Firecracker is a microVM manager in Rust that powers AWS services like Lambda and Fargate. It's also one of the key components of Grapl's multi-tenant isolation. A critical dependency deserves some red teaming - here's how we attacked AWS Firecracker.

In my first blog post covering bugs in Ivanti Avalanche, I covered how I reversed the Avalanche custom InfoRail protocol, which allowed me to communicate with multiple services deployed within this product. This allowed me to find multiple vulnerabilities…

Several years ago, when I spoke with people about containers, most of them were not familiar with the term. Today, it is unquestionably one of the most popular technologies being used in DevOps...

Aggressornoscript that turns the headless aggressor client into a (mostly) functional cobalt strike client. - GitHub - CodeXTF2/cobaltstrike-headless: Aggressornoscript that turns the headless aggresso...

Shiba Inu developers leak AWS Access keys on a public code repository, resulting in a compromise of their infrastructure.

Posted by Jonathan Metzman, Dongge Liu and Oliver Chang, Google Open Source Security Team Recently, OSS-Fuzz —our community fuzzing servi...

A look at the open-source confidential computing landscape

Contribute to google/silifuzz development by creating an account on GitHub.

Table of Contents

Partially encrypting victims' files improves ransomware speed and aids evasion. First seen in LockFile, the technique is now being widely adopted.

Detecting NoVNC for phishing campaigns

GitHub’s required reviewers capability can be bypassed if currently using this setting to require at least one code review before merging code.

This got me 6th place with 4 blocks in ipv4.games. GitHub Gist: instantly share code, notes, and snippets.

What does a malicious package actually look like in practice? We'll walk through some hypothetical exercises to see how malware generally works, and what sort of functions we might expect, from relatively simple and temporary, to complex.

Anomaly detection engineering based on ubiquitous Zipfian distribution in enterprise security telemetry.

Redeye is a tool intended to help you manage your data during a pentest operation - redeye-framework/Redeye

The Internet of Gas Station Tank Gauges:

I thought I knew all the ways to call functions without parentheses: alert`1337` throw onerror=alert,1337 Function`x${'alert\x281337\x29'}x``` 'alert\x281337\x29'instanceof{[Symbol['hasInstance']]:eva

Massayo is a small proof-of-concept Rust library which removes AV/EDR hooks in a given system DLL - GitHub - thiagopeixoto/massayo: Massayo is a small proof-of-concept Rust library which removes AV...

This month, Let’s Encrypt is turning on new infrastructure to support revoking certificates via Certificate Revocation Lists. Despite having been largely supplanted by the Online Certificate Status Protocol for over a decade now, CRLs are gaining new life…