Hypersec
@hypersec
4.04K subscribers
274 photos
17 videos
210 files
866 links
🔐🔏 تیم عملیات امنیت سورین
ارائه دهنده راهکارهای نوین مرکز عملیات امنیت (SOC)

Soorinsec.ir
۰۲۱-۲۲۰۲۱۷۳۴

instagram : sector_soorin
linkdin : https://www.linkedin.com/company/soorinsec/
Admin:
@Fze01
Download Telegram
About
Blog
Apps
Platform
Join
Hypersec
4.04K subscribers
Hypersec
Using splunk To Detect DNS Tunneling.pdf
11 MB
DNS tunneling is a method to bypass security controls and exfiltrate data from a targeted organization. Choose any endpoint on your organization's network, using nslookup, perform an A record lookup for www.sans.org. If it resolves with the site's IP address, that endpoint is susceptible to DNS...

#DNS
#DNS_Tunneling
#Detect
تیم سورین
👏2
4.89K views
Hypersec
Hypersec
⚠️CVE-2024-3094 (CVSS 10): Backdoor Flaw Discovered in Popular Linux Compression Tool آسیب پذیری CVE-2024-3094 یک آسیب‌پذیری مهم ( CVSS 10.0) است که بر نسخه‌های 5.6.0 و 5.6.1 نرم‌افزار فشرده‌سازی داده XZ Utils تأثیر می‌گذارد و به طور گسترده در توزیع‌های اصلی…
🔖first set of YARA rules to detect the backdoored XZ packages
📄report:
https://www.openwall.com/lists/oss-security/2024/03/29/4
🚪rules:
https://github.com/Neo23x0/signature-base/blob/master/yara/bkdr_xz_util_cve_2024_3094.yar

#CVE #detect #backdoor
تیم سورین
Please open Telegram to view this post
VIEW IN TELEGRAM
GitHub
signature-base/yara/bkdr_xz_util_cve_2024_3094.yar at master · Neo23x0/signature-base
YARA signature and IOC database for my scanners and tools - Neo23x0/signature-base
2.71K views