News – Page 183 – OWASP Jakarta

RANK, RESEARCHER, POINTS; 1, YUKI CHEN, 6495; 2, TERRY ZHANG @PNIG0S, 2305; 3, CALLUM CARNEY, 2152.5; 4, WILLIAM SÖDERBERG, 2092.5; 5, WTM, 2070; 6, MOHAMMAD DEILAMY(MDM), 1880; 7, ZHIYI ZHANG, 1650; 8, SURESH CHELLADURAI, 1162.5; 9, ERIK DONKER, 1100; 10, ZHINIANG PENG (@EDWARDZPENG), 1062.5.

Congratulations to the MSRC 2022 Most Valuable Researchers! | MSRC Blog

Congratulations to the MSRC 2022 Most Valuable Researchers! | MSRC Blog The Microsoft Researcher Recognition Program offers public thanks and recognition to security researchers who help protect our customers through discovering and sharing security vulnerabilities under Coordinated Vulnerability Disclosure. Today, we are excited to recognize this year’s top 100 Most Read more…

By adminowasp, 2 yearsNovember 5, 2023 ago

News

Microsoft Office to publish symbols starting August 2022 | MSRC Blog

Microsoft Office to publish symbols starting August 2022 | MSRC Blog We are excited to announce that Microsoft Office will begin publishing Office symbols for Windows via the Microsoft Public Symbol Server on August 9th 2022. The publication of Office symbols is a part of our continuing investment to improve Read more…

By adminowasp, 2 years ago

News

Security Update Guide Notification System News: Create your profile now | MSRC Blog

Security Update Guide Notification System News: Create your profile now | MSRC Blog Sharing information through the Security Update Guide (SUG) is an important part of our ongoing effort to help customers manage security risks and keep systems protected. In January 2022 we introduced Phase One of a new way Read more…

By adminowasp, 2 years ago

Country map of researchers across the globe.

News

Microsoft Bug Bounty Programs Year in Review: $13.7M in Rewards | MSRC Blog

Microsoft Bug Bounty Programs Year in Review: $13.7M in Rewards | MSRC Blog The Microsoft Bug Bounty Programs and partnerships with the global security research community are important parts of Microsoft’s holistic approach to defending customers against security threats. Our bounty programs incentivize security research in high-impact areas to stay Read more…

By adminowasp, 2 yearsNovember 5, 2023 ago

News

Curious, Innovative, Creative, Community Driven: Meet Cyb3rWard0g, Roberto Rodriquez | MSRC Blog

Curious, Innovative, Creative, Community Driven: Meet Cyb3rWard0g, Roberto Rodriquez | MSRC Blog When I grow up I want to be? Dancer or a veterinarian Happiest memories: Tearing up the dance floor at weddings and playing soccer in the streets of Lima, Peru Previous Job roles : Mopped floors for McDonalds, Read more…

By adminowasp, 2 years ago

News

Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server | MSRC Blog

Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server | MSRC Blog November 8, 2022 update – Microsoft released security updates for CVE-2022-41040 and CVE-2022-41082. We recommend that customers protect their organizations by applying the updates immediately to affected systems. The options described in the Mitigations section are no Read more…

By adminowasp, 2 years ago

News

Improvements in Security Update Notifications Delivery – And a New Delivery Method | MSRC Blog

Improvements in Security Update Notifications Delivery – And a New Delivery Method | MSRC Blog At MSRC, we are passionate about ensuring our customers have a positive experience when they use the Microsoft Security Update Guide (SUG). A big part of improving that experience is ensuring that customers have timely Read more…

By adminowasp, 2 years ago

News

BlueHat 2023 Call for Papers is Now Open! | MSRC Blog

BlueHat 2023 Call for Papers is Now Open! | MSRC Blog For nearly 20 years, BlueHat has been where the security research community, and Microsoft security professionals come together as peers, to share, debate, challenge, learn, and exchange ideas in the interest of creating a safer and more secure world Read more…

By adminowasp, 2 years ago

from email import header import requests
from requests.auth import HTTPBasicAuth
import json
import base64
def search(search, API_KEY, userName, log):
open_instances = []
usrPass = userName + ‘:’ + API_KEY
encoded_u
base64.b64encode(usrPass.encode()).decode()
url “https://api.riskiq.net/pt/v2/ssl-certificate/history?”
try:
page_number = 0
headers =
‘Content-Type’: ‘application/json’,
‘API-Key’: API_KEY,
‘Authorization’: “Basic %s” % encoded_u,
‘field’: ‘sha1’,
‘order’: ‘desc’,
‘page’: str(page_number),
‘sort’: ‘firstSeen’
response = requests.request(“GET”, url+"&query="+search, headers-headers) response_json
response.json()
for result in response_json[‘results’][0][‘ipAddresses’]:
open_instance
dict()
log.debug(“Found matching 0".format(result)))
open_instance [‘ip’] = result
if ‘port’ in result:
else:
open_instance[‘port’] = result[‘port’]
open_instance[‘port’] = ’’
except Exception as e:
log.info(“RiskIQ Serial History error: ’.format(e))
return open_instances

News

Hunting for Cobalt Strike: Mining and plotting for fun and profit | MSRC Blog

Hunting for Cobalt Strike: Mining and plotting for fun and profit | MSRC Blog Cobalt Strike is a commercial Command and Control framework built by Helpsystems. You can find out more about Cobalt Strike on the MITRE ATT&CK page. But it can also be used by real adversaries. In this Read more…

By adminowasp, 2 years ago

Rank, Researcher, Points; 1, Zhiyi Zhang, 1987.5; 2, Yuki Chen, 1025; 3, Dang The Tuyen, 570; 4, HP, 540; 5, HAO LI, 520; 6, batram, 480; 7, Terry Zhang @pnig0s, 440; 8, bee13oy, 435; 9, Harun Can, 395; 10, AxieInfinity, 365.

News

Congratulations to the Top MSRC 2022 Q3 Security Researchers! | MSRC Blog

Congratulations to the Top MSRC 2022 Q3 Security Researchers! | MSRC Blog Congratulations to all the researchers recognized in this quarter’s Microsoft Researcher Recognition Program leaderboard! Thank you to everyone for your hard work and continued partnership to secure customers. The top three researchers of the 2022 Q3 Security Researcher Read more…

By adminowasp, 2 years ago