CVE-2015-5377

We'll post findings from an infected confluence-systems we investigated recently, to show how it looks/feel like. the most systems we took a look at were infected with mining-bots like kerberods.

Shell BotKiller We'll post findings from an infected confluence-systems we investigated recently, to show how it looks/feel like The most systems we took a look at were infected with mining-bots like kerberods With the rise of inexpensive Virtual Servers and popular services that install insecurely by default, coupled with some juicy vulnerabilities (read: RCE - Remote C

Java deserialization exploit for elasticsearch 1.5.2 CVE-2015-5377

CVE-2015-5377 Elasticsearch 152 is vulnerable to RCE through insecure java deserialization The exploit attack the transport protocol on port 9300 The deserialization is based on Groovy MethodClosure chain to achive RCE

Java deserialization exploit for elasticsearch 1.5.2 CVE-2015-5377

CVE-2015-5377 Elasticsearch 152 is vulnerable to RCE through insecure java deserialization The exploit attack the transport protocol on port 9300 The deserialization is based on Groovy MethodClosure chain to achive RCE

A repository of code for generating or producing metrics

This repository is for a variety of code dedicated to metrics for "cyber risk" or infosec and hacking as I know it The goal is to provide some useful tools and extensions to cyber risk metricians and quants The Leverett-Wightman-cost was a simple idea invented with Reid Wightman while scanning the internet looking for vulnerable Programmable Logics Controllers The