@loworbitsec.bsky.social
Tailored Security Solutions
6. This could be you running gubble....
01.01.2025 18:53 β π 1 π 0 π¬ 0 π 0
5. With Gubble you can easily identify these threats (or opportunities if you're on the offensive security side of things)
01.01.2025 18:53 β π 0 π 0 π¬ 1 π 0
4. In this example, anyone in the organization can send messages from the security group. This can be used for internal phishing.
If a threat actor can post as security@<yourorganization>.com, they can send out extremely successful internal phishing emails
3. Or how about finding a group called CLOUD_ADMINS that anyone in your organization can join?
Who knows what level of access being in this group would give an attacker.
2. Gubble finds overly permissive group like this HR one that exposes highly sensitive information.
01.01.2025 18:53 β π 0 π 0 π¬ 1 π 0
1. Are you sure your your sensitive Groups are locked down?
In this example everyone in the domain can view the conversations of the HR Group.
Happy new year! Gubble is out now!
Gubble is a tool that queries the Workspace API to analyze Group permissions to identify potential security risks, allowing both offensive and defensive teams to programmatically identify risky permissions.
github.com/LowOrbitSecu...
Gubble is coming out this week. Here is a sneak peek of some tools I created to help test it. What could this be for π€
29.12.2024 12:08 β π 2 π 0 π¬ 0 π 2
Soon.
27.12.2024 13:17 β π 0 π 0 π¬ 0 π 0# ---- LOW ORBIT SECURITY ----
# <<INCOMING TRANSMISSION>>
# Objectives: Tailored Security Solutions,
# Research, Tooling
# Date: <Unknown>
# ---- :WQ ----
