Reverse Engineering WebAssembly Applications
https://ift.tt/2MxcLPn

Submitted June 28, 2018 at 07:15PM by CyberBullets
via reddit https://ift.tt/2Ki3YUP

CVE-2018-0296 Cisco ASA - Exploited ITW & POC avail
Vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. It is also possible on certain software releases that the ASA will not reload, but an attacker could view sensitive system information without authentication by using directory traversal techniques.Patched June 6th by cisco: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-asaftdCisco says exploits observed ITW. POC available at https://github.com/yassineaboukir/CVE-2018-0296 and elsewhere.

Submitted June 28, 2018 at 08:35AM by thehoodedidiot
via reddit https://ift.tt/2tNbVGn

RAMPAGE AND GUARDION Vulnerabilities in modern phones enable unauthorized access
https://ift.tt/2lKlzGa

Submitted June 29, 2018 at 02:49PM by thedataking
via reddit https://ift.tt/2yQ6kF3

[gentoo-announce] Gentoo Github Organization Compromised
https://ift.tt/2lI9kKo

Submitted June 29, 2018 at 05:58PM by Andrew-CS
via reddit https://ift.tt/2tR28Pu

h1-search: Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
https://ift.tt/2NccIJF

Submitted June 29, 2018 at 08:53PM by s0pas
via reddit https://ift.tt/2KmBwkv

Extracting Url's from DOC Macro (trickbot)
https://ift.tt/2IC1D1g

Submitted June 29, 2018 at 09:34PM by ericnyamu
via reddit https://ift.tt/2Ktt7Lj

"DoublePulsar" Patched to Work on Windows IoT Systems
https://ift.tt/2yWakEb

Submitted June 29, 2018 at 09:27PM by CaptMeelo
via reddit https://ift.tt/2Kzq9F6

Breaking LTE on Layer Two
https://ift.tt/2Mvqru9

Submitted June 29, 2018 at 10:03PM by zexterio
via reddit https://ift.tt/2tP4u1h

Every Android device is susceptible to a hardware vulnerability called RAMpage
https://ift.tt/2yWTuVw

Submitted June 30, 2018 at 02:12AM by Goovscoov
via reddit https://ift.tt/2yXAciO

PSA: Avoid the fake Android App Runtime (ARC Welder) extension (with over 32,000 installs!) on the Chrome Web Store, as it injects ads and trackers into every webpage you visit. It is the only one that shows up in search results and the real one appears to be installable, but delisted/"noindex"-ed
https://ift.tt/2MtHH2I

Submitted June 30, 2018 at 03:45AM by Walter_Bishop_PhD
via reddit https://ift.tt/2yV5LJZ

Transparent Proxy with squid and iptables.
https://ift.tt/2KzWvzF

Submitted June 30, 2018 at 01:09PM by Kythx
via reddit https://ift.tt/2tSxvt9

Windows Search service vulnerability - Bookworm
https://ift.tt/2tGGgY1

Submitted June 30, 2018 at 11:12PM by realitycorp
via reddit https://ift.tt/2tGiHOY

In Memory Powershell Webdav Server
https://ift.tt/2z1GCNO

Submitted July 01, 2018 at 08:48PM by p3nt4
via reddit https://ift.tt/2KCYBf5

UAC Bypassing Using msdt.exe XML/Execution Via Feature in Msdt - & RawLog
https://ift.tt/2tK5Ds1

Submitted July 02, 2018 at 12:14AM by ericnyamu
via reddit https://ift.tt/2tVxbd0

Advice for beginners - feedback and pull requests are appreciated
https://ift.tt/2lKHNYx

Submitted July 02, 2018 at 03:57AM by _Exaybachay_
via reddit https://ift.tt/2lOO3ia

Ticketmaster's UK hack shows consumers are the last to know about data breaches
https://ift.tt/2tY8JHY

Submitted July 02, 2018 at 06:32PM by johnedx
via reddit https://ift.tt/2KCS8DR

Exposing the Secret Office 365 Forensics Tool | LMG Security
https://ift.tt/2tImZo8

Submitted July 02, 2018 at 04:03PM by k3170makan
via reddit https://ift.tt/2KBvZGd

Hijacking the control flow of a WebAssembly program
https://ift.tt/2KmJtGn

Submitted July 02, 2018 at 06:45PM by HighPrivsDrifter
via reddit https://ift.tt/2KI7rLw

Abusing the COM Registry Structure: CLSID, LocalServer32, & InprocServer32 [for bypass, evasion, and persistence]
https://ift.tt/2yNPJBx

Submitted July 02, 2018 at 07:05PM by whynotsec
via reddit https://ift.tt/2MHvZ4U

Tokenvator: A Tool to Elevate Privilege using Windows Tokens
https://ift.tt/2tZWavX

Submitted July 02, 2018 at 10:50PM by ericnyamu
via reddit https://ift.tt/2u58uLx

US Spending Less to Secure World’s Nuclear Bomb Materials
https://ift.tt/2Nm5S4G

Submitted July 03, 2018 at 12:32AM by CQPab
via reddit https://ift.tt/2KJJgcn