In collaboration with Intel, Google Cloud is hosting a cybersecurity contest called the Confidential Computing Challenge. If you’re a developer, security researcher, or otherwise interested in developing safe apps, this is your chance to make an impact in…

Major security breach uncovered in temperature control system of hospital and supermarket chains including Marks & Spencer, Ocado, Way-on, and others.

Thread by @JohnLaTwC: "Story time. This one is about a feature in Windows called ASLR. It was 2005. We were working on Windows Vista. Most re the release with the maligned User Account Control feature. For us in Trustworthy Computing it was the first […]"

A network virtual appliance (NVA) is a virtual appliance primarily focused on network functions virtualization. A typical network virtual appliance involves various layers of four to seven function…

Quick Summary Hey guys today Ypuffy retired and this is my write-up. This box is a little different from the other boxes. It’s not windows or linux , it’s running openbsd which is a unix-like system. I really liked the privilege escalation in this box because…

Gorsair hacks its way into remote docker containers that expose their APIs. - Ullaakut/Gorsair

Personal blog of Christian Haschek

A step-by-step guide to learn how to hack WiFi passwords (WEP/ WPA2/ WPS) in plain-text using the Evil Twin attack method

Security analysis toolkit for proprietary car protocols - schutzwerk/CANalyzat0r

Lessons I’ve learned from software engineering are uniformly cynical:

The first Android Trojan Clipper - that exchanges cryptocurrency address in copied clipboard - was discovered on Google Play.

It’s National Clean Out Your Computer Day, and I want to help you celebrate it by rolling up your sleeves and getting to work. It’s a…

1 vote and 0 comments so far on Reddit

by Mitja Kolsek, the 0patch Team Today we'll look at a fairly simple vulnerability in Adobe Reader DC that allows a PDF document automati...

Like a scene from a James Bond or Mission Impossible movie, a new offensive USB cable plugged into a computer could allow attackers to execute commands over WiFi as if they were using the computer's keyboard. 

Russia may briefly disconnect from the internet as part of a test of its cyber-defences.

Abusing SUDO Advance for Linux Privilege Escalation If you have a limited shell that has access to some programs using thesudocommand you might be able to escalate your privileges. here I show some of the binary which helps you to escalate privilege using…

Post Exploitation, Domain Exploitation, Meterpreter, Crackmapexec, Empire, Local Privilege Escalation, Persistence, Pivoting