GitHub - klezVirus/SilentMoonwalk: PoC Implementation of a TRUE call stack spoofer
https://ift.tt/l3mOZoa
Submitted December 08, 2022 at 03:24PM by R3dCr0wn
via reddit https://ift.tt/gvCJrlj
https://ift.tt/l3mOZoa
Submitted December 08, 2022 at 03:24PM by R3dCr0wn
via reddit https://ift.tt/gvCJrlj
GitHub
GitHub - klezVirus/SilentMoonwalk: PoC Implementation of a fully dynamic call stack spoofer
PoC Implementation of a fully dynamic call stack spoofer - GitHub - klezVirus/SilentMoonwalk: PoC Implementation of a fully dynamic call stack spoofer
Shoggoth
https://ift.tt/iM4gyEA
Submitted December 08, 2022 at 06:30PM by DarkGrejuva
via reddit https://ift.tt/SXavVkh
https://ift.tt/iM4gyEA
Submitted December 08, 2022 at 06:30PM by DarkGrejuva
via reddit https://ift.tt/SXavVkh
GitHub
GitHub - frkngksl/Shoggoth: Shoggoth: Asmjit Based Polymorphic Encryptor
Shoggoth: Asmjit Based Polymorphic Encryptor. Contribute to frkngksl/Shoggoth development by creating an account on GitHub.
cli google search client written by chatgpt ai - bypasses captcha and rate limiting
https://ift.tt/IyY3E5e
Submitted December 08, 2022 at 07:59PM by endless
via reddit https://ift.tt/pgSm7qt
https://ift.tt/IyY3E5e
Submitted December 08, 2022 at 07:59PM by endless
via reddit https://ift.tt/pgSm7qt
GitHub
GitHub - visualbasic6/search: a cli google client written by ai (chatgpt) that bypasses captcha and rate limiting by using the…
a cli google client written by ai (chatgpt) that bypasses captcha and rate limiting by using the google alert's "preview" feature - GitHub - visualbasic6/search: a cli goo...
How to secure your Open Source Project – A quick guide for developers
https://ift.tt/JuLsBlx
Submitted December 08, 2022 at 09:18PM by TupleType1
via reddit https://ift.tt/XJgksaR
https://ift.tt/JuLsBlx
Submitted December 08, 2022 at 09:18PM by TupleType1
via reddit https://ift.tt/XJgksaR
Cider Security Site
“How to secure your Open Source Project - A quick guide for developers”.
Check out our latest blog post: “How to secure your Open Source Project - A quick guide for developers”. This post provides valuable guidance on how to ensure the security of your open source project. We will be sharing some practical tips and best practices…
Using JSON in a New Generic Web Application Firewall Bypass
https://ift.tt/kPq3jwl
Submitted December 08, 2022 at 09:04PM by derp6996
via reddit https://ift.tt/SFXomdE
https://ift.tt/kPq3jwl
Submitted December 08, 2022 at 09:04PM by derp6996
via reddit https://ift.tt/SFXomdE
Claroty
{JS-ON: Security-OFF}: Abusing JSON-Based SQL to Bypass WAF
Team82 developed a generic web application firewall bypass that exploits a lack of JSON syntax support in leading vendors' SQL injection inspection process.
Fuzzing Golang msgpack for fun and panic
https://ift.tt/1d65yBS
Submitted December 09, 2022 at 12:44AM by Schwag
via reddit https://ift.tt/wzn51fx
https://ift.tt/1d65yBS
Submitted December 09, 2022 at 12:44AM by Schwag
via reddit https://ift.tt/wzn51fx
Red Canary
Fuzzing Golang msgpack for fun and panic - Red Canary
How the Red Canary Product Security Team found a vulnerability in a Go programming language MessagePack implementation.
Hacking the Furbo Dog Camera: Part III
https://ift.tt/Lt4OqH7
Submitted December 09, 2022 at 02:29AM by somersetrecon
via reddit https://ift.tt/1RVGUd7
https://ift.tt/Lt4OqH7
Submitted December 09, 2022 at 02:29AM by somersetrecon
via reddit https://ift.tt/1RVGUd7
Somerset Recon
Hacking the Furbo Dog Camera: Part III Fun with Firmware — Somerset Recon
We’re back with another entry in our Furbo hacking escapade! In our last post we mentioned we were taking a look at the then recently released Furbo Mini device and we are finally getting around to writing about what we found. Background Some time in the…
Nosey Parker: a new scanner to find misplaced secrets in textual data and Git history
https://ift.tt/slWOh4w
Submitted December 09, 2022 at 04:07AM by exploding_nun
via reddit https://ift.tt/rHx2E04
https://ift.tt/slWOh4w
Submitted December 09, 2022 at 04:07AM by exploding_nun
via reddit https://ift.tt/rHx2E04
GitHub
GitHub - praetorian-inc/noseyparker: Nosey Parker is a command-line program that finds secrets and sensitive information in textual…
Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history. - GitHub - praetorian-inc/noseyparker: Nosey Parker is a command-line program th...
Hooking System Calls in Windows 11 22H2 like Avast Antivirus. Research, analysis and bypass
https://ift.tt/DxvurjH
Submitted December 09, 2022 at 07:28AM by Gallus
via reddit https://ift.tt/a4kHtQI
https://ift.tt/DxvurjH
Submitted December 09, 2022 at 07:28AM by Gallus
via reddit https://ift.tt/a4kHtQI
the-deniss.github.io
Hooking System Calls in Windows 11 22H2 like Avast Antivirus. Research, analysis and bypass
0x00: Introduction
Using ChatGPT to Generate Phishing Campaigns
https://ift.tt/jg86Dzk
Submitted December 09, 2022 at 08:32AM by rickyrockslide
via reddit https://ift.tt/cNmWALR
https://ift.tt/jg86Dzk
Submitted December 09, 2022 at 08:32AM by rickyrockslide
via reddit https://ift.tt/cNmWALR
Richardosgood
Using OpenAI Chat to Generate Phishing Campaigns
Generating phishing campaigns with OpenAI Chat and GPT-3
Cool vulns don't live long - Netgear and Pwn2Own
https://ift.tt/bAyW8k4
Submitted December 09, 2022 at 12:40PM by Gallus
via reddit https://ift.tt/4rR7Ien
https://ift.tt/bAyW8k4
Submitted December 09, 2022 at 12:40PM by Gallus
via reddit https://ift.tt/4rR7Ien
Synacktiv
Cool vulns don't live long - Netgear and Pwn2Own
Pwn2own is a competition where hackers try to execute arbitrary code on selected devices.
Testing a mobile app using a device you don’t have
https://ift.tt/pJE7iLC
Submitted December 09, 2022 at 08:43PM by Necessary-Reality-80
via reddit https://ift.tt/lT8Pn6A
https://ift.tt/pJE7iLC
Submitted December 09, 2022 at 08:43PM by Necessary-Reality-80
via reddit https://ift.tt/lT8Pn6A
Cybervelia
Cybervelia help enterprises to improve their security posture
Ongoing Typosquatting Campaign Publishing Malware to PyPI
https://ift.tt/HbcD5kz
Submitted December 09, 2022 at 10:50PM by louis11
via reddit https://ift.tt/GmzIv7y
https://ift.tt/HbcD5kz
Submitted December 09, 2022 at 10:50PM by louis11
via reddit https://ift.tt/GmzIv7y
blog.phylum.io
Phylum Detects Ongoing Typosquatting Campaign in PyPI
Eleven malicious packages that download known malicious binaries published today, with more expected in the coming hours.
Polar: debugging on LLDB using OpenAI's davinci-003 language model - @ant4g0nist
https://ift.tt/Nh9Sd4k
Submitted December 10, 2022 at 06:31AM by ant4g0nist
via reddit https://ift.tt/DYqcBxP
https://ift.tt/Nh9Sd4k
Submitted December 10, 2022 at 06:31AM by ant4g0nist
via reddit https://ift.tt/DYqcBxP
GitHub
GitHub - ant4g0nist/polar: A LLDB plugin which queries OpenAI's davinci-003 language model to explain the disassembly
A LLDB plugin which queries OpenAI's davinci-003 language model to explain the disassembly - GitHub - ant4g0nist/polar: A LLDB plugin which queries OpenAI's davinci-003 language mod...
Nebuchadnezzar - Practically-exploitable Cryptographic Vulnerabilities in Matrix
https://ift.tt/vth2OaY
Submitted December 10, 2022 at 02:26PM by Gallus
via reddit https://ift.tt/a8oWiFL
https://ift.tt/vth2OaY
Submitted December 10, 2022 at 02:26PM by Gallus
via reddit https://ift.tt/a8oWiFL
Mobile Bug Bounty Hunting? Enter BLE – Cybervelia
https://ift.tt/9wS1d6p
Submitted December 10, 2022 at 02:14PM by Necessary-Reality-80
via reddit https://ift.tt/6PsL5pJ
https://ift.tt/9wS1d6p
Submitted December 10, 2022 at 02:14PM by Necessary-Reality-80
via reddit https://ift.tt/6PsL5pJ
Fuzzing ping(8)…and finding a 24 year old bug
https://ift.tt/z5ORFPV
Submitted December 11, 2022 at 09:57AM by Gallus
via reddit https://ift.tt/kyRpCqZ
https://ift.tt/z5ORFPV
Submitted December 11, 2022 at 09:57AM by Gallus
via reddit https://ift.tt/kyRpCqZ
Detecting heap memory pitfalls
https://ift.tt/yJ2phEr
Submitted December 11, 2022 at 10:00PM by CoolerVoid
via reddit https://ift.tt/maudUpx
https://ift.tt/yJ2phEr
Submitted December 11, 2022 at 10:00PM by CoolerVoid
via reddit https://ift.tt/maudUpx
antonio-cooler.gitbook.io
Detecting heap memory pitfalls | CoolerVoid tavern
Step by step and using custom taint analysis to detect heap security issues
IATelligence is a Python noscript that will extract the IAT of a PE file and request GPT to get more information about the API and the ATT&CK matrix related
https://ift.tt/p7ZCXM3
Submitted December 12, 2022 at 10:07AM by boutnaru
via reddit https://ift.tt/vpJqA63
https://ift.tt/p7ZCXM3
Submitted December 12, 2022 at 10:07AM by boutnaru
via reddit https://ift.tt/vpJqA63
GitHub
GitHub - fr0gger/IATelligence: IATelligence is a Python noscript that will extract the IAT of a PE file and request GPT to get more…
IATelligence is a Python noscript that will extract the IAT of a PE file and request GPT to get more information about the API and the ATT&CK matrix related - GitHub - fr0gger/IATelligence: I...
Finding JIT Optimizer Bugs using SMT Solvers and Fuzzing
https://ift.tt/lA02aFZ
Submitted December 12, 2022 at 06:17PM by surrealisticpillow12
via reddit https://ift.tt/qr86XEw
https://ift.tt/lA02aFZ
Submitted December 12, 2022 at 06:17PM by surrealisticpillow12
via reddit https://ift.tt/qr86XEw
PyPy
Finding JIT Optimizer Bugs using SMT Solvers and Fuzzing
In this blog post I want to describe a recent bug finding technique that I've
added to the PyPy JIT testing infrastructure. This technique uses the Z3
theorem prover to find bugs in the optimizer of P
added to the PyPy JIT testing infrastructure. This technique uses the Z3
theorem prover to find bugs in the optimizer of P
Precious Gemstones: The New Generation of Kerberos Attacks
https://ift.tt/g4OoTv8
Submitted December 13, 2022 at 11:47AM by 0xdea
via reddit https://ift.tt/fG62uxn
https://ift.tt/g4OoTv8
Submitted December 13, 2022 at 11:47AM by 0xdea
via reddit https://ift.tt/fG62uxn
Unit 42
Precious Gemstones: The New Generation of Kerberos Attacks
Unit 42 researchers show new methods to improve detection of a next-gen line of Kerberos attacks, which allow attackers to modify Kerberos tickets to maintain privileged access.