how2itsec
(Move to ...)
Startseite
▼
New proxmox VM does not boot
›
When adding a new VM (in this example the nextcloud appliance VM from https://www.hanssonit.se/nextcloud-vm/ ) to an old version of proxmox ...
Update proxmox 6.4.x to 7.x
›
Updating a proxmox system from version 6.4.x to 7.x using https://pve.proxmox.com/wiki/Upgrade_from_6.x_to_7.0 Proxmox VE 6.x is based on De...
Hackers dont care about your...
›
In 2009 there was "New Zealands Hacker con" in Wellington, which had this awesome picture: Source: https://kiwicon.org/site_medi...
apt get update fails after VM snapshot reset
›
After you reset your VM to a snapshot including RAM you might have to time from the VM snapshot still active. So your apt get using https mi...
Microsoft Office access does not work to WebDav shares
›
Since Microsoft released a patch for Windows in Q4-2023, access to WebDav shares which use basic authentication is blocked: Example Example ...
2 comments:
Almost perfect protection for websites and other services - Mutual TLS
›
Its hard to secure your IT services and applications. The list of possible attacks is long, as shown in the Mitre Att&ck framework , the...
Proxmox update error "Sub-process /usr/share/proxmox-ve/pve-apt-hook returned an error code (1)"
›
Problem During a proxmox update (e.g. from proxmox version 6 to 7) you receive the following error: [...] 100% [608 zstd 34.1 kB/630 kB 5...
Update Proxmox 6.x to latest 6.4
›
Update a Proxmox 6.x system to latest 6.4 using the guide https://pve.proxmox.com/wiki/Downloads#Update_a_running_Proxmox_Virtual_Environmen...
AKS Security - SIEM UseCase of Get Credentials
›
A SIEM usecase or forensic security alert for Azure Kubernetes Service AKS should be setup for az aks get-credentials as it reveals sensit...
Git pull on subfolders
›
In order to update your whole IDE (e.g. visual studio code), you can run git pull to all subfolders one by one using: ls | xargs -I{} git -C...
Microsoft Portals overview - msportals.io
›
The website msportals.io is listing a nice overview of Microsofts portals. For example administrator portals: Microsoft 365 Admin Portals ...
Mitre D3fend Framework - Att&ck from a defenders perspective
›
Mitre published another awesome framework called d3fend.mitre.org It is using the att&ck framework but from a defenders perspective :-)
Confluence behind LoadBalancer with another domain results in XSRF error
›
If you have an atlassian confluence running, which is published by a loadbalancer or reverse proxy using another domain, you might run into...
Splunk Enterprise update plan
›
Splunk published this awesome Splunk Enterprise update plan: https://docs.splunk.com/images/d/d3/Splunk_upgrade_order_of_ops.pdf Regardless...
Phishing using @-URL trick in DNS .zip domains
›
With Googles release of the DNS top-level-domains .zip and .mov a new phishing (mitre att&ck T1566) trick is possible as bobbyrsec wr...
Mini/Reverse/Web-Shells explained
›
The website explainshell.com explains Mini/Reverse/ Web-Shells (T1505.003): Example 1: https://explainshell.com/explain?cmd=file%3D%24%2...
Overview of public interfaces for SOC/IT-Security staff
›
In case of an IT-security incident, emergency oder if a new critical vulnerability (like log4j in December 2021) arises, it is good to be pr...
Windows fileless persistence local privilege escalation using sc.exe sdset
›
Alh4zr3d and Grzegorz Tworek wrote about a fileless, local privilege escalation backdoor in order to gain persistence ( TA0003 ) using the ...
Fix blocked ldap user in GitLab container using GitLabs shell
›
If you are running GitLab in a docker container and your are using some directory service, for example ActiveDirectory with LDAPS for authen...
New LAPS version explained
›
Microsoft will release a new version of Local Administrator Password Solution (LAPS), which provides new Azure AD features as well as new ...
Paessler PRTG 22.4.81.1532 security fix for Cross Site Scripting XSS
›
Paessler PRTG released version 22.4.81.1532 (stable) in which a PRTG the tag handling system was fixed regarding tag parameters to avoid th...
Security Testing - Review LAPS
›
It is a good idea to review your companys Microsoft's Local Administrator Password Solution LAPS installation. Leo Loobeek published a ...
Microsoft Windows Defender AntiVirus Performance analysis
›
When you suspect your Microsoft Defender Antivirus to be a bottleneck for your Windows performance, then you may use Microsofts Defender Ant...
›
Home
View web version