HackerOne: Reputation gain split by company can be used to track the existence of otherwise undisclosed reports

Summary: A researcher who shares an anonymised description of a vulnerability prior to disclosure may inadvertently be also sharing the company to whom the issue affects if a bounty/thanks has been issued. You may ask: "Where would someone get the idea to share partial information about unfixed...

How Reputation Intelligence Improves Application Security

Reputation intelligence is information about cyber entities known for specific activity, whether malicious or benign, which can be fed to and actioned on by a web application firewall WAF. It provides an additional application security layer by effectively identifying and blocking threats from...

Maximize security insights by integrating threat intelligence data from Akamai with your SIEM

Since 2005, when Gartner coined the term, SIEM Security Information and Event Management solutions have grown in importance for the security industry. SIEM solutions provide a centralized view to easily access and analyze security information from multiple sources, and then prioritize mitigation...

An Established Solution for Mobile Threats

As much as smartphones and applications have evolved over the years, so has mobile malware. We’re seeing an increasing number of threats—from mobile ransomware and auto-clicking adware to dangerous backdoors that can compromise your privacy. And there are also legitimate personal applications tha...

TIH: The Open Source Threat Intelligence Hunter

PenTestIT RSS Feed The primary purpose of threat intelligence is to help you understand the risks of threats, such as zero-days, advanced persistent threats APTs and exploits. But how do you do that on a large scale in an automated manner? You now have a solution in TIH, the Threat Intelligence...

Researchers Find Phishing Site Encrypted with AES

Scammers chasing Apple credentials and payment card information have ramped up their efforts to hide their phishing page by encrypting it with AES. Researchers at Ring 0 Labs disclosed details about the operation last week, pointing out that the criminals behind this activity are buffering a fair...

Adding Security to Your Managed Services Offering

Over the years Trend Micro has collaborated with and learned from a variety of MSPs. Today’s threat landscape is continuously evolving, becoming more complex and sophisticated than it was even a year ago. For MSPs to rely on a single solution is not practical or in the best interest of their...

Windows NSA Information Assurance: Locklevel

Windows NSA Information Assurance LOCKLEVEL was a rapidly built prototype that demonstrates a method for scoring how well Windows systems have implemented some of the NSA Information Assurance top 10 mitigation strategies . This prototype is being shared to encourage industry adoption of these...

Can YOU spot the fake?

As we predicted in 2016, cyberpropaganda is a major growth area for cybercriminals. Per that prediction, “The rise in the Internet penetration has opened the opportunity for invested parties to use the Internet as a free-for-all tool to influence public opinion to go one way or another.” Today, w...

Domain Hunter - Checks Expired Domains, Bluecoat Categorization, And Archive.Org History To Determine Good Candidates For Phishing

Domain name selection is an important aspect of preparation for penetration tests and especially Red Team engagements. Commonly, domains that were used previously for benign purposes and were properly categorized can be purchased for only a few dollars. Such domains can allow a team to bypass...

Zomato: CSRF To Like/Unlike Photos

Description: There is a CSRF vulnerability allowing an attacker to trick a user into visiting his/her site and to forge a request to zomato.com that will in turn like or unlike the photos of the attacker's choosing. The vulnerable page is https://www.zomato.com/php/photoViewerActionsHandler.php ,...

pulledpork - Pulled Pork for Snort and Suricata Rule Management

PulledPork for Snort and Suricata rule management from Google code Features and Capabilities Automated downloading, parsing, state modification and rule modification for all of your snort rulesets. Checksum verification for all major rule downloads Automatic generation of updated sid-msg.map file...

Internet Bug Bounty: Remote client memory corruption in ssl_add_clienthello_tlsext()

https://guidovranken.wordpress.com/2016/10/13/openssl-1-1-0-remote-client-memory-corruption-in-ssladdclienthellotlsext/ OpenSSL is not treating this as a security vulnerability because 1 session tickets need to be enabled 2 request certificate status from server 3 an unrealistically large ALPN li...

Internet Bug Bounty: Double-free in X509 parsing

Note: OpenSSL decided not to assign a CVE, so I'm submitting this for reputation points. See: https://github.com/openssl/openssl/commit/6dcba070a94b1ead92f3e327cf207a0b7db6596f https://github.com/guidovranken/openssl-x509-vulnerabilities...

Enter: [CRITICAL]-Taking over entire subdomain of romit.io

Hi, During recon, I found out that blog.romit.io was not mapped with wordpress.com and the domain was returning back error like this domain has not been mapped with wordpress.com, to map it please login into wordpres.com. So, I quickly created an account on wordpress.com and mapped blog.romit.io ...

OLX: Bypassing Phone Verification For Posting AD On OLX

Overview In computer networks, rate limiting is used to control the rate of traffic sent or received by a network interface controller. It can be induced by the network protocol stack of the sender due to a received ECN-marked packet and also by the network scheduler of any router along the way...

Internet Bug Bounty: Potential double free in EVP_DigestInit_ex

https://github.com/openssl/openssl/commit/ffe9150b1508a0ffc9e724f975691f24eb045c05 If a bounty isn't possible for these non-CVE vulns then I'd appreciate reputation points so it wasn't all for nothing :P...

HackerOne: Reputation Manipulation (Theoretical)

Hi, I really would appreciate if you are transparent with this or does not close the bug quickly as N/A or something similar because of being purely theoretical. I am assuming HackerOne runs an x86 System. and the INTMAX is 2,147,483,648. I know this because https://hackerone.com/reports/21474836...

Vimeo: Missing rate limit on private videos password

Missing rate limit on password protected clips. Rate-limits is a non-qualifying bug at this time. We have received multiple reports of this in the past, however, since that time we have implemented a clip password rate limit. This was not appropriately applied to all clip password areas, so we've...

HackerOne: Abusing HOF rankings in limited circumstances

HI, I think you will close this as NA but i think you should resolve this bug at some point. As we know submitting duplicate report of valid report earns you +2 point and also gives you HOFknown bug. So you will appear in team's HOF as https://hackerone.com/security/thanks with 2 points Now how...