Writeups for GLUG CTF
https://ift.tt/2Ruw3ak
Submitted November 05, 2018 at 10:55AM by mzfr98
via reddit https://ift.tt/2yQQ2ZU
https://ift.tt/2Ruw3ak
Submitted November 05, 2018 at 10:55AM by mzfr98
via reddit https://ift.tt/2yQQ2ZU
GitHub
mzfr/Writeups
CTF Writeups. Contribute to mzfr/Writeups development by creating an account on GitHub.
BleedingBit: two critical vulnerabilities in Bluetooth Low Energy (BLE) chips
https://ift.tt/2SACfix
Submitted November 05, 2018 at 02:03PM by CyberBullets
via reddit https://ift.tt/2DnfBWE
https://ift.tt/2SACfix
Submitted November 05, 2018 at 02:03PM by CyberBullets
via reddit https://ift.tt/2DnfBWE
armis
BleedingBit Information from the Research Team - Armis Labs
Read this report on how BLEEDINGBIT exposes Millions of Enterprise Access Points and Unmanaged Devices to an Undetectable Chip Level Attack
Masscan as a lesson in TCP/IP
https://ift.tt/2D01G8J
Submitted November 05, 2018 at 01:59PM by vasiliborodin
via reddit https://ift.tt/2JFe6TM
https://ift.tt/2D01G8J
Submitted November 05, 2018 at 01:59PM by vasiliborodin
via reddit https://ift.tt/2JFe6TM
Erratasec
Masscan as a lesson in TCP/IP
When learning TCP/IP it may be helpful to look at the masscan port scanning program, because it contains its own network stack. This concep...
Video analysis of Android banking Trojan found on Google Play (latest Red Alert 2)
https://ift.tt/2PAyEm7
Submitted November 05, 2018 at 01:41PM by lukasstefanko
via reddit https://ift.tt/2JFIopN
https://ift.tt/2PAyEm7
Submitted November 05, 2018 at 01:41PM by lukasstefanko
via reddit https://ift.tt/2JFIopN
Lukas Stefanko
Video analysis of Android banking Trojan found on Google Play - Lukas Stefanko
This Trojan lures victims into inserting their login credentials for social media, mobile banking and cryptocurrency apps.
(WRITE-UP CTF) Abusing unicode in NodeJS to bypass a WAF
https://ift.tt/2SKB4gx
Submitted November 05, 2018 at 05:21PM by gid0rah
via reddit https://ift.tt/2RyPKy4
https://ift.tt/2SKB4gx
Submitted November 05, 2018 at 05:21PM by gid0rah
via reddit https://ift.tt/2RyPKy4
GitHub
dreadlocked/ctf-writeups
CTF Write-ups. Contribute to dreadlocked/ctf-writeups development by creating an account on GitHub.
Re-discovering Heaven's Gate on ARM
https://ift.tt/2F0H8yJ
Submitted November 05, 2018 at 05:17PM by apanonimo
via reddit https://ift.tt/2D40f8j
https://ift.tt/2F0H8yJ
Submitted November 05, 2018 at 05:17PM by apanonimo
via reddit https://ift.tt/2D40f8j
wbenny.github.io
WoW64 internals - mindless-area
WoW64 - aka Windows (32-bit) on Windows (64-bit) - is a subsystem that enables 32-bit Windows applications to run on 64-bit Windows. Most people today are fa...
Exploiting a barely documented SQL injection in Applications Manager (CVE-2016-9488)
https://ift.tt/2ALPO7P
Submitted November 05, 2018 at 06:28PM by apanonimo
via reddit https://ift.tt/2EZsxn4
https://ift.tt/2ALPO7P
Submitted November 05, 2018 at 06:28PM by apanonimo
via reddit https://ift.tt/2EZsxn4
Tarlogic Security - Cyber Security and Ethical hacking
Red Team Tales 0x02: from SQLi to Domain Admin
One of the activities included in the operation of the Tarlogic Red Team is the search for vulnerabilities in the software used by our clients. Sometimes this activity involves the discovery of 0-days as we have verified in articles previously published in…
DiffAI: A library for provably protecting neural networks against adversarial attacks
https://ift.tt/2umsSrE
Submitted November 05, 2018 at 08:34PM by mmirman
via reddit https://ift.tt/2QlsJOT
https://ift.tt/2umsSrE
Submitted November 05, 2018 at 08:34PM by mmirman
via reddit https://ift.tt/2QlsJOT
GitHub
eth-sri/diffai
A defense against adversarial examples by training neural networks to be provably robust - eth-sri/diffai
Replacing Cloudflare with CSF Firewall (Install Guide)
https://ift.tt/2lMgDlt
Submitted November 05, 2018 at 08:42PM by modelop
via reddit https://ift.tt/2qx0m4J
https://ift.tt/2lMgDlt
Submitted November 05, 2018 at 08:42PM by modelop
via reddit https://ift.tt/2qx0m4J
Linux Systems Analyst | Hayden James
Replacing Cloudflare with CSF Firewall
This guide applies to standalone CSF/LFD install and also cPanel + CSF/LFD install. CSF is a top notch server firewall or Cloudflare alternative.
burp-rest-api v2 released (with many improvements)
https://ift.tt/2SOtm56
Submitted November 05, 2018 at 11:03PM by nibblesec
via reddit https://ift.tt/2AOe3SX
https://ift.tt/2SOtm56
Submitted November 05, 2018 at 11:03PM by nibblesec
via reddit https://ift.tt/2AOe3SX
Doyensec
Introducing burp-rest-api v2 · Doyensec's Blog
Doyensec's Blog :: Doyensec is an independent security research and development company focused on vulnerability discovery and remediation.
Researchers warn of severe SSD hardware encryption vulnerabilities
https://ift.tt/2F1tyuL
Submitted November 06, 2018 at 12:45AM by turtleflax
via reddit https://ift.tt/2zq9iNm
https://ift.tt/2F1tyuL
Submitted November 06, 2018 at 12:45AM by turtleflax
via reddit https://ift.tt/2zq9iNm
Medium
Doh! What My Encrypted Drive Can Be Unlocked By Anyone?
My paper of the week is [link]:
Researchers warn of severe SSD hardware encryption vulnerabilities
https://ift.tt/2F1tyuL
Submitted November 06, 2018 at 12:45AM by turtleflax
via reddit https://ift.tt/2zq9iNm
https://ift.tt/2F1tyuL
Submitted November 06, 2018 at 12:45AM by turtleflax
via reddit https://ift.tt/2zq9iNm
Medium
Doh! What My Encrypted Drive Can Be Unlocked By Anyone?
My paper of the week is [link]:
Perl-Based Shellbot Looks to Target Organizations via C&C
https://ift.tt/2zi8sT4
Submitted November 06, 2018 at 03:54AM by EvanConover
via reddit https://ift.tt/2QrCv24
https://ift.tt/2zi8sT4
Submitted November 06, 2018 at 03:54AM by EvanConover
via reddit https://ift.tt/2QrCv24
Trendmicro
Perl-Based Shellbot Looks to Target Organizations via C&C - TrendLabs Security Intelligence Blog
We uncovered an operation of a hacking group, which we’re naming “Outlaw” (translation derived from the Romanian word haiduc, the hacking tool the group primarily uses), involving the use of an IRC bot built with the help of Perl Shellbot. The group distributes…
Anti-vaccine movement spreading ‘fake news’ online and putting children at risk, England’s top doctor warns
https://ift.tt/2Pax7DV
Submitted November 06, 2018 at 09:48AM by biz_signity
via reddit https://ift.tt/2AO8F2c
https://ift.tt/2Pax7DV
Submitted November 06, 2018 at 09:48AM by biz_signity
via reddit https://ift.tt/2AO8F2c
Yahoo
Anti-vaccine movement spreading ‘fake news’ online and putting children at risk, England’s top doctor warns
England’s most senior doctor has warned that fake news myths pedalled on social media are stoking false fears about vaccinations putting children at risk. Only 87 per cent of children in England have received both doses of the measles, mumps and rubella (MMR)…
Disclosing Multiple Gamasutra Vulnerabilities
https://ift.tt/2Qob3SG
Submitted November 06, 2018 at 09:12PM by QuirkySpiceBush
via reddit https://ift.tt/2PfApp6
https://ift.tt/2Qob3SG
Submitted November 06, 2018 at 09:12PM by QuirkySpiceBush
via reddit https://ift.tt/2PfApp6
Danshumway
Disclosing Multiple Gamasutra Vulnerabilities
After a multi-year responsible disclosure period, I am publicly disclosing 4 different Gamasutra vulnerabilities.
[ANN] [SECURITY] Immediately upgrade commons-fileupload to version 1.3.3 when running Struts 2.3.36 or prior
https://ift.tt/2yUsl3f
Submitted November 06, 2018 at 10:22PM by TheDamnburger
via reddit https://ift.tt/2AR0VMX
https://ift.tt/2yUsl3f
Submitted November 06, 2018 at 10:22PM by TheDamnburger
via reddit https://ift.tt/2AR0VMX
WordPress Design Flaw Leads to WooCommerce RCE
https://ift.tt/2Pgr9Bm
Submitted November 06, 2018 at 10:42PM by rips-hb
via reddit https://ift.tt/2qEkjad
https://ift.tt/2Pgr9Bm
Submitted November 06, 2018 at 10:42PM by rips-hb
via reddit https://ift.tt/2qEkjad
reddit
r/netsec - WordPress Design Flaw Leads to WooCommerce RCE
15 votes and 0 comments so far on Reddit
China Telecom's Internet Traffic (BGP) Misdirection
https://ift.tt/2F2WLpn
Submitted November 06, 2018 at 11:57PM by WildVelociraptor
via reddit https://ift.tt/2F8t3iS
https://ift.tt/2F2WLpn
Submitted November 06, 2018 at 11:57PM by WildVelociraptor
via reddit https://ift.tt/2F8t3iS
Oracle
Oracle Internet Intelligence Blog
Internet outages are a business liability. Monitor global internet connectivity with Oracle's Internet Intelligence Map.
Suricata 4.1 released with SMB and TLS 1.3 support
https://ift.tt/2zzRH5E
Submitted November 07, 2018 at 01:00AM by inliniac
via reddit https://ift.tt/2AQIwjv
https://ift.tt/2zzRH5E
Submitted November 07, 2018 at 01:00AM by inliniac
via reddit https://ift.tt/2AQIwjv
Suricata
Suricata 4.1 released!
After a longer than intended release development cycle, the OISF development team is proud to present Suricata 4.1. Main new features are inclusion of the protocols SMBv1/2/3, NFSv4, Kerberos, FTP,…
Suricata 4.1 released with SMB and TLS 1.3 support
https://ift.tt/2zzRH5E
Submitted November 07, 2018 at 01:00AM by inliniac
via reddit https://ift.tt/2AQIwjv
https://ift.tt/2zzRH5E
Submitted November 07, 2018 at 01:00AM by inliniac
via reddit https://ift.tt/2AQIwjv
Suricata
Suricata 4.1 released!
After a longer than intended release development cycle, the OISF development team is proud to present Suricata 4.1. Main new features are inclusion of the protocols SMBv1/2/3, NFSv4, Kerberos, FTP,…
poshkatz: PowerShell module for Mimikatz
https://ift.tt/2Dq8TPr
Submitted November 07, 2018 at 02:29AM by l33t_d0nut
via reddit https://ift.tt/2DtDwng
https://ift.tt/2Dq8TPr
Submitted November 07, 2018 at 02:29AM by l33t_d0nut
via reddit https://ift.tt/2DtDwng
GitHub
STEALTHbits/poshkatz
PowerShell module for Mimikatz. Contribute to STEALTHbits/poshkatz development by creating an account on GitHub.