101010.pl

AJCxZ0Assets.Thank you, <a href="https://infosec.exchange/@runZeroInc" class="u-url mention" rel="nofollow noopener" target="_blank">@runZeroInc</a>.<a href="https://infosec.exchange/tags/runZero" class="mention hashtag" rel="nofollow noopener" target="_blank">#runZero</a> <a href="https://infosec.exchange/tags/AssetDiscovery" class="mention hashtag" rel="nofollow noopener" target="_blank">#AssetDiscovery</a> <a href="https://infosec.exchange/tags/NetworkDiscovery" class="mention hashtag" rel="nofollow noopener" target="_blank">#NetworkDiscovery</a> <a href="https://infosec.exchange/tags/NetworkScanning" class="mention hashtag" rel="nofollow noopener" target="_blank">#NetworkScanning</a> <a href="https://infosec.exchange/tags/AttackSurface" class="mention hashtag" rel="nofollow noopener" target="_blank">#AttackSurface</a> <a href="https://infosec.exchange/tags/CAASM" class="mention hashtag" rel="nofollow noopener" target="_blank">#CAASM</a> <a href="https://infosec.exchange/tags/CyberAssetAttackSurfaceManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberAssetAttackSurfaceManagement</a> <a href="https://infosec.exchange/tags/ExposureManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#ExposureManagement</a> <a href="https://infosec.exchange/tags/InformationSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#InformationSecurity</a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a>

Kevin Neely :donor:I received a notice that <a href="https://infosec.exchange/tags/letsencrypt" class="mention hashtag" rel="nofollow noopener" target="_blank">#letsencrypt</a> will cease sending email notices for expiring certificates, so I'm configuring my <a href="https://infosec.exchange/tags/RunZero" class="mention hashtag" rel="nofollow noopener" target="_blank">#RunZero</a> instance to display upcoming expirations on the dashboard. While doing this, I discovered that my <a href="https://infosec.exchange/tags/chromecast" class="mention hashtag" rel="nofollow noopener" target="_blank">#chromecast</a> is pulling down certificates with a 48 hour TTL. Looks like <a href="https://infosec.exchange/tags/Google" class="mention hashtag" rel="nofollow noopener" target="_blank">#Google</a> is getting serious about shortening <a href="https://infosec.exchange/tags/TLS" class="mention hashtag" rel="nofollow noopener" target="_blank">#TLS</a> certificate lifespans.

runZero, Inc⚡ It's a new year and we've got new exposure management features for you! See how runZero's Inside-Out Attack Surface Management capabilities uncover exposures that are impossible to find through attribution alone.External attack surface management (EASM) tools (including runZero) are great for identifying exposures in well-known organizational resources, but they miss exposures where attribution is impossible using IP addresses and domain names alone.To uncover these hidden threats, you need detailed knowledge of your internal assets. With runZero’s Inside-Out ASM, we bridge the gap — connecting internal data powered by advanced fingerprinting with external discoveries to pinpoint publicly exposed assets, no matter what or where they are.💡 Learn more about this innovative approach in our latest blog: <a href="https://www.runzero.com/blog/inside-out-attack-surface-management/" rel="nofollow noopener" translate="no" target="_blank">https://www.runzero.com/blog/inside-out-attack-surface-management/</a>🎙️ Tune into runZero Hour tomorrow to learn more: <a href="https://www.runzero.com/research/runzero-hour/" rel="nofollow noopener" translate="no" target="_blank">https://www.runzero.com/research/runzero-hour/</a><a href="https://infosec.exchange/tags/IOASM" class="mention hashtag" rel="nofollow noopener" target="_blank">#IOASM</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/EASM" class="mention hashtag" rel="nofollow noopener" target="_blank">#EASM</a> <a href="https://infosec.exchange/tags/runZero" class="mention hashtag" rel="nofollow noopener" target="_blank">#runZero</a> <a href="https://infosec.exchange/tags/TechInnovation" class="mention hashtag" rel="nofollow noopener" target="_blank">#TechInnovation</a>

runZero, IncSiemens disclosed 20+ vulnerabilities in its SENTRON, SCALANCE, and RUGGEDCOM product lines. Several vulnerabilities have CVSS scores ranging from 7.0 to 10.0, and the impacts vary from remote code execution to privilege escalation to information disclosure to denial of service.Learn more about the vulnerabilities: <a href="https://www.runzero.com/blog/siemens-devices/" rel="nofollow noopener" translate="no" target="_blank">https://www.runzero.com/blog/siemens-devices/</a>Use runZero to find affected systems on your network: <a href="https://www.runzero.com/try/" rel="nofollow noopener" translate="no" target="_blank">https://www.runzero.com/try/</a><a href="https://infosec.exchange/tags/runzero" class="mention hashtag" rel="nofollow noopener" target="_blank">#runzero</a> <a href="https://infosec.exchange/tags/rapidresponse" class="mention hashtag" rel="nofollow noopener" target="_blank">#rapidresponse</a>

runZero, IncDid you know that the discrepancy between ICMP and TCP syn response times can reveal if a device is the real thing or a lookalike?Watch the entire fourth episode of runZero Hour for this and other insights: <a href="https://youtu.be/m8JE5ZtKvOI" rel="nofollow noopener" translate="no" target="_blank">https://youtu.be/m8JE5ZtKvOI</a>Try runZero for free: <a href="https://www.runzero.com/try/signup/" rel="nofollow noopener" translate="no" target="_blank">https://www.runzero.com/try/signup/</a><a href="https://infosec.exchange/tags/runzero" class="mention hashtag" rel="nofollow noopener" target="_blank">#runzero</a> <a href="https://infosec.exchange/tags/runzerohour" class="mention hashtag" rel="nofollow noopener" target="_blank">#runzerohour</a> <a href="https://infosec.exchange/tags/fingerprinting" class="mention hashtag" rel="nofollow noopener" target="_blank">#fingerprinting</a> <a href="https://infosec.exchange/tags/scanning" class="mention hashtag" rel="nofollow noopener" target="_blank">#scanning</a>

runZero, IncProgress Software disclosed a vulnerability in its OpenEdge Authentication Gateway and AdminServer applications. <a href="https://infosec.exchange/tags/CVE" class="mention hashtag" rel="nofollow noopener" target="_blank">#CVE</a>-2024-1403 allows attackers to bypass authentication and access affected systems with arbitrary privileges.Learn more about the <a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#vulnerability</a>: <a href="https://www.runzero.com/blog/finding-progress-openedge/" rel="nofollow noopener" translate="no" target="_blank">https://www.runzero.com/blog/finding-progress-openedge/</a>Use runZero to find potentially vulnerable installations: <a href="https://www.runzero.com/try/signup/" rel="nofollow noopener" translate="no" target="_blank">https://www.runzero.com/try/signup/</a><a href="https://infosec.exchange/tags/runzero" class="mention hashtag" rel="nofollow noopener" target="_blank">#runzero</a> <a href="https://infosec.exchange/tags/rapidresponse" class="mention hashtag" rel="nofollow noopener" target="_blank">#rapidresponse</a>

runZero, IncConnectWise has disclosed two serious <a href="https://infosec.exchange/tags/vulnerabilities" class="mention hashtag" rel="nofollow noopener" target="_blank">#vulnerabilities</a> in their ScreenConnect (formerly Control) remote access product. The first vulnerability allows attackers to bypass authentication to execute arbitrary commands with full privileges. The second issue is a path-traversal vulnerability that allows attackers to access restricted resources.Learn more about the vulnerability: <a href="https://www.runzero.com/blog/finding-connectwise-screenconnect/" rel="nofollow noopener" translate="no" target="_blank">https://www.runzero.com/blog/finding-connectwise-screenconnect/</a>Use runZero to find <a href="https://infosec.exchange/tags/connectwise" class="mention hashtag" rel="nofollow noopener" target="_blank">#connectwise</a> ScreenConnect on your network: <a href="https://www.runzero.com/try/signup/" rel="nofollow noopener" translate="no" target="_blank">https://www.runzero.com/try/signup/</a><a href="https://infosec.exchange/tags/runzero" class="mention hashtag" rel="nofollow noopener" target="_blank">#runzero</a> <a href="https://infosec.exchange/tags/rapidresponse" class="mention hashtag" rel="nofollow noopener" target="_blank">#rapidresponse</a>

runZero, IncMicrosoft has disclosed a <a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#vulnerability</a> (<a href="https://infosec.exchange/tags/CVE" class="mention hashtag" rel="nofollow noopener" target="_blank">#CVE</a>-2024-21410) in <a href="https://infosec.exchange/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#microsoft</a> Exchange that would allow attackers to authenticate to <a href="https://infosec.exchange/tags/microsoftexchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#microsoftexchange</a> servers using a captured NTLM hash (a so-called “pass-the-hash” vulnerability). This would allow an attacker to authenticate to an Exchange server as any user.Learn more about the vulnerability: <a href="https://www.runzero.com/blog/finding-microsoft-exchange/" rel="nofollow noopener" translate="no" target="_blank">https://www.runzero.com/blog/finding-microsoft-exchange/</a>Use runZero to find Exchange servers on your network: <a href="https://www.runzero.com/try/signup/" rel="nofollow noopener" translate="no" target="_blank">https://www.runzero.com/try/signup/</a><a href="https://infosec.exchange/tags/runzero" class="mention hashtag" rel="nofollow noopener" target="_blank">#runzero</a> <a href="https://infosec.exchange/tags/rapidresponse" class="mention hashtag" rel="nofollow noopener" target="_blank">#rapidresponse</a>

Rob Pomeroy<a href="https://infosec.exchange/@SecureOwl" class="u-url mention" rel="nofollow noopener" target="_blank">@SecureOwl</a> Along a similar theme to SnipeIT, I am truly blown away runZero, particularly because it's virtually effortless. That is its unique party trick. Free for networks with fewer than 256 endpoints, which is plenty for home labs and evaluation.Props to <a href="https://infosec.exchange/@hdm" class="u-url mention" rel="nofollow noopener" target="_blank">@hdm</a> and his team.(I'm not affiliated in any way.)<a href="https://infosec.exchange/tags/runZero" class="mention hashtag" rel="nofollow noopener" target="_blank">#runZero</a> <a href="https://infosec.exchange/tags/AssetManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#AssetManagement</a>

Recent searches

Search options

Administered by:

Server stats:

#runzero