WordPress 5.1–critical exploit chain that enables an unauthenticated attacker to gain remote code execution on any WordPress installation:

blog.ripstech.com/2019/wordpre

– exploit is possible due to a CSRF vulnerability in comment forms
– fixed in WordPress 5.1.1

#wordpress #rce #csrf #wordpress5 #infosec #cybersecurity #security

~=8 Character Passwords Are Dead=~

New benchmark from the Hashcat Team shows a 2080Ti GPU passing 100 Billion password guesses per second (NTLM hash).

This means that the entire keyspace, or every possible combination of:
- Upper
- Lower
- Number
- Symbol

...of an 8 character password can be guessed in:

~2.5 hours

(8x 2080Ti GPUs against NTLM Windows hash)

#Hacking #Infosec

My challenge answer was accepted for 'Hack The Admin Panel Challenge'! :) Try it here: bugbountynotes.com/challenge?i

This website is absolutely awesome when it comes to DNS analysis, really cool graphs too dnsdumpster.com/ #DNS #OSINT t.co/nlg4nzmiAo

One of the questions I am asked at the #Eunomia meeting, are there any politicians/journalists using Mastodon? Help me out

#mastoadmin

does anyone have a script to reset permissions to default on everything in the mastodon directory?

I've seen some pretty new accounts lately. For those of you who are actually new, welcome to the Fediverse!

I'm gonna keep posting this until one of you fucking boosts it

My 5yo it's gonna become a computer scientist. At this age, he already writes binary code 🤣🤣🤣🤣

Show more
r3pek's Mastodon

r3pek.org is one server in the network