Penetration testing, red teaming, security research and consulting services. Offensive Services from Offensive Minds. #iamoffensive#cybersecurity#infosec
The SiegeCast "WEB API WEAKNESSES" with @bsdbandit
is tomorrow, January 19th!
You can register now!
redsiege.com/webapi
Charles breaks down the fundamentals of hacking Web API's and the methodology that he has used successfully during his career!
#hacking#pentesting
Although DoH protects transactions from unauthorized modification, NSA cautioned it can bring "a false sense of security" but can help prevent numerous exfiltration techniques used by threat actors if configured appropriately.
via @TheHackersNewsthehackernews.com/2021/01/ns…
APT used LNK shortcuts to extract and run the malware payload in May 2020. A second attack used a malicious RAR archive file consisting of shortcuts to two bait PDF documents claimed to be a curriculum vitae and an IELTS certificate.
via @TheHackersNewsthehackernews.com/2021/01/re…
From dream vacations to the pressures of the job, we're getting real about #cybersecurity professional mental health in this recorded #RSAC webcast with Amanda Berlin of @blumirasec, Kim Jones of Ursus Worldwide and @bsdbandit of @RedSiege. Watch in full: spr.ly/6014HX4Gq
CISA believes that the threat actors were able to defeat MFA authentication protocols by hijacking an already authenticated session using stolen session cookies to log into online services or web apps.
via @BleepinComputerbleepingcomputer.com/news/se…
Get a break down of the fundamentals of hacking Web API's with Charles Shirer @bsdbandit in our next SiegeCast:
"WEB API WEAKNESSES"
Register now: redsiege.com/webapi
Join us January 19th at 3pm EST
#hacking#Pentesting#infosec