12 Jun '23

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Getting Started with Content Security Policy!" 19 June 2023 at 15:00 UK (10:00 ET / 16:00 CEST) VG Bernd [0] https://report-uri.com/webinar/getting_started_with_csp_2023_06_19 -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Google Chrome password manager gets new safeguards for your
by Bernd Kohler 09 Jun '23

09 Jun '23

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Google Chrome password manager gets new safeguards for your credentials" VG Bernd [0] https://www.bleepingcomputer.com/news/security/google-chrome-password-manag… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

acme.sh runs arbitrary commands from a remote server
by Bernd Kohler 09 Jun '23

09 Jun '23

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "acme.sh runs arbitrary commands from a remote server" --> gefunden via tweet zu 'A Chinese certificate authority ("HiCA", https://www1.hi.cn/en/) is injecting arbitrary commands into the ACME challenge process' VG Bernd [0] https://github.com/acmesh-official/acme.sh/issues/4659 -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

KeePass 2.X Master Password Dumper (CVE-2023-32784)
by Bernd Kohler 06 Jun '23

06 Jun '23

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI KeePass 2.X Master Password Dumpe VG Bernd [0] https://github.com/vdohney/keepass-password-dumper -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 1

storing passwords - a journey of common pitfalls
by Bernd Kohler 06 Jun '23

06 Jun '23

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "storing passwords - a journey of common pitfalls VG Bernd [0] https://blog.redteam-pentesting.de/2023/storing-passwords/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0