Security Analysis – Telegram
Security Analysis
@securation
11.5K subscribers
344 photos
50 videos
36 files
885 links
- Offensive Security (Red Teaming / PenTesting)
- BlueTeam (OperationSec, TreatHunting, DFIR)
- Reverse Engineering / Malware Analysis
- Web Security
- Cryptography
- Steganography
- Forensics
Contact : @DrPwner
Download Telegram
About
Blog
Apps
Platform
Join
Security Analysis
11.5K subscribers
Security Analysis
This media is not supported in your browser
VIEW IN TELEGRAM
⭕️ POC for CVE-2022-0435:

Remote Stack Overflow in Linux Kernel TIPC

https://www.openwall.com/lists/oss-security/2022/02/10/1
#CVE #linuxkernel #TIPC
@securation
1.74K views
Security Analysis
https://github.com/nnamon/linux-exploitation-course
GitHub
GitHub - nnamon/linux-exploitation-course: A Course on Intermediate Level Linux Exploitation
A Course on Intermediate Level Linux Exploitation. Contribute to nnamon/linux-exploitation-course development by creating an account on GitHub.
👍2
1.54K views
Security Analysis
A small library to alter AWS API requests


https://github.com/Frichetten/aws_api_shapeshifter/
#fuzzing #api #aws
@securation
GitHub
GitHub - Frichetten/aws_api_shapeshifter: A small library to alter AWS API requests; Used for fuzzing research
A small library to alter AWS API requests; Used for fuzzing research - Frichetten/aws_api_shapeshifter
🔥3😢1
1.48K views
Security Analysis
⭕️ An experimental dynamic approach to devirtualize pure functions protected by VMProtect

https://github.com/JonathanSalwan/VMProtect-devirtualization
#deobfuscation #VMProtect
@securation
GitHub
GitHub - JonathanSalwan/VMProtect-devirtualization: Playing with the VMProtect software protection. Automatic deobfuscation of…
Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM. - JonathanSalwan/VMProtect-devirtualization
3
1.57K views
Security Analysis
https://ozguralp.medium.com/bigquery-sql-injection-cheat-sheet-65ad70e11eac
Medium
BigQuery SQL Injection Cheat Sheet
Last year, we (My researcher partner on this topic, Anil and me) and found a SQL injection vulnerability on a target at Synack which was…
🤩3👍2👎1
1.68K views
Security Analysis
⭕️ سالهای زیادی است که پروسسورهای جدید یک هسته کوچک مستقل، برای مدیریت ارتباطات و حافظه و تقسیم کار بین هسته‌های اصلی پروسسور دارند. در پروسسورهای اینتل روی این هسته مستقل سیستم عامل Minix اجرا میشود.

یکی از راههای هک کردن پروسسورهای جدید باز کردن درب پشتی از طریق این هسته است. به احتمال قوی در پروژه Talpiot اسرائیل هم از همین راه پروسسورهای اینتل قابل نفوذ شده‌اند.

راهی برای جلوگیری از نفوذ در سیستم‌های مبتنی بر این پروسسورهای جدید نمیتوان یافت. هر کسی که از نحوه استفاده از این درب پشتی اطلاع دارد هر زمانی که بخواهد میتواند در هر کامپیوتر یا سرور جدید نفوذ کرده؛ و کنترل هر سرویس کامپیوتر را به دست بگیرد.

⭕️ نکته قابل توجه این هست در ایران مسئولین وقتی اسم وسیله ی ساخت اسرائیل میاد میگن این ممنوع هست و باید استفاده نشه.
باید این رو به مسئولین گفت اگه راست میگید کامپیوتر و لپ تاپ و هرچیزی که دارید رو بذارید کنار چون همشون یک قطعه ساخت اسرائیل دارند.

https://www.zdnet.com/article/minix-intels-hidden-in-chip-operating-system/
#intel #CPU
@securation
ZDNET
MINIX: ​Intel's hidden in-chip operating system
Buried deep inside your computer's Intel chip is the MINIX operating system and a software stack, which includes networking and a web server. It's slow, hard to get at, and insecure as insecure can be.
👍7👎2
1.49K views
Security Analysis
⭕️ تحلیل آسیب پذیری جدیدی با شناسه : CVE-2022-21703 در گرافانا کشف شده را در لینک زیر بخونید.

نکته : اون شرکتی که گرافانا رو رنگ کرده بود بجای محصول بومی قالب کرده بود توی دولتی ها الان آپدیت کرده این آسیب پذیری ها رو ؟‌:)))

https://jub0bs.com/posts/2022-02-08-cve-2022-21703-writeup/
#grafana #writeup
Grafana Labs
Grafana | Query, visualize, alerting observability platform
Grafana feature overview, screenshots, videos, and feature tours.
👍6😁2
1.55K viewsedited  
Security Analysis
https://antonioparata.blogspot.com/2022/01/analyzing-ida-pro-anti-decompilation.html
Blogspot
Analyzing an IDA Pro anti-decompilation code
Twitter: @s4tan GitHub: https://github.com/enkomio/ In this post I'll analyze a piece of code that induces IDA Pro to decompile t...
1.72K views
Security Analysis
https://elastic.github.io/security-research/whitepapers/2022/02/03.exploring-windows-uac-bypass-techniques-detection-strategies/article/#
👍3
1.9K views
Security Analysis
https://vladtoie.gitbook.io/secure-coding/server-side/sql-injections
vladtoie.gitbook.io
SQL Injections [SQLi] | Secure Coding Handbook
1.75K views
Security Analysis
https://medium.com/cyber-unbound/buffer-overflows-ret2libc-ret2plt-and-rop-e2695c103c4c
Medium
Buffer Overflows: ret2libc, ret2plt and rop
In this post, we’ll be examining a stack-based buffer overflow vulnerability, some technologies that exist to prevent this vulnerability…
1.7K views
Security Analysis
https://twitter.com/ParsDefense/status/1494681154162671626?t=4YUl8uVgBrH11wdGBCMtmw&s=19
Twitter
PARS Defense
Zero-Click PoC Trigger for CVE-2021-1965 (Qualcomm SnapDragon WiFi Driver RCE) github.com/parsdefense/CV…
1.56K views
Security Analysis
https://github.com/cyberark/kubesploit
GitHub
GitHub - cyberark/kubesploit: Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written…
Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments. - cyberark/kubesploit
1.56K views
Security Analysis
Burpsuite vs ZAP

#cybersecurity #BugBounty
👍5
1.56K views
Security Analysis
https://www.redsiege.com/blog/2021/08/bypass-sig-av/
👍2
1.62K views
Security Analysis
Zero-Click #PoC Trigger for CVE-2021-1965 (Qualcomm SnapDragon WiFi Driver #RCE)

https://github.com/parsdefense/CVE-2021-1965/blob/main/CVE-2021-1965-poc.c

https://source.codeaurora.org/quic/qsdk/platform/vendor/qcom-opensource/wlan/qca-wifi-host-cmn/commit/?id=a426e5e1668fff3dfe8bde777a9340cbc129f8df
#exploit #Qualcomm #snapdragon
@securation
1.65K views
Security Analysis
https://jpt.spe.org/industrial-internet-of-things-raises-new-security-implications
JPT
Industrial Internet of Things Raises New Security Implications
The goal of this paper is to aid oilfield security planning and design processes through improved recognition of the cyber-physical security effects arising from the implementation of the industrial Internet of Things.
🎉1
1.63K views
Security Analysis
⭕️ نگاهی به شکار تهدیدات سایبری با استفاده از sysmon

https://www.darkoperator.com/blog/2018/10/5/operating-offensively-against-sysmon
#log #monitoring #sysmon
@securation
Shell is Only the Beginning
Operating Offensively Against Sysmon
Sysmon is a tool written by Mark Russinovich that I have covered in multiple blog post and even wrote a PowerShell module called Posh-Sysmon to help with the generation of configuration files for it. Its main purpose is for the tracking of potentially malicious…
👍3
2.24K viewsedited  
Security Analysis
https://aaryanapex.medium.com/bug-bounty-bypassing-endpoints-55254df2cbff
👍1
2.03K views
Security Analysis
https://www.politico.eu/article/ukraine-russia-eu-cyber-attack-security-help/
POLITICO
EU to mobilize cyber team to help Ukraine fight Russian cyberattacks
European civilian-military officials will help Kyiv fend off Russian hackers.
1.79K views
Security Analysis
https://professionalhackers.in/ssrfire-an-automated-ssrf-finder-just-give-the-domain-name-and-your-server-and-chill-also-has-options-to-find-xss-and-open-redirects/
1.91K views