Wawa Security Links 342

Vendredi 19 Avril 2024


GoogleNCR / Twitter
Hacking tutos / Facebook


Xiaomi_Mi_WiFi_R3G_Vulnerability_POC/report.md at master · UltramanGaia/Xiaomi_Mi_WiFi_R3G_Vulnerability_POC · GitHub
https://vmcall.blog/battleye-kernel-single-step/
GitHub - Mr-Un1k0d3r/PoisonHandler: lateral movement techniques that can be used during red team exercises
Remote Code Execution in Three Acts: Chaining Exposed Actuators and H2 Database Aliases in Spring Boot 2 — spaceraccoon.dev
https://medium.com/tenable-techblog/lets-reverse-engineer-discord-1976773f4626
StageStrike/SharpStrike.cs at master · RedXRanger/StageStrike · GitHub
IP Protocol with Wireshark
Creating Responders in The Hive – NVISO Labs
Persistence – Image File Execution Options Injection | Penetration Testing Lab
owasp-mstg/0x06c-Reverse-Engineering-and-Tampering.md at master · OWASP/owasp-mstg · GitHub
Debugging Through WebAssembly Is Impossible
https://posts.specterops.io/mimidrv-in-depth-4d273d19e148
GitHub - PaperMtn/lil-pwny: Auditing Active Directory passwords using multiprocessing in Python.
https://isc.sans.edu/forums/diary/Citrix ADC Exploits Overview of Observed Payloads/25704/
GitHub - MalwareTech/CitrixHoneypot: Detect and log CVE-2019-19781 scan and exploitation attempts.
Owning a device with a single jump | Carve Systems
[PHP] Exposing DB Credentials / HttpOnly Bypass / FPD | Hackking - Information Security Community
What is Azure Active Directory? – Active Directory Security
Learning miasm: Part 2: Analyzing instructions
GitHub - SecurityRiskAdvisors/PDBlaster

PDBlaster: Making Bread from Attacker Breadcrumbs – Security Risk Advisors
Through the SMM-Class and a vulnerability found there.
https://www.thezdi.com/blog/2020/1/14/the-january-2020-security-update-review
Critical Auth Bypass Vulnerability In InfiniteWP Client And WP Time Capsule
https://httptoolkit.tech/blog/debugging-https-without-global-root-ca-certs/
https://blog.talosintelligence.com/2020/01/microsoft-patch-tuesday-jan-2020.html
Busting Cisco's Beans :: Hardcoding Your Way to Hell
Don't Ruck Us Too Hard - Owning Ruckus AP devices
JSON Hijacking, SOP Bypass Technic with Cache-Control - HAHWUL
Even Google forgets to renew its domains – Terence Eden’s Blog
A cost-effective and extensible testbed for transport protocol development
Rough Patch: I Promise It'll Be 200 OK (Citrix ADC CVE-2019-19781) | FireEye Inc
https://signal.org/blog/storage-management-for-android/
Persistence – Winlogon Helper DLL | Penetration Testing Lab
Hack-back: a tale of embarrassing phishing campaign ~ Kamil Vavra
https://vmcall.blog/battleye-hypervisor-detection/
Testing LoRa with SDR and some handy tools | PentHertz Blog
Analyzing Magecart Malware – From Zero to Hero | PerimeterX
CVE-2020-0601: the ChainOfFools/CurveBall attack explained with PoC
https://www.doyler.net/security-not-included/scrcpy-mirror-android-screens

Mapping the Jan 2020 Java Security Patches Back to the Original Source Code Changes | Nightwatch Cybersecurity
Malware Must Die!: MMD-0065-2020 - Linux/Mirai-Fbot's new encryption explained
Parses the ASN.1-encoded ECC curve parameters from an Audit-CVE · GitHub
Disk Image Deception - CSIRT Incident Response - Phishing w/ Nanocore
UDP Protocol with Wireshark
Using CveEventWrite From VBA (CVE-2020-0601) | Didier Stevens
GitHub - ollypwn/CVE-2020-0601: PoC for CVE-2020-0601
Behavior Change in Chrome’s Download Protection Service Affecting Privacy | Nightwatch Cybersecurity
Cracking password hashes in Yclas
CVE-2020-2696 – Local privilege escalation via CDE dtsession | @Mediaservice.net Technical Blog
Advisory | Seagate Central Storage Remote Code Execution 0day – Pentest Blog
GitHub - MorganGallant/cloudflaredd: Dynamic DNS for Cloudflare using Google STUN Servers
https://medium.com/radimre83/the-trouble-with-microsofts-troubleshooters-6e32fc80b8bd
https://medium.com/zengo/win10-crypto-vulnerability-cheating-in-elliptic-curve-billiards-2-69b45f2dcab6
https://isc.sans.edu/forums/diary/Picks of 2019 malware the large the small and the one full of null bytes/25718/
Threats Making WAVs - Incident Response to a Cryptomining Attack | Guardicore Labs
https://www.elastic.co/blog/embracing-offensive-tooling-building-detections-against-koadic-using-eql
GitHub - microsoft/msticpy: Microsoft Threat Intelligence Security Tools
Reverse Engineering a Philips TriMedia CPU based IP Camera - Part 3
macOS Security Updates Part 2 | Running Diffs on Apple’s MRT app | SentinelOne

https://medium.com/bugbountywriteup/how-i-discovered-an-interesting-account-takeover-flaw-18a7fb1e5359
Avira VPN Local Privilege Escalation via Insecure Update Location | enigma0x3
https://www.exploit-db.com/exploits/47933
https://blog.talosintelligence.com/2020/01/jhonerat.html
https://blog.sucuri.net/2020/01/authentication-bypass-vulnerability-in-infinitewp-client.html
https://www.thezdi.com/blog/2020/1/15/reliably-finding-and-exploiting-icsscada-bugs
https://blog.talosintelligence.com/2020/01/vulnerability-spotlight-multiple-remote.html
Deep dive into the security of Progressive Web Apps – NVISO Labs
R.I.P ROP: CET Internals in Windows 20H1 – Winsider Seminars & Solutions Inc.
GitHub - kudelskisecurity/chainoffools: A PoC for CVE-2020-0601
Exploiting A Use-After-Free With radare2 - CTF Challenge
GitHub - motikan2010/CVE-2020-5398: CVE-2020-5398 - RFD(Reflected File Download) Attack for Spring MVC
CVE-2019-15666 Ubuntu / CentOS / RHEL Linux Kernel 4.4 - 4.18 privilege escalation - Vitaly Nikolenko

https://isc.sans.edu/forums/diary/Summing up CVE20200601 or the Lets Decrypt vulnerability/25720/
https://medium.com/bugbountywriteup/update-want-to-take-over-the-java-ecosystem-all-you-need-is-a-mitm-d069d253fe23
Exploiting the Windows CryptoAPI Vulnerability | Trail of Bits Blog
404 Exploit Not Found: Vigilante Deploying Mitigation for Citrix NetScaler Vulnerability While Maintaining Backdoor | FireEye Inc
Reversing XignCode3 Driver – Part 2 – Analyzing init functions – Niemand – Cyber Security
Some Notes on IPv6 Bogon Filtering – The Internet Protocol Blog


Translate / Map
Wikipedia [ENG] / GIT

Metasploit / ExploitDB
Converter / Project 0

Hotmail / Gmail / ODA
eprint.iacr / Youtube