brsn
LightNews LightNews
br-sn.bsky.social
brsn
@br-sn.bsky.social
22 followers 100 following 2 posts
security stuff
Posts Replies Media Videos
br-sn.bsky.social
April 17, 2025 at 5:57 PM
br-sn.bsky.social
@metlstorm.risky.biz @patrick.risky.biz looks like rapid7 found a nice exploit strategy for that Ivanti BOF you discussed in the recent ep:

attackerkb.com/topics/0ybGQ...
CVE-2025-22457 | AttackerKB
On April 3, 2025, Ivanti published an advisory for CVE-2025-22457, an unauthenticated remote code execution vulnerability due to a stack based buffer overflow.…
attackerkb.com
April 10, 2025 at 6:29 PM
Reposted by brsn
dildog.l0pht.com
unpopular opinion: circuit board hacker conference badges are unwieldy and impractical e-waste
April 3, 2025 at 7:51 PM
Reposted by brsn
frycos.bsky.social
Most of you know about Telerik or DevExpress but ever heard of Syncfusion as another big global player? I found some interesting vulnerabilities in it, fixed in version v27.1.55. Unfortunately, Syncfusion still tries to understand CVE assignments 😅
December 2, 2024 at 8:46 AM
Reposted by brsn
bitquark.io
I've just updated Shortscan to support reading a list of URLs to scan from a file (and included a minor bugfix). Feedback welcome! The latest version is v0.9.2 and can be found on Github: github.com/bitquark/sho...
GitHub - bitquark/shortscan: An IIS short filename enumeration tool
An IIS short filename enumeration tool. Contribute to bitquark/shortscan development by creating an account on GitHub.
github.com
November 25, 2024 at 12:55 AM