Shows
2001: A Space PodysseyEpisode 47 - LEONOV: Meet The Crew! (2010: The Year We Make Content)We've examined the ship, now let's get to know our cosmonaut crew mates aboard LEONOV. Here are the stories of our super-scientist, coffee-chugging Russian roomies and the fascinating lives of the great actors who played them. (Aside from Captain Kirbuk, who is, of course, "The Queen.") Hope "Moscow on the Hudson" is on your bingo card...
They made incredible sacrifices for their families, faiths, and artistic freedom. Maybe we can see ourselves in the faces of all those looking for a better life.
Plus: Herve Villechaize, Robin Williams, and Soundgarden.
STARRING:
Elya...2024-05-1643 min
AVLEONOV PodcastEp.94 - February 2024: Vulremi, Vuldetta, PT VM Course relaunch, PT TrendVulns digests, Ivanti, Fortinet, MSPT, Linux PWHello everyone! In this episode, I will talk about the February updates of my open source projects, also about projects at my main job at Positive Technologies and interesting vulnerabilities.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2024-03-0508 minAVLEONOV PodcastEp.93 - November 2023 – January 2024: New Vulristics Features, 3 Months of Microsoft Patch Tuesdays and Linux Patch Wednesdays, Year 2023 in ReviewHello everyone! It has been 3 months since the last episode. I spent most of this time improving my Vulristics project. So in this episode, let’s take a look at what’s been done.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2024-02-0120 minAVLEONOV PodcastEp.92 - October 2023: back to Positive Technologies, Vulristics updates, Linux Patch Wednesday, Microsoft Patch Tuesday, PhysTech VM lectureHello everyone! October was an interesting and busy month for me. I started a new job, worked on my open source Vulristics project, and analyzed vulnerabilities using it. Especially Linux vulnerabilities as part of my new Linux Patch Wednesday project. And, of course, analyzed Microsoft Patch Tuesday as well. In addition, at the end of October I was a guest lecturer at MIPT/PhysTech university. But first thing first.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2023-11-0512 minAVLEONOV PodcastEp.91 - September 2023: VM courses, Bahasa Indonesia, Russian Podcasts, Goodbye Tinkoff, MS Patch Tuesday, Qualys TOP 20, Linux, Forrester, GigaOm, R-Vision VMHello everyone! On the last day of September, I decided to record another retrospective episode on how my Vulnerability Management month went.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2023-09-3010 minAVLEONOV PodcastEp.90 - August 2023: GitHub PoCs, Vulristics, Qualys First-Party, Tenable ExposureAI, SC Awards and Rapid7, Anglo-Saxon list, MS Patch Tuesday, WinRAR, JuniperHello everyone! This month I decided NOT to make an episode completely dedicated to Microsoft Patch Tuesday. Instead, this episode will be an answer to the question of how my Vulnerability Management month went. A retrospection of some kind.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2023-08-3015 minAVLEONOV PodcastEp.89 - Microsoft Patch Tuesday July 2023: Vulristics improvements, Office RCE, SFB SmartScreen and Outlook, EoP MSHTML and ERS, other RCEsHello everyone! This episode will be about Microsoft Patch Tuesday for July 2023, including vulnerabilities that were added between June and July Patch Tuesdays. As usual, I use my open source Vulristics project to analyse and prioritize vulnerabilities. I optimized the detection of the vulnerable product and the type of vulnerability based on the description. Now processing already downloaded data (with option –rewrite-flag "False") takes a few seconds. For example, only ~3 seconds for 100 MS Patch Tuesday vulnerabilities. It used to take a few minutes.
Watch the video version of this episode on my YouTube channel.
Read the full text of...2023-07-2812 minAVLEONOV PodcastEp.88 - Microsoft Patch Tuesday June 2023: Edge type confusion, Git RCE, OneNote Spoofing, PGM RCE, Exchange RCE, SharePoint EoPHello everyone! This episode will be about Microsoft Patch Tuesday for June 2023, including vulnerabilities that were added between May and June Patch Tuesdays. This time there were only 3 vulnerabilities used in attacks or with a public exploit. And only one of them is more or less relevant.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2023-06-2506 minAVLEONOV PodcastEp.87 - Microsoft Patch Tuesday May 2023: Microsoft Edge, BlackLotus Secure Boot SFB, OLE RCE, Win32k EoP, NFS RCE, PGM RCE, LDAP RCE, SharePoint RCEHello everyone! This episode will be about Microsoft Patch Tuesday for May 2023, including vulnerabilities that were added between April and May Patch Tuesdays. It’s been a long time since we’ve had such tiny Patch Tuesday. 57 CVEs, including CVEs appeared during the month. And only 38 without them! 😄
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2023-05-2808 minAVLEONOV PodcastEp.86 - Microsoft Patch Tuesday April 2023: CLFS EoP, Word RCE, MSMQ QueueJumper RCE, PCL6, DNS, DHCPHello everyone! This episode will be about Microsoft Patch Tuesday for April 2023, including vulnerabilities that were added between March and April Patch Tuesdays. Compared to March, Microsoft Patch Tuesday for April 2023 is kind of weak. 🙄
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2023-04-2805 minAVLEONOV PodcastEp.85 - Vulristics News: EPSS v3 Support, Integration into Cloud AdvisorHello everyone! This episode will focus on the news from my open source Vulristics project for vulnerability analysis and prioritization.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2023-04-2407 minAVLEONOV PodcastEp.84 - Microsoft Patch Tuesday March 2023: Outlook EoP, MOTW Bypass, Excel DoS, HTTP/3 RCE, ICMP RCE, RPC RCEHello everyone! This episode will be about Microsoft Patch Tuesday for March 2023, including vulnerabilities that were added between February and March Patch Tuesdays.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2023-03-2707 minAVLEONOV PodcastEp.83 - Microsoft Patch Tuesday February 2023: Win Graphics RCE, Edge RCE, Publisher SFB, CLFS EoP, Exchange RCEs, Word RCE, HoloLens1Hello everyone! This episode will be about Microsoft Patch Tuesday for February 2023, including vulnerabilities that were added between January and February Patch Tuesdays.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2023-02-2607 minAVLEONOV PodcastEp.82 - Microsoft Patch Tuesday January 2023: ALPC EoP, Win Backup EoP, LocalPotato, Exchange, Remote RCEsHello everyone! This episode will be about Microsoft Patch Tuesday for January 2023, including vulnerabilities that were added between December and January Patch Tuesdays. As usual, I use my open source Vulristics project to analyse and prioritize vulnerabilities. I took the comments about the vulnerabilities from the Qualys, Nessus, Rapid7 and ZDI Patch Tuesday reviews.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2023-01-1306 minAVLEONOV PodcastEp.81 - How Debian OVAL content is structuredHello everyone! As we saw in the last episode, the results of vulnerability detection for one host produced by two different APIs can vary greatly. Therefore, in order to find out the truth, it is necessary to understand what vulnerability data is provided by the Linux distribution vendor and how this data is structured. Why is it important to do this? Because using data from a Linux distribution vendor, we can ask vulnerability detection API vendors questions: why are you detecting in a different way than described in this data? And then we will understand what caused the difference. And...2023-01-1005 minAVLEONOV PodcastEp.80 - Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIsHello everyone! Great news for my open source Scanvus project! You can now perform vulnerability checks on Linux hosts and docker images not only using the Vulners.com API, but also with the Vulns.io VM API. It’s especially nice that all the code to support the new API was written and contributed by colleagues from Vulns.io. I just had to do the final test. Many thanks to them for this!
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-12-3005 minAVLEONOV PodcastEp.79 - Microsoft Patch Tuesday December 2022: SPNEGO RCE, Mark of the Web Bypass, Edge Memory CorruptionsHello everyone! This episode will be about Microsoft Patch Tuesday for December 2022, including vulnerabilities that were added between November and December Patch Tuesdays. As usual, I use my open source Vulristics project to analyse and prioritize vulnerabilities. But let’s start with an older vulnerability. This will be another example why vulnerability prioritization is a tricky thing and you should patch everything. In the September Microsoft Patch Tuesday there was a vulnerability Information Disclosure – SPNEGO Extended Negotiation (NEGOEX) Security Mechanism (CVE-2022-37958), which was completely unnoticed by everyone. Not a single VM vendor paid attention to it in their reviews. I di...2022-12-2507 minAVLEONOV PodcastEp.78 - Is it possible to detect Zero Day vulnerabilities with Vulnerability Management solutions?Hello everyone! In my English-language telegram chat avleonovchat, the question was asked: “How to find zero day vulnerabilities with Qualys?” Apparently this question can be expanded. Not just with Qualys, but with any VM solution in general. And is it even possible? There was an interesting discussion. The question is not so straightforward. To answer it, we need to define what a Zero Day vulnerability is.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-12-1907 minAVLEONOV PodcastEp.77 - Microsoft Patch Tuesday November 2022: Exchange ProxyNotShell RCE, JScript9, MoTW, OpenSSL, Edge, CNG, Print SpoolerHello everyone! This episode will be about Microsoft Patch Tuesday for November 2022, including vulnerabilities that were added between October and November Patch Tuesdays. As usual, I use my open source Vulristics project to create the report.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-11-2507 minAVLEONOV PodcastEp.76 - Microsoft Patch Tuesday October 2022: Exchange ProxyNotShell RCE, Windows COM+ EoP, AD EoP, Azure Arc Kubernetes EoPHello everyone! This episode will be about Microsoft Patch Tuesday for October 2022, including vulnerabilities that were added between September and October Patch Tuesdays. As usual, I use my open source Vulristics project to create the report.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-10-2905 minAVLEONOV PodcastEp.75 - Joint Advisory AA22-279A and VulristicsHello everyone! This episode will be about the new hot twenty vulnerabilities from CISA, NSA and FBI, Joint cybersecurity advisory (CSA) AA22-279A, and how I analyzed these vulnerabilities using my open source project Vulristics. Americans can't just release a list of "20 vulnerabilities most commonly exploited in attacks on American organizations." They like to add geopolitics and point the finger at some country. Therefore, I leave the attack attribution mentioned in the advisory title without comment.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links...2022-10-2109 minAVLEONOV PodcastEp.74 - How to Perform a Free Ubuntu Vulnerability Scan with OpenSCAP and Canonical’s Official OVAL ContentHello everyone! Five years ago I wrote a blogpost about OpenSCAP. But it was only about the SCAP Workbench GUI application and how to use it to detect security misconfigurations. This time, I will install the OpenSCAP command line tool on Ubuntu and use it to check for vulnerabilities on my local host.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-10-0404 minAVLEONOV PodcastEp.73 - Microsoft Patch Tuesday September 2022: CLFS Driver EoP, IP packet causes RCE, Windows DNS Server DoS, Spectre-BHBHello everyone! Let’s take a look at Microsoft’s September Patch Tuesday. This time it is quite compact. There were 63 CVEs released on Patch Tuesday day. If we add the vulnerabilities released between August and September Patch Tuesdays (as usual, they were in Microsoft Edge), the final number is 90. Much less than usual.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-09-2407 minAVLEONOV PodcastEp.72 - Scanvus – my open source Vulnerability Scanner for Linux hosts and Docker imagesHello everyone! This video was recorded for the VMconf 22 Vulnerability Management conference, vmconf.pw. I will be talking about my open source project Scanvus. This project is already a year old and I use it almost every day. Scanvus (Simple Credentialed Authenticated Network VUlnerability Scanner) is a vulnerability scanner for Linux. Currently for Ubuntu, Debian, CentOS, RedHat, Oracle Linux and Alpine distributions. But in general for any Linux distribution supported by the Vulners Linux API. The purpose of this utility is to get a list of packages and Linux distribution version from some source, make a request to an external...2022-09-1707 minAVLEONOV PodcastEp.71 - Microsoft Patch Tuesday August 2022: DogWalk, Exchange EOPs, 13 potentially dangerous, 2 funny, 3 mysterious vulnerabilitiesHello everyone! In this episode, let’s take a look at the Microsoft Patch Tuesday August 2022 vulnerabilities. I use my Vulristics vulnerability prioritization tool as usual. I take comments for vulnerabilities from Tenable, Qualys, Rapid7, ZDI and Kaspersky blog posts. Also, as usual, I take into account the vulnerabilities added between the July and August Patch Tuesdays. There were 147 vulnerabilities. Urgent: 1, Critical: 0, High: 36, Medium: 108, Low: 2. There was a lot of great stuff this Patch Tuesday. There was a critical exploited in the wild MSDT DogWalk vulnerability, 3 critical Exchange vulnerabilities that could be easily missed in prioritization, 13 potentially dangerous vulnerabilities, 2 funny vu...2022-08-2314 min
Today In SpaceSpacewalk & Talk 01 - Artemis 3, Astronauts, The 1st EVAs, Stress, and BreathingOn this episode we try out a new segment called Spacewalk & Talk where I keep myself honest by recording thoughts and ideas I have ONLY ON MY WALKS to keep myself consistent and focused on my own health. We all have our own balance, and we can "hack" our inbalance by thinking outside the box....like having a podcast episode dedicated to only recording WHILE I walk so that I feed the podcast addiction, and a health benefit is included. Instead of saying "I can't" or "I don't have time" I am trying "What if I did this...". Let...2022-08-1831 minAVLEONOV PodcastEp.70 - Vulnerability Management news and publications #2Hello everyone! This is the second episode of Vulnerability Management news and publications. In fact, This is the second episode of Vulnerability Management news and publications. In fact, this is a collection of my posts from the https://t.me/avleonovcom and https://t.me/avleonovrus telegram channels. Therefore, if you want to read them earlier, subscribe to these channels. The main idea of this episode. Microsoft is a biased company. In fact, they should now be perceived as another US agency. Does this mean that we need to forget about Microsoft and stop tracking what they do? No, it does...2022-08-1422 minAVLEONOV PodcastEp.69 - Microsoft Patch Tuesday July 2022: propaganda report, CSRSS EoP, RPC RCE, Edge, Azure Site RecoveryHello everyone! Microsoft has been acting weird lately. I mean the recent publication of a propaganda report about evil Russians and how Microsoft is involved in the conflict between countries. It wouldn't be unusual for a US government agency, NSA or CIA to publish such a report. But when a global IT vendor, which, in theory, should be more or less neutral, does this… This is a clear signal. It's not about business anymore. I'll take a closer look at this report in the next episode of the Vulnerability Management news, but for now let's take a look at Microsoft Ju...2022-07-2309 minAVLEONOV PodcastEp.68 - Vulnerability Management news and publications #1Hello everyone! In this episode, I will try to revive Security News with a focus on Vulnerability Management. On the one hand, creating such reviews requires free time, which could be spent more wisely, for example, on open source projects or original research. On the other hand, there are arguments in favor of news reviews. Keeping track of the news is part of our job as vulnerability and security specialists. And preferably not only headlines. I usually follow the news using my automated telegram channel @avleonovnews. And it looks like this: I see something interesting in the channel, I copy...2022-07-0625 minAVLEONOV PodcastEp.67 - Microsoft Patch Tuesday June 2022: Follina RCE, NFSV4.1 RCE, LDAP RCEs and bad patchesHello everyone! This will be an episode about the Microsoft vulnerabilities that were released on June Patch Tuesday and also between May and June Patch Tuesdays. On June Patch Tuesday, June 14, 56 vulnerabilities were released. Between May and June Patch Tuesdays, 38 vulnerabilities were released. This gives us 94 vulnerabilities in the report.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-06-2506 minAVLEONOV PodcastEp.66 - Vulners Linux Audit API: Security Bulletin Publication Dates in ResultsHello everyone! In this short episode, I want to talk about the new feature in Vulners Linux API. Linux security bulletin publication dates are now included in scan results. Why is it useful?
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-06-1302 minAVLEONOV PodcastEp.65 - PHDays 11: towards the Independence EraHello everyone! In this episode, I want to talk about the Positive Hack Days 11 conference, which took place on May 18 and 19 in Moscow. As usual, I want to express my personal opinion about this event.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-06-1109 minAVLEONOV PodcastEp.64 - AM Live Vulnerability Management Conference 2022: my impressions and positionHello everyone! This episode will be about the AM Live Vulnerability Management online conference. I participated in it on May 17th. The event lasted 2 hours. Repeating everything that has been said is difficult and makes little sense. Those who want can watch the full video or read the article about the event (both in Russian). Here I would like to share my impressions, compare this event with last year's and express my position.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-06-0408 minAVLEONOV PodcastEp.63 - Microsoft Patch Tuesday May 2022: Edge RCE, PetitPotam LSA Spoofing, bad patchesHello everyone! This episode will be about Microsoft Patch Tuesday for May 2022. Sorry for the delay, this month has been quite intense. As usual, I’m using my Vulristics project and going through not only the vulnerabilities that were presented on May 10th, but all the MS vulnerabilities presented by Microsoft since the previous Patch Tuesday, April 12th.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-05-2707 minAVLEONOV PodcastEp.62 - Vulristics May 2022 Update: CVSS redefinitions and bulk adding Microsoft products from MS CVE dataHello everyone! In this episode, I want to talk about the latest updates to my open source vulnerability prioritization project Vulristics.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-05-2303 minAVLEONOV PodcastEp.61 - Malicious Open Source: the cost of using someone else’s codeHello everyone! This video was recorded for the VMconf 22 Vulnerability Management conference, vmconf.pw. I will be talking about malicious open source and the cost of using someone else's code. We must start with the fact that this year is fundamentally different. We now live in The New Reality of Information Security (TNRoIS). It has become quite clear that Open Source tools and code can harm your organization, because project maintainers can easily inject malicious features into their projects. Now they are actually doing it! Hypothetical threats have become quite real!
Watch the video version of this episode on...2022-05-1111 minAVLEONOV PodcastEp.60 - Microsoft Patch Tuesday April 2022 and custom CVE comments sources in VulristicsHello everyone! This episode will be about Microsoft Patch Tuesday for April 2022 and new improvements in my Vulristics project. I decided to add more comment sources. Because it's not just Tenable, Qualys, Rapid7 and ZDI make Microsoft Patch Tuesday reviews, but also other security companies and bloggers.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-04-2309 minAVLEONOV PodcastEp.59 - CISO Forum 2022: the first major Russian security conference in the New RealityHello everyone! After a two-year break, I took part in Moscow CISO Forum 2022 with a small talk "Malicious open source: the cost of using someone else's code". CISO Forum is the first major Russian conference since the beginning of The New Reality of Information Security (TNRoIS). My presentation was just on this topic. How malicious commits in open source projects change development and operations processes. I will make a separate video about this. In this episode, I would like to tell you a little about the conference itself.
Watch the video version of this episode on my YouTube channel.
2022-04-1704 minAVLEONOV PodcastEp.58 - Gitlab OmniAuth Static Passwords and stored XSSHello everyone! In this episode, let’s take a look at the latest vulnerabilities in Gitlab. On March 31, the Critical Security Release for GitLab Community Edition (CE) and Enterprise Edition (EE) was released. GitLab recommends that all installations running a version affected by the issues described in the bulletin are upgraded to the latest version as soon as possible.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-04-0405 minAVLEONOV PodcastEp.57 - Spring4Shell, Spring Cloud Function RCE and Spring Cloud Gateway Code InjectionHello everyone! This episode will be about last week's high-profile vulnerabilities in Spring. Let's figure out what happened. Of course, it's amazing how fragmented the software development world has become. Now there are so many technologies, programming languages, libraries and frameworks! It becomes very difficult to keep them all in sight. Especially if it's not the stack you use every day. Entropy keeps growing every year. Programmers are relying more and more on off-the-shelf libraries and frameworks, even where it may not be fully justified. And vulnerabilities in these off-the-shelf components lead to huge problems. So it was in the...2022-04-0307 minAVLEONOV PodcastEp.56 - How to remove sensitive information from a Github repositoryHello everyone! In this episode, I would like to talk about Github and how to remove sensitive information that was accidentally uploaded there. This is a fairly common problem. When publishing the project code on Github, developers forget to remove credentials: logins, passwords, tokens. What to do if this becomes known? Well, of course, these credentials must be urgently changed. What was publicly available on the Internet cannot be completely removed. This data is indexed and copied by some systems. But wiping it from github.com is real. Why is it not enough to just delete the file in the...2022-03-2702 minAVLEONOV PodcastEp.55 - Microsoft Patch Tuesday March 2022Hello everyone! I am glad to greet you from the most sanctioned country in the world. Despite all the difficulties, we carry on. I even have some time to release new episodes. This time it will be about Microsoft Patch Tuesday for March 2022. I do the analysis as usual with my open source tool Vulristics. You can still download it on github. I hope that github won’t block Russian repositories and accounts, but for now it looks possible. Most likely, I will just start hosting the sources of my projects on avleonov.com in this case. Or on another do...2022-03-1406 minAVLEONOV PodcastEp.54 - Microsoft Patch Tuesday February 2022Hello everyone! This episode will be about Microsoft Patch Tuesday for February 2022. I release it pretty late, because of the my previous big episode about the blindspots in the Knowledge Bases of Vulnerability Scanners. Please take a look if you haven’t seen it. Well, if you are even slightly interested in the world news, you can imagine that the end of February 2022 in Eastern Europe is not the best time to create new content on Vulnerability Management. Let’s hope that peace and tranquility will be restored soon. And also that geopolitical confrontation between the largest nuclear powers will de-e...2022-02-2812 minAVLEONOV PodcastEp.53 - VMconf 22: Blindspots in the Knowledge Bases of Vulnerability ScannersHello everyone! This video was recorded for the VMconf22 Vulnerability Management conference. I want to talk about the blind spots in the knowledge bases of Vulnerability Scanners and Vulnerability Management products.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-02-1815 minAVLEONOV PodcastEp.52 - End of CentOS Linux. Where to migrate?Hello everyone! As you probably know, CentOS Linux, the main Enterprise-level Linux server distribution, will soon disappear. It wasn’t hard to predict when RedHat acquired CentOS in 2014, and now it is actually happening. End of life of CentOS Linux 8 was 31.12.2021. There won’t be CentOS Linux as downstream for RedHat anymore. Only CentOS Stream, that will be upstream for RedHat, more or less a testing distro like Fedora.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-01-2105 minAVLEONOV PodcastEp.51 - Microsoft Patch Tuesday January 2022Hello everyone! This episode will be about Microsoft Patch Tuesday for January 2022. Traditionally, I will use my open source Vulristics tool for analysis. This time I didn’t make any changes to how connectors work. The report generation worked correctly on the first try.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-01-1607 minAVLEONOV PodcastEp.50 - VMconf 22: Why Didn't It Work As Planned and What's Next?Hello everyone! In this episode, I want to talk about VMconf 22. It was an experiment from the beginning. Is it possible to host a Vulnerability Management event with little effort and budget? Looks like no. So I would like to talk about why the original idea failed and the future of VMconf.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2022-01-0806 minAVLEONOV PodcastEp.49 - Log4j 'Log4Shell' RCE explained (CVE-2021-44228)Hello everyone! I decided to make a separate episode about Log4Shell. Of course, there have already been many reviews of this vulnerability. But I do it primarily for myself. It seems to me that serious problems with Log4j and similar libraries will be with us for a long time. Therefore, it would be interesting to document how it all began. So what is the root cause of Log4Shell?
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-12-2708 min
НаукаШкола учит беспомощности? [Veritasium]Помощь проекту: https://www.patreon.com/VertDider
Как мы все уже знаем, иногда Дерек Маллер любит поделиться мыслями о жизни. В этом уже стареньком видео он предполагает, что на пути к нашим успехам может стоять школа. А именно, вероятно, именно в школе мы привыкаем к тому, что от нас ничего не зависит, и перестаём искать способы добиться своих целей. Согласны или думаете, что Дерек ошибается? Давайте обсудим.
Перевод: Анна Мосина, Руслан Миргаев
Редактура: Елена Смотрова
Озвучка: Дмитрий Чепусов
Монтаж звука: Андрей Фокин
Монтаж видео: Джон Исмаилов
Спасибо за поддержку на https://www.patreon.com/VertDider
Озвучки Vert Dider выходят с вашей помощью:
Mikhail Stolpovskiy, Maria Zvereva, Pavel Dunaev, Nick Denizhenko, Oleksii Leonov, Yegor Barakovskiy, Татьяна, Мартынов Павел, Kirill Seleznev, Dmitrii komarevtsev, toshego, Sergey Skrypnyk, Illarion Petrov, Andrew Dzhur, Евгений Колмаков, Andrey Chizh, Linar Khusnullin, Дмитрий Глазнев, Ilya, smiler, Антон Малинин, Roman Inflianskas, Aleksandr, Maxim Syunikov, Oleg Zingilevskiy, Serega Beltser, Rashid Nasibulin, opperatius, Alena, Vitaliy Vachynyuk, Ника Калмыкова, Евгений Сельменев, Ярослав Атрохов, Sergii Cherepanov, Владимир Кашутин, Pavel Parpura, Anton Bolotov, Yevhen, Sergei W, Kosoy, Михаил Панькин, Katoto Chan, Anton Makiievskyi, angel, Сергей Назаров, Михаил Кузнецов, Lev Zaplatin, Ivan Egorov, Exordin, Victor Cazacov, Светлана Забегаева, Анастасия Ермилова, Ivan Bondarenko, Alexander Kulikov, KIM TKHE SIK, Kirill Zaslavskii, Полина Маркина, Tray Hard, Valeriy Dubrava, Евгений, Сергей Андреев, Leonid Korobov, mol9ko, Taleh Zaliyev, Аддон, Irina Slavgorodskaya, Arthur Skobara, 666.13FM, Andrew Rumyantsev, Marianna Sumina, Мария Баранова, Maxim Arkushin, Дмитрий, Oleg Kovalov, Vadim Cpp, Roman Rogachev, Artem Amirbekov, Dzmitryi Halyava, Nastya, POD666, Aleksei Shabalin, Timophey Popov, Natalie Kulinicheva, Marat Bakirov, Ирина Завтонова, Anastasia, Andrey Istomin, Ирина Анатольевна Чулкова, Pavel Golovin, Vadim Velicodnii, Юрий Медведев, Анна Троссман, Serj Skidan, L Marchenko, Nadia Kilgishova, Andrey Rusanov, Inna Klymenko, Dmitriy Lashtaba, Ilya Alexeevsky, Alexa...2021-12-2200 minAVLEONOV PodcastEp.48 - Microsoft Patch Tuesday December 2021Hello everyone! It’s even strange to talk about other vulnerabilities, while everyone is so focused on vulnerabilities in log4j. But life doesn’t stop. Other vulnerabilities appear every day. And of course, there are many critical ones among them that require immediate patching. This episode will be about Microsoft Patch Tuesday for December 2021. I will traditionally use my open source Vulristics tool for analysis.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-12-1607 minAVLEONOV PodcastEp.47 - Vulnerability Intelligence based on media hype. It works? Grafana LFI and Log4j "Log4Shell" RCEHello everyone! In this episode, I want to talk about vulnerabilities, news and hype. The easiest way to get timely information on the most important vulnerabilities is to just read the news regularly, right? Well, I will try to reflect on this using two examples from last week.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-12-1307 minAVLEONOV PodcastEp.46 - QSC21, VMDR Training and ExamHello everyone! This episode is about Qualys Security Day 2021 Las Vegas, Qualys VMDR, VMDR Training and exam.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-12-0609 minAVLEONOV PodcastEp.45 - Vulristics Command Line Interface, improved Product / Vuln. Type Detections and Microsoft Patch Tuesday November 2021Hello everyone! In this episode I want to highlight the latest changes in my Vulristics project. For those who don’t know, this is a utility for prioritizing CVE vulnerabilities based on data from various sources.. Currently Microsoft, NVD, Vulners, AttackerKB.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-11-3005 minAVLEONOV PodcastEp.44 - VMconf 22 Vulnerability Management conference: Call For Papers startedHello everyone! This episode will be about the VMconf 22 Vulnerability Management conference. CFP started on November 1, which will last a month and a half. So please submit your talk or share this video with someone who might be interested.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-11-0104 minAVLEONOV PodcastEp.43 - Security News: Microsoft Patch Tuesday October 2021, Autodiscover, MysterySnail, Exchange, DNS, Apache, HAProxy, VMware vCenter, MoodleHello everyone! This episode will be about relatively recent critical vulnerabilities. Let’s start with Microsoft Patch Tuesday for October 2021. Specifically, with the vulnerability that I expected there, but it didn’t get there.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-10-2107 minAVLEONOV PodcastEp.42 - Career Navigator talk for IT Hub CollegeLast week I gave a "Career Navigator" talk for the students of the IT Hub College in Moscow. By the way, this college has a very interesting practical information security program. If it is relevant for you, check it out. I’ve never talked so much about myself in public. It was like giving advises to yourself from the past. An interesting experience. It took about an hour and a half. And now I will try to mention the main points.
Watch the video version of this episode on my YouTube channel.
Read the full text of this ep...2021-10-0805 minAVLEONOV PodcastEp.41 - Security News: Microsoft Patch Tuesday September 2021, OMIGOD, MSHTML RCE, Confluence RCE, Ghostscript RCE, FORCEDENTRY PegasusHello everyone! This time, let’s talk about recent vulnerabilities. I’ll start with Microsoft Patch Tuesday for September 2021. I created a report using my Vulristics tool. A link to the full report in the blogpost. The most interesting thing about the September Patch Tuesday is that the top 3 VM vendors ignored almost all RCEs in their reviews. However, there were interesting RCEs in the Office products. And what is most unforgivable is that they did not mention CVE-2021-38647 RCE in OMI – Open Management Infrastructure. Only ZDI wrote about this.
Watch the video version of this episode on my You...2021-09-1905 minAVLEONOV PodcastEp.40 - Microsoft Defender for Endpoint: The Latest Versions of Antivirus Engine and SignaturesIn a previous episode on Microsoft Defender for Endpoint, I described how to get a list of antivirus engine and signatures versions for the hosts in your infrastructure using the Microsoft Graph API. But the problem remains. You know the versions that are currently installed on the hosts. But where can you get the latest versions that should be installed there?
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-09-1402 minAVLEONOV PodcastEp.39 - Security News: Exchange ProxyShell, Zoom RCE, Citrix Canceled PT Acknowledgments, Cisco No Patch Router RCEsHello everyone! This is a new episode with my comments on the latest Information Security news.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-09-0106 minAVLEONOV PodcastEp.38 - Security News: Microsoft Patch Tuesday August 2021, Phishers Started Using reCAPTCHA, Scan 1 IP and Go to JailHello everyone! Yet another news episode.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-08-2005 minAVLEONOV PodcastEp.37 - How to get Antivirus-related Data from Microsoft Defender for Endpoint using Intune and Graph APIHello everyone! In this episode, I would like to tell you how I tried to get automatically antivirus-related data (current status, engine and signature version, last full scan date) from Microsoft Defender for Endpoint using Microsoft Intune and the Graph API.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-08-1603 minAVLEONOV PodcastEp.36 - Last Week’s Security News: Black Hat Pwnie Awards, iPhone Checks Photos, Evil Windows Print Server, Cisco VPN Routers TakeoversHello everyone! Last Week’s Security News, August 1 – August 8.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-08-1205 minAVLEONOV PodcastEp.35 - Last Week’s Security news: Serious Sam in Metasploit, PetitPotam, Zimbra Hijack, Joint Advisory TOP30 CVEsHello everyone! Last Week’s Security News, July 26 – August 1.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-08-0206 minAVLEONOV PodcastEp.34 - How to fix “Nessus failed to load the SSH private key” error?If you are using Nessus to scan Linux hosts and authenticate by key, you may encounter this problem. You have generated the keys correctly, placed the public key on a remote server. You can connect to this server using the private key. But when scanning with Nessus, you get weird errors in the various plugin outputs.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-07-3102 minAVLEONOV PodcastEp.33 - Last Week’s Security news: Pegasus, SeriousSAM, SequoiaSo, the last week, July 19 – July 25. In my opinion, the most interesting news was the scandal related to the iPhone Pegasus spyware and two Elevations of Privileges: SeriousSAM for Windows and Sequoia for Linux.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-07-2606 minAVLEONOV PodcastEp.32 - My thoughts on the “2021 Gartner Market Guide for Vulnerability Assessment”. What about the quality?Hello everyone! I decided to share my thoughts on the latest Gartner vulnerability assessment report. Not so bad text after all, but it could be better.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-07-2509 minAVLEONOV PodcastEp.31 - Last Week’s Security news: Exploits for ForgeRock, vSphere, Apache Tomcat, new Print Spooler vuln, Kaseya Patch and REvil, SolarWinds, Schneider Electric, BulletinsHello guys! The fourth episode of Last Week’s Security news, July 12 – July 18.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-07-1909 minAVLEONOV PodcastEp.30 - Vulristics Microsoft Patch Tuesday July 2021: Zero-days EoP in Kernel and RCE in Scripting Engine, RCEs in Kernel, DNS Server, Exchange and Hyper-VHello everyone! For the past 9 months, I’ve been doing Microsoft Patch Tuesday reviews quarterly. Now I think it would be better to review the July Patch Tuesday while the topic is still fresh. And that will save us some time in the next Last Week’s Security news episode. So, July Patch Tuesday, 116 vulnerabilities.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-07-1504 minAVLEONOV PodcastEp.29 - Last Week’s Security news: PrintNightmare patches and Metasploit, Kaseya CVEs, Morgan Stanley Accellion FTA, Cisco BPA and WSA, Philips Vue PACS, CISA RVAs, Lazarus job offersHello guys! The third episode of Last Week’s Security news, July 5 – July 11. There was a lot of news last week. Most of them was again about PrintNightmare and Kaseya.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-07-1108 minAVLEONOV PodcastEp.28 - Vulristics: Microsoft Patch Tuesdays Q2 2021Hello everyone! Let’s now talk about Microsoft Patch Tuesday vulnerabilities for the second quarter of 2021. April, May and June.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-07-1004 minAVLEONOV PodcastEp.27 - Last Week’s Security news: PrintNightmare, Kaseya, Intune, Metasploit Docker escapeHello guys! The second episode of Last Week’s Security news from June 28 to July 4.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-07-0504 minAVLEONOV PodcastEp.26 - Vulristics HTML Report Update: Table for Products, Table for Vuln. Types and PrevalenceHi guys! I was on vacation this week. So I had time to work on my Vulristics project. For those who don’t know, this is a framework for prioritizing known CVE vulnerabilities. I was mainly grooming the HTML report.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-07-0403 minAVLEONOV PodcastEp.25 - Last Week’s Security news: Cisco ASA, BIG-IQ, vSphere, Solaris, Dlink, iPhone %s, DarkRadiation, Google schema, John McAfeeHello, today I want to experiment with a new format. I will be reading last week’s news from my @avleonovnews channel, which I found the most interesting. I do this mostly for myself, but if you like it too, then that would be great. Please subscribe to my YouTube channel and my Telegram @avleonovcom.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-06-2810 minAVLEONOV PodcastEp.24 - PHDays 10: U.S. Sanctions, My Talk on Vulristics, Other Great Talks Related to VMToday I will talk about the Positive Hack Days conference, which took place on May 20 and May 21 in Moscow. I can say that this was and remains the main event for Information Security Practitioners in Russia.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-06-1505 minAVLEONOV PodcastEp.23 - Getting Hosts from Microsoft Intune MDM using PythonToday I want to talk about Microsoft Intune Mobile Device Management platform. The task I needed to solve was how to get the timestamp of the last activity for all hosts in Microsoft Intune using the official API.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-06-0903 min
НаукаНаучный секрет силы и роста мышц [AsapSCIENCE]Помощь проекту: https://vertdider.tv/to-support-us/
Можем ли мы стать сильными, как Супермен?
Перевод: Любовь Иванова
Редактура: Алексей Лоскутов
Озвучка: Юрий Катарманов
Монтаж звука: Андрей Фокин
Монтаж видео: Джон Исмаилов
Обложка: Андрей Гавриков
#VertDider #AsapSCIENCE
Спасибо за поддержку на https://www.patreon.com/VertDider
Озвучки Vert Dider выходят с вашей помощью:
Maria Zvereva, Pavel Dunaev, Nick Denizhenko, Oleksii Leonov, Yegor Barakovskiy, Ігор Дорохов, Mikhail Stolpovskiy, Евгений Тихонов, smiler, Антон Малинин, Roman Inflianskas, Vladimir Dementyev, Maxim Syunikov, Oleg Zingilevskiy, Serega Beltser, Rashid Nasibulin, opperatius, Dina Kruchina, Alena, Vitaliy Vachynyuk, Ника Калмыкова, Роман Чурин, Евгений Сельменев, Alex Afalex, Sergii Cherepanov, Владимир Кашутин, Pavel Parpura, Anton Bolotov, Yevhen, Sergei W, Kosoy, Михаил Панькин, Максим 'Sheridan' Горлов, Katoto Chan, Anton Makiievskyi, , Александр Зуев, Marianna Sumina, Мария Баранова, Maxim Arkushin, Илья Соловьёв, Дмитрий, Julia, Oleg Kovalov, Vadim Cpp, Roman Rogachev, Artem Amirbekov, Dzmitryi Halyava, Nastya, POD666, Aleksei Shabalin, Timophey Popov, Лиля Малкова, Natalie Kulinicheva, Ilya Afanasyev, Marat Bakirov, Ирина Завтонова, Anastasia, Aliaksandr Sheliutsin, Andrew Rumak, Andrey Istomin, Марина Малинкина, Dmitry Khlan, Yaroslav Kyrylchuk, Ирина Анатольевна Чулкова, Pavel Golovin, Vadim Velicodnii, Edward Ben Rafael, Юрий Медведев, Анна Троссман, Serj Skidan, Andrei Chitaev, L Marchenko, Nadia Kilgishova, Aiorraro, Andrey Rusanov, Inna Klymenko, Dmitriy L...2021-05-2700 minНаукаКак из хаоса рождается порядок? [Veritasium]Помощь проекту: https://vertdider.tv/to-support-us/
Законы термодинамики гласят, что энтропия замкнутых систем должна расти и рано или поздно всё превратится в равномерный хаос. Однако ничего не запрещает порядку возникать периодически на этом пути. Вокруг нас полно удивительных примеров подобного: синхронизирующиеся метрономы, шатающийся мост Миллениум в Лондоне, реакции Белоусова-Жаботинского и даже работа сердца. Подробнее расскажет Дерек Маллер в новом выпуске Veritasium.
Перевод: Алексей Малов
Редактура: Елена Смотрова
Научная Редактура: Кирилл Циберкин, Ксения Доронина
Озвучка: Дмитрий Чепусов, Алексей Никитин
Монтаж звука: Андрей Фокин
Монтаж видео: Юрий Хомяков
Обложка: Андрей Гавриков
#VertDider #Veritasium
Спасибо за поддержку на https://www.patreon.com/VertDider
Озвучки Vert Dider выходят с вашей помощью:
Maria Zvereva, Pavel Dunaev, Nick Denizhenko, Oleksii Leonov, Yegor Barakovskiy, mrwiseguy351, Ігор Дорохов, Mikhail Stolpovskiy, Дмитрий, Roman Inflianskas, Vladimir Dementyev, Maxim Syunikov, Oleg Zingilevskiy, Serega Beltser, Rashid Nasibulin, opperatius, Dina Kruchina, Alena, Vitaliy Vachynyuk, Ника Калмыкова, Роман Чурин, Евгений Сельменев, Alex Afalex, Anton Kudashov, Sergii Cherepanov, Владимир Кашутин, Pavel Parpura, Anton Bolotov, Yevhen, Sergei W, Kosoy, Михаил Панькин, Максим 'Sheridan' Горлов, Katoto Chan, Мария Баранова, Maxim Arkushin, Илья Соловьёв, Julia, Oleg Kovalov, Vadim Cpp, Roman Rogachev, Artem Amirbekov, Dzmitryi Halyava, Nastya, POD666, Aleksei Shabalin, Timophey Popov, Лиля Малкова, Natalie Kulinicheva, Ilya Afanasyev, Marat Bakirov, Ирина Завтонова, Anastasia, Aliaksandr Sheliutsin, Andrew Rumak, Andrey Istomin, Марина Малинкина, Dmitry Khlan, Yaroslav Kyrylchuk, Ирина Анатольевна Чулкова, Pavel Golovin, Edward Ben Rafael, Юрий Медведев, Анна Троссман, Serj Skidan, Andrei Chitaev, L Marchenko, Nadia Kilgishova, Sultan Ishankulov, Andrey Rusanov, Inna Klymenko, Dima Chumakov, Dmitriy Lashtaba, Olesya Bolobova, Ilya Alexeevsky, Alexander Balynskiy, Максим Иванов, Alexander, Viktor Lova, Maria Tronina, Alexander Gorodok, Ivan Iakimov, Alexander Zimin, Виталий Пастушенко, Claudia Barzaeva, Pandaben, Monza UA, Lirin Alex, Dan Sotnikov, Konstantin Pesyakov, Denis Titusov, Viktoria, Alexandr Globov, Olga Pod2021-05-0200 minAVLEONOV PodcastEp.22 - AM Live Vulnerability Management Conference Part 2: What was I talking about thereHello all! It is the second part about AM Live Vulnerability Management conference. In the first part I made the timecodes for the 2 hours video in Russian. Here I have combined all my lines into one text.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-04-0806 minAVLEONOV PodcastEp.21 - Vulristics: Microsoft Patch Tuesdays Q1 2021Hello everyone! It has been 3 months since my last review of Microsoft vulnerabilities for Q4 2020. In this episode I want to review the Microsoft vulnerabilities for the first quarter of 2021. There will be 4 parts: January, February, March and the vulnerabilities that were released between the Patch Tuesdays.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-03-2611 minAVLEONOV PodcastEp.20 - Vulristics: Beyond Microsoft Patch Tuesdays, Analyzing Arbitrary CVEsI have completed a major refactoring of Vulristics. Now it can create beautiful reports not only for Microsoft Patch Tuesdays, but for any set of CVEs!
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-03-0203 minAVLEONOV PodcastEp.19 - Microsoft Defender for Endpoint: Why You May Need It and How to Export Hosts via API in PythonI recently tried Microsoft Defender for Endpoint. Not that free antivirus built into Windows, but an enterprise product. The thing is very promising. Even from the Vulnerability Management side.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-02-1905 minAVLEONOV PodcastEp.18 - Vulners Linux Audit API for Host Vulnerability Detection: Manual Auditing, Python Scripting and LicensingThis episode will be about Vulners Linux Audit API, which allows you to detect vulnerabilities on a Linux host knowing only the OS version and installed packages. I had a similar post about this 4 years ago, but some details have changed, so I came back to this topic.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2021-02-1105 minAVLEONOV PodcastEp.17 - Vulristics Vulnerability Score, Automated Data Collection and Microsoft Patch Tuesdays Q4 2020In this episode I would like to make a status update of my Vulristics project. For those who don’t know, in this project I retrieve publicly available vulnerability data and analyze it to better understand the severity of these vulnerabilities and better prioritize them. Currently, it is mainly about Microsoft Patch Tuesday vulnerabilities, but I have plans to go further. Also in this episode I want to demonstrate the new Vulristics features on Microsoft Patch Tuesday reports for October, November and December 2020.
Watch the video version of this episode on my YouTube channel.
Read the full text of...2021-01-1109 minAVLEONOV PodcastEp.16 - MaxPatrol VM: An Ambitious Vision for Vulnerability Management TransformationIn this episode, I would like to share my thoughts about the new Vulnerability Management product by Positive Technologies – MaxPatrol VM.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2020-12-0512 minAVLEONOV PodcastEp.15 - Nessus Essentials with offline registration and plugin updatesIn this episode, I would like to talk about Nessus Essentials and, in particular, how to register and update it without direct internet access. Nothing complicated, but there are a couple of pitfalls that I would like to share.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2020-10-2503 minAVLEONOV PodcastEp.14 - Microsoft Patch Tuesday September 2020: Zerologon and other exploits, RCEs in SharePoint and ExchangeI would like to start this episode by talking about Microsoft vulnerabilities, which recently turned out to be much more serious than it seemed at first glance.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2020-09-3005 minAVLEONOV PodcastEp.13 - Microsoft Patch Tuesday August 2020: vulnerabilities with Detected Exploitation, useful for phishing and othersThis time I would like to review not only the vulnerabilities that were published in the last August Microsoft Patch Tuesday, but also the CVEs that were published on other, not Patch Tuesday, days. Of course, if there are any.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2020-08-3004 minAVLEONOV PodcastEp.12 - Microsoft Patch Tuesday July 2020: my new open source project Vulristics, DNS SIGRed, RDP Client and SharePointI am doing this episode about July vulnerabilities already in August. Sorry for delay. I talk here about my new open source project Vulristics and review the PatchTruesday report.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2020-08-0208 minAVLEONOV PodcastEp.11 - Barapass, Tsunami scanner, vulnerabilities in Windows DNS Server and SAP products, weird attack on TwitterThis episode is based on posts from my Telegram channel avleonovcom, published in the last 2 weeks. So, if you use Telegram, please subscribe. I update it frequently.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2020-07-1807 minAVLEONOV PodcastEp.10 - Microsoft Patch Tuesday June 2020: The Bleeding Ghost of SMBThis time, Microsoft addressed 129 vulnerabilities: 11 critical and 118 important. It's rather interesting month, but the focus is still mainly on SMB RCE vulnerabilities and the possible use of these vulnerabilities in malware attacks.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2020-06-2305 minAVLEONOV PodcastEp.9 - How to list, create, update and delete Grafana dashboards via APII have been a Splunk guy for quite some time, 4 years or so. I have made several blog posts describing how to work with Splunk in automated manner. But after their decision to stop their business in Russia last year, including customer support and selling software and services, it was just a matter of time for me to start working with other dashboarding tools. For me, Grafana has become such a tool. In this post I want to describe the basic API operations with Grafana dashboards, which are necessary if you need to create and update dozens and hundreds of...2020-06-1004 minAVLEONOV PodcastEp.8 - Add new features to Notepad++ using Python scripts: keyboard shortcut to insert current timeIt will be an off-topic, but I really wanted to share this with you. Adding your own tools in Notepad++ makes it much more fun!😊 I have to say, I spend a lot of time daily in Notepad++ text editor for Windows. I keep my “logbook” there. I record what I am doing now and what needs to be done. This allows me not to keep everything in my head and switch the context more efficiently. I can recommend this to everyone. And it is especially useful to note when you started working on a task and when you finished. This gi...2020-06-0402 minAVLEONOV PodcastEp.7 - Microsoft Patch Tuesday May 2020: comments from VM vendors, promising stuff for phishing, troubles with SharePoint and lulz with Visual StudioLast time I complained that different VM vendors release completely different reports for Microsoft Patch Tuesday. This time I decided that it’s not a bug, but a feature. I upgraded my script to not only show vulnerabilities, but also show how these vulnerabilities were mentioned in the reports of various VM vendors (Tenable, Qualys, Rapid7 and ZDI). In my opinion, it seems pretty useful.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2020-05-2605 minAVLEONOV PodcastEp.6 - Anti-Phishing process with advanced phishing attacks simulationThis time I want to write about the service of my friends from Antiphish. They call it “security awareness and employee behaviour management platform”. Simply put, they teach company employees how to detect and avoid phishing attacks. How can you protect your organization from phishing attacks? Educate people and constantly provoke them using emulated phishing attacks (some of these Antiphish attacks are amazing, I show them in the video).
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2020-05-0505 minAVLEONOV PodcastEp.5 - Microsoft Patch Tuesday April 2020: my classification script, confusing RCE in Adobe Type Manager and updates for older vulnerabilitiesMaking the reviews of Microsoft Patch Tuesday vulnerabilities should be an easy task. All vulnerability data is publicly available. Even better, dozens of reviews have already been written. Just read them, combine and post. Right? Not really. In fact it is quite boring and annoying.That's why I created a script that takes Patch Tuesday CVE data from microsoft.com and visualizes it giving me helicopter view on what can be interesting there. With nice grouping by vulnerability type and product, with custom icons for vulnerability types, coloring based on severity, etc.
Watch the video version of this...2020-04-2607 min
OAV CrimeKillernews 19: Sergei Leonov + Alexander PichushkinNa Rússia, um homem foi condenado à prisão perpétua pelo assassinato de duas mulheres e o estupro de outras quatro. O site russo Stolicaplus deu detalhes sobre a vida na prisão de um dos piores assassinos em série do país: Alexander Pichushkin.
EQUIPE OAV PODCASTERS: Daniel Cruz, Fábio Pereira, Kátia De Bastiani, Marcus Santana, Rosane Maldonado, Tatá Xavier2020-03-3002 minAVLEONOV PodcastEp.4 - Microsoft Patch Tuesday March 2020: a new record was set, SMBv3 “Wormable” RCE and updates for February goldiesWithout a doubt, the hottest Microsoft vulnerability in March 2020 is the "Wormable" Remote Code Execution in SMB v3 CVE-2020-0796. The most commonly used names for this vulnerability are EternalDarkness, SMBGhost and CoronaBlue.There was a strange story of how it was disclosed. It seems like Microsoft accidentally mentioned it in their blog. Than they somehow found out that the patch for this vulnerability will not be released in the March Patch Tuesday. So, they removed the reference to this vulnerability from the blogpost as quickly as they could.
Watch the video version of this episode on my...2020-03-2205 minAVLEONOV PodcastEp.3 - Parsing Nessus v2 XML reports with pythonThis will be an update to my post from 2017. In that post, I presented a small python script that parses Nessus XML reports and returns a dictionary with all the data. It worked pretty well for me until the most recent moment when I needed to get compliance data from Nessus scan reports, and it failed. So I researched how this information is stored in a file, changed my script a bit, and now I want to share it with you.
Watch the video version of this episode on my YouTube channel.
Read the full text of this...2020-03-0902 minAVLEONOV PodcastEp.2 - Forrester report for Rapid7: number juggling and an excellent overview of Vulnerability Management problemsI recently read Forrester's 20-page report "The Total Economic Impact™ Of Rapid7 InsightVM". It is about the Cost Savings And Business Benefits that Vulnerability Management solution can bring to the organizations. In short, I didn't like everything related to money. It seems like juggling with numbers, useless and boring. But I really liked the quotes from customers who criticized existing Vulnerability Management solutions, especially the low quality of the remediation data. These are the real pain points of Vulnerability Management process.
Watch the video version of this episode on my YouTube channel.
Read the full text of th...2020-02-2407 minAVLEONOV PodcastEp.1 - Is Vulnerability Management more about Vulnerabilities or Management?I’ve just read a nice article about Vulnerability Management in the Acribia blog (in Russian). Here is an extract with my comments. In the most cases Vulnerability Management is not about Vulnerabilities, but about Management. Just filtering the most critical vulnerabilities is not enough.
Watch the video version of this episode on my YouTube channel.
Read the full text of this episode with all links on avleonov.com blog.
2020-02-1101 min