Hijacking the control flow of a WebAssembly program
https://ift.tt/2KmJtGn
Submitted July 02, 2018 at 06:45PM by HighPrivsDrifter
via reddit https://ift.tt/2KI7rLw
https://ift.tt/2KmJtGn
Submitted July 02, 2018 at 06:45PM by HighPrivsDrifter
via reddit https://ift.tt/2KI7rLw
Abusing the COM Registry Structure: CLSID, LocalServer32, & InprocServer32 [for bypass, evasion, and persistence]
https://ift.tt/2yNPJBx
Submitted July 02, 2018 at 07:05PM by whynotsec
via reddit https://ift.tt/2MHvZ4U
https://ift.tt/2yNPJBx
Submitted July 02, 2018 at 07:05PM by whynotsec
via reddit https://ift.tt/2MHvZ4U
| bohops |
Abusing the COM Registry Structure: CLSID, LocalServer32, & InprocServer32
TL;DR Vendors are notorious for including and/or leaving behind Registry artifacts that could potentially be abused by attackers for lateral movement, evasion, bypass, and persistence. CLSIDs subke…
Tokenvator: A Tool to Elevate Privilege using Windows Tokens
https://ift.tt/2tZWavX
Submitted July 02, 2018 at 10:50PM by ericnyamu
via reddit https://ift.tt/2u58uLx
https://ift.tt/2tZWavX
Submitted July 02, 2018 at 10:50PM by ericnyamu
via reddit https://ift.tt/2u58uLx
NetSPI Blog
Tokenvator: A Tool to Elevate Privilege using Windows Tokens
US Spending Less to Secure World’s Nuclear Bomb Materials
https://ift.tt/2Nm5S4G
Submitted July 03, 2018 at 12:32AM by CQPab
via reddit https://ift.tt/2KJJgcn
https://ift.tt/2Nm5S4G
Submitted July 03, 2018 at 12:32AM by CQPab
via reddit https://ift.tt/2KJJgcn
Roll Call
US Spending Less to Secure World’s Nuclear Bomb Materials
U.S. spending to safeguard the world’s atomic materials has dipped in recent years — and President Donald Trump plans to keep it that way.
Google reportedly allows outside app developers to read people's Gmail
https://ift.tt/2KIXLkg
Submitted July 03, 2018 at 12:25AM by mynameis_neo
via reddit https://ift.tt/2Kr39Jo
https://ift.tt/2KIXLkg
Submitted July 03, 2018 at 12:25AM by mynameis_neo
via reddit https://ift.tt/2Kr39Jo
Business Insider
Google reportedly allows outside app developers to read people's Gmails
The Wall Street Journal reported Monday that hundreds of outside software developers are scanning the inboxes of millions of Gmail users. Google "does little to police those developers," the paper reported.
SaaS Revolution podcast featuring co-founder Bjoern on founding a CyberSec company in Silicon Valley
https://ift.tt/2z4e2vr
Submitted July 03, 2018 at 01:12AM by isityoupaul
via reddit https://ift.tt/2MF9wFG
https://ift.tt/2z4e2vr
Submitted July 03, 2018 at 01:12AM by isityoupaul
via reddit https://ift.tt/2MF9wFG
Templarbit Inc.
The SaaS Revolution Show with Bjoern
Recently, Alex Theuma, from the SaaS Revolution Show, sat...
Dangerous Methods - Burp Suite extension for finding dangerous JS methods
https://ift.tt/2Nj4lMD
Submitted July 03, 2018 at 03:13AM by IamJacksLackOf
via reddit https://ift.tt/2KJy8MZ
https://ift.tt/2Nj4lMD
Submitted July 03, 2018 at 03:13AM by IamJacksLackOf
via reddit https://ift.tt/2KJy8MZ
GitLab
TechnoTame / dangerous-methods
OSX.Dummy - new Mac malware targets the cryptocurrency community
https://ift.tt/2lNE7oX
Submitted July 03, 2018 at 03:01AM by EvanConover
via reddit https://ift.tt/2zaPUYa
https://ift.tt/2lNE7oX
Submitted July 03, 2018 at 03:01AM by EvanConover
via reddit https://ift.tt/2zaPUYa
Objective-See
OSX.Dummy
new mac malware targets the cryptocurrency community
Samsung's texting app is randomly sending messages and photos
https://ift.tt/2lQSvNi
Submitted July 03, 2018 at 04:39AM by k3170makan
via reddit https://ift.tt/2NeyGfn
https://ift.tt/2lQSvNi
Submitted July 03, 2018 at 04:39AM by k3170makan
via reddit https://ift.tt/2NeyGfn
Engadget
Samsung's texting app is randomly sending messages and photos
Samsung phone owners are reporting that the stock Messages app is randomly sending texts and photos to other people.
"Stylish" browser extension steals all your internet history
https://ift.tt/2KDf1Hv
Submitted July 03, 2018 at 10:45AM by highjeep
via reddit https://ift.tt/2IOTLcH
https://ift.tt/2KDf1Hv
Submitted July 03, 2018 at 10:45AM by highjeep
via reddit https://ift.tt/2IOTLcH
Robert Heaton
"Stylish" browser extension steals all your internet history | Robert Heaton
Before it became a covert surveillance tool disguised as an outstanding browser extension, Stylish really was an outstanding browser extension. It bestowed upon its users nothing less than the power to change the appearance of the internet. Its extensive…
Bypassing Web-Application Firewalls by abusing SSL/TLS
https://ift.tt/2KFkP3a
Submitted July 03, 2018 at 12:14PM by Sjoerder
via reddit https://ift.tt/2MHE3T2
https://ift.tt/2KFkP3a
Submitted July 03, 2018 at 12:14PM by Sjoerder
via reddit https://ift.tt/2MHE3T2
0x09AL Security blog
Bypassing Web-Application Firewalls by abusing SSL/TLS
Introduction
Exfiltrating credentials via PAM backdoors & DNS requests
https://ift.tt/2tIAyos
Submitted July 03, 2018 at 02:30PM by acidtrip1337
via reddit https://ift.tt/2tQtnKZ
https://ift.tt/2tIAyos
Submitted July 03, 2018 at 02:30PM by acidtrip1337
via reddit https://ift.tt/2tQtnKZ
x-c3ll.github.io
Exfiltrating credentials via PAM backdoors & DNS requests ::
DoomsDay Vault
DoomsDay Vault
Denoscription of how to backdoor PAM and exfiltrate credentials via DNS requests. Capture credentials FTW!
A Brief Look At North Korean Cryptography
https://ift.tt/2lNxUtg
Submitted July 03, 2018 at 05:52PM by not_2sec4u
via reddit https://ift.tt/2z2101k
https://ift.tt/2lNxUtg
Submitted July 03, 2018 at 05:52PM by not_2sec4u
via reddit https://ift.tt/2z2101k
Kryptoslogic
A Brief Look At North Korean Cryptography
With much attention lately over North Korea and its evolving cybersecurity capabilities, we thought to cover a somewhat related topic. A couple of years back...
Inside the Octagon - Analyzing System Guard Runtime Attestation [PDF] by @aionescu & @dwizzzleMSFT
https://ift.tt/2KF7wzL
Submitted July 03, 2018 at 08:19PM by 2xyo
via reddit https://ift.tt/2Nny6Mv
https://ift.tt/2KF7wzL
Submitted July 03, 2018 at 08:19PM by 2xyo
via reddit https://ift.tt/2Nny6Mv
XSS in Google Colaboratory + CSP bypass
https://ift.tt/2MGvHLx
Submitted July 03, 2018 at 11:07PM by overflowingInt
via reddit https://ift.tt/2KuK3SI
https://ift.tt/2MGvHLx
Submitted July 03, 2018 at 11:07PM by overflowingInt
via reddit https://ift.tt/2KuK3SI
blog.bentkowski.info
XSS in Google Colaboratory + CSP bypass
In this note, I describe an interesting XSS that I found in February 2018 in one of the Google applications. I won't only show directly wher...
Obfuscated Coinhive shortlink reveals larger mining operation
https://ift.tt/2u1rISd
Submitted July 04, 2018 at 12:05AM by EvanConover
via reddit https://ift.tt/2KO3sd6
https://ift.tt/2u1rISd
Submitted July 04, 2018 at 12:05AM by EvanConover
via reddit https://ift.tt/2KO3sd6
Malwarebytes Labs
Obfuscated Coinhive shortlink reveals larger mining operation - Malwarebytes Labs
A web miner injected into compromised sites is just the tip of the iceberg for an infrastructure hosting malicious Windows and Linux coin miners.
ZTE Replaces Board with Essentially the Same Board
https://ift.tt/2MAjYy1
Submitted July 03, 2018 at 11:54PM by PrimeMover17
via reddit https://ift.tt/2No3fze
https://ift.tt/2MAjYy1
Submitted July 03, 2018 at 11:54PM by PrimeMover17
via reddit https://ift.tt/2No3fze
WSJ
ZTE Replaces Board, but Power Structure Remains
Fourteen directors resigned from ZTE’s board as the Chinese telecom aims to get out from under U.S. penalties, but the changes may be less sweeping than they appear.
Two Zero-Day Exploits Found After Someone Uploaded 'Unarmed' PoC to VirusTotal
https://ift.tt/2KJq3HK
Submitted July 04, 2018 at 02:11AM by _vavkamil_
via reddit https://ift.tt/2tYaIfi
https://ift.tt/2KJq3HK
Submitted July 04, 2018 at 02:11AM by _vavkamil_
via reddit https://ift.tt/2tYaIfi
Microsoft
Taking apart a double zero-day sample discovered in joint hunt with ESET
In late March 2018, I analyzed an interesting PDF sample found by ESET senior malware researcher Anton Cherpanov. The sample was initially reported to Microsoft as a potential exploit for an unknown Windows kernel vulnerability. During my investigation in…
Local root jailbreak, authorization bypass & privilege escalation security vulnerabilities in all ADB broadband router / gateways / modems
https://ift.tt/2NoXvVL
Submitted July 04, 2018 at 02:53PM by 0x9000
via reddit https://ift.tt/2IRbPmH
https://ift.tt/2NoXvVL
Submitted July 04, 2018 at 02:53PM by 0x9000
via reddit https://ift.tt/2IRbPmH
Reading hotel key cards with a credit card magstripe reader
https://ift.tt/2z92MxT
Submitted July 04, 2018 at 03:28PM by polar
via reddit https://ift.tt/2KNyJx1
https://ift.tt/2z92MxT
Submitted July 04, 2018 at 03:28PM by polar
via reddit https://ift.tt/2KNyJx1
Portcullis Labs
Reading hotel key cards with a credit card magstripe reader - Portcullis Labs
Compiler-assisted Code Randomization – Kevin's Attic for Security Research
https://ift.tt/2u3cETX
Submitted July 04, 2018 at 04:15PM by mttd
via reddit https://ift.tt/2MO86bP
https://ift.tt/2u3cETX
Submitted July 04, 2018 at 04:15PM by mttd
via reddit https://ift.tt/2MO86bP
Kevin's Attic for Security Research
Compiler-assisted Code Randomization
I. MotivationII. Compiler-assisted Code Randomization (CCR) OverviewIII. Identifying Essential Information for RandomizationIV. Obtaining Metadata from the LLVM BackendV. Metadata Definition with G…