You might like
Hey @h2hconference, on your CFP page you have 2 deadlines - Oct 1 for proposals and Oct 17 for slides. Does that mean that you expect both proposals and slides before you make the decision about acceptance? Or only those who've received an acceptance note need to submit slides?
Thing I learned today: Decrypting arbitrary TLS sessions on Windows (for code utilizing schannel): b.poc.fun/decrypting-sch… Great explanation, and very easy to use code, by @webpentest
Thanks @hackerdom, @HITBSecConf , @disruptad, @crowdfense, and all competitors for another great AD CTF!
Thanks to @hackerdom and all participating teams for #ructf! It has been fun, as always.
Part 2 of my schannel research is out: b.poc.fun/decrypting-sch…. It is much shorter and focuses mainly on session resumption. As always, feedback is very welcome, especially RE TLS1.3 resumption in schannel.
After doing various tests I'm now reasonably sure that current experimental TLS1.3 implementation in Schannel lacks support for any kind of session resumption.If TLS1.3 is enabled, the client doesn't even advertise session_ticket support in ClientHello.
I now officially have a practical case where a DROP firewall rule helped me achieve my goal, and a REJECT rule instead would have prevented the attack from working. Funny )
United States Trends
- 1. Sesko 42.4K posts
- 2. Ugarte 14.8K posts
- 3. Richarlison 20.1K posts
- 4. Gameday 30K posts
- 5. Amorim 61.8K posts
- 6. #SaturdayVibes 4,468 posts
- 7. De Ligt 23.9K posts
- 8. Good Saturday 31.6K posts
- 9. #Caturday 4,541 posts
- 10. Cunha 24.5K posts
- 11. Casemiro 22.5K posts
- 12. Tottenham 78.1K posts
- 13. #TOTMUN 17K posts
- 14. Vicario 1,926 posts
- 15. #MUFC 23.7K posts
- 16. Dalot 12.2K posts
- 17. Lando 40.1K posts
- 18. Manchester United 83.2K posts
- 19. Man United 36.3K posts
- 20. #BrazilGP 66.6K posts
Something went wrong.
Something went wrong.