You probably already have encountered document converting features that deal with ImageMagick during engagements but for some reason you were not able to exploit them. This article will mention some t

Contribute to alt3kx/CVE-2021-21985_PoC development by creating an account on GitHub.

Background


In Feb 2021, we came across an ELF sample using some CWP’s Ndays exploits, we did some analysis, but after checking with a partner who has some nice visibility in network traffic in some China areas, we discovered there is literarily 0 hit for…

A C# DLL injection library. Contribute to enkomio/ManagedInjector development by creating an account on GitHub.

SwordBytes researchers have identified an Unauthenticated Remote Code Execution (RCE) vulnerability in Overwolf’s Client Application by abusing a Reflected Cross-Site Scripting (XSS) issue present in the “overwolfstore://” URL handler. This vulnerability…

Leveraging AppCache's network section to leak the complete URL of cross-origin redirects.

The Antimalware Scan Interface (AMSI) was developed to provider an additional layer of security towards the execution of malicious noscripts on Windows environments. AMSI can be utilized by different…

A few weeks back I encountered an obfuscated piece of code. Reversing it seemed very tedious.

Hunters' research team discovers obfuscation technique using AWS VPC feature. Attackers could change the IP address written to AWS CloudTrail logs.

Posted by pathetiq - No votes and no comments

CloudFormation, Terraform, and AWS CLI Templates: Configuration templates to deploy an AWS Route53 Resolver Firewall and related settings including firewall rule groups, custom domain lists, and VPC associations. This configuration can be used to block DNS…

SonarSource builds world-class Code Quality & Code Security tools. Our products, SonarLint, SonarQube, and SonarCloud are trusted by 200k+ organizations globally.

In this post, we cover the technical details of CVE-2021-28091, the vulnerability impacting Akamai's Enterprise Application Access (EAA) platform.

Posted in r/netsec by u/hardenedvault • 11 points and 1 comment

A comprehensive analysis revealing two new critical vulnerabilities discovered in a popular Realtek Wi Fi module by Vdoo’s automated product security platform, including a demonstration of the exploitation.

Contribute to CriticalSecurity/welock development by creating an account on GitHub.

When we were developing the ghidra nodejs module for Ghidra, we realized that it was not always possible to correctly implement V8 (JavaScript engine that is used by Node.js) opcodes in SLEIGH. In such runtime environments as V8 and JVM, a single opcode might…

In this post we will examine a vulnerability in the WebAssembly subsystem of JavaScriptCore, the JavaScript engine used in WebKit and Apple Safari. The issue...