Unshackle: A tool to bypass windows password logins
https://ift.tt/yr73AQ5
Submitted July 20, 2023 at 01:26PM by AhmedMinegames
via reddit https://ift.tt/Pkp1LnS
https://ift.tt/yr73AQ5
Submitted July 20, 2023 at 01:26PM by AhmedMinegames
via reddit https://ift.tt/Pkp1LnS
GitHub
GitHub - Fadi002/unshackle: Open-source tool to bypass windows and linux passwords from bootable usb
Open-source tool to bypass windows and linux passwords from bootable usb - GitHub - Fadi002/unshackle: Open-source tool to bypass windows and linux passwords from bootable usb
The Death of Infosec Twitter
https://ift.tt/ExQvWdT
Submitted July 20, 2023 at 03:21PM by Xadartt
via reddit https://ift.tt/vAXBOKt
https://ift.tt/ExQvWdT
Submitted July 20, 2023 at 03:21PM by Xadartt
via reddit https://ift.tt/vAXBOKt
Cyentia Institute | Data-Driven Cybersecurity Research
The Death of Infosec Twitter | Cyentia Institute
"Infosec Twitter," a vibrant community of security practitioners, known for its insight, inspiration, and entertainment, is coming to an end.
Okta’s Trusted Origins: A Continued Cacophony of Security Issues
https://ift.tt/ygboXqJ
Submitted July 21, 2023 at 01:28AM by csanders_
via reddit https://ift.tt/PU3SeEH
https://ift.tt/ygboXqJ
Submitted July 21, 2023 at 01:28AM by csanders_
via reddit https://ift.tt/PU3SeEH
Medium
Okta’s Trusted Origins: A Continued Cacophony of Security Issues
Every week, almost without fail, I come across one thing that confuses, entertains, or most commonly infuriates me. I’ve decided to keep a…
PyCript: A burp extension to bypass client side encryption using java python and javanoscript using custom logic to support any encryption.
https://ift.tt/rRSXFv7
Submitted July 21, 2023 at 12:59AM by Ano_F
via reddit https://ift.tt/Vs6iX4O
https://ift.tt/rRSXFv7
Submitted July 21, 2023 at 12:59AM by Ano_F
via reddit https://ift.tt/Vs6iX4O
portswigger.net
PyCript
Bypass client-side encryption using custom logic for manual and automation testing
Analysis of CVE-2023-3519 in Citrix ADC and NetScaler Gateway
https://ift.tt/vEUDJxm
Submitted July 21, 2023 at 02:05PM by Mempodipper
via reddit https://ift.tt/xja8YQh
https://ift.tt/vEUDJxm
Submitted July 21, 2023 at 02:05PM by Mempodipper
via reddit https://ift.tt/xja8YQh
Cisco SPA112 Forever-Day: CVE-2023-20126.
https://ift.tt/LG0NTgA
Submitted July 21, 2023 at 05:09PM by fullspectrumdev
via reddit https://ift.tt/ID28sOj
https://ift.tt/LG0NTgA
Submitted July 21, 2023 at 05:09PM by fullspectrumdev
via reddit https://ift.tt/ID28sOj
Full Spectrum Things
Cisco SPA112 Forever-Day: CVE-2023-20126.
Note: this is the "main" blogpost for the talk I am giving at BSides Basingstoke 2023. It spawned a dozen or so other blog posts, some of which have yet to be published. This post should auto publish at the time I am giving the talk, or just before, or
Non-root Android Native Code Visualization Pt.2
https://ift.tt/YzrSfQd
Submitted July 21, 2023 at 06:04PM by theappanalyst
via reddit https://ift.tt/iOULQrj
https://ift.tt/YzrSfQd
Submitted July 21, 2023 at 06:04PM by theappanalyst
via reddit https://ift.tt/iOULQrj
/data/local/tmp
Visualizing Android Code Coverage Pt.2
In part one of this series I described how to visualize Android application code using Dragon Dance + Frida + Lighthouse + Ghidra. Though there is one big hang-up, what if you don’t have root or want to examine a non-app process.
dnsReaper now supports subdomain attacks using project discovery and SecurityTrails
https://ift.tt/57twsBY
Submitted July 21, 2023 at 06:59PM by punksecurity_simon
via reddit https://ift.tt/nBZ0TmP
https://ift.tt/57twsBY
Submitted July 21, 2023 at 06:59PM by punksecurity_simon
via reddit https://ift.tt/nBZ0TmP
GitHub
GitHub - punk-security/dnsReaper: dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team!
dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team! - punk-security/dnsReaper
Accurately fingerprint and detect vulnerable (and patched!) versions of Netscaler / Citrix ADC to CVE-2023-3519
https://ift.tt/bP3actY
Submitted July 22, 2023 at 06:17AM by d4rkm0de
via reddit https://ift.tt/j59xsHF
https://ift.tt/bP3actY
Submitted July 22, 2023 at 06:17AM by d4rkm0de
via reddit https://ift.tt/j59xsHF
GitHub
GitHub - securekomodo/citrixInspector: Accurately fingerprint and detect vulnerable (and patched!) versions of Netscaler / Citrix…
Accurately fingerprint and detect vulnerable (and patched!) versions of Netscaler / Citrix ADC to CVE-2023-3519 - GitHub - securekomodo/citrixInspector: Accurately fingerprint and detect vulnerable...
Malicious NPM Packages Attributed To North Korean State Actors
https://ift.tt/WqbR9L1
Submitted July 22, 2023 at 07:12AM by louis11
via reddit https://ift.tt/LWdQtpP
https://ift.tt/WqbR9L1
Submitted July 22, 2023 at 07:12AM by louis11
via reddit https://ift.tt/LWdQtpP
Phylum
June’s Sophisticated npm Attack Attributed to North Korea
In June 2023, Phylum was the first to unearth a series of suspicious npm publications belonging to what appeared to be a highly targeted attack. The identified packages, published in pairs, required installation in a specific sequence, subsequently retrieving…
Security concerns regarding the Ethereum token standard ERC-20
https://ift.tt/nQszy2i
Submitted July 23, 2023 at 05:49AM by Dexaran
via reddit https://ift.tt/o9tgsAj
https://ift.tt/nQszy2i
Submitted July 23, 2023 at 05:49AM by Dexaran
via reddit https://ift.tt/o9tgsAj
Medium
Known problems of ERC20 token standard
ERC-20 token standard contains a major logical flaw — lack of communication model (lack of transaction handling model).
Cloud supply chain
https://ift.tt/BiKePVc
Submitted July 23, 2023 at 04:01PM by CarelessOne7933
via reddit https://ift.tt/s1G7PCE
https://ift.tt/BiKePVc
Submitted July 23, 2023 at 04:01PM by CarelessOne7933
via reddit https://ift.tt/s1G7PCE
divyanshu-mehta.gitbook.io
Hijacking Cloud CI/CD Systems for Fun and Profit | Researchs
This research details a new technique that can be used by threat actors for supply chain attacks on open-source repositories using GCP, Azure and AWS.
Okta Logs Decoded: Okta Logs Threat Hunting Guide
https://ift.tt/2ipuB89
Submitted July 23, 2023 at 07:50PM by Or1rez
via reddit https://ift.tt/kyIgSQ5
https://ift.tt/2ipuB89
Submitted July 23, 2023 at 07:50PM by Or1rez
via reddit https://ift.tt/kyIgSQ5
Rezonate
Okta Logs Decoded: Unveiling Identity Threats Through Threat Hunting - Rezonate
Technical
254 Custom BloodHound Cyphers
https://ift.tt/QSi0pes
Submitted July 23, 2023 at 11:06PM by edreatingmonkey
via reddit https://ift.tt/rpEYQfm
https://ift.tt/QSi0pes
Submitted July 23, 2023 at 11:06PM by edreatingmonkey
via reddit https://ift.tt/rpEYQfm
GitHub
cypherhound/customqueries.json at main · fin3ss3g0d/cypherhound
Python3 terminal application that contains 400 Neo4j cyphers for BloodHound data sets and 383 GUI cyphers - fin3ss3g0d/cypherhound
Securing PyTorch Models with eBPF
https://ift.tt/vlKAJMZ
Submitted July 24, 2023 at 01:58PM by cov_id19
via reddit https://ift.tt/Yjz2AwE
https://ift.tt/vlKAJMZ
Submitted July 24, 2023 at 01:58PM by cov_id19
via reddit https://ift.tt/Yjz2AwE
Medium
Secure PyTorch Models with eBPF
This article was not generated by GPT
Analysis of CVE-2023-3519 in Citrix ADC and NetScaler Gateway (Part 2)
https://ift.tt/DJmokKZ
Submitted July 24, 2023 at 05:02PM by Mempodipper
via reddit https://ift.tt/Ejp5U1Q
https://ift.tt/DJmokKZ
Submitted July 24, 2023 at 05:02PM by Mempodipper
via reddit https://ift.tt/Ejp5U1Q
Unauthenticated RCE chain on Apache OpenMeetings
https://ift.tt/vJdONRA
Submitted July 24, 2023 at 05:52PM by monoimpact
via reddit https://ift.tt/hV5Guo6
https://ift.tt/vJdONRA
Submitted July 24, 2023 at 05:52PM by monoimpact
via reddit https://ift.tt/hV5Guo6
Sonarsource
A Twist in the Code: OpenMeetings Vulnerabilities through Unexpected Application State
Unexpected application states are often overlooked and can introduce severe security vulnerabilities. Read more about this real-world example.
Zenbleed: A use-after-free in AMD Zen2 processors (CVE-2023-20593)
https://ift.tt/hBA93uf
Submitted July 24, 2023 at 08:17PM by Worldly_Topic
via reddit https://ift.tt/K09SXPl
https://ift.tt/hBA93uf
Submitted July 24, 2023 at 08:17PM by Worldly_Topic
via reddit https://ift.tt/K09SXPl
Cmpxchg8B
Zenbleed
My talk regarding windows kernel development
https://www.youtube.com/watch?app=desktop&v=CVJmGfElqw0&list=PLkNlAwTF5yEuFqzHOirH6xxYsnqBNlNfY&index=15
Submitted July 24, 2023 at 08:58PM by Idov31
via reddit https://ift.tt/3vQwsXg
https://www.youtube.com/watch?app=desktop&v=CVJmGfElqw0&list=PLkNlAwTF5yEuFqzHOirH6xxYsnqBNlNfY&index=15
Submitted July 24, 2023 at 08:58PM by Idov31
via reddit https://ift.tt/3vQwsXg
YouTube
Ido Veltzman - (Lady|)Lord Of The Ring
Ido Veltzman speaking at BSidesTLV 2023: (Lady|)Lord Of The Ring
Persistence via Shell Extensions
https://ift.tt/leBWEwq
Submitted July 25, 2023 at 12:02AM by NecessaryDark3283
via reddit https://ift.tt/tHzp25s
https://ift.tt/leBWEwq
Submitted July 25, 2023 at 12:02AM by NecessaryDark3283
via reddit https://ift.tt/tHzp25s
GitHub
GitHub - aahmad097/Test004: Persistence via Shell Extensions
Persistence via Shell Extensions. Contribute to aahmad097/Test004 development by creating an account on GitHub.
EchoCLI: A tethered root solution for the Amazon Echo Dot 2nd generation
https://ift.tt/FVaJq4u
Submitted July 25, 2023 at 01:59AM by Titokhan
via reddit https://ift.tt/OhQIpln
https://ift.tt/FVaJq4u
Submitted July 25, 2023 at 01:59AM by Titokhan
via reddit https://ift.tt/OhQIpln
dragon863.github.io
Dragon863 - Rooting the Amazon Echo Dot
Gaining a temporary root on the Amazon echo dot 2nd generation.