Black Hat USA 2023 slides
https://ift.tt/B8Y2X5L
Submitted August 12, 2023 at 10:59AM by seyyid_
via reddit https://ift.tt/PyfLpjh
https://ift.tt/B8Y2X5L
Submitted August 12, 2023 at 10:59AM by seyyid_
via reddit https://ift.tt/PyfLpjh
GitHub
Conferences/Black Hat USA 2023 slides at main · onhexgroup/Conferences
Conference slides. Contribute to onhexgroup/Conferences development by creating an account on GitHub.
Speeding up nmap service scanning 16x
https://ift.tt/GOA7ckC
Submitted August 13, 2023 at 06:11PM by MegaManSec2
via reddit https://ift.tt/oQ1pluY
https://ift.tt/GOA7ckC
Submitted August 13, 2023 at 06:11PM by MegaManSec2
via reddit https://ift.tt/oQ1pluY
Joshua.Hu
Speeding up nmap service scanning 16x
In my previous post post, I began writing about how I was designing a port and service scanner for large-scale networks by combining port-scanning tools like masscan/zmap and service scanning tools like nmap. In this post, I’m going to dive into some of the…
How to Get Started in Bug Bounty for Beginners
https://ift.tt/I7Sdnsp
Submitted August 13, 2023 at 08:12PM by kongwenbin
via reddit https://ift.tt/ClyakTB
https://ift.tt/I7Sdnsp
Submitted August 13, 2023 at 08:12PM by kongwenbin
via reddit https://ift.tt/ClyakTB
My Learning Journey
How to Get Started in Bug Bounty for Beginners
How to get started in bug bounty? What technical skills are required? If you are a bug bounty beginner, check this out!
Why macOS anti-malware scans can behave oddly
https://ift.tt/jrvP6GS
Submitted August 13, 2023 at 11:46PM by louis11
via reddit https://ift.tt/YfXC9zt
https://ift.tt/jrvP6GS
Submitted August 13, 2023 at 11:46PM by louis11
via reddit https://ift.tt/YfXC9zt
The Eclectic Light Company
Why macOS anti-malware scans can behave oddly
Why XProtect Remediator scans can report BadPluginServiceSignature status_code 31 and abort, and why you don’t need to do anything about it.
SAP Security: Vulnerability Analysis By RedRays
https://ift.tt/bHpLaM0
Submitted August 14, 2023 at 02:48PM by vah_13
via reddit https://ift.tt/nzuisUV
https://ift.tt/bHpLaM0
Submitted August 14, 2023 at 02:48PM by vah_13
via reddit https://ift.tt/nzuisUV
RedRays - Your SAP Security Solution
SAP Security: Vulnerability Analysis By RedRays
RedRays' comprehensive SAP security analysis reveals critical vulnerabilities across 10,000 public IP addresses. Discover the severity distribution, insights into the most pressing vulnerabilities, and RedRays' innovative, accessible solutions for SAP security.
Underground Ransomware deployed by Storm-0978 that exploited CVE-2023-36884
https://ift.tt/KpznI4v
Submitted August 14, 2023 at 06:30PM by CyberMasterV
via reddit https://ift.tt/xjyzP1r
https://ift.tt/KpznI4v
Submitted August 14, 2023 at 06:30PM by CyberMasterV
via reddit https://ift.tt/xjyzP1r
Security Scorecard
Underground Ransomware Whitepaper
The Underground ransomware is the successor of the Industrial Spy ransomware and was deployed by a threat actor called Storm-0978.
Memory Forensics R&D Illustrated: Recovering Raw Sockets on Windows 10+
https://ift.tt/rG10h4f
Submitted August 14, 2023 at 07:36PM by transt
via reddit https://ift.tt/YQSlg9W
https://ift.tt/rG10h4f
Submitted August 14, 2023 at 07:36PM by transt
via reddit https://ift.tt/YQSlg9W
Blogspot
Memory Forensics R&D Illustrated: Recovering Raw Sockets on Windows 10+
As mentioned in a recent blog post , our team is once again offering in-person training, and we have substantially updated our course for t...
Memory Forensics R&D Illustrated: Recovering Raw Sockets on Windows 10+
https://ift.tt/rG10h4f
Submitted August 14, 2023 at 07:36PM by transt
via reddit https://ift.tt/j6ZJopF
https://ift.tt/rG10h4f
Submitted August 14, 2023 at 07:36PM by transt
via reddit https://ift.tt/j6ZJopF
Blogspot
Memory Forensics R&D Illustrated: Recovering Raw Sockets on Windows 10+
As mentioned in a recent blog post , our team is once again offering in-person training, and we have substantially updated our course for t...
HAK5 BashBunny USB Gadget IoC Removal
https://ift.tt/8b4Xqoe
Submitted August 14, 2023 at 07:56PM by emptynebuli
via reddit https://ift.tt/zKY3tHD
https://ift.tt/8b4Xqoe
Submitted August 14, 2023 at 07:56PM by emptynebuli
via reddit https://ift.tt/zKY3tHD
GitHub
GitHub - emptynebuli/StealthBunny: Gadget IoC removal from HAK5's BashBunny
Gadget IoC removal from HAK5's BashBunny. Contribute to emptynebuli/StealthBunny development by creating an account on GitHub.
A phishing attempt on Steam that became a Qrljacking research
https://ift.tt/4iAG5bJ
Submitted August 14, 2023 at 11:33PM by voidz0r
via reddit https://ift.tt/xlh3Hbt
https://ift.tt/4iAG5bJ
Submitted August 14, 2023 at 11:33PM by voidz0r
via reddit https://ift.tt/xlh3Hbt
voidzone.me
A phishing attempt on Steam that became a Qrljacking research
Preface This is a brief story about a phishing attempt made by a user that turned out into a little research.
The initial contact The first contact I had was with a profile named Abigail🌻 who sent me a friend invite on steam.
After a few minutes I received…
The initial contact The first contact I had was with a profile named Abigail🌻 who sent me a friend invite on steam.
After a few minutes I received…
The data of 760,000 Discord.io users was put up for sale on the darknet
https://ift.tt/tkgAMDZ
Submitted August 15, 2023 at 12:31AM by louis11
via reddit https://ift.tt/7ZwsRuf
https://ift.tt/tkgAMDZ
Submitted August 15, 2023 at 12:31AM by louis11
via reddit https://ift.tt/7ZwsRuf
Stack Diary
The data of 760,000 Discord.io users was put up for sale on the darknet
Note: I've gone ahead and updated the featured image, so it doesn't seem like this has something to do with Discord "directly". It was not my intention to
Veilid is an open source, p2p, mobile first, networked application framework from CDC
https://veilid.com/
Submitted August 15, 2023 at 10:17AM by Mumpsimus
via reddit https://ift.tt/CUp0VFu
https://veilid.com/
Submitted August 15, 2023 at 10:17AM by Mumpsimus
via reddit https://ift.tt/CUp0VFu
Veilid
Veilid is an open-source, distributed application framework.
Knocking on Hell's Gate - Educational Malware Dev
https://ift.tt/T95ZNcL
Submitted August 15, 2023 at 09:36AM by jibblz
via reddit https://ift.tt/zF32tYa
https://ift.tt/T95ZNcL
Submitted August 15, 2023 at 09:36AM by jibblz
via reddit https://ift.tt/zF32tYa
Enigma Labs
Knocking on Hell’s Gate - EDR Evasion Through Direct Syscalls
Introduction - Educational Malware Development I
Breaking The Mutant Language's "Encryption"
https://ift.tt/l2sg0mL
Submitted August 15, 2023 at 05:29PM by 0xcrypto
via reddit https://ift.tt/yKjRdLN
https://ift.tt/l2sg0mL
Submitted August 15, 2023 at 05:29PM by 0xcrypto
via reddit https://ift.tt/yKjRdLN
Advisory | NetModule Router Software Race Condition Leads to Remote Code Execution
https://ift.tt/Ct9AGwW
Submitted August 15, 2023 at 07:57PM by wtfse
via reddit https://ift.tt/gesGmvI
https://ift.tt/Ct9AGwW
Submitted August 15, 2023 at 07:57PM by wtfse
via reddit https://ift.tt/gesGmvI
Hostile Code: Dealing with stack strings in IDAPython
https://ift.tt/4ouWHYf
Submitted August 15, 2023 at 09:46PM by OwnPreparation3424
via reddit https://ift.tt/16gqBpy
https://ift.tt/4ouWHYf
Submitted August 15, 2023 at 09:46PM by OwnPreparation3424
via reddit https://ift.tt/16gqBpy
Medium
Hostile Code: Dealing with stack strings in IDAPython
Stack strings — A common obfuscation technique used in malware, and how to deal with them using IDAPython
Creating Fully Undetectable JavaScript Payloads to Evade Next-Generation Firewalls
https://ift.tt/aSng9Ab
Submitted August 15, 2023 at 09:54PM by elliotkillick
via reddit https://ift.tt/KDpt02L
https://ift.tt/aSng9Ab
Submitted August 15, 2023 at 09:54PM by elliotkillick
via reddit https://ift.tt/KDpt02L
Elliot on Security
Elliot on Security - Creating Fully Undetectable JavaScript Payloads to Evade Next-Generation Firewalls
Generate evasive JavaScript for bypassing next-generation firewalls and antivirus scanners in a few simple clicks...
Breaking Synology NAS Cloud, Impersonation Attacks, RCE
https://ift.tt/bd1j0p8
Submitted August 16, 2023 at 01:15AM by derp6996
via reddit https://ift.tt/gMh9cFS
https://ift.tt/bd1j0p8
Submitted August 16, 2023 at 01:15AM by derp6996
via reddit https://ift.tt/gMh9cFS
Claroty
Exploiting Cloud Connectivity to PWN your NAS: Synology DS920
Claroty develops a unique technique that impersonates Synology’s DS920+ network-attached storage device. Learn more.
Istio outboundTrafficPolicy Egress Control Bypass
https://ift.tt/7B4fgOm
Submitted August 16, 2023 at 04:50AM by MysteriousHotel3017
via reddit https://ift.tt/zUsg962
https://ift.tt/7B4fgOm
Submitted August 16, 2023 at 04:50AM by MysteriousHotel3017
via reddit https://ift.tt/zUsg962
Pulse Security
Istio outboundTrafficPolicy Egress Control Bypass
Istio egress controls can be bypassed, and are not suitable for restricting egress networking for Kubernetes pods. This advisory details an example bypass using setuid() in a compromised pod.
LLM Security Series: Nuts and Bolts
https://ift.tt/JD5tMNh
Submitted August 16, 2023 at 11:36AM by r0075h3ll
via reddit https://ift.tt/6jXHabp
https://ift.tt/JD5tMNh
Submitted August 16, 2023 at 11:36AM by r0075h3ll
via reddit https://ift.tt/6jXHabp
r0075h3ll.github.io
LLM Security Series: Nuts and Bolts | Hardik Nanda
PowerHell: Active Flaws in PowerShell Gallery Expose Users to Attacks
https://ift.tt/176Nu0m
Submitted August 16, 2023 at 05:31PM by ilay789
via reddit https://ift.tt/p2Nsnhi
https://ift.tt/176Nu0m
Submitted August 16, 2023 at 05:31PM by ilay789
via reddit https://ift.tt/p2Nsnhi
Aquasec
PowerHell: Active Flaws in PowerShell Gallery Expose Users to Attacks
We expose significant flaws in PowerShell Gallery's policy package names and owners, that open potential supply chain attacks on the registry's user base.