Category : security

I have been provided with this Windows registry check that should tell if the local security policies are configured to prohibit the execution of problematic file types: VBS, CPL and SCR. $data = @() $keys = Get-ChildItem -Path ‘HKLM:SOFTWAREPoliciesMicrosoftWindowsSafercodeidentifiers{$content}Paths’ foreach ($key in $keys) { $data += (Get-ItemProperty -Path Registry::$key).ItemData } Now $data contains a big ..

Read more

Problem: When serving files from a local filesystem we must check if a resolved path is inside the directory the server is serving in order to prevent directory traversal exploits. This question may also be phrased as checking if a path is a subset of another. Example: Suppose the server is serving /foo/bar/, /foo/bar/baz/../biz/something.js is ..

Read more

I need to perform 3 truly remote attacks (preferably with metasploit), however I am really struggling to find some vulnerabilities besides eternalblue and bluekeep. Can you please suggest me some more for fresh Windows 7 (or fresh Windows 7 SP1)? I can also install any other software that has such vulnerability. No AV will be ..

Read more

I need to protect sensitive data at rest on a server. To encrypt them I use an RSA keypair generated by the RSACryptographicProvider. Microsoft recommends to store the RSA keys in a key container as described here: https://docs.microsoft.com/en-us/dotnet/standard/security/how-to-store-asymmetric-keys-in-a-key-container. They also strongly suggest to use Machine level containers against user containers. However these keys are stored ..

Read more