Microsoft Edge Developer VM Remote Code Execution
https://ift.tt/jh10FGT
Submitted February 18, 2025 at 07:58PM by fqm
via reddit https://ift.tt/sNdtAXl
https://ift.tt/jh10FGT
Submitted February 18, 2025 at 07:58PM by fqm
via reddit https://ift.tt/sNdtAXl
Everyday Ghidra: How Platform Choice Influences Ghidra’s Binary Analysis
https://ift.tt/0qHQYFL
Submitted February 18, 2025 at 09:28PM by onlinereadme
via reddit https://ift.tt/09pGVHa
https://ift.tt/0qHQYFL
Submitted February 18, 2025 at 09:28PM by onlinereadme
via reddit https://ift.tt/09pGVHa
Medium
Everyday Ghidra: How Platform Choice Influences Ghidra’s Binary Analysis
Where you choose to “fly your dragon” truly matters. Learn the RE impacts of your runtime platform.
Reinventing PowerShell in C/C++
https://ift.tt/4JynPgY
Submitted February 19, 2025 at 03:00PM by AlmondOffSec
via reddit https://ift.tt/6mjFMyv
https://ift.tt/4JynPgY
Submitted February 19, 2025 at 03:00PM by AlmondOffSec
via reddit https://ift.tt/6mjFMyv
Ivanti Endpoint Manager Credential Coercion Vulnerabilities Deep-Dive
https://ift.tt/y6KW45Y
Submitted February 19, 2025 at 06:13PM by scopedsecurity
via reddit https://ift.tt/O8q2ItP
https://ift.tt/y6KW45Y
Submitted February 19, 2025 at 06:13PM by scopedsecurity
via reddit https://ift.tt/O8q2ItP
Horizon3.ai
Ivanti Endpoint Manager Vulnerabilities: Critical CVEs & Exploit Details
Critical Ivanti Endpoint Manager vulnerabilities revealed—learn about CVE exploits and mitigation.
Achieving RCE in famous Japanese chat tool with an obsolete Electron feature
https://ift.tt/JZucUap
Submitted February 19, 2025 at 08:40PM by toyojuni
via reddit https://ift.tt/kaQdhul
https://ift.tt/JZucUap
Submitted February 19, 2025 at 08:40PM by toyojuni
via reddit https://ift.tt/kaQdhul
GMO Flatt Security Research
Achieving RCE in famous Japanese chat tool with an obsolete Electron feature
Introduction
Hello, I’m RyotaK (@ryotkak
), a security engineer at GMO Flatt Security Inc.
A while ago, I reported a remote code execution vulnerability
that chains multiple problems in Chatwork, a popular communication tool in Japan.
In the report that…
Hello, I’m RyotaK (@ryotkak
), a security engineer at GMO Flatt Security Inc.
A while ago, I reported a remote code execution vulnerability
that chains multiple problems in Chatwork, a popular communication tool in Japan.
In the report that…
How to prove false statements? (Part 3)
https://ift.tt/LAonDWQ
Submitted February 20, 2025 at 05:01AM by feross
via reddit https://ift.tt/reJnGgi
https://ift.tt/LAonDWQ
Submitted February 20, 2025 at 05:01AM by feross
via reddit https://ift.tt/reJnGgi
A Few Thoughts on Cryptographic Engineering
How to prove false statements? (Part 3)
This is the third and penultimate post in a series about theoretical weaknesses in Fiat-Shamir as applied to proof systems. The first post is here, the second post is here, and you should probably …
How vulnerable are company leaders to phishing attacks ? Results of our study
https://ift.tt/3CZR1rs
Submitted February 20, 2025 at 08:21AM by Hackmosphere
via reddit https://ift.tt/FvBjM5E
https://ift.tt/3CZR1rs
Submitted February 20, 2025 at 08:21AM by Hackmosphere
via reddit https://ift.tt/FvBjM5E
Hackmosphere
Campagne de phishing : Les décideurs sont-ils vulnérables ? - Hackmosphere
Les décideurs d’entreprise sont-ils vraiment prêts à contrer les cyberattaques ? Découvrez les résultats surprenants d’une campagne de phishing ciblant CEOs et CTOs, et apprenez comment renforcer votre défense contre ces menaces invisibles.
RANsacked: Over 100 Security Flaws Found in LTE/5G Network Implementations
https://ift.tt/yYHDvRS
Submitted February 20, 2025 at 01:14PM by dukeofmola
via reddit https://ift.tt/lQ4hW1R
https://ift.tt/yYHDvRS
Submitted February 20, 2025 at 01:14PM by dukeofmola
via reddit https://ift.tt/lQ4hW1R
New Java Runtime Reverse Engineering Tool (Injected DLL, Runtime Bytecode & Heap Analysis)
https://ift.tt/WP5tTdZ
Submitted February 20, 2025 at 09:03AM by WritingTight4467
via reddit https://ift.tt/nfQLXJR
https://ift.tt/WP5tTdZ
Submitted February 20, 2025 at 09:03AM by WritingTight4467
via reddit https://ift.tt/nfQLXJR
GitHub
GitHub - roger1337/JDBG: Java Dynamic Reverse Engineering and Debugging Tool
Java Dynamic Reverse Engineering and Debugging Tool - roger1337/JDBG
300% increase in endpoint malware detections - Help Net Security
https://ift.tt/YZi4P5N
Submitted February 20, 2025 at 05:35PM by Wownever
via reddit https://ift.tt/4Suw0EY
https://ift.tt/YZi4P5N
Submitted February 20, 2025 at 05:35PM by Wownever
via reddit https://ift.tt/4Suw0EY
Help Net Security
300% increase in endpoint malware detections
Endpoint malware detections were up significantly during the third quarter of 2024, with a 300% increase compared to Q2.
Top Hacking Tools and Skills You Need to Learn in 2025
https://ift.tt/SL870Rp
Submitted February 20, 2025 at 10:10PM by Justin_coco
via reddit https://ift.tt/ciCyOnz
https://ift.tt/SL870Rp
Submitted February 20, 2025 at 10:10PM by Justin_coco
via reddit https://ift.tt/ciCyOnz
Medium
Top Hacking Tools and Skills You Need to Learn in 2025
✨ Click here for free link
Introducing keycred: A cross-platform tool for handling Active Directory Shadow Credentials/msDS-KeyCredentialLink
https://ift.tt/T2cz6HS
Submitted February 19, 2025 at 09:02PM by RedTeamPentesting
via reddit https://ift.tt/Wh5AHJP
https://ift.tt/T2cz6HS
Submitted February 19, 2025 at 09:02PM by RedTeamPentesting
via reddit https://ift.tt/Wh5AHJP
GitHub
GitHub - RedTeamPentesting/keycred: Generate and Manage KeyCredentialLinks
Generate and Manage KeyCredentialLinks. Contribute to RedTeamPentesting/keycred development by creating an account on GitHub.
60-pages guide on how to use Bettercap on Android
https://ift.tt/KFRtLvp
Submitted February 21, 2025 at 03:09PM by barakadua131
via reddit https://ift.tt/sqOEvtI
https://ift.tt/KFRtLvp
Submitted February 21, 2025 at 03:09PM by barakadua131
via reddit https://ift.tt/sqOEvtI
Mobile Hacker
Bettercap on Android: A Portable Network Security Toolkit
This setup is not only lightweight and portable but also ensures that a pentester can operate in plain sight, appearing as just another person on their phone. In this guide, we'll show you how to install, configure, and use bettercap on Android, unlocking…
Removing Jeff Bezos from my bed
https://ift.tt/2fazM7k
Submitted February 21, 2025 at 10:14PM by wifihack
via reddit https://ift.tt/8V6Zlpf
https://ift.tt/2fazM7k
Submitted February 21, 2025 at 10:14PM by wifihack
via reddit https://ift.tt/8V6Zlpf
Trufflesecurity
Removing Jeff Bezos From My Bed ◆ Truffle Security Co.
Eight Sleep smart bed found to contain an exposed AWS key and a likely backdoor that allowed engineers to remotely access users' beds
CVE-2023-38408 how to.
https://ift.tt/IQd8sjO
Submitted February 22, 2025 at 06:58AM by xphilopes
via reddit https://ift.tt/31CFRx6
https://ift.tt/IQd8sjO
Submitted February 22, 2025 at 06:58AM by xphilopes
via reddit https://ift.tt/31CFRx6
www.vicarius.io
Exploring OpenSSH's Agent Forwarding RCE (CVE-2023-38408) - vsociety
Three questions about Apple, encryption, and the U.K.
https://ift.tt/Kbnsj9M
Submitted February 24, 2025 at 01:31AM by feross
via reddit https://ift.tt/0GyrEh9
https://ift.tt/Kbnsj9M
Submitted February 24, 2025 at 01:31AM by feross
via reddit https://ift.tt/0GyrEh9
A Few Thoughts on Cryptographic Engineering
Three questions about Apple, encryption, and the U.K.
Two weeks ago, the Washington Post reported that the U.K. government had issued a secret order to Apple demanding that the company include a “backdoor” into the company’s end-to-e…
What's new in LKRG? Interview about the project
https://ift.tt/UITJ1pd
Submitted February 24, 2025 at 03:02AM by dzidku
via reddit https://ift.tt/wPg1kJ9
https://ift.tt/UITJ1pd
Submitted February 24, 2025 at 03:02AM by dzidku
via reddit https://ift.tt/wPg1kJ9
Over 35,000 Websites Targeted in Full-Page Hijack Linking to a Chinese-Language Gambling Scam
https://ift.tt/ISJpDOv
Submitted February 24, 2025 at 07:14PM by unknownhad
via reddit https://ift.tt/eoNBn51
https://ift.tt/ISJpDOv
Submitted February 24, 2025 at 07:14PM by unknownhad
via reddit https://ift.tt/eoNBn51
c/side
Over 35,000 Websites Targeted in Full-Page Hijack Linking to a Chinese-Language Gambling Scam
A new malware campaign has compromised 35,000+ websites, injecting a malicious noscript from the websites listed below. Once the noscript loads, it fully hijacks the user’s browser window—often redirecting them to pages promoting a Chinese-language gambling (or…
Exposing Shadow AI Agents: How We Extracted Financial Data from Billion-Dollar Companies
https://ift.tt/dKaXPkp
Submitted February 24, 2025 at 08:16PM by we-we-we
via reddit https://ift.tt/7aHVQq4
https://ift.tt/dKaXPkp
Submitted February 24, 2025 at 08:16PM by we-we-we
via reddit https://ift.tt/7aHVQq4
Medium
The Burn Notice, Part 1/5 — Revealing Shadow Copilots
How We Extracted Financial Data from a Multi-Billion-Dollar Company
Miku Miku Beam: DDoS in Style
https://ift.tt/oUZ7uEb
Submitted February 24, 2025 at 10:28PM by asynchronous-x
via reddit https://ift.tt/4FPvSML
https://ift.tt/oUZ7uEb
Submitted February 24, 2025 at 10:28PM by asynchronous-x
via reddit https://ift.tt/4FPvSML
💯 - Miku Miku Beam: DDoS in Style
Because DDoS attacks are kawaii and even more so when Miku does them.
I have developed a Free Browser Extension Scanner and Code Fetch/Audit using AI https://crxplorer.com
https://crxplorer.com
Submitted February 24, 2025 at 11:58PM by kinso1338
via reddit https://ift.tt/brdPI4p
https://crxplorer.com
Submitted February 24, 2025 at 11:58PM by kinso1338
via reddit https://ift.tt/brdPI4p
Reddit
From the netsec community on Reddit: I have developed a Free Browser Extension Scanner and Code Fetch/Audit using AI https://crxplorer.com
Posted by kinso1338 - 0 votes and 6 comments