Intruding 5G SA core networks from outside and inside
https://ift.tt/3yIHWR7
Submitted December 21, 2021 at 03:37AM by sebazzen
via reddit https://ift.tt/3ed4kZb
https://ift.tt/3yIHWR7
Submitted December 21, 2021 at 03:37AM by sebazzen
via reddit https://ift.tt/3ed4kZb
Penthertz
Intruding 5G core networks from outside and inside | PentHertz Blog
Wireless and hardware security, firmware, mobile, pentest, trainings, development, hacking
RCE in Visual Studio Code's Remote WSL for Fun and Negative Profit
https://ift.tt/3pcjEM7
Submitted December 21, 2021 at 10:46AM by parsiya2
via reddit https://ift.tt/3pbz3fE
https://ift.tt/3pcjEM7
Submitted December 21, 2021 at 10:46AM by parsiya2
via reddit https://ift.tt/3pbz3fE
parsiya.net
RCE in Visual Studio Code's Remote WSL for Fun and Negative Profit
The Visual Studio Code server in Windows Subsystem for Linux uses a local
WebSocket WebSocket connection to communicate with the Remote WSL extension.
JavaScript in websites can connect to this server and execute arbitrary commands
on the target system. Assigned…
WebSocket WebSocket connection to communicate with the Remote WSL extension.
JavaScript in websites can connect to this server and execute arbitrary commands
on the target system. Assigned…
Android application testing using windows 11 and windows subsystem for android
https://ift.tt/3q8tIoJ
Submitted December 21, 2021 at 12:34PM by 0xdea
via reddit https://ift.tt/3ph5ZUa
https://ift.tt/3q8tIoJ
Submitted December 21, 2021 at 12:34PM by 0xdea
via reddit https://ift.tt/3ph5ZUa
Sensepost
SensePost | Android application testing using windows 11 and windows subsystem for android
Leaders in Information Security
Definitely Maybe with Bloom Filters
https://ift.tt/3edtLdi
Submitted December 21, 2021 at 01:51PM by selbekk
via reddit https://ift.tt/3ehcQX2
https://ift.tt/3edtLdi
Submitted December 21, 2021 at 01:51PM by selbekk
via reddit https://ift.tt/3ehcQX2
Common security issues when configuring HTTPs connections in Android
https://ift.tt/3JbApPl
Submitted December 21, 2021 at 06:36PM by Masrepus
via reddit https://ift.tt/3H2Ghsp
https://ift.tt/3JbApPl
Submitted December 21, 2021 at 06:36PM by Masrepus
via reddit https://ift.tt/3H2Ghsp
Hook Heaps and Live Free
https://ift.tt/3Ech0Kp
Submitted December 21, 2021 at 08:24PM by jat0369
via reddit https://ift.tt/3sp2aOH
https://ift.tt/3Ech0Kp
Submitted December 21, 2021 at 08:24PM by jat0369
via reddit https://ift.tt/3sp2aOH
Cyberark
Hook Heaps and Live Free
I wanted to write this blog post to talk a bit about Cobalt Strike, function hooking and the Windows heap. We will be targeting BeaconEye (https://github.com/CCob/BeaconEye) as our detection tool...
I made a tool to cover your tracks post-exploitation on Linux machines for Red Teamers
https://ift.tt/3yHk3cn
Submitted December 21, 2021 at 11:58PM by mufeedvh
via reddit https://ift.tt/3FpShUE
https://ift.tt/3yHk3cn
Submitted December 21, 2021 at 11:58PM by mufeedvh
via reddit https://ift.tt/3FpShUE
GitHub
GitHub - mufeedvh/moonwalk: Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. - GitHub - mufeedvh/moonwalk: Cover your tracks during Linux Exploitation by leaving zer...
Why it's hard to fix the Java ecosystem
https://ift.tt/3sfHVCT
Submitted December 22, 2021 at 06:56AM by Jazzlike-Vegetable69
via reddit https://ift.tt/3JcdNhV
https://ift.tt/3sfHVCT
Submitted December 22, 2021 at 06:56AM by Jazzlike-Vegetable69
via reddit https://ift.tt/3JcdNhV
Google Online Security Blog
Understanding the Impact of Apache Log4j Vulnerability
Posted by James Wetter and Nicky Ringland, Open Source Insights Team Editors Note: The below numbers were calculated based on both log4j-co...
intuitive advanced cryptography [PDF]
https://ift.tt/32mvNQ9
Submitted December 22, 2021 at 01:20PM by netfortius
via reddit https://ift.tt/3mkPRPx
https://ift.tt/32mvNQ9
Submitted December 22, 2021 at 01:20PM by netfortius
via reddit https://ift.tt/3mkPRPx
Vulnerabilities in the Abode IOTA security system (fixed as of Dec 17th 2021)
https://ift.tt/3yQJ1X1
Submitted December 22, 2021 at 03:33PM by jaymzu
via reddit https://ift.tt/3Eoveb7
https://ift.tt/3yQJ1X1
Submitted December 22, 2021 at 03:33PM by jaymzu
via reddit https://ift.tt/3Eoveb7
Microsoft Teams: 1 feature, 4 vulnerabilities
https://ift.tt/3pgwNUs
Submitted December 22, 2021 at 03:29PM by breakingsystems
via reddit https://ift.tt/3EdMtMo
https://ift.tt/3pgwNUs
Submitted December 22, 2021 at 03:29PM by breakingsystems
via reddit https://ift.tt/3EdMtMo
positive.security
MS Teams: 1 feature, 4 vulnerabilities | Positive Security
Microsoft Team's link preview feature is susceptible to spoofing and vulnerable to Server-Side Request Forgery. Team's Android users can be DoS'ed and, in the past, their IP address could be leaked.
Responder and IPv6 attacks - Inject a DNS suffix on Active Directory via IPv6 DNSSL
https://ift.tt/3pkNpul
Submitted December 22, 2021 at 08:40AM by Gallus
via reddit https://ift.tt/3piMlH9
https://ift.tt/3pkNpul
Submitted December 22, 2021 at 08:40AM by Gallus
via reddit https://ift.tt/3piMlH9
Blogspot
Responder and IPv6 attacks
Responder 3.1.1.0 comes with full IPv6 support by default, which allows you to perform more attacks on IPv4 and IPv6 networks. As pointed b...
Cloud Web Application Firewall (WAF) CyberRisk Validation Comparative Report
https://ift.tt/3yOsFOs
Submitted December 22, 2021 at 09:00PM by markcartertm
via reddit https://ift.tt/3ySD2Ba
https://ift.tt/3yOsFOs
Submitted December 22, 2021 at 09:00PM by markcartertm
via reddit https://ift.tt/3ySD2Ba
Cross Examination: Unveiling JavaScript injection based browser fingerprint masking attempts
https://ift.tt/32pOjws
Submitted December 22, 2021 at 11:34PM by ziyahanalbeniz
via reddit https://ift.tt/3phXHva
https://ift.tt/32pOjws
Submitted December 22, 2021 at 11:34PM by ziyahanalbeniz
via reddit https://ift.tt/3phXHva
Elastic Security disrupts new BLISTER campaign leveraging code signing certificates.
https://ift.tt/3yUdGCH
Submitted December 22, 2021 at 11:09PM by expertsnowboarder
via reddit https://ift.tt/3yRVqdh
https://ift.tt/3yUdGCH
Submitted December 22, 2021 at 11:09PM by expertsnowboarder
via reddit https://ift.tt/3yRVqdh
www.elastic.co
Elastic Security uncovers BLISTER malware campaign — Elastic Security Labs
Elastic Security has identified active intrusions leveraging the newly identified BLISTER malware loader utilizing valid code-signing certificates to evade detection. We are providing detection guidance for security teams to protect themselves.
RF Bugs and their detection using Software-Defined Radio
https://ift.tt/32fQymv
Submitted December 23, 2021 at 11:18PM by sebazzen
via reddit https://ift.tt/3H9Elye
https://ift.tt/32fQymv
Submitted December 23, 2021 at 11:18PM by sebazzen
via reddit https://ift.tt/3H9Elye
Examining Log4j Vulnerabilities in Connected Cars and Charging Stations
https://ift.tt/3yX2MfI
Submitted December 23, 2021 at 11:17PM by sebazzen
via reddit https://ift.tt/3JdMXFU
https://ift.tt/3yX2MfI
Submitted December 23, 2021 at 11:17PM by sebazzen
via reddit https://ift.tt/3JdMXFU
Trend Micro
Examining Log4j Vulnerabilities in Connected Cars and Charging Stations
In this entry we look into how Log4j vulnerabilities affect devices or properties embedded in or used for connected cars, specifically chargers, in-vehicle infotainment systems, and digital remotes for opening cars.
Log4PowerShell - A CVE-2021-44228 Proof of Concept / Demo I wrote in PowerShell
https://ift.tt/3FpxiRC
Submitted December 24, 2021 at 11:31AM by aalex954
via reddit https://ift.tt/3yWAdih
https://ift.tt/3FpxiRC
Submitted December 24, 2021 at 11:31AM by aalex954
via reddit https://ift.tt/3yWAdih
GitHub
GitHub - aalex954/Log4PowerShell: A Log4j PoC written in PowerShell
A Log4j PoC written in PowerShell. Contribute to aalex954/Log4PowerShell development by creating an account on GitHub.
Blister malware can breach your devices in absolute stealth
https://ift.tt/3EuvENk
Submitted December 24, 2021 at 05:54PM by IT_band
via reddit https://ift.tt/3Fr5MDr
https://ift.tt/3EuvENk
Submitted December 24, 2021 at 05:54PM by IT_band
via reddit https://ift.tt/3Fr5MDr
The Cybersecurity Times
Blister malware can breach your devices in absolute stealth - The Cybersecurity Times
A new malicious campaign was discovered by security researchers that disguises malicious code as legitimate exe files. The researchers have figured out that there is a payload that is considered a novel threat and being distributed to Windows systems with…
Cloud Security Breaches and Vulnerabilities: 2021 in Review
https://ift.tt/3pjCukz
Submitted December 24, 2021 at 07:46PM by thorn42
via reddit https://ift.tt/3HbsRu6
https://ift.tt/3pjCukz
Submitted December 24, 2021 at 07:46PM by thorn42
via reddit https://ift.tt/3HbsRu6
Christophe Tafani-Dereeper
Cloud Security Breaches and Vulnerabilities: 2021 in Review
In this post, we look back on the 2021 cloud security data breaches and vulnerabilities in AWS, and showcase best practices to avoid them.
Make Your Pc Notify Your Phone Whenever There is Movement Around it
https://ift.tt/3Jf0LjF
Submitted December 25, 2021 at 02:18PM by MagicianPutrid5245
via reddit https://ift.tt/3yZ1C3l
https://ift.tt/3Jf0LjF
Submitted December 25, 2021 at 02:18PM by MagicianPutrid5245
via reddit https://ift.tt/3yZ1C3l
Medium
Make Your Pc Notify Your Phone Whenever There is Movement Around it
Money-free make your home more secure just using your pc