 |
Post AxYu3AP03VOBP92mXY by [email protected] |
 |
More posts by [email protected] |
|
Post #AxYsaRGKBvAnLKivZY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
There’s a bunch of new Netscaler vulns being exploited as zero days. Patches … |
|
|
|
Post #AxYtciopzFb6KMWG7k by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog days ending in y |
|
|
|
Post #AxYtfHGcsdhrkIjgNE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Thanks for the heads up. You prove time and time again to be my mo… |
|
|
|
Post #AxYu3AP03VOBP92mXY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Can we at least trust Citrix this time around with the details? Pr… |
|
|
|
Post #AxYucrDqqKOgLPqcu8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog cve 7775 instead of 5777. Practically manufactured to be easy to g… |
|
|
|
Post #AxYujmn7iSW2d2eLwW by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog again????? |
|
|
|
Post #AxYvvzAvbAnSSxAJge by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Must be Tuesday. |
|
|
|
Post #AxYwN1NdVaoP7i08BM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog at this point Citrix deserves to get acquired by Ivanti. |
|
|
|
Post #AxYxzsonNKxZohnc9I by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog These arent the CISA ones from yesterday 🫣 |
|
|
|
Post #AxYyAT4PRlEX969LYu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog @tehfishman so... the DeelbXirtic vulnerability? |
|
|
|
Post #AxYzZ6gNv5xquEE0w4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@campuscodi I think you've won the naming competition for this new vulnerab… |
|
|
|
Post #AxZ20LlEASUHOfbmq0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog 👀 |
|
|
|
Post #AxZ26DswMUwIi015Oa by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog well, it could also be any day ending in "y"..so it cooo… |
|
|
|
Post #AxZ3L3oOCFz5lSWii8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog @campuscodi @tehfishman I want to see the gossi-mspaint art for th… |
|
|
|
Post #AxZ6Y4gYYkKw6KlC5I by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog any leads on the 'active exploitation' part? IOCs? |
|
|
|
Post #AxZ7UmtAN1FPzWef68 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog #altText Batman Beyond meme. Batman enters the headquarters of a g… |
|
|
|
Post #AxZ8HyFwtY8NR7lPPs by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog This script might come in handy for people potentially compromised… |
|
|
|
Post #AxZBZYpqRqcRfZdIjw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I don't know what netscaler is, but now I'm very aware tha… |
|
|
|
Post #AxZCful5wyxtM60Lia by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@lowlands @GossiTheDog @tehfishman the citrixbleed logo with a mirror effect...… |
|
|
|
Post #AxZCyRceVBvYUdtKa0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@zaicurity @GossiTheDog <biggest of oofs> |
|
|
|
Post #AxZG1KanOZuhQC5i52 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog preventive check; https://github.com/NCSC-NL/citrix-2025 |
|
|
|
Post #AxZRkl2929Q9xDkN9s by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Internet scanning for hosts vulnerable to CVE-2025-7775 (CitrixDeelb) has begun… |
|
|
|
Post #AxZRv3PxXLYhrpnOr2 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Oh, so *that's* why all the alarms are blaring. |
|
|
|
Post #AxZdnsC04XQqTZbnzE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog @campuscodi @tehfishman My brain keeps parsing that as CitrixDweeb… |
|
|
|
Post #AxZe3zqdNSWWqtIrWC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
16% patch rate, 84% unpatched if anybody interested |
|
|
|
Post #AxZefxUMb5PmXUzJce by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog we patched this morning! |
|
|
|
Post #AxZhh6t1RSRHq0lLSS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@avuko @GossiTheDog This is a wrapper script I hacked together today to run the… |
|
|
|
Post #AxZhh707166uC050Vc by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tehfishman @GossiTheDog nice! |
|
|
|
Post #AxZon64w3dfmkV8Xnk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog84% unscheduled team building you mean? |
|
|
|
Post #AxZp5z2yQQtKRWE0oq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog ouch |
|
|
|
Post #AxaIhgWyc5aGguaXI0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog oh no not again. Mail from Citrix yesterday evening. |
|
|
|
Post #Axb3BijfZnpc6kmkuO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog where I can find 7775 scan python script ? |
|
|
|
Post #AxbEhee9PiJMBkdMgq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Citrix Netscaler boxes presented to the internet over time, for anybody interes… |
|
|
|
Post #AxbMLVpIKGiG5ynbO4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog @shodan Customer POV |
|
|
|
Post #AxbMzdNfeqwV6n0fke by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Thanks Kevin, very interesting! We decomm'ed ours about a year… |
|
|
|
Post #AxbVOya0mDZhjGNR2m by [email protected] |
|
0 likes, 0 repeats |
|
|
|
The NCSC have published an advisory on CVE-2025-7775 (CitrixDeelb), saying it i… |
|
|
|
Post #AxbVaXdgldXreIbzou by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Cloud Software Group, who own Netscaler, have published their own blog about CV… |
|
|
|
Post #AxbVmjTCbeMJohWIQy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Here's the Citrix advisory, if anybody knows anybody at Cloud Software Grou… |
|
|
|
Post #AxbXsDnJUKXjDqfiLY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Amazing. |
|
|
|
Post #AxbY0Z24PSXVPKYIcq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog it almost seems like the people at CSG have no prior expirience in… |
|
|
|
Post #AxbftenLNykYsysihM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog As a non-native english speaker I understand "several indepen… |
|
|
|
Post #AxcKDYKj7Ea6ntXPea by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog @shodan happy to say I’m among the former Netscaler users shown … |
|
|
|
Post #AxcimWMepFDLjUeF04 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
I've published scan results for CVE-2025-7775 (CitrixDeelb - which Bleed is… |
|
|
|
Post #AxckgHc0xeco9Mz64O by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog the amount of unpatched 😳... |
|
|
|
Post #AxcmgJcbgoMWI6P9dI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog These results are atleast 20 hours old? I can confirm one hit on y… |
|
|
|
Post #Axcq3jO0MbY0ilQpVI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@fere @GossiTheDog same thing, some entries in the list are either false positi… |
|
|
|
Post #Axcq3k5Flo8sstfMum by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@fl @fere @GossiTheDog Same here, but that's to be expected in an evolving … |
|
|
|
Post #AxcrfRMfunihmqM3hw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Yay, only 8 in Bulgaria, most of them belonging to foreign compani… |
|
|
|
Post #AxcwgvN6Kqugub55Y8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Those that are of particular interest (the bank and the insurance … |
|
|
|
Post #AxczGQHharSupXbuZU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog @fl @fere That's great, thank you! Does anybody know if there … |
|
|
|
Post #Axd19JGXUTZkwXnoOW by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog "CitrixDeelb..." |
|
|
|
Post #Axd7fVHOxSTlCAwLwG by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog thanks for the list. Will there be an updated list for those who h… |
|
|
|
Post #AxdCCOsQBUmOi5CJwu by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Thanks👍 |
|
|
|
Post #AxdCrQG5x3iqrupdPE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Hosts on the IPv6 only internet are just living in the wild wild w… |
|
|
|
Post #AxdQzw6soMbjKSTcsy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog how did you pull the versions? |
|
|
|
Post #AxdfNqu9DP7PUcomxc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog what is going to happen now that every permutation and bad word pl… |
|
|
|
Post #Axf61qRf8PCzcMBWnQ by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Thanks a lot for the scan data and blog!Unfortunately without accu… |
|
|
|
Post #AxfAnUrf4dN2P3K7A8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Bump |
|
|
|
Post #AxfAns38s7DiJJs6ka by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Update.The bank (195.191.94.244) replied (their IT director did), … |
|
|
|
Post #Axg1oyEme8vTMUj6Qa by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog That gif is udderly ridiculous |
|
|
|
Post #AxjVBhfXtSbcmVJefQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Updated scan results for CVE-2025-7775 aka CitrixDeelb https://github.com/Gossi… |
|
|
|
Post #AxlQ6PryX87gfsi2XQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
.@shadowserver results on CVE-2025-7775 patchin'A take away - realistically… |
|
|
|
Post #AxlShXhmYzqvbClxbs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
A kind of interesting thing from scanning Netscalers for the past month and a b… |
|
|
|
Post #AxlSzi9MT6xlCoKsvQ by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Security by obscurity! ™️ |
|
|
|
Post #AxlT293ZOx3HEZmtMW by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog you think people realized this shit is more trouble than it's … |
|
|
|
Post #AxlTRLJAzFeGTJ6PY0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Do the network scans accurately find NetScalers if the ADC is conf… |
|
|
|
Post #AxledGl4pQTpKa2gcq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog or they hide the signature as they notice they are exposed and get… |
|
|
|
Post #AxllgBqMG1VwdTquFk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog probably replaced with fortigates |
|
|
|
Post #AxnFguQpfeHsht8ErY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Updated scan results for CVE-2025-7775 aka CitrixDeelb https://github.com/Gossi… |
|
|
|
Post #AxnGOwHg935FC3qTc8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
If anybody is wondering the NSA patched CitrixDeelb pretty quickly. They'v… |
|
|
|
Post #AxnHFMFwpInAnq1z84 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog So did the bank here - the one that answered me politely. Neither … |
|
|
|
Post #AxnTAZqo3PFmy2l41A by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Edit to add: this is wrong, 13.1 isn't EOL or EOM@GossiTheDog 13.1 is EOL f… |
|
|
|
Post #AxnU0Z7E24RBkIEBZg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog oops, I sit corrected. |
|
|
|
Post #AxpVLD6xWlTBqtQnzM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
This blog by CheckPoint about AI LLM generating an exploit for CVE-2025-7775 is… |
|
|
|
Post #AxpVgaSNvMtsL2e7qC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog having used their firewalls in the past, fiction is one of their c… |
|
|
|
Post #AxqPDQEiRJmnfvvFei by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog I am now curious as to why you say that? |
|
|
|
Post #Axrt1zKJLBRIoVxn5k by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Bildos @GossiTheDog You can use this script: https://github.com/fox-it/citrix-… |
|
|
|
Post #Axru2lWcEvqAFjeZcG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Just_Patch_It @GossiTheDog I maintain the NetScaler version info here: https:… |
|
|
|
Post #Axs1B6AC5eMOG15PiC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Updated scan results for CVE-2025-7775 aka CitrixDeelb https://github.com/Gossi… |
|
|
|
Post #Axse3XjbasThfC2Pqq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Still 5,000+ (22%) unpatched targets. |
|
|
|
Post #Axt4kLTldHkGujhTKy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog whoopsie, one of our connected orgs seems to have forgotten to pat… |
