When eBPF meets TLS! A Security Focused Introduction to eBPF
https://ift.tt/DACQoua
Submitted May 21, 2022 at 03:52AM by guedou
via reddit https://ift.tt/ncuFpZs
https://ift.tt/DACQoua
Submitted May 21, 2022 at 03:52AM by guedou
via reddit https://ift.tt/ncuFpZs
$547 Worth of 18 Books on Python Coding by Starch Press for $18 (-97% oFF)
https://ift.tt/N1xD2wu
Submitted May 21, 2022 at 04:49PM by Josephilo
via reddit https://ift.tt/qbrt6MX
https://ift.tt/N1xD2wu
Submitted May 21, 2022 at 04:49PM by Josephilo
via reddit https://ift.tt/qbrt6MX
Metastealer – filling the Racoon void
https://ift.tt/iMRIoGT
Submitted May 21, 2022 at 08:00PM by digicat
via reddit https://ift.tt/B3E1d8O
https://ift.tt/iMRIoGT
Submitted May 21, 2022 at 08:00PM by digicat
via reddit https://ift.tt/B3E1d8O
Nccgroup
Cyber Security Research
Cutting-edge cyber security research from NCC Group. Find public reports, technical advisories, analyses, & other novel insights from our global experts.
connmap - X11 desktop widget that shows location of your current network peers on a world map
https://ift.tt/5whR2DP
Submitted May 23, 2022 at 12:05AM by jafarlihi
via reddit https://ift.tt/2hAVc3F
https://ift.tt/5whR2DP
Submitted May 23, 2022 at 12:05AM by jafarlihi
via reddit https://ift.tt/2hAVc3F
GitHub
GitHub - jafarlihi/connmap: connmap is an X11 desktop widget that shows location of your current network peers on a world map
connmap is an X11 desktop widget that shows location of your current network peers on a world map - GitHub - jafarlihi/connmap: connmap is an X11 desktop widget that shows location of your current ...
Exploit Development: No Code Execution? No Problem! Living The Age of VBS, HVCI, and Kernel CFG
https://ift.tt/kAmZ6wS
Submitted May 23, 2022 at 10:33AM by 0xdea
via reddit https://ift.tt/wsY0PrM
https://ift.tt/kAmZ6wS
Submitted May 23, 2022 at 10:33AM by 0xdea
via reddit https://ift.tt/wsY0PrM
Connor McGarr’s Blog
Exploit Development: No Code Execution? No Problem! Living The Age of VBS, HVCI, and Kernel CFG
Dealing with Virtualization-Based Security (VBS), Hypervisor-Protected Code Integrity (HVCI), and Kernel Control Flow Guard (kCFG).
I wrote this more from an "analyze rootkit" perspective, but it's equally as valid for "driver bug hunting". Hope you enjoy.
https://ift.tt/YfSwbE9
Submitted May 23, 2022 at 02:06PM by 0x4ndr3
via reddit https://ift.tt/SdwYuoN
https://ift.tt/YfSwbE9
Submitted May 23, 2022 at 02:06PM by 0x4ndr3
via reddit https://ift.tt/SdwYuoN
Medium
Starting dynamic analysis on a Windows x64 rootkit
In this blog post, we will be operating under the assumption that you have retrieved a Windows kernel rootkit sample and want to breakpoint…
mx-takeover focuses DNS MX records and detects misconfigured MX records.
https://ift.tt/DoAhBIy
Submitted May 23, 2022 at 08:56PM by 0xmusana
via reddit https://ift.tt/OoRQ84L
https://ift.tt/DoAhBIy
Submitted May 23, 2022 at 08:56PM by 0xmusana
via reddit https://ift.tt/OoRQ84L
GitHub
GitHub - musana/mx-takeover: mx-takeover focuses DNS MX records and detects misconfigured MX records.
mx-takeover focuses DNS MX records and detects misconfigured MX records. - GitHub - musana/mx-takeover: mx-takeover focuses DNS MX records and detects misconfigured MX records.
Hiding MSFVENOM Payloads in USB NIC EEPROM
https://ift.tt/HF2I7mN
Submitted May 23, 2022 at 10:10PM by lightgrains
via reddit https://ift.tt/kMSx8gO
https://ift.tt/HF2I7mN
Submitted May 23, 2022 at 10:10PM by lightgrains
via reddit https://ift.tt/kMSx8gO
StarkeBlog
MAC Address Changing Revisited
My new friend Gundiuc Oleg reached out to me regarding an older blog post I wrote about permanently changing MAC addresses on NICs. Gundiuc was targeting the AX88772B chipset on USB ethernet adapters. If you’re interested in following along, I used this USB…
Beneath the surface: Uncovering the shift in web skimming
https://ift.tt/nkFJPZo
Submitted May 23, 2022 at 09:54PM by SCI_Rusher
via reddit https://ift.tt/K4xIFW8
https://ift.tt/nkFJPZo
Submitted May 23, 2022 at 09:54PM by SCI_Rusher
via reddit https://ift.tt/K4xIFW8
Search - Microsoft Bing
Where cultures converge
The Mosque-Cathedral of Córdoba is a chronicle of
A few Tailscale tricks for security testers
https://ift.tt/SUG92kv
Submitted May 24, 2022 at 02:37AM by MysteriousHotel3017
via reddit https://ift.tt/5zrk186
https://ift.tt/SUG92kv
Submitted May 24, 2022 at 02:37AM by MysteriousHotel3017
via reddit https://ift.tt/5zrk186
Pulse Security
A few Tailscale tricks for Security Testers
This article looks at modifying Tailscale clients to disable inbound firewalling, and an interesting environment variable leakage through a built in API.
Cisco Issues Patch for New IOS XR Zero-Day Vulnerability Exploited in the Wild
https://ift.tt/aBeFLnN
Submitted May 24, 2022 at 07:18AM by Late_Ice_9288
via reddit https://ift.tt/NWmqR84
https://ift.tt/aBeFLnN
Submitted May 24, 2022 at 07:18AM by Late_Ice_9288
via reddit https://ift.tt/NWmqR84
Cisco
Cisco Security Advisory: Cisco IOS XR Software Health Check Open Port Vulnerability
A vulnerability in the health check RPM of Cisco IOS XR Software could allow an unauthenticated, remote attacker to access the Redis instance that is running within the NOSi container.
This vulnerability exists because the health check RPM opens TCP port…
This vulnerability exists because the health check RPM opens TCP port…
GitHub - Peco602/findwall: Check if your provider is blocking you!
https://ift.tt/31wK6D5
Submitted May 24, 2022 at 01:18PM by Peco602
via reddit https://ift.tt/UR9hXFs
https://ift.tt/31wK6D5
Submitted May 24, 2022 at 01:18PM by Peco602
via reddit https://ift.tt/UR9hXFs
GitHub
GitHub - Peco602/findwall: Check if your provider is blocking you!
Check if your provider is blocking you! Contribute to Peco602/findwall development by creating an account on GitHub.
New Rhino Blog Post: CVE-2022-25237: Bonitasoft Authorization Bypass and RCE
https://ift.tt/UjeycgJ
Submitted May 24, 2022 at 08:44PM by hackers_and_builders
via reddit https://ift.tt/41MldLb
https://ift.tt/UjeycgJ
Submitted May 24, 2022 at 08:44PM by hackers_and_builders
via reddit https://ift.tt/41MldLb
Rhino Security Labs
CVE-2022-25237: Bonitasoft Authorization Bypass and RCE - Rhino Security Labs
Bonita Web 2021.2 is affected by an authentication/authorization bypass vulnerability in the API authorization filters.
fire: Fast tool to filter resolved domains (good for Bug Bounty purposes in a pipeline of noscripts)
https://ift.tt/eLiYB7k
Submitted May 25, 2022 at 01:00AM by deleee
via reddit https://ift.tt/qAZwNQz
https://ift.tt/eLiYB7k
Submitted May 25, 2022 at 01:00AM by deleee
via reddit https://ift.tt/qAZwNQz
GitHub
GitHub - thelicato/fire: Take domains on stdin and output them on stdout if they get resolved
Take domains on stdin and output them on stdout if they get resolved - thelicato/fire
Finding Bugs in Windows Drivers, Part 1 – WDM
https://ift.tt/XiLa6uT
Submitted May 25, 2022 at 11:30AM by jat0369
via reddit https://ift.tt/t3DElSP
https://ift.tt/XiLa6uT
Submitted May 25, 2022 at 11:30AM by jat0369
via reddit https://ift.tt/t3DElSP
Cyberark
Finding Bugs in Windows Drivers, Part 1 – WDM
Finding vulnerabilities in Windows drivers was always a highly sought-after prize by sophisticated threat actors, game cheat writers and red teamers. As you probably know, every bug in a driver...
The printer goes brrrrr!!!
https://ift.tt/VX1ZvqH
Submitted May 25, 2022 at 05:36PM by 0xdea
via reddit https://ift.tt/7pzjxhS
https://ift.tt/VX1ZvqH
Submitted May 25, 2022 at 05:36PM by 0xdea
via reddit https://ift.tt/7pzjxhS
Synacktiv
The printer goes brrrrr!!!
Network printers have been featured for the first time at Pwn2Own competition in Austin 2021.
Tetragon: case study of security product's self-protection
https://ift.tt/pVQTaPz
Submitted May 25, 2022 at 07:23PM by hardenedvault
via reddit https://ift.tt/P1fUdWD
https://ift.tt/pVQTaPz
Submitted May 25, 2022 at 07:23PM by hardenedvault
via reddit https://ift.tt/P1fUdWD
hardenedvault.net
Tetragon: case study of security product's self-protection
Story background CTO of cloud-native security company Isovalent announced that their eBPF-based Security Observability and Runtime Enforcement solution Tetragon (WayBackMachine 20220516) become open source after years of development in May 16 2022.
seL4 Whitepaper released.
https://ift.tt/DnOjfwp
Submitted May 25, 2022 at 07:02PM by providerstatistics
via reddit https://ift.tt/vFqUs4r
https://ift.tt/DnOjfwp
Submitted May 25, 2022 at 07:02PM by providerstatistics
via reddit https://ift.tt/vFqUs4r
sel4.systems
About seL4 | seL4
JWT attacks (with online labs)
https://ift.tt/Ey18wQN
Submitted June 13, 2022 at 07:09PM by albinowax
via reddit https://ift.tt/1GZ7JOm
https://ift.tt/Ey18wQN
Submitted June 13, 2022 at 07:09PM by albinowax
via reddit https://ift.tt/1GZ7JOm
portswigger.net
JWT attacks | Web Security Academy
In this section, we'll look at how design issues and flawed handling of JSON web tokens (JWTs) can leave websites vulnerable to a variety of high-severity ...
Privilege Escalation in Microsoft Azure Synapse Analytics
https://ift.tt/qiojGhS
Submitted June 13, 2022 at 06:31PM by dinobyt3s
via reddit https://ift.tt/t4yjGpT
https://ift.tt/qiojGhS
Submitted June 13, 2022 at 06:31PM by dinobyt3s
via reddit https://ift.tt/t4yjGpT
Medium
Microsoft Azure Synapse Pwnalytics
Tenable has discovered a privilege escalation flaw that allows a user to escalate privileges to that of the root user in Azure Synapse.
The State of CSRF Vulnerability in 2022
https://ift.tt/rzDshfO
Submitted June 13, 2022 at 04:03PM by utku1337
via reddit https://ift.tt/RU0gtsl
https://ift.tt/rzDshfO
Submitted June 13, 2022 at 04:03PM by utku1337
via reddit https://ift.tt/RU0gtsl
Medium
The State of CSRF Vulnerability in 2022
CSRF (Cross-Side-Request-Forgery) vulnerabilities are with us since the beginning of the web. However, things are highly changed since…