<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>Dean Welch &#8211; Noise</title>
	<atom:link href="https://noise.getoto.net/author/dean-welch/feed/" rel="self" type="application/rss+xml" />
	<link>https://noise.getoto.net</link>
	<description>The collective thoughts of the interwebz</description>
	<lastBuildDate>Fri, 03 Nov 2023 19:10:16 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.8.2</generator>
	<item>
		<title>Metasploit Weekly Wrap-Up</title>
		<link>https://noise.getoto.net/2023/11/03/metasploit-weekly-wrap-up-81/</link>
		
		<dc:creator><![CDATA[Dean Welch]]></dc:creator>
		<pubDate>Fri, 03 Nov 2023 19:10:16 +0000</pubDate>
				<category><![CDATA[Metasploit]]></category>
		<category><![CDATA[Metasploit Weekly Wrapup]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=47061d7b5fcd6938e61e66cdcecec78f</guid>

					<description><![CDATA[<!--kg-card-begin: markdown--><h2>PTT for DCSync</h2>
<p>This week, community member <a href="https://github.com/smashery">smashery</a> made an improvement to the <code>windows_secrets_dump</code> module to enable it to dump domain hashes using the DCSync method after having authenticated with a Kerberos ticket. Now, if a user has a valid Kerberos ticket for a privileged account, they can</p>]]></description>
		
		
		<enclosure url="https://blog.rapid7.com/content/images/2023/11/metasploit-ascii-1-2.png" length="0" type="" />

			</item>
		<item>
		<title>Metasploit Weekly Wrap-Up</title>
		<link>https://noise.getoto.net/2023/07/07/metasploit-weekly-wrap-up-64/</link>
		
		<dc:creator><![CDATA[Dean Welch]]></dc:creator>
		<pubDate>Fri, 07 Jul 2023 19:26:23 +0000</pubDate>
				<category><![CDATA[Metasploit]]></category>
		<category><![CDATA[Metasploit Weekly Wrapup]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=54ec543dee4de7a2ba92d3c228d5f516</guid>

					<description><![CDATA[<!--kg-card-begin: markdown--><h2>Apache RocketMQ</h2>
<p>We saw some great teamwork this week from <a href="https://github.com/jheysel-r7">jheysel-r7</a> and <a href="https://github.com/h00die">h00die</a> to bring you an exploit module for <a href="https://attackerkb.com/topics/YBI7e7fY0a/cve-2023-33246?referrer=blog">CVE-2023-33246</a>.<br>
In Apache RocketMQ version 5.1.0 and under, there is an access control issue which the module leverages to update the broker's configuration file without authentication. From here</p>]]></description>
		
		
		<enclosure url="https://blog.rapid7.com/content/images/2023/07/metasploit-fence.png" length="0" type="" />

			</item>
		<item>
		<title>Metasploit Weekly Wrap-Up</title>
		<link>https://noise.getoto.net/2023/04/21/metasploit-weekly-wrap-up-54/</link>
		
		<dc:creator><![CDATA[Dean Welch]]></dc:creator>
		<pubDate>Fri, 21 Apr 2023 18:02:40 +0000</pubDate>
				<category><![CDATA[Metasploit]]></category>
		<category><![CDATA[Metasploit Weekly Wrapup]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=5f23456d9c1abc9c68b5a9a64bf27d72</guid>

					<description><![CDATA[<!--kg-card-begin: markdown--><h2>VMware Workspace ONE Access exploit chain</h2>
<p>A new module contributed by <a href="https://github.com/jheysel-r7">jheysel-r7</a> exploits two vulnerabilities in VMware Workspace ONE Access to attain Remote Code Execution as the <code>horizon</code> user.<br>
First being <a href="https://github.com/advisories/GHSA-54hw-pp59-j3rc">CVE-2022-22956</a>, which is an authentication bypass and the second being a JDBC injection in the form of <a href="https://github.com/advisories/GHSA-cqx6-4jgp-26m2">CVE-2022-22957</a> ultimately</p>]]></description>
		
		
		<enclosure url="https://blog.rapid7.com/content/images/2023/04/metasploit-sky.png" length="0" type="" />

			</item>
		<item>
		<title>Metasploit Weekly Wrap-Up</title>
		<link>https://noise.getoto.net/2023/02/03/metasploit-weekly-wrap-up-45/</link>
		
		<dc:creator><![CDATA[Dean Welch]]></dc:creator>
		<pubDate>Fri, 03 Feb 2023 19:21:26 +0000</pubDate>
				<category><![CDATA[Metasploit]]></category>
		<category><![CDATA[Metasploit Weekly Wrapup]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=b1d4f0d015eadef37b64dfdbd7a05342</guid>

					<description><![CDATA[<!--kg-card-begin: markdown--><h2>Metasploit 6.3 is out!</h2>
<p>Earlier this week we announced the release of Metasploit 6.3 which came with a tonne of new modules and improvements.<br>
The whole team worked super hard on this and we're very excited that everyone can now get their hands on it and all of</p>]]></description>
		
		
		<enclosure url="https://blog.rapid7.com/content/images/2023/02/metasploit-ascii-1-2.png" length="0" type="" />

			</item>
		<item>
		<title>Metasploit Weekly Wrap-Up</title>
		<link>https://noise.getoto.net/2022/09/30/metasploit-weekly-wrap-up-31/</link>
		
		<dc:creator><![CDATA[Dean Welch]]></dc:creator>
		<pubDate>Fri, 30 Sep 2022 18:47:25 +0000</pubDate>
				<category><![CDATA[Metasploit]]></category>
		<category><![CDATA[Metasploit Weekly Wrapup]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=5bb5a527ebc10639a3f1f7010d15b8f1</guid>

					<description><![CDATA[<!--kg-card-begin: markdown--><h2>Veritas Backup Exec Agent RCE</h2>
<p>This module kindly provided by <a href="https://github.com/c0rs">c0rs</a> targets the Veritas Backup Exec Agent in order to gain RCE as the system/root user.<br>
The exploit itself is actually a chain of 3 separate CVEs (CVE-2021-27876, CVE-2021-27877 and CVE-2021-27878) which only makes it more impressive.<br>
While you're</p>]]></description>
		
		
		<enclosure url="https://blog.rapid7.com/content/images/2022/09/metasploit-sky-1.png" length="0" type="" />

			</item>
		<item>
		<title>Metasploit Weekly Wrap-Up</title>
		<link>https://noise.getoto.net/2022/07/08/metasploit-weekly-wrap-up-21/</link>
		
		<dc:creator><![CDATA[Dean Welch]]></dc:creator>
		<pubDate>Fri, 08 Jul 2022 18:35:21 +0000</pubDate>
				<category><![CDATA[Metasploit]]></category>
		<category><![CDATA[Metasploit Weekly Wrapup]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=1b60cdf33f1a412e19566058486f093e</guid>

					<description><![CDATA[<!--kg-card-begin: markdown--><h2>DFSCoerce - Distributing more than just files</h2>
<p>DFS (Distributed File System) is now distributing Net-NTLM credentials thanks to <a href="https://github.com/zeroSteiner">Spencer McIntyre</a> with a new <code>auxiliary/scanner/dcerpc/dfscoerce </code> module that is similar to PetitPotam in how it functions. Note that unlike PetitPotam, this technique does require a normal domain user’s</p>]]></description>
		
		
		<enclosure url="https://blog.rapid7.com/content/images/2022/07/metasploit-fence.png" length="0" type="" />

			</item>
		<item>
		<title>Metasploit Weekly Wrap-Up</title>
		<link>https://noise.getoto.net/2022/04/22/metasploit-weekly-wrap-up-12/</link>
		
		<dc:creator><![CDATA[Dean Welch]]></dc:creator>
		<pubDate>Fri, 22 Apr 2022 16:44:10 +0000</pubDate>
				<category><![CDATA[Metasploit]]></category>
		<category><![CDATA[Metasploit Weekly Wrapup]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=859150bbdca5700b960b5b57b302fe39</guid>

					<description><![CDATA[<!--kg-card-begin: markdown--><h2>ManageEngine ADSelfService Plus Authenticated RCE</h2>
<p>This module is pretty exciting for us because it's for a vulnerability discovered by our very own Rapid7 researchers <a href="https://github.com/jbaines-r7">Jake Baines</a>, Hernan Diaz, Andrew Iwamaye, and Dan Kelly.<br>
The vulnerability allowed for attackers to leverage the "custom script" functionality to execute arbitrary operating</p>]]></description>
		
		
		<enclosure url="https://blog.rapid7.com/content/images/2022/04/metasploit-ascii-1-2.png" length="0" type="" />

			</item>
		<item>
		<title>Metasploit weekly wrap-up</title>
		<link>https://noise.getoto.net/2022/01/28/metasploit-weekly-wrap-up-3/</link>
		
		<dc:creator><![CDATA[Dean Welch]]></dc:creator>
		<pubDate>Fri, 28 Jan 2022 16:49:49 +0000</pubDate>
				<category><![CDATA[log4shell]]></category>
		<category><![CDATA[Metasploit]]></category>
		<category><![CDATA[Metasploit Weekly Wrapup]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=1d39e7bba13704dcbb8153c89abe6b72</guid>

					<description><![CDATA[A new Log4Shell module for unauthenticated RCE on Ubiquiti UniFi devices, getsystem improvements, and more!]]></description>
		
		
		<enclosure url="https://blog.rapid7.com/content/images/2022/01/metasploit-sky-1.png" length="0" type="" />

			</item>
		<item>
		<title>Metasploit Wrap-Up</title>
		<link>https://noise.getoto.net/2021/10/22/metasploit-wrap-up-29/</link>
		
		<dc:creator><![CDATA[Dean Welch]]></dc:creator>
		<pubDate>Fri, 22 Oct 2021 14:25:55 +0000</pubDate>
				<category><![CDATA[Metasploit]]></category>
		<category><![CDATA[Metasploit Weekly Wrapup]]></category>
		<category><![CDATA[penetration-testing]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=755102ca788dc2d430c6890a3e9b1040</guid>

					<description><![CDATA[Metasploit's first modules targeting Kubernetes, plus Windows support for exploiting Confluence Server CVE-2021-26084.]]></description>
		
		
		<enclosure url="https://blog.rapid7.com/content/images/2021/10/metasploit-pumpkin-1-1.jpg" length="0" type="" />

			</item>
		<item>
		<title>Metasploit Wrap-Up</title>
		<link>https://noise.getoto.net/2021/01/22/metasploit-wrap-up-4/</link>
		
		<dc:creator><![CDATA[Dean Welch]]></dc:creator>
		<pubDate>Fri, 22 Jan 2021 19:21:10 +0000</pubDate>
				<category><![CDATA[Metasploit]]></category>
		<category><![CDATA[Metasploit Weekly Wrapup]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=6c35956d233d9b5624f58f0fd8f44b43</guid>

					<description><![CDATA[A new Microsoft Windows Spooler privesc module, along with some fixes and improvements!]]></description>
		
		
		<enclosure url="https://blog.rapid7.com/content/images/2021/01/metasploit-blg-2-small-1.png" length="0" type="" />

			</item>
	</channel>
</rss>

<!--
Performance optimized by W3 Total Cache. Learn more: https://www.boldgrid.com/w3-total-cache/

Object Caching 23/144 objects using Memcached
Page Caching using Disk: Enhanced 
Lazy Loading (feed)
Database Caching using Memcached

Served from: noise.getoto.net @ 2026-03-07 21:00:52 by W3 Total Cache
-->