The Art of Defense

[ SB 21.18 ] OMIGOD-Bug in Azure leads to simple Unauth RCE (CVE-2021-38647)

Filed: Wed 15 September 2021 | Security Bulletin | Tags: azure rce microsoft 0day



[ SB 20.30 ] Global DDoS-Campaign targeting ISPs, correlates with ISC-Bind-vuln (CVE-2020-8620)

Filed: Thu 09 September 2021 | Security Bulletin | Tags: sb ddos dns isc bind



[ SB 21.17 ] 500,000 Fortinet VPN accounts leaked on Ransomware-Forum

Filed: Thu 09 September 2021 | Security Bulletin | Tags: ransomware vpn leak



[ SB 21.16 ] ProxyToken Exchange Vuln (CVE-2021-33766)

Filed: Thu 02 September 2021 | Security Bulletin | Tags: exchange sb



[ SB 21.15 ] Multiple Confluence Vulns allow RCE (CVE-2021-26085)

Filed: Thu 26 August 2021 | Security Bulletin | Tags: confluence poc exploit rce



Certified Ethical Stresstester: DDoS-Stresstest-Plattform für Infrastruktur-Pentesting und Security-Assessments

Filed: Wed 25 August 2021 | ZeroBS-News | Tags: zerobs ddos stresstest



Security Incidents Logbook - 2021

Filed: Mon 16 August 2021 | Analysis | Tags: corona exploits logbuch logbook



[ SB 21.14 ] ProxyShell Exchange - RCE ( CVE-2021-34473 CVE-2021-34523 CVE-2021-31207 )

Filed: Mon 09 August 2021 | Security Bulletin | Tags: rce 0day sb microsoft exchange



Juicy Open Ports for Recon and Pentests

Filed: Thu 05 August 2021 | Analysis | Tags: open ports recon attacksurface



Whitepaper: Ransomware Operations erklärt

Filed: Tue 27 July 2021 | ZeroBS-News | Tags: ransomware whitepaper



Fancy Lazarus DDoS-Erpressergang in DACH-Region gesichtet

Filed: Wed 07 July 2021 | Analysis | Tags: ddos fancy lazarus



[ SB 21.12 ] Supply-Chain-Attack against Kaseya and MSP

Filed: Sat 03 July 2021 | Security Bulletin | Tags: kaseya ransomware revil 0day



Ransomware Operations Part 1 - Intro

Filed: Fri 04 June 2021 | Analysis | Tags: ransomware exploits hacker rops



Ransomware Operations Part 2 - Vorgehen und Verfahren

Filed: Thu 03 June 2021 | Analysis | Tags: ransomware exploits hacker rops



Ransomware Operations Part 3 - Protection

Filed: Wed 02 June 2021 | Analysis | Tags: ransomware exploits hacker rops



Ransomware Operations Part 4 - Addendum Referenzen

Filed: Tue 01 June 2021 | Analysis | Tags: ransomware exploits hacker rops



DDoS-Stresstest Mk 5 released

Filed: Thu 20 May 2021 | ZeroBS-News | Tags: ddos stresstest frgg



Cobaltstrike-Beacons analyzed

Filed: Mon 10 May 2021 | Analysis | Tags: cobaltstrike cti



[ SB 21.11 ] 21 Exim-vulns discovered by Qualys

Filed: Wed 05 May 2021 | Security Bulletin | Tags: exim vuln rce



[ SB 21.10 ] Out-of-Cycle Advisory: Pulse Connect Secure RCE Vulnerability (CVE-2021-22893)

Filed: Tue 20 April 2021 | Security Bulletin | Tags: sb 0day pulse secure exploit rce



Analysing the DDOS-Threat-Landscape, Part 2: DDoS-Size over Time (Botnet, Volume, Max-Values)

Filed: Wed 14 April 2021 | Analysis | Tags: ddos udp amplifyer snakeoil taod ddos_landscape



Scanning for Exchange - Exploitation/Webshells (CVE-2021-26855 ProxyLogon)

Filed: Tue 23 March 2021 | Analysis | Tags: exchange 0day rce exploit hacker proxylogon



[ SB 21.07 ] Emergency-Patches for MS Exchange / HAFNIUM targeting Exchange Servers with 0-day exploits ( CVE-2021-26855 )

Filed: Sun 21 March 2021 | Security Bulletin | Tags: sb ms exchange 0day proxylogon



[ SB 21.09 ] Microsoft DNS-Server RCE (CVE-2021-26897)

Filed: Thu 11 March 2021 | Security Bulletin | Tags: sb ms dns rce



[ SB 21.08 ] Big-IP Loadbalancer RCE and DoS with POC released (CVE-2021-22986)

Filed: Wed 10 March 2021 | Security Bulletin | Tags: sb rce exploit poc bigip





Main-Links

Blog

OSS & Projects



(c) copyright 2021 zeroBS GmbH, all rights reserved
info@zero.bs