Ethical Hacking Bootcamp!!
https://ift.tt/2uDzL6p
Submitted July 12, 2018 at 07:54PM by patidarayush11
via reddit https://ift.tt/2LbKAFi
https://ift.tt/2uDzL6p
Submitted July 12, 2018 at 07:54PM by patidarayush11
via reddit https://ift.tt/2LbKAFi
Teachable
Complete Ethical Hacking Bootcamp
ZOHO - Password Manager Vault; A Story Of Where Not To Store Keys
https://ift.tt/2NKF91N
Submitted July 12, 2018 at 07:51PM by INIT_6
via reddit https://ift.tt/2LbKDAY
https://ift.tt/2NKF91N
Submitted July 12, 2018 at 07:51PM by INIT_6
via reddit https://ift.tt/2LbKDAY
INIT_6 > /dev/null
ZOHO - A Story Of Where Not To Store Keys
ZOHO Password Manager Vault AD/LDAP provisioning application stores the AES encryption key and IV in the source code.
Single-click Exploitation of Apple Safari with CVE-2018-4192
https://ift.tt/2zygx9t
Submitted July 12, 2018 at 08:59PM by gaasedelen
via reddit https://ift.tt/2Nbhmai
https://ift.tt/2zygx9t
Submitted July 12, 2018 at 08:59PM by gaasedelen
via reddit https://ift.tt/2Nbhmai
Ret2 Systems Blog
Weaponization of a JavaScriptCore Vulnerability
Software bugs come in many shapes and sizes. Sometimes, these code defects (or ‘asymmetries’) can be used to compromise the runtime integrity of software. Th...
Frida 12.0 is out
https://ift.tt/2L9j4YR
Submitted July 12, 2018 at 08:46PM by oleavr
via reddit https://ift.tt/2NLPwm8
https://ift.tt/2L9j4YR
Submitted July 12, 2018 at 08:46PM by oleavr
via reddit https://ift.tt/2NLPwm8
Frida • A world-class dynamic instrumentation framework
Frida 12.0 Released
Inject JavaScript to explore native apps on Windows, macOS, GNU/Linux, iOS, Android, and QNX
Fish Out of Water: How the Military Is an Impossible Place for Hackers, and What to Do About It
https://ift.tt/2L9aY5M
Submitted July 12, 2018 at 08:45PM by jalospinoso
via reddit https://ift.tt/2Jm0laS
https://ift.tt/2L9aY5M
Submitted July 12, 2018 at 08:45PM by jalospinoso
via reddit https://ift.tt/2Jm0laS
War on the Rocks
Fish Out of Water: How the Military Is an Impossible Place for Hackers, and What to Do About It
The U.S. military established Cyber Command almost a decade ago, but it fails to maximize its contributions to national mission. Struggles on all levels —
Gsuite Hangouts Chat 5k IDOR
https://ift.tt/2NbIiGG
Submitted July 12, 2018 at 04:12PM by albinowax
via reddit https://ift.tt/2mfUafj
https://ift.tt/2NbIiGG
Submitted July 12, 2018 at 04:12PM by albinowax
via reddit https://ift.tt/2mfUafj
Blogspot
Gsuite Hangouts Chat 5k IDOR
Hello everyone, So as most of you should see the Google VRP has started doing a bug of the week promotion. One of my submissions has been ...
Evading Static Analyzers by Solving the Equation (Editor)
https://ift.tt/2LaXKWa
Submitted July 12, 2018 at 11:23PM by teksquisite
via reddit https://ift.tt/2JmVias
https://ift.tt/2LaXKWa
Submitted July 12, 2018 at 11:23PM by teksquisite
via reddit https://ift.tt/2JmVias
Lastline
Evading Static Analyzers by Solving the Equation (Editor)
An unusual exploit delivery effectively evaded all static analyzers that were relying on OLE’s metadata — thus considerably raising the bar to detect this specific exploit. Read more at the Lastline Labs blog.
Hacker Puts Airport's Security System Access On Dark Web Sale For Just 10 US Dollars
https://ift.tt/2NKI9ex
Submitted July 13, 2018 at 02:45AM by HouseJustice
via reddit https://ift.tt/2mf8uVG
https://ift.tt/2NKI9ex
Submitted July 13, 2018 at 02:45AM by HouseJustice
via reddit https://ift.tt/2mf8uVG
Spyhood
The Hacker news | Hacker puts Airport's security system Access on dark web sale for just 10 US dollars
Today on the hacker news | hacker hacks an airport's security system and puts their details for sale.
Postmortem for Malicious Packages Published on July 12th, 2018
https://ift.tt/2zz9VaH
Submitted July 13, 2018 at 04:26AM by _pdp_
via reddit https://ift.tt/2NNks5m
https://ift.tt/2zz9VaH
Submitted July 13, 2018 at 04:26AM by _pdp_
via reddit https://ift.tt/2NNks5m
ESLint - Pluggable JavaScript linter
Postmortem for Malicious Packages Published on July 12th, 2018
A pluggable and configurable linter tool for identifying and reporting on patterns in JavaScript. Maintain your code quality with ease.
How to build an npm worm
https://ift.tt/2zJq9hV
Submitted July 13, 2018 at 10:08AM by _pdp_
via reddit https://ift.tt/2uj7Fzn
https://ift.tt/2zJq9hV
Submitted July 13, 2018 at 10:08AM by _pdp_
via reddit https://ift.tt/2uj7Fzn
reddit
r/netsec - How to build an npm worm
3 votes and 0 comments so far on Reddit
Apple and Linux CUPS Local Privilege Escalation and Sandbox Escapes
https://ift.tt/2zxxrVN
Submitted July 13, 2018 at 06:45AM by b1x3r
via reddit https://ift.tt/2ui11JS
https://ift.tt/2zxxrVN
Submitted July 13, 2018 at 06:45AM by b1x3r
via reddit https://ift.tt/2ui11JS
Gdssecurity
GDS - Blog - CUPS Local Privilege Escalation and Sandbox Escapes
Gotham Digital Science has discovered multiple vulnerabilities in Apple’s CUPS print sys...
Application Whitelisting Bypass and Arbitrary Unsigned Code Execution Technique in winrm.vbs
https://ift.tt/2Jh8sFR
Submitted July 13, 2018 at 12:30PM by sanderD
via reddit https://ift.tt/2KVZGCI
https://ift.tt/2Jh8sFR
Submitted July 13, 2018 at 12:30PM by sanderD
via reddit https://ift.tt/2KVZGCI
Posts By SpecterOps Team Members
Application Whitelisting Bypass and Arbitrary Unsigned Code Execution Technique in winrm.vbs
Bypass Technique Denoscription
RFID Thief v2.0 - Build & Tutorial for Long Range RFID Cloning
https://ift.tt/2NRnOo2
Submitted July 13, 2018 at 05:46PM by Imperium89
via reddit https://ift.tt/2Lf98NM
https://ift.tt/2NRnOo2
Submitted July 13, 2018 at 05:46PM by Imperium89
via reddit https://ift.tt/2Lf98NM
scund00r
RFID Thief v2.0
Building and using the RFID Thief v2.0 for long range RFID cloning
Phone in the right hand? You're a hacker! - Methods that Google (etc) use for fingerprinting users
https://ift.tt/2utzq7Q
Submitted July 13, 2018 at 06:30PM by SmokeyBread
via reddit https://ift.tt/2zAok6N
https://ift.tt/2utzq7Q
Submitted July 13, 2018 at 06:30PM by SmokeyBread
via reddit https://ift.tt/2zAok6N
BBC News
Phone in the right hand? You're a hacker!
How firms are using cutting-edge techniques to stop cyber criminals breaching their networks.
Many Android email apps and PayPal are vulnerable to recipient spoofing
https://ift.tt/2LfKFrF
Submitted July 13, 2018 at 10:12PM by Sephr
via reddit https://ift.tt/2Ldlm9r
https://ift.tt/2LfKFrF
Submitted July 13, 2018 at 10:12PM by Sephr
via reddit https://ift.tt/2Ldlm9r
xda-developers
Many Android email apps and PayPal are vulnerable to recipient spoofing
Many Android email applications and some apps like PayPal can be tricked to show a false recipient rather than the real intended addressee.
Mueller Indictment of 12 GRU Agents has Interesting Technical Details
https://ift.tt/2zDJcKk
Submitted July 13, 2018 at 10:07PM by PrimeMover17
via reddit https://ift.tt/2KQDZUJ
https://ift.tt/2zDJcKk
Submitted July 13, 2018 at 10:07PM by PrimeMover17
via reddit https://ift.tt/2KQDZUJ
Advanced Mobile Malware Campaign in India uses Malicious MDM
https://ift.tt/2L8qizN
Submitted July 13, 2018 at 09:55PM by polar
via reddit https://ift.tt/2Nfb5KB
https://ift.tt/2L8qizN
Submitted July 13, 2018 at 09:55PM by polar
via reddit https://ift.tt/2Nfb5KB
Talosintelligence
Advanced Mobile Malware Campaign in India uses Malicious MDM
A blog from the world class Intelligence Group, Talos, Cisco's Intelligence Group
PayPal recipient spoofing vulnerability
https://ift.tt/2LfKFrF
Submitted July 13, 2018 at 11:28PM by Sephr
via reddit https://ift.tt/2LdzSOt
https://ift.tt/2LfKFrF
Submitted July 13, 2018 at 11:28PM by Sephr
via reddit https://ift.tt/2LdzSOt
xda-developers
Many Android email apps and PayPal are vulnerable to recipient spoofing
Many Android email applications and some apps like PayPal can be tricked to show a false recipient rather than the real intended addressee.
airgapping a MacBook air, a Broadcom15700a2 mystery
https://ift.tt/2uzK1hk
Submitted July 14, 2018 at 09:51AM by nullified-
via reddit https://ift.tt/2meFTj3
https://ift.tt/2uzK1hk
Submitted July 14, 2018 at 09:51AM by nullified-
via reddit https://ift.tt/2meFTj3
reddit
r/netsec - airgapping a MacBook air, a Broadcom15700a2 mystery
12 votes and 0 comments so far on Reddit
IDA IPython - pure Python implementation for both IDA6.x and IDA7.x (x-post from /r/ReverseEngineering)
https://ift.tt/2LfjTTD
Submitted July 14, 2018 at 05:56AM by tmr232
via reddit https://ift.tt/2NbWXSq
https://ift.tt/2LfjTTD
Submitted July 14, 2018 at 05:56AM by tmr232
via reddit https://ift.tt/2NbWXSq
GitHub
tmr232/ida_ipython
ida_ipython - An IDA Pro Plugin for embedding an IPython Kernel
DNS-Over-TLS Built-In & Enforced - 1.1.1.1 and the GL.iNet GL-AR750S
https://ift.tt/2NRtrTg
Submitted July 14, 2018 at 10:55PM by civicode
via reddit https://ift.tt/2KTTmeU
https://ift.tt/2NRtrTg
Submitted July 14, 2018 at 10:55PM by civicode
via reddit https://ift.tt/2KTTmeU
Cloudflare Blog
DNS-Over-TLS Built-In & Enforced - 1.1.1.1 and the GL.iNet GL-AR750S
Back in April, I wrote about how it was possible to modify a router to encrypt DNS queries over TLS using Cloudflare's 1.1.1.1 DNS Resolver and a GL.iNet router; the folks at GL.iNet read that blog post and decided to bake DNS-Over-TLS support into their…