Hey! The other day I gave my good friend HackerFantastic call. We chatted a bit about his family and he also dropped a sweet war story. You should give it a listen! https://twitter.com/hackerfantastic https://hacker.house/ ps don't forget my daughter & I created a fun challenge where you can win a laptop. details -> https://haq.news/2024/04/12/...
A cybersecurity researcher, k0shl, discussed methods for exploiting a Windows telephony service issue, which could control memory wrongly. A malware called Nitrogen tricks users into downloading fake apps leading to ransomware but can be prevented with various strategies. On Reddit , there’s talk about the dangers of batch files in Windows due to argument escaping issues. The C2 Cloud project lets testers control compromised systems efficiently. A Proof of Concept showed a flaw in Jasmin Ransomw...
A cybersecurity researcher shares techniques for crafting XSS payloads through JavaScript event handlers and HTML entities to bypass WAFs. The SiCat tool hunts for security exploits using sources including databases like Exploit-DB . There’s a case study of a hacked Confluence server outlining the intruder’s steps, utilizing Unix logs and SSH brute force tactics. Shortemall automates finding content behind Short URLs , while Damn Vulnerable RESTaurant exists for training on API vulnerabilities ....
In this recent rundown CloudGrappler , a tool for finding threat data in cloud AWS/Azure, and GMER , which detects rootkits in Windows kernel, are highlighted for their importance in cyber security. A blog talking about Cobalt Strike , mentioning how its post-exploit toolkit can use the Community Kit ’s scripts for updates.
A Proof of Concept for CVE-2024-3273 shows how to hack into D-Link NAS devices, GDBFuzz improves testing for gadgets and stuff, and Genzai helps find weak spots in IoT things by checking out their dashboards and passwords. The ’nexus’ plugin for IP.Board had a bad security problem but got fixed, and now there’s another tool to break into those D-Link NAS devices using the CVE-2024-3273 weakness. Looking at JumpServer, there’s a couple of CVEs, CVE-2024-29201 and CVE-2024-29202, and you gotta upd...
A cybersecurty hobbyist showed how to use vm2 JavaScript sandbox vulnerabilities to get into a Linux server, find a hash, and root access in a HackTheBox Codify challenge. Web cache issues, which can leak info, need careful monitoring; techniques like underscores in headers and fuzzing help prevent these attacks. The OSTE-Web-Log-Analyzer is a tool in Python for analyzing web logs to spot web attacks. C2 Cloud makes pentesting simpler with its web interface for handling backdoor sessions. To get...
Today, AttackGen is a cybersecurity tool for creating scenarios to test incident responses. A blog recommends more secure Wi-Fi password practices. There’s a GitHub Ansible playbooks for fixing a vulnerability CVE-2024-3094. An article offers a comprehensive guide to phishing investigations using Microsoft tools. White Knight Labs’ GitHub focuses on cyber operations tools. Cofense specializes in cyber threat training and detection. Rundll32.exe exploitation is tackled by Cybereason’s AI platform...
In a recent post, Incinerator was introduced as a tool for reversing engineering Android malware and for security audits on apps. Discussions on r/netsec highlighted "Gram" , a web application for threat modeling that works alongside system inventories. Chiasmodon came up as a CLI OSINT tool helping hackers gather info on domains and expanding with features like facial recognition. Readers also learned about alternatives to Netcat like Rlwrap, Rustcat, Pwncat, and Windows ConPty shell for secure...
Techniques for stealing AD CS certificates include exporting and bypassing restrictions using tools like Mimikatz. DLL Proxy Loading is a method where an attacker substitutes a legitimate DLL with a fake one to execute malicious code. Secator is a tool that automates security assessments by integrating multiple security commands. ST Smart Things Sentinel is for IoT security, scanning for vulnerabilities and adding devices to a network for monitoring. Portr is an open-source tool for secure SSH t...
VolWeb helps investigators extract data from memory images, simplifies forensics. LDAP Watchdog monitor changes in LDAP entries, slacks alerts, skips some attributes. CVE-2024-3094 , a cybersecurity flaw, learned to detect xz backdoor, updating systems to keep safe. NetScout is a tool for OSINT to dig into URL-related data. Sophisticated UNAPIMON malware evades detection, suggesting better security steps. Root access on macOS gain by filesystem mount tweak now patched. OCEANMAP backdoor used by ...
A security engineer found two methods to bypass DOMPurify's protection by targeting how XML and HTML parsers work. The Drozer framework is used for testing Android app vulnerabilities, it's user-friendly and can be set up using Docker . It's important to check Active Directory admin groups to reduce risks. GitHub's xz-vulnerable-honeypot shows how to set up a honeypot detecting SSH attacks. AssetViz draws subdomains as a mind map for penetration testers. ChaiLdr repository helps avoid antivirus ...
The HEDnsExtractor tool helps cyber security folks by pulling out domains/IP networks that could be bad news. Sadly, there's a nasty bug CVE-2024-0204 in GoAnywhere Admin that lets sneaky folks make high-privilege accounts they shouldn't. For you tech heads, there's a guide to writing 64-bit Linux shellcode so you can say "Hello World" with your CPU. R2Frida is a cool thing mixing radare2 with Frida to tweak live processes. Gynvael Coldwind busted a sneaky attack hiding in xz/liblzma that messes...
Ken Shirriff takes a dive into a military-grade chip to explore its gate array design and compares it with custom chips , outlining the costs and production differences. A cyber security fan uncovers how to hack into the Rebound box on HackTheBox with techniques that bump up privileges. Trail of Bits launches Ruzzy , a fuzzer to sniff out Ruby code bugs. "forensictools" toolkit makes a one-stop virtual spot for digital forensics , loaded with a bunch of analysis tools. An article unveils a hacki...
This article teaches malware develpers how to dodge antivirus by changing NTFS attributes , in-memory tricks, digital certificates , and more, with tips for security pros. There’s updates on malware IOCs vital for knowing and stopping threats. Cloud_Enum looks for open cloud stuff on AWS, Azure , and others using keywords. Telerecon helps with Intel on Telegram , like scraping chats and seeing user links, but you need to set it up right. Awesome Cloud Security Labs has free security exercises fo...
This series helps with emulating IoT malware using Docker and Qiling . A pro explains using Velociraptor on VMware ESXi hypervisors for forensics . Security flaws in ChatGPT allow XSS attacks. A JavaScript file cleverly hides AsyncRAT deployment . There's a binary exploitation roadmap from basics through pwn.college . SARA teaches making Android Trojans . BruteUnpackage cracks compressed file passwords . Demonstrate elevated privileges with CVE-2024-1086 on Linux . CVE-2023-48788 exploit for For...
In a recent blog post, a data-only exploitation technique has been discussed which affects the Linux kernel’s io_uring . The technique lets attackers control memory pages and escalate privileges without changing kernel code. Zero Day Engineering offers masterclasses in software vulnerability research and exploit development with resources from conferences. A security researcher showed steps for unpacking Agent Tesla malware , analyzing its stages, and decrypting the payload. Ryan Weil explained ...
A new exploit for local privilege escalation in Linux kernels (CVE-2024-1086) affects versions 5.14 to 6.6. A security flaw’s been found that let’s people get more access on Apple macOS systems by messing with file system mount options ; it’s been fixed now. There’s this thing, ChromeKatz , that can grab cookies from Chromium browsers . AutoWLAN helps set up a mobile hotspot with a Raspberry Pi and lets people make it more secure. Matthew Alt showed how to mess with STM32F4 microcontrollers usin...
A vulnerability in JustSystems Ichitaro Word Processor was fixed after Cisco Talos reported it. Git-Rotate helps avoid IP detection on GitHub during password attacks. AzureNum gathers data on Microsoft Entra IDs. There's a way to disable Windows Defender by tweaking system permissions. An OS engineer explains overcoming a Linux kernel bug (CVE-2023-0461) using advanced hacking techniques. DynamicMSBuilder makes .NET builds unique to dodge security checks. Dropper on GitHub crafts risky Office do...
Cybersecurity AI Pentest Muse offers creative solutions for professionals, helping analyze code and craft payloads. Alisa Esage shares JIT engine and VM escape exploits on GitHub. unKover , a PoC anti-rootkit, detects malicious drivers using specialized techniques. A new malware analysis toolkit features 98 tools for various tasks, plus updates. DroneXtract analyzes data from DJI drones, including file parsing and telemetry. bootfuzz tests MBR-based system BIOS, requesting more tests on physical...
Kubesploit is a framework for attacking container environments , with modules for both exploits and defenses. Ken Shirriff explores the Intel 8088 prefetch system , which boosts performance by pre-fetching instructions. A cyber security tutorial demonstrates how to exploit a vulnerability in Metabase . The Sr2T tool converts security scan reports into readable formats. A new tool extracts URLs and paths from web pages, suggesting improvements for handling applications. Researchers exploit a Chro...
The amazing nimvoke is a Nim library for safely doing indirect syscalls and making DInvoke style delegate declarations, with examples shown for use in Nim projects. Skytrack is a Python tool for tracking planes using public data, creating PDFs about them, plus a feature to convert tail numbers and ICAO codes. A security researcher found a bug to listen in on Bluetooth speakers with Just Work pairing, tested with nRF Connect app. NetSoc_OSINT by XDeadHackerX can get info from social networks with...
Today’s cybersecurity updates cover a range of topics, starting with techniques for SMB enumeration . WebSockets face risks from CSWSH , and there’s a keylogger that uses DNS tunneling for data exfiltration. GitHub now offers code scanning autobix, while a Chrome vulnerability (CVE-2023-3079) threatens JavaScript engine security. "asploit" emerges as a new tool for server-side backdoors , and "Bob the Smuggler" adeptly hides malicious payloads using HTML Smuggling . OSTE-Meta-Scanner scans for w...
At SpecterOps, they found that Microsoft Exchange Server might lead to domain control attacks due to permission setups in Active Directory , unless mitigated by splitting permissions or restricting Exchange’s rights. MultiDump is a new tool avoiding Windows LSASS memory dump detection with encryption and requires updated parsing tools. Another article showcases how to exploit Android Jetpack Navigation to access any app fragment. Guillaume Caillé describes bypassing ‘Loader Lock ’ by DLL side-lo...
Techniques for discreetly loading DLLs using Windows Thread Pool API's and exploiting Windows kernel vulnerabilities through ROP chains are explained. Clément Amic focuses on exploiting Java deserialization flaws, and the GAP-Burp-Extension helps with fuzzing web apps. Learn a Direct Pointer execution method for shellcode, and check out RustRedOps , a Rust-based repository for Red Team tools. GitAlerts aids in monitoring sensitive files on GitHub, while an exploit, CVE-2023-6241 , is out for byp...
Today, Trail of Bits releasing weAudit , which helps with code auditing in VSCode. There's a tool called Instagram User ID Finder for users to find Instagram IDs without logging in. The site Kontragenta.net offers a database for verifying information about legal subjects and others. Various OSINT tools are listed for cyber intelligence like search engines, and domain info. A text talks about a free phone number search tool for investigating numbers. An expert released a kernel exploit analysis f...
Today, MapXplore is a tool that improts data from sqlmap to PostgreSQL or SQLite , makin it easer for searching and managing information. linWinPwn is a bash script for auditing and penetration testing Active Directory on Linux systems. There’s a new set of proof-of-concept modules for Windows OS kernel-mode rootkit techniques, focusing on various methods and compatible with 64-bit Windows 10 post the 2004 update. luijait created DarkGPT , an AI-based Open Source Intelligence tool that uses GPT-...
In a recent hacking challenge , participants aim to gain unauthorized administrative access on a Windows domain using various cyber-attack methods. Dorkish is a Chrome extension aiding in OSINT for better reconnaissance with custom search queries. An article explains advanced malware development techniques for executing malicious code stealthily by exploiting Windows features. LLM4Decompile is a new tool using language models for decompiling binary code for improved cybersecurity analysis. Shelt...
The International Monetary Fund's email system was hacked and they're looking into it but no other part of the system is in trouble. BunnyLoader 3.0 malware can steal logins and act like it's not bad stuff. The U.S. Department of Justice grabbed $2.3 million in cryptocurrency from Binance for a scam. Aylo Global Entertainment stopped people in Texas from going to PornHub and wants a new way to make sure users are old enough. Some guy from Moldova got in trouble for 42 months cause he ran a bad s...
The Tor Project made WebTunnel to help people avoid internet blocks. Cryptocurrency services share tools for secret money stuff. Google Chrome is fighting off bad websites now. There's trouble with eSIM swapping hurting bank safety. Mikhail Vasiliev got caught and is in jail now. A big problem happened with France Travail , showing a lot of people's personal info. Restoro and Reimage have to pay a lot for making mistakes. Microsoft 's new thing, Copilot for Security , is supposed to protect comp...
Researchers from Salt Labs discovered critical vulnerabilities in ChatGPT and GitHub , leading to rapid resolutions. A high-severity flaw in Kubernetes ( CVE-2023-5528 ) demands urgent patching for Windows nodes . Henry Onyedikachi Echefu 's involvement in a $6 million BEC scam underscores the FBI 's warning about rising BEC losses . PixPirate Android malware targets Brazil's Pix payment platform by avoiding launcher icon detection. BlackCat ransomware 's suspected exit scam follows the Change H...
