HD Moore

Newest OpenSSH (10.1) will now warn users if they are not utilizing post-quantum algorithms for the current session: https://www.openssh.com/pq.html #PQC

A top-level overview of the presentation presented as a grid of thumbnails, showing 42 slides.

Thank you to everyone who made it out for my DEF CON 33 presentation, "Shaking Out Shells With SSHamble", you can find the materials online at https://hdm.io/decks/MOORE%20-%20Shaking%20Out%20Shells%20With%20SSHamble.pdf

This deck includes some […]

[Original post on infosec.exchange]

And in the time it took me to fix the typo, trixie, aka Debian 13, as stable is now available for download.

Be sure to check the release notes. For example, I wouldn't be surprised if /tmp now being tmpfs catches some by surprise:

"The default is to allocate up to 50% of memory to /tmp (this […]

Are you an Austin-area software engineer who writes Go (or aspires to become one)? Join us Wednesday, August 13, 2025 for two hours of lightning talks and discussion, including recaps of awesome Go work presented at the Black Hat and DEF CON conferences […]

[Original post on infosec.exchange]

Hello DEF CON! Tomorrow (Saturday/August 9th) I'll be speaking with Nicole Schwartz on Forging Strong Cyber Communities in Uncertain Times at 1pm in W205 (TDI) and then shortly after on Shaking Out Shells with SSHamble at 3pm in Track 2 (LV1), with even more […]

[Original post on infosec.exchange]

BSides Las Vegas 2025 is incredible. Amazing turn-out, fantastic staff, and the sheer variety of content, speakers, and activities sets the bar for what a hacker con should be. You can find the slides from my talk, Turbo Tactical Exploitation: 22 Tips for […]

[Original post on infosec.exchange]

GitHub - TecharoHQ/anubis: Weighs the soul of incoming HTTP requests to stop AI crawlers Weighs the soul of incoming HTTP requests to stop AI crawlers - TecharoHQ/anubis

@0xabad1dea Time for everyone to start increasing the costs by deploying something like Anubis I guess.

https://github.com/TecharoHQ/anubis

Just got slotted in for BSidesLV on talking about (you guessed it) #CVE:

https://bsideslv.org/talks#what-should-cve-be-when-it-grows-up

Hang out with me and @jayjacobs and @boblord and @taladrane and @securityledger and @lzxdc on Tuesday at 13:00.

And of course keep an eye on all of […]

This is an amazing episode that includes Rishi & Sandeep of https://projectdiscovery.io/; here to give us the backstory on their company and the Nuclei open source vulnerability scanner (already bigger and more popular than Metasploit!). Hit our YT live stream to hear about PD, Nuclei, and how runZero is working with PD and the community on open source security tools!

runZero Hour #20 is LIVE NOW - This is an amazing episode that includes Rishi & Sandeep of https://projectdiscovery.io/; here to give us the backstory on their company and the Nuclei open source vulnerability scanner (already bigger and more popular than […]

[Original post on infosec.exchange]

@XenoPhage woot! thanks for noticing!

Hello Austin Gophers! The July ATX Go Meetup is TONIGHT (July 9th). The meetup includes lightning talks, pizza, beverages, and general discussion. Have a neat idea? A quick talk related to Go? Something to show-and-tell? […]

[Original post on infosec.exchange]

@XenoPhage the quick way is in-product via upper right drop-down, you can also submit fingerprint improvements from the asset details page, or just email support[at]runzero.com to get in touch with engineering

@XenoPhage woot! thank you for checking it out and the kind words!

O_O Synology's middleware service was inadvertently exposing a master credential during every setup process, and this credential belonged to Synology's global app registration, giving attackers broad read-only access to organizational data including Teams messages, group information, and […]

@sntx thanks!

A photo showing five models of the PiKVM, including the original in the case-less Raspberry Pi configuration.

A photo showing the four types of BliKVM hardware (v1 CM4, v2 PCIe, v3 Hat, v4 AllWinner)

A photo showing two models of the NanoKVM, including the Lite and Cube

A photo of the JetKVM device

I'm excited to announce our "Out-of-Band" series; these articles focus on the security risks of management devices like BMCs, serial servers, and IP-enabled KVMs. "Out-of-Band, Part 1: The new generation of IP KVMs and how to find them" is now live at:
https://www.runzero.com/blog/oob-p1-ip-kvm/

GitHub - x-stp/rxtls: rxtls is a hyper-optimized, per-core Certificate Transparency (CT) log processor built for one purpose: to extract and process 100,000+ X.509 certificates per second from the global CT ecosystem with zero GC, zero blocking, and total CPU saturation. rxtls is a hyper-optimized, per-core Certificate Transparency (CT) log processor built for one purpose: to extract and process 100,000+ X.509 certificates per second from the global CT ecosystem wi...

TIL, https://github.com/x-stp/rxtls is a much less casual implementation for folks who want to process all things!

Do you enjoy guzzling real-time TLS certificate allocations, but don't want to use a third-party service (crt.sh, CertStream, etc.)? Drink straight from the Certificate Transparency log firehose using ctail:

$ go run github.com/hdm/ctail@latest -f -m '^autodiscover\\.'

https://github.com/hdm/ctail

#CISA added the Erlang/OTP and RoundCube bugs to the #KEV today.

@runZeroInc already has queries for both of these -- the Erlang/OTP one since April. Both are trivial to #exploit. rZ users should be well ahead of this today.

https://www.runzero.com/blog/erlang-otp-ssh/ […]

Curl vs AI with Daniel Stenberg Daniel Stenberg, the maintainer of Curl, discusses the increase in AI security reports that are wasting the time of maintainers. We discuss Curl’s new policy of banning the bad actors while establishing some pretty sane AI usage guidelines. We chat about how this low-effort, high-impact abuse pattern is a denial-of-service attack on the curl project (and other open source projects too). Episode Links Daniel Curl Curl project founder snaps over deluge of time-sucking AI slop bug reports Curl AI usage guide This episode is also available as a podcast, search for “Open Source Security” on your favorite podcast player.

I talked AI slop with @joshbressers on Open Source Security:

https://opensourcesecurity.io/2025/2025-05-curl_vs_ai_with_daniel_stenberg/

Postman is logging all your secrets and environment variables I was originally investigating this report that Postman is not HIPAA compliant. I found that Postman is not just wholly unsuitable for…

A PSA for why you should probably not use Postman (it can leak secrets to them): https://anonymousdata.medium.com/postman-is-logging-all-your-secrets-and-environment-variables-9c316e92d424

@bagder if only bug bounty reporters had to stake their future payments before submitting slop

RDP

#Windows #RDP lets you log in using revoked passwords. #Microsoft is OK with that.

Researchers say the behavior amounts to a persistent #backdoor.

In response, Microsoft said the behavior is a “a design decision (...) As such, Microsoft said the behavior […]

[Original post on infosec.exchange]

Hello from BSides San Francisco! I'm excited to speak at 1:30pm in the AMC IMAX today. If you'd like to catch up afterwards, I'll be at the runZero booth first and at the City View lounge later. If you couldn't make the trip, the streaming links are live at […]

Exploitation was the primary entry method into orgs, although it declined slight YoY due to the rise of infostealers.

Three of the four most exploited vulns were zero days, all were in cybersecurity products (Palo-Alto, Ivanti Connect Secure, Ivanti Policy […]

[Original post on cyberplace.social]

A few quick notes on the Erlang OTP SSHd RCE (CVE-2025-32433):

1. Cisco confirmed that ConfD and NSO products are affected (ports 830, 2022, and 2024 versus 22)

2. Signatures looking for clear-text channel open and exec calls will miss exploits that deliver the same payloads after the key […]

Hello Austin Gophers! The ATX Go Meetup is THIS WEDNESDAY (April 9th). The meetup includes lightning talks, pizza, beverages, and general discussion. Have a neat idea? A quick talk related to Go? Something to show-and-tell? Running into a weird bug? Swing on […]

[Original post on infosec.exchange]