Fish Out of Water: How the Military Is an Impossible Place for Hackers, and What to Do About It
https://ift.tt/2L9aY5M
Submitted July 12, 2018 at 08:45PM by jalospinoso
via reddit https://ift.tt/2Jm0laS
https://ift.tt/2L9aY5M
Submitted July 12, 2018 at 08:45PM by jalospinoso
via reddit https://ift.tt/2Jm0laS
War on the Rocks
Fish Out of Water: How the Military Is an Impossible Place for Hackers, and What to Do About It
The U.S. military established Cyber Command almost a decade ago, but it fails to maximize its contributions to national mission. Struggles on all levels —
Gsuite Hangouts Chat 5k IDOR
https://ift.tt/2NbIiGG
Submitted July 12, 2018 at 04:12PM by albinowax
via reddit https://ift.tt/2mfUafj
https://ift.tt/2NbIiGG
Submitted July 12, 2018 at 04:12PM by albinowax
via reddit https://ift.tt/2mfUafj
Blogspot
Gsuite Hangouts Chat 5k IDOR
Hello everyone, So as most of you should see the Google VRP has started doing a bug of the week promotion. One of my submissions has been ...
Evading Static Analyzers by Solving the Equation (Editor)
https://ift.tt/2LaXKWa
Submitted July 12, 2018 at 11:23PM by teksquisite
via reddit https://ift.tt/2JmVias
https://ift.tt/2LaXKWa
Submitted July 12, 2018 at 11:23PM by teksquisite
via reddit https://ift.tt/2JmVias
Lastline
Evading Static Analyzers by Solving the Equation (Editor)
An unusual exploit delivery effectively evaded all static analyzers that were relying on OLE’s metadata — thus considerably raising the bar to detect this specific exploit. Read more at the Lastline Labs blog.
Hacker Puts Airport's Security System Access On Dark Web Sale For Just 10 US Dollars
https://ift.tt/2NKI9ex
Submitted July 13, 2018 at 02:45AM by HouseJustice
via reddit https://ift.tt/2mf8uVG
https://ift.tt/2NKI9ex
Submitted July 13, 2018 at 02:45AM by HouseJustice
via reddit https://ift.tt/2mf8uVG
Spyhood
The Hacker news | Hacker puts Airport's security system Access on dark web sale for just 10 US dollars
Today on the hacker news | hacker hacks an airport's security system and puts their details for sale.
Postmortem for Malicious Packages Published on July 12th, 2018
https://ift.tt/2zz9VaH
Submitted July 13, 2018 at 04:26AM by _pdp_
via reddit https://ift.tt/2NNks5m
https://ift.tt/2zz9VaH
Submitted July 13, 2018 at 04:26AM by _pdp_
via reddit https://ift.tt/2NNks5m
ESLint - Pluggable JavaScript linter
Postmortem for Malicious Packages Published on July 12th, 2018
A pluggable and configurable linter tool for identifying and reporting on patterns in JavaScript. Maintain your code quality with ease.
How to build an npm worm
https://ift.tt/2zJq9hV
Submitted July 13, 2018 at 10:08AM by _pdp_
via reddit https://ift.tt/2uj7Fzn
https://ift.tt/2zJq9hV
Submitted July 13, 2018 at 10:08AM by _pdp_
via reddit https://ift.tt/2uj7Fzn
reddit
r/netsec - How to build an npm worm
3 votes and 0 comments so far on Reddit
Apple and Linux CUPS Local Privilege Escalation and Sandbox Escapes
https://ift.tt/2zxxrVN
Submitted July 13, 2018 at 06:45AM by b1x3r
via reddit https://ift.tt/2ui11JS
https://ift.tt/2zxxrVN
Submitted July 13, 2018 at 06:45AM by b1x3r
via reddit https://ift.tt/2ui11JS
Gdssecurity
GDS - Blog - CUPS Local Privilege Escalation and Sandbox Escapes
Gotham Digital Science has discovered multiple vulnerabilities in Apple’s CUPS print sys...
Application Whitelisting Bypass and Arbitrary Unsigned Code Execution Technique in winrm.vbs
https://ift.tt/2Jh8sFR
Submitted July 13, 2018 at 12:30PM by sanderD
via reddit https://ift.tt/2KVZGCI
https://ift.tt/2Jh8sFR
Submitted July 13, 2018 at 12:30PM by sanderD
via reddit https://ift.tt/2KVZGCI
Posts By SpecterOps Team Members
Application Whitelisting Bypass and Arbitrary Unsigned Code Execution Technique in winrm.vbs
Bypass Technique Denoscription
RFID Thief v2.0 - Build & Tutorial for Long Range RFID Cloning
https://ift.tt/2NRnOo2
Submitted July 13, 2018 at 05:46PM by Imperium89
via reddit https://ift.tt/2Lf98NM
https://ift.tt/2NRnOo2
Submitted July 13, 2018 at 05:46PM by Imperium89
via reddit https://ift.tt/2Lf98NM
scund00r
RFID Thief v2.0
Building and using the RFID Thief v2.0 for long range RFID cloning
Phone in the right hand? You're a hacker! - Methods that Google (etc) use for fingerprinting users
https://ift.tt/2utzq7Q
Submitted July 13, 2018 at 06:30PM by SmokeyBread
via reddit https://ift.tt/2zAok6N
https://ift.tt/2utzq7Q
Submitted July 13, 2018 at 06:30PM by SmokeyBread
via reddit https://ift.tt/2zAok6N
BBC News
Phone in the right hand? You're a hacker!
How firms are using cutting-edge techniques to stop cyber criminals breaching their networks.
Many Android email apps and PayPal are vulnerable to recipient spoofing
https://ift.tt/2LfKFrF
Submitted July 13, 2018 at 10:12PM by Sephr
via reddit https://ift.tt/2Ldlm9r
https://ift.tt/2LfKFrF
Submitted July 13, 2018 at 10:12PM by Sephr
via reddit https://ift.tt/2Ldlm9r
xda-developers
Many Android email apps and PayPal are vulnerable to recipient spoofing
Many Android email applications and some apps like PayPal can be tricked to show a false recipient rather than the real intended addressee.
Mueller Indictment of 12 GRU Agents has Interesting Technical Details
https://ift.tt/2zDJcKk
Submitted July 13, 2018 at 10:07PM by PrimeMover17
via reddit https://ift.tt/2KQDZUJ
https://ift.tt/2zDJcKk
Submitted July 13, 2018 at 10:07PM by PrimeMover17
via reddit https://ift.tt/2KQDZUJ
Advanced Mobile Malware Campaign in India uses Malicious MDM
https://ift.tt/2L8qizN
Submitted July 13, 2018 at 09:55PM by polar
via reddit https://ift.tt/2Nfb5KB
https://ift.tt/2L8qizN
Submitted July 13, 2018 at 09:55PM by polar
via reddit https://ift.tt/2Nfb5KB
Talosintelligence
Advanced Mobile Malware Campaign in India uses Malicious MDM
A blog from the world class Intelligence Group, Talos, Cisco's Intelligence Group
PayPal recipient spoofing vulnerability
https://ift.tt/2LfKFrF
Submitted July 13, 2018 at 11:28PM by Sephr
via reddit https://ift.tt/2LdzSOt
https://ift.tt/2LfKFrF
Submitted July 13, 2018 at 11:28PM by Sephr
via reddit https://ift.tt/2LdzSOt
xda-developers
Many Android email apps and PayPal are vulnerable to recipient spoofing
Many Android email applications and some apps like PayPal can be tricked to show a false recipient rather than the real intended addressee.
airgapping a MacBook air, a Broadcom15700a2 mystery
https://ift.tt/2uzK1hk
Submitted July 14, 2018 at 09:51AM by nullified-
via reddit https://ift.tt/2meFTj3
https://ift.tt/2uzK1hk
Submitted July 14, 2018 at 09:51AM by nullified-
via reddit https://ift.tt/2meFTj3
reddit
r/netsec - airgapping a MacBook air, a Broadcom15700a2 mystery
12 votes and 0 comments so far on Reddit
IDA IPython - pure Python implementation for both IDA6.x and IDA7.x (x-post from /r/ReverseEngineering)
https://ift.tt/2LfjTTD
Submitted July 14, 2018 at 05:56AM by tmr232
via reddit https://ift.tt/2NbWXSq
https://ift.tt/2LfjTTD
Submitted July 14, 2018 at 05:56AM by tmr232
via reddit https://ift.tt/2NbWXSq
GitHub
tmr232/ida_ipython
ida_ipython - An IDA Pro Plugin for embedding an IPython Kernel
DNS-Over-TLS Built-In & Enforced - 1.1.1.1 and the GL.iNet GL-AR750S
https://ift.tt/2NRtrTg
Submitted July 14, 2018 at 10:55PM by civicode
via reddit https://ift.tt/2KTTmeU
https://ift.tt/2NRtrTg
Submitted July 14, 2018 at 10:55PM by civicode
via reddit https://ift.tt/2KTTmeU
Cloudflare Blog
DNS-Over-TLS Built-In & Enforced - 1.1.1.1 and the GL.iNet GL-AR750S
Back in April, I wrote about how it was possible to modify a router to encrypt DNS queries over TLS using Cloudflare's 1.1.1.1 DNS Resolver and a GL.iNet router; the folks at GL.iNet read that blog post and decided to bake DNS-Over-TLS support into their…
Hamburglar - Directory/file traversal to find keys, ip addresses, emails, crypto addresses, and more. One configurable noscript, regex driven.
https://ift.tt/2mjIRTI
Submitted July 15, 2018 at 12:20AM by amusciano
via reddit https://ift.tt/2zDWCWR
https://ift.tt/2mjIRTI
Submitted July 15, 2018 at 12:20AM by amusciano
via reddit https://ift.tt/2zDWCWR
GitHub
needmorecowbell/Hamburglar
Hamburglar -- collect useful information from urls, directories, and files - needmorecowbell/Hamburglar
INDIAN SOFTWARE PIRACY SITE (URET.IN): A COVER FOR CHILD PORNOGRAPHY AND DRUGS
https://ift.tt/2LiHUpz
Submitted July 15, 2018 at 04:55PM by RookieJoey
via reddit https://ift.tt/2uATtRJ
https://ift.tt/2LiHUpz
Submitted July 15, 2018 at 04:55PM by RookieJoey
via reddit https://ift.tt/2uATtRJ
INDIAN SOFTWARE PIRACY SITE (URET.IN): A COVER FOR CHILD PORNOGRAPHY AND DRUGS
A Desolate Den of Depravity, Darkness, Drugs and Child Abuse
How Russian Hackers Compromised the 2016 U.S. Presidential Election
https://ift.tt/2Le8Mdn
Submitted July 16, 2018 at 07:12PM by ExcellentGold
via reddit https://ift.tt/2Js2dPs
https://ift.tt/2Le8Mdn
Submitted July 16, 2018 at 07:12PM by ExcellentGold
via reddit https://ift.tt/2Js2dPs
hackers-arise
Confessions of a Professional Hacker: How Russian Hackers Compromised the 2016 U.S. Presidential Election | hackers-arise
On July 13, 2018, the U.S. Justice Department handed down a 29-page indictment against 12 intelligence officers of the GRU, Russia's military intelligence agen...
Create a Digital Fortress With a Private Search Engine and a VPN
https://ift.tt/2zJdxqT
Submitted July 16, 2018 at 08:03PM by stewofkc
via reddit https://ift.tt/2LdVg9O
https://ift.tt/2zJdxqT
Submitted July 16, 2018 at 08:03PM by stewofkc
via reddit https://ift.tt/2LdVg9O
Secjuice.com
Create a Digital Fortress With a Private Search Engine and a VPN
Learn how to create a 'digital fortress' to maintain your online privacy using a search engine and a VPN with security researcher Christian Stewart.