The WAF efficacy framework: measuring the effectiveness of your WAF https://www.fastly.com/blog/the-waf-efficacy-framework-measuring-the-effectiveness-of-your-waf
Fastly
Fastly | Fastly
Our new WAF efficacy framework provides a standardized way to measure the effectiveness of a WAF’s detection capabilities through continuous verification and validation. Here’s how it works.
PWNASSISTANT - CONTROLLING /HOME'S VIA A HOME ASSISTANT RCE https://www.elttam.com/blog/pwnassistant/#content
Elttam
PwnAssistant - Controlling /home's via a Home Assistant RCE - elttam
elttam is a globally recognised, independent information security company, renowned for our advanced technical security assessments.
Cloud Defense in Depth: Lessons from the Kinsing Malware https://sysdig.com/blog/cloud-defense-in-depth/
StackRot (CVE-2023-3269): Linux kernel privilege escalation
vulnerability https://www.openwall.com/lists/oss-security/2023/07/05/1
vulnerability https://www.openwall.com/lists/oss-security/2023/07/05/1
SSH Key Compromise Risks and Countermeasures https://sandflysecurity.com/blog/ssh-key-compromise-risks-and-countermeasures/
Sandfly Security - Agentless Linux EDR and Incident Response
SSH Key Compromise Risks and Countermeasures
SSH key compromise is a major risk to Linux. Learn how SSH keys are compromised and how to protect yourself.
CVE-2023-27997: Critical Fortinet Fortigate Remote Code Execution Vulnerability https://www.rapid7.com/blog/post/2023/06/12/etr-cve-2023-27997-critical-fortinet-fortigate-remote-code-execution-vulnerability/
Rapid7
CVE-2023-27997: Critical Fortinet Fortigate RCE Vulnerability | Rapid7 Blog
Windows Installer arbitrary content manipulation Elevation of Privilege (CVE-2020-0911) https://offsec.almond.consulting/windows-msiexec-eop-cve-2020-0911.html
👌1
Everything in Its Right Place: Improving DNS resilience (PhD Thesis) https://ris.utwente.nl/ws/portalfiles/portal/306181219/thesis_ebook.pdf
[CVE-2022-1786] A Journey To The Dawn https://blog.kylebot.net/2022/10/16/CVE-2022-1786/
kylebot's Blog
[CVE-2022-1786] A Journey To The Dawn
IntroductionBack in April, I found a 0-day vulnerability in the Linux kernel and exploited it on Google’s kCTF platform.I reported the bug to Linux kernel security team and helped them fix the vulnera
❤3
+PROTECTING LINUX AT KERNEL LEVEL WHY AND HOW https://hardenedvault.net/blog/2023-07-09-protecting-linux-kernel-why-how/
hardenedvault.net
+PROTECTING LINUX AT KERNEL LEVEL WHY AND HOW
Introduction We designed Vault Exploits Defense (VED) as a foundation security layer for various flavors of Linux operating system.
Xortigate, or CVE-2023-27997 - The Rumoured RCE That Was https://labs.watchtowr.com/xortigate-or-cve-2023-27997/
watchTowr Labs
Xortigate, or CVE-2023-27997 - The Rumoured RCE That Was
When Lexfo Security teased a critical pre-authentication RCE bug in FortiGate devices on Saturday 10th, many people speculated on the practical impact of the bug. Would this be a true, sky-is-falling level vulnerability like the recent CVE-2022-42475? Or…
Comparative Analysis: Reversing Rust and C binaries https://lockpin010.medium.com/comparative-analysis-reversing-rust-and-c-binaries-aa9e4b472539
Medium
Comparative Analysis: Reversing Rust and C binaries
Hello everyone!
Encrypted Doesn't Mean Authenticated: ShareFile RCE (CVE-2023-24489) https://blog.assetnote.io/2023/07/04/citrix-sharefile-rce/
Understanding the CVE-2022-37969 Windows Common Log File System Driver Local Privilege Escalation https://www.coresecurity.com/core-labs/articles/understanding-cve-2022-37969-windows-clfs-lpe
Coresecurity
Understanding the CVE-2022-37969 Windows Common Log File System Driver Local Privilege Escalation
This functional PoC is based on previously published information by Zscaler and complements the available information by adding details, guiding the reader to an in-depth understanding of the vulnerability, its exploitation, patch reversal, and the creation…
TeamTNT Reemerged with New Aggressive Cloud Campaign https://blog.aquasec.com/teamtnt-reemerged-with-new-aggressive-cloud-campaign
Aqua
TeamTNT Reemerged with New Aggressive Cloud Campaign
The botnet run by TeamTNT has set its sights on Docker and Kubernetes environments, Redis servers, Postgres databases, Hadoop clusters, Tomcat and others.
A Deep Dive into Penetration Testing of macOS Applications (Part 1) https://www.cyberark.com/resources/all-blog-posts/a-deep-dive-into-penetration-testing-of-macos-applications-part-1
Cyberark
A Deep Dive into Penetration Testing of macOS Applications (Part 1)
Introduction As many of us know, there are a lot of guides and information on penetration testing applications on Windows and Linux. Unfortunately, a step-by-step guide doesn’t exist in the macOS...
Introducing jswzl: In-depth JavaScript analysis for web security testers https://www.jswzl.io/post/introducing-jswzl-in-depth-js-analysis-for-web-security-testers
www.jswzl.io
Introducing jswzl: In-depth JavaScript analysis for web security testers · jswzl
For the last year, I’ve been working hard on creating what I believe to be the next stage in the evolution of tooling for penetration testers, web application security testers, security analysts, and security engineers—in short, anyone who spends time testing…
👍3
Beyond the Marketing: Assessing Anti-Bot Platforms through a Hacker's Lens https://blog.umasi.dev/antibots-1
🔥1
CVE-2023-38408: Remote Code Execution in OpenSSH's forwarded ssh-agent https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt