Die Cyber Mühle

aggregiert InfoSec Inhalte

redhuntlabs/Awesome-Asset-Discovery

Asset Discovery is the initial phase of any security assessment engagement, be it offensive or defensive. With the evolution of information technology, the scope and definition of assets has also evolved. https://github.com/redhuntlabs/Awesome-Asset-Discovery

Se Wi
12 days ago

The Definition of a Green Team

As I talk about in my article on Red, Blue, and Purple Teams, there are many advocating for other team types beyond just those colors. In April Wright’s work—who appears to have started the idea of these alternative team colors—the new ones look like this. https://danielmiessler.com/blog/the-defi...

Se Wi
2 weeks ago

PHPStan – PHP Static Analysis Tool (Discover Bugs In Your Code Without Running It!)

PHPStan focuses on finding errors in your code without actually running it. It catches whole classes of bugs even before you write tests for the code. It moves PHP closer to compiled languages in the sense that the correctness of each line of the code can be checked before you run the actual line...

Se Wi
2 weeks ago

Test Images and Challenges

https://dfir.training/resources/downloads/ctf-forensic-test-images

Se Wi
3 weeks ago

Moving away from spreadsheets: How to automate your third-party risk management process

Spreadsheets are dumb. Okay, it’s not that spreadsheets are dumb, or that the people who use them are dumb. That’s not at all what I’m saying. What’s dumb is using spreadsheets to manage third-party information security risk. https://www.helpnetsecurity.com/2019/08/12/third-party-risk-management-...

Se Wi
a month ago

Simple Guide to SAML vs OIDC

SAML (Security Assertion Markup Language) and OIDC (OpenID Connect) are the most widely used federation protocols for web based single sign-on. In the case of SAML, the most commonly used flow is Redirect/POST Bindings (SP or IDP initiated) and in the case of OIDC, it is Authorization code flow. ...

Se Wi
a month ago

AWS IAM Privilege Escalation Cookbook

Eine kleine Liste was man alles falsch konfigurieren kann. An attacker with the iam:CreatePolicyVersion permission can create a new version of an IAM policy that they have access to. This allows them to define their own custom permissions. https://github.com/RhinoSecurityLabs/AWS-IAM-Privilege-Es...

Se Wi
a month ago

HACKTALE

HackTale is a new, innovative approach for teaching and training cyber experts via gamification. HackTale is a platform designed for the creation of cyber-games. Each game simulates a different attack scenario and focuses on different aspects of cyber-defense. https://www.hacktale.com

Se Wi
a month ago

Understanding Docker container escapes

Trail of Bits recently completed a security assessment of Kubernetes, including its interaction with Docker. https://blog.trailofbits.com/2019/07/19/understanding-docker-container-escapes/

Se Wi
a month ago

Docker for Pentesters

Ein sehr praktischer Artikel um Einsatz von Docker fürs Pentesten: Over the last few years I have done a complete 180 on Docker (well, containerization in general). One of the very first posts I wrote on this blog was about plundering Docker images, and at the time I was not a fan. https://blog.r...

Se Wi
a month ago