Useful guide for learning Makefiles https://makefiletutorial.com
👌1
PoCs to help learning how to get SYSTEM privilege https://github.com/daem0nc0re/PrivFu/tree/main/ArtsOfGetSystem
GitHub
PrivFu/ArtsOfGetSystem at main · daem0nc0re/PrivFu
Kernel mode WinDbg extension and PoCs for token privilege investigation. - daem0nc0re/PrivFu
👏1
Visualizing Android Code Coverage Pt.1 https://datalocaltmp.github.io/visualizing-android-code-coverage-pt-1.html
/data/local/tmp
Visualizing Android Code Coverage Pt.1
Decompilers are essential when reverse engineering Android applications and binaries; unfortunately with static analysis it’s up to the reverse engineer to determine which of these complex paths to investigate.
The WAF efficacy framework: measuring the effectiveness of your WAF https://www.fastly.com/blog/the-waf-efficacy-framework-measuring-the-effectiveness-of-your-waf
Fastly
Fastly | Fastly
Our new WAF efficacy framework provides a standardized way to measure the effectiveness of a WAF’s detection capabilities through continuous verification and validation. Here’s how it works.
PWNASSISTANT - CONTROLLING /HOME'S VIA A HOME ASSISTANT RCE https://www.elttam.com/blog/pwnassistant/#content
Elttam
PwnAssistant - Controlling /home's via a Home Assistant RCE - elttam
elttam is a globally recognised, independent information security company, renowned for our advanced technical security assessments.
Cloud Defense in Depth: Lessons from the Kinsing Malware https://sysdig.com/blog/cloud-defense-in-depth/
StackRot (CVE-2023-3269): Linux kernel privilege escalation
vulnerability https://www.openwall.com/lists/oss-security/2023/07/05/1
vulnerability https://www.openwall.com/lists/oss-security/2023/07/05/1
SSH Key Compromise Risks and Countermeasures https://sandflysecurity.com/blog/ssh-key-compromise-risks-and-countermeasures/
Sandfly Security - Agentless Linux EDR and Incident Response
SSH Key Compromise Risks and Countermeasures
SSH key compromise is a major risk to Linux. Learn how SSH keys are compromised and how to protect yourself.
CVE-2023-27997: Critical Fortinet Fortigate Remote Code Execution Vulnerability https://www.rapid7.com/blog/post/2023/06/12/etr-cve-2023-27997-critical-fortinet-fortigate-remote-code-execution-vulnerability/
Rapid7
CVE-2023-27997: Critical Fortinet Fortigate RCE Vulnerability | Rapid7 Blog
Windows Installer arbitrary content manipulation Elevation of Privilege (CVE-2020-0911) https://offsec.almond.consulting/windows-msiexec-eop-cve-2020-0911.html
👌1
Everything in Its Right Place: Improving DNS resilience (PhD Thesis) https://ris.utwente.nl/ws/portalfiles/portal/306181219/thesis_ebook.pdf
[CVE-2022-1786] A Journey To The Dawn https://blog.kylebot.net/2022/10/16/CVE-2022-1786/
kylebot's Blog
[CVE-2022-1786] A Journey To The Dawn
IntroductionBack in April, I found a 0-day vulnerability in the Linux kernel and exploited it on Google’s kCTF platform.I reported the bug to Linux kernel security team and helped them fix the vulnera
❤3
+PROTECTING LINUX AT KERNEL LEVEL WHY AND HOW https://hardenedvault.net/blog/2023-07-09-protecting-linux-kernel-why-how/
hardenedvault.net
+PROTECTING LINUX AT KERNEL LEVEL WHY AND HOW
Introduction We designed Vault Exploits Defense (VED) as a foundation security layer for various flavors of Linux operating system.
Xortigate, or CVE-2023-27997 - The Rumoured RCE That Was https://labs.watchtowr.com/xortigate-or-cve-2023-27997/
watchTowr Labs
Xortigate, or CVE-2023-27997 - The Rumoured RCE That Was
When Lexfo Security teased a critical pre-authentication RCE bug in FortiGate devices on Saturday 10th, many people speculated on the practical impact of the bug. Would this be a true, sky-is-falling level vulnerability like the recent CVE-2022-42475? Or…
Comparative Analysis: Reversing Rust and C binaries https://lockpin010.medium.com/comparative-analysis-reversing-rust-and-c-binaries-aa9e4b472539
Medium
Comparative Analysis: Reversing Rust and C binaries
Hello everyone!
Encrypted Doesn't Mean Authenticated: ShareFile RCE (CVE-2023-24489) https://blog.assetnote.io/2023/07/04/citrix-sharefile-rce/
Understanding the CVE-2022-37969 Windows Common Log File System Driver Local Privilege Escalation https://www.coresecurity.com/core-labs/articles/understanding-cve-2022-37969-windows-clfs-lpe
Coresecurity
Understanding the CVE-2022-37969 Windows Common Log File System Driver Local Privilege Escalation
This functional PoC is based on previously published information by Zscaler and complements the available information by adding details, guiding the reader to an in-depth understanding of the vulnerability, its exploitation, patch reversal, and the creation…
TeamTNT Reemerged with New Aggressive Cloud Campaign https://blog.aquasec.com/teamtnt-reemerged-with-new-aggressive-cloud-campaign
Aqua
TeamTNT Reemerged with New Aggressive Cloud Campaign
The botnet run by TeamTNT has set its sights on Docker and Kubernetes environments, Redis servers, Postgres databases, Hadoop clusters, Tomcat and others.
A Deep Dive into Penetration Testing of macOS Applications (Part 1) https://www.cyberark.com/resources/all-blog-posts/a-deep-dive-into-penetration-testing-of-macos-applications-part-1
Cyberark
A Deep Dive into Penetration Testing of macOS Applications (Part 1)
Introduction As many of us know, there are a lot of guides and information on penetration testing applications on Windows and Linux. Unfortunately, a step-by-step guide doesn’t exist in the macOS...