Powershell noscript to exfiltrate large files quickly and securely - p3nt4/MagicCopy

On March 9, 2018, (hey, better late than never :), Security Jam, a security meeting/conference, was held, where speakers present their Research in a relaxed environment.
Last year I was lucky enough to be able to participate as a Speaker giving a talk called:…

Exploit developer SandboxEscaper has quietly dropped a new zero-day exploit for the Windows operating system just a week after Microsoft's monthly cycle of security updates.

Take a look into how custom URI schemes can be used to leverage underlying vulnerabilities in applications.

This three-part blog series is about Business Email Compromises (BEC) targeting Office 365 environments and our insights as incident responders. The first post can be found here and contains an introduction to BEC attacks and the challenges that often arise…

0 votes and 1 comment so far on Reddit

Arthur Saftnes did some quite awesome research last year on timing attacks with jQuery CSS selectors, in fact it was probably my favourite blog post from last year. It's a common design pattern for we

red team, blue team, penetration testing, red teaming, threat hunting, digital forensics, incident response, cyber security, IT security

3,658 votes and 296 comments so far on Reddit

5 votes and 2 comments so far on Reddit

This blog post describes an interesting technique of abusing the standard HTTP 301 responses (“Permanent redirect”) to poison browser cache and achieve endpoint persistence for chosen non-TLS resources.
Combined with the “Client Domain Hooking” attack, this…

0 votes and 1 comment so far on Reddit

Cryptography Dispatches is [Filippo Valsorda](https://blog.filippo.io/hi)'s newsletter. It tries to bring longer form discussion of the cryptography engineering topics touched on [@FiloSottile](https://twitter.com/FiloSottile), but broader breath than those…

This is a follow up article to the previous piece that I wrote - How I hacked into a college’s website to obtain the student’s database.

TL;DR LeakLooker has more to offer, now you can hunt for Gitlab, Jenkins, SonarQube, Samba and Rsync. In addition, it supports custom…

Jump Ahead: Enum – Initial Creds – Rev. Shell – User – Root – Resources – Special Thanks TL;DR; Overall, I really enjoyed this box! Other than initial enumeratio…

Quick Summary Hey guys today Chaos retired and here’s my write-up about it. Chaos was a CTF-style machine, I can’t say that it simulated a real life situation. I had fun solving this box, some steps were straightforward others were very tricky. About main…

The Australian Cyber Security Centre (ACSC) is aware of a security incident affecting the Australian online design platform, Canva.

Unpacking and reverse engineering of Bitmain AntMiner Z11 firmware.

Malware has been using unicode since time ago, to hide / obfuscate urls, filenames, noscripts, etc... Right-to-left Override character (e2 80 ...