2023-09-27 |
[P2O Vancouver 2023] SharePoint Pre-Auth RCE chain (CVE-2023–29357 & CVE-2023–24955) |
starlabs.sg 0 |
|
2023-09-27 |
GitHub - avogabos/ai_security_starterkit |
github.com 0 |
|
2023-09-27 |
Rooting Xiaomi WiFi Routers |
blog.thalium.re 0 |
|
2023-09-27 |
Deep Dive into Reverse Engineering on Android |
www.corellium.com 0 |
|
2023-09-27 |
ShellSweep |
github.com 0 |
|
2023-09-27 |
Critical Authentication Bypass in JetBrains TeamCity CI/CD Servers |
Rapid7 Cybersecurity Blog 0 |
|
2023-09-27 |
CVE-2023-42753: New Linux Kernel Flaw Allows Code Execution |
securityonline.info 0 |
|
2023-09-27 |
CVE-2023-40477 Root Cause Analysis |
www.richardosgood.com 0 |
|
2023-09-27 |
Unleashing ksmbd: remote exploitation of the Linux kernel (ZDI-23-979, ZDI-23-980) |
pwning.tech 0 |
|
2023-09-27 |
The Not So Pleasant Password Manager - MDSec |
www.mdsec.co.uk 0 |
|
2023-09-27 |
Tickling ksmbd: fuzzing SMB in the Linux kernel |
pwning.tech 0 |
|
2023-09-27 |
BDS Linux Userland Rootkit ≈ Packet Storm |
packetstormsecurity.com 0 |
|
2023-09-27 |
2023 Plug-In Contest |
hex-rays.com 0 |
|
2023-09-27 |
AttackGen |
github.com 0 |
|
2023-09-27 |
Exploring Winrar Vulnerability (CVE-2023-38831) | McAfee Blog |
www.mcafee.com 0 |
|
2023-09-27 |
GPTFUZZER : Red Teaming Large Language Models with Auto-Generated Jailbreak Prompts |
arxiv.org 0 |
|
2023-09-27 |
An Introduction into Stack Spoofing |
dtsec.us 0 |
|
2023-09-27 |
Callisto - An Intelligent Binary Vulnerability Analysis Tool |
www.kitploit.com 0 |
|
2023-09-27 |
Fake WinRAR PoC Exploit Conceals VenomRAT Malware |
www.darkreading.com 0 |
|
2023-09-26 |
Meet Your Nemesis: Fighting Data With Data BSidesAugusta 2023 |
pretalx.com 0 |
|
2023-09-26 |
3 New Apple Zero-day Vulnerabilities Patched in Emergency Update |
cybersecuritynews.com 0 |
|
2023-09-26 |
Macho Similiarity Hashing |
github.com 0 |
|
2023-09-26 |
CVE-2023-27997-FortiGate-SSLVPN-HeapOverflow |
bestwing.me 0 |
|
2023-09-26 |
2023 Unit 42 Attack Surface Threat Report |
www.paloaltonetworks.com 0 |
|
2023-09-26 |
Fileless Remote Code Execution on Juniper Firewalls |
vulncheck.com 0 |
|
2023-09-26 |
Client-side JavaScript Instrumentation |
Doyensec's Blog 0 |
|
2023-09-26 |
GitHub - M01N-Team/HeaderLessPE |
github.com 0 |
|
2023-09-22 |
Analyzing Agniane Stealer |
blog.pulsedive.com 0 |
|
2023-09-22 |
The WebP 0day |
blog.isosceles.com 0 |
|
2023-09-22 |
Fuzzing with multiple servers in parallel: AFL++ with Network File Systems |
joshua.hu 0 |
|
2023-09-22 |
Conclusion |
8ksec.io 1 |
|
2023-09-22 |
EDR Unhooking: Patching Falcon hooks without VirtualProtect |
inbits-sec.com 0 |
|
2023-09-22 |
New ways to inject system CA certificates in Android 14 |
httptoolkit.com 1 |
|
2023-09-22 |
Supply Chain Issues in PyPI |
Open Source Security 0 |
|
2023-09-22 |
PSF-2023-8 |
osv.dev 0 |
|
2023-09-22 |
Zero Day Initiative — Finding Deserialization Bugs in the SolarWind Platform |
www.zerodayinitiative.com 0 |
|
2023-09-21 |
Java 静态分析框架 Tai-e 的简单使用 |
paper - Last paper 0 |
|
2023-09-19 |
HITCON 2023 x DEVCORE Wargame: My todolist Write-up |
DEVCORE 戴夫寇爾 0 |
|
2023-09-18 |
GitHub - NSEcho/furlzz: Fuzz iOS URL schemes |
github.com 0 |
|
2023-09-18 |
donut_decryptor |
github.com 0 |
|
2023-09-18 |
Log4J’s Unique Impact In The Cloud by Kat Traxler |
Vectra AI Blog 0 |
|
2023-09-18 |
Microsoft Uncovers Flaws in ncurses Library Affecting Linux and macOS Systems |
thehackernews.com 0 |
|
2023-09-18 |
Abusing the Replicator: Silently Exfiltrating Data with the AWS S3 Replication Service by Kat Traxler |
Vectra AI Blog 0 |
|
2023-09-18 |
YAMA: Yet Another Memory Analyzer for malware detection |
securityonline.info 0 |
|
2023-09-18 |
N-Able's Take Control Agent Vulnerability Exposes Windows Systems to Privilege Escalation |
thehackernews.com 0 |
|
2023-09-18 |
NucleiFuzzer - Powerful Automation Tool For Detecting XSS, SQLi, SSRF, Open-Redirect, Etc.. Vulnerabilities In Web Applications |
www.kitploit.com 0 |
|
2023-09-18 |
CraftCMS RCE |
blog.calif.io 0 |
|
2023-09-18 |
Azure Active Directory Domain Services Escalation of Privilege |
www.secureworks.com 0 |
|
2023-09-16 |
vArmor 功能实现研究 |
paper - Last paper 0 |
|
2023-09-15 |
Alert: New Kubernetes Vulnerabilities Enable Remote Attacks on Windows Endpoints |
thehackernews.com 0 |
|
2023-09-15 |
Rollup Security Framework |
github.com 0 |
|
2023-09-15 |
Critical GitHub Vulnerability Exposes 4,000+ Repositories to Repojacking Attack |
thehackernews.com 0 |
|
2023-09-15 |
VMware vRealize Log Insight Unauthenticated Remote Code Execution |
packetstormsecurity.com 0 |
|
2023-09-15 |
www.bleepingcomputer.com |
www.bleepingcomputer.com 0 |
|
2023-09-15 |
CVE-2023-38146: Arbitrary Code Execution via Windows Themes |
exploits.forsale 0 |
|
2023-09-15 |
VTScanner - A Comprehensive Python-based Security Tool For File Scanning, Malware Detection, And Analysis In An Ever-Evolving Cyber Landscape |
www.kitploit.com 0 |
|
2023-09-15 |
From Terminal Output to Arbitrary Remote Code Execution |
blog.solidsnail.com 0 |
|
2023-09-15 |
Sorry, you have been blocked |
www.securityweek.com 0 |
|
2023-09-15 |
HTTP-Shell - MultiPlatform HTTP Reverse Shell |
www.kitploit.com 0 |
|
2023-09-15 |
CVE-2023-4039: GCC's -fstack-protector fails to guard dynamic stack allocations on ARM64 |
rtx.meta.security 0 |
|
2023-09-15 |
CVE-2022-41099 - Analysis of a BitLocker Drive Encryption Bypass |
itm4n.github.io 0 |
|
2023-09-15 |
The Hacker Perspective on Generative AI and Cybersecurity |
www.hackerone.com 0 |
|
2023-09-15 |
CVE-2023-38039 curl: HTTP headers eat all memory |
Open Source Security 0 |
|
2023-09-15 |
About the Speaker |
nullcon.net 0 |
|
2023-09-15 |
varc: collects a snapshot of volatile data from a system |
securityonline.info 0 |
|
2023-09-14 |
Konni APT 利用 WinRAR 漏洞(CVE-2023-38831)首次攻击数字货币行业 |
paper - Last paper 0 |
|
2023-09-12 |
CVE-2023-35359 analysis |
y3a.github.io 0 |
|
2023-09-12 |
iOS 17 Jailbreak – All Available Tools - iDevice Central |
idevicecentral.com 0 |
|
2023-09-12 |
Baseline Defenses for Adversarial Attacks Against Aligned Language Models |
arxiv.org 0 |
|
2023-09-12 |
croc: multiple issues in file sharing utility |
Open Source Security 0 |
|
2023-09-12 |
Zero-day in Cisco ASA and FTD is actively exploited in ransomware attacks |
securityaffairs.com 0 |
|
2023-09-12 |
Top 50 Vulnerabilities Leading to RCE in Public-Facing Applications(RTC0016) |
redteamrecipe.com 0 |
|
2023-09-12 |
CatSniffer: original multiprotocol, and multiband board made for sniffing, communicating, and attacking IoT devices |
securityonline.info 0 |
|
2023-09-12 |
Apple Rushes to Patch Zero-Day Flaws Exploited for Pegasus Spyware on iPhones |
thehackernews.com 0 |
|
2023-09-12 |
Millions Infected by Spyware Hidden in Fake Telegram Apps on Google Play |
thehackernews.com 0 |
|
2023-09-12 |
CVE-2023-3959, CVE-2023-4249 - Multiple critical vulnerabilities in Zavio IP cameras |
bugprove.com 0 |
|
2023-09-12 |
CVE-2023-4809: FreeBSD pf bypass when using IPv6 |
Open Source Security 0 |
|
2023-09-12 |
Knocking on Hell’s Gate - EDR Evasion Through Direct Syscalls |
labs.en1gma.co 0 |
|
2023-09-12 |
GitHub - raminfp/fuzzer-development-with-rust: Write fuzzer with rust |
github.com 0 |
|
2023-09-12 |
WiKI-Eve - Stealing Wi-Fi Passwords by Eavesdropping on Keystrokes |
cybersecuritynews.com 0 |
|
2023-09-12 |
Warcodes II - The Desko Case |
labs.ioactive.com 0 |
|
2023-09-08 |
Hackers Steal Over $5,700 from ATMs Using Raspberry Pi |
gbhackers.com 0 |
|
2023-09-08 |
eBPF Offensive Capabilities - Get Ready for Next-gen Malware – Sysdig |
sysdig.com
0 |
|
2023-09-08 |
Debugging Windows Isolated User Mode (IUM) Processes |
Quarkslab's blog
0 |
|
2023-09-08 |
Huckleberry: IBC Event Hallucinations |
jumpcrypto.com
0 |
|
2023-09-08 |
Smart Contracts Hacking Course |
smartcontractshacking.com
0 |
|
2023-09-08 |
DragonOS: Decoding Train Telemetry with SoftEOT and RTL-SDR |
www.rtl-sdr.com
0 |
|
2023-09-08 |
ASUS routers are affected by three critical remote code execution flaws |
securityaffairs.com
0 |
|
2023-09-08 |
[TUTORIAL] Hardmod Xbox One Silverton and dump NAND memory |
gbatemp.net
0 |
|
2023-09-08 |
CVE-2023-39265: Apache Superset: Possible Unauthorized Registration of SQLite Database Connections |
Open Source Security
0 |
|
2023-09-08 |
When URL parsers disagree (CVE-2023-38633) - Canva Engineering Blog |
www.canva.dev
0 |
|
2023-09-08 |
Starlink reverse-engineering scripts |
github.com 0 |
|
2023-09-08 |
Fault Injection Reference Model (FIRM) |
raelize.com 0 |
|
2023-09-08 |
ARM64 Reversing And Exploitation Part 7 – Bypassing ASLR And NX |
8ksec.io 0 |
|
2023-09-08 |
利用新的 IDAT Loader 执行信息窃取程序分析 |
paper - Last paper 0 |
|
2023-09-08 |
Just for fun: What happens when you shift a register by more than the register size? |
devblogs.microsoft.com 0 |
|
2023-09-08 |
Latest Jailbreak News: Access to /var ACHIEVED with the KFD exploit on iOS 15.0 – 16.5 |
idevicecentral.com 0 |
|
2023-09-08 |
C2 基础设施威胁情报对抗策略 |
paper - Last paper 0 |
|
2023-09-06 |
awesome-soc-analyst |
github.com 0 |
|
2023-09-06 |
Powershell and Obfuscation |
onlyf8.com 0 |
|