CVE-2023-27997: Critical Fortinet Fortigate Remote Code Execution Vulnerability https://www.rapid7.com/blog/post/2023/06/12/etr-cve-2023-27997-critical-fortinet-fortigate-remote-code-execution-vulnerability/
Rapid7
CVE-2023-27997: Critical Fortinet Fortigate RCE Vulnerability | Rapid7 Blog
Windows Installer arbitrary content manipulation Elevation of Privilege (CVE-2020-0911) https://offsec.almond.consulting/windows-msiexec-eop-cve-2020-0911.html
👌1
Everything in Its Right Place: Improving DNS resilience (PhD Thesis) https://ris.utwente.nl/ws/portalfiles/portal/306181219/thesis_ebook.pdf
[CVE-2022-1786] A Journey To The Dawn https://blog.kylebot.net/2022/10/16/CVE-2022-1786/
kylebot's Blog
[CVE-2022-1786] A Journey To The Dawn
IntroductionBack in April, I found a 0-day vulnerability in the Linux kernel and exploited it on Google’s kCTF platform.I reported the bug to Linux kernel security team and helped them fix the vulnera
❤3
+PROTECTING LINUX AT KERNEL LEVEL WHY AND HOW https://hardenedvault.net/blog/2023-07-09-protecting-linux-kernel-why-how/
hardenedvault.net
+PROTECTING LINUX AT KERNEL LEVEL WHY AND HOW
Introduction We designed Vault Exploits Defense (VED) as a foundation security layer for various flavors of Linux operating system.
Xortigate, or CVE-2023-27997 - The Rumoured RCE That Was https://labs.watchtowr.com/xortigate-or-cve-2023-27997/
watchTowr Labs
Xortigate, or CVE-2023-27997 - The Rumoured RCE That Was
When Lexfo Security teased a critical pre-authentication RCE bug in FortiGate devices on Saturday 10th, many people speculated on the practical impact of the bug. Would this be a true, sky-is-falling level vulnerability like the recent CVE-2022-42475? Or…
Comparative Analysis: Reversing Rust and C binaries https://lockpin010.medium.com/comparative-analysis-reversing-rust-and-c-binaries-aa9e4b472539
Medium
Comparative Analysis: Reversing Rust and C binaries
Hello everyone!
Encrypted Doesn't Mean Authenticated: ShareFile RCE (CVE-2023-24489) https://blog.assetnote.io/2023/07/04/citrix-sharefile-rce/
Understanding the CVE-2022-37969 Windows Common Log File System Driver Local Privilege Escalation https://www.coresecurity.com/core-labs/articles/understanding-cve-2022-37969-windows-clfs-lpe
Coresecurity
Understanding the CVE-2022-37969 Windows Common Log File System Driver Local Privilege Escalation
This functional PoC is based on previously published information by Zscaler and complements the available information by adding details, guiding the reader to an in-depth understanding of the vulnerability, its exploitation, patch reversal, and the creation…
TeamTNT Reemerged with New Aggressive Cloud Campaign https://blog.aquasec.com/teamtnt-reemerged-with-new-aggressive-cloud-campaign
Aqua
TeamTNT Reemerged with New Aggressive Cloud Campaign
The botnet run by TeamTNT has set its sights on Docker and Kubernetes environments, Redis servers, Postgres databases, Hadoop clusters, Tomcat and others.
A Deep Dive into Penetration Testing of macOS Applications (Part 1) https://www.cyberark.com/resources/all-blog-posts/a-deep-dive-into-penetration-testing-of-macos-applications-part-1
Cyberark
A Deep Dive into Penetration Testing of macOS Applications (Part 1)
Introduction As many of us know, there are a lot of guides and information on penetration testing applications on Windows and Linux. Unfortunately, a step-by-step guide doesn’t exist in the macOS...
Introducing jswzl: In-depth JavaScript analysis for web security testers https://www.jswzl.io/post/introducing-jswzl-in-depth-js-analysis-for-web-security-testers
www.jswzl.io
Introducing jswzl: In-depth JavaScript analysis for web security testers · jswzl
For the last year, I’ve been working hard on creating what I believe to be the next stage in the evolution of tooling for penetration testers, web application security testers, security analysts, and security engineers—in short, anyone who spends time testing…
👍3
Beyond the Marketing: Assessing Anti-Bot Platforms through a Hacker's Lens https://blog.umasi.dev/antibots-1
🔥1
CVE-2023-38408: Remote Code Execution in OpenSSH's forwarded ssh-agent https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt
Windows kernel driver static reverse using IDA and GHIDRA https://v1k1ngfr.github.io/winkernel-reverse-ida-ghidra/
vegvisir
Windows kernel driver static reverse using IDA and GHIDRA
Some notes for Windows drivers reversing with IDA and GHIDRA
Comprehensive analysis of initial attack samples exploiting CVE-2023-23397 vulnerability https://securelist.com/analysis-of-attack-samples-exploiting-cve-2023-23397/110202/
Securelist
Comprehensive analysis of initial attack samples exploiting CVE-2023-23397 vulnerability
We will highlight the key points and then focus on the initial use of the CVE-2023-23397 vulnerability by attackers before it became public.
The Unexpected “0” Master ID for Account Data Manipulation https://infosecwriteups.com/the-unexpected-0-master-id-for-account-data-manipulation-1cb69112de38
Medium
The Unexpected “0” Master ID for Account Data Manipulation
A simple story when Allah allowed me to successfully achieve P1 through a broken access control issue using an unexpected master ID of “0”.
The Death of Infosec Twitter https://www.cyentia.com/the-death-of-infosec-twitter/
Cyentia Institute | Data-Driven Cybersecurity Research
The Death of Infosec Twitter | Cyentia Institute
"Infosec Twitter," a vibrant community of security practitioners, known for its insight, inspiration, and entertainment, is coming to an end.