konik_polanowy

Osobistość

936wpisy
104komentarzy

https://lubimyczytac.pl/profil/127443/joker

konik_polanowy

Osobistość

w Ciekawostki 2022-07-04T00:04:51+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.07.04.md
2022 0-day In-the-Wild Exploitation…so far - https://googleprojectzero.blogspot.com/2022/06/2022-0-day-in-wild-exploitationso-far.html
Vulpes: Obfuscating Memory Regions with Timers - https://mez0.cc/posts/vulpes-obfuscating-memory-regions/
Moving MongoDB Cluster to a Different Environment with Percona Backup for MongoDB - https://www.percona.com/blog/moving-mongodb-cluster-to-a-different-environment-with-percona-backup-for-mongodb/
Tenet: A Trace Explorer for Reverse Engineers - https://blog.ret2.io/2021/04/20/tenet-trace-explorer/
Did You Know Your Browser’s Autofill Credentials Could Be Stolen via Cross-Site Scripting (XSS) - https://www.gosecure.net/blog/2022/06/29/did-you-know-your-browsers-autofill-credentials-could-be-stolen-via-cross-site-scripting-xss/

news-and-links/2022.07.04.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-07-02T00:27:58+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.07.01.md
CVE-2022-28219: Unauthenticated XXE to RCE and Domain Compromise - https://www.horizon3.ai/red-team-blog-cve-2022-28219/
Attacks on industrial control systems using ShadowPad - https://ics-cert.kaspersky.com/publications/reports/2022/06/27/attacks-on-industrial-control-systems-using-shadowpad/
Obstacles in Dart Decompilation & the Impact on Flutter™ App Security - https://www.guardsquare.com/blog/obstacles-in-dart-decompilation-and-the-impact-on-flutter-app-security
Malware Development for Dummies - https://github.com/chvancooten/maldev-for-dummies
Cryptographic failures in RF encryption allow stealing robotic devices - https://www.cossacklabs.com/blog/cryptographic-failures-in-rf-encryption/

news-and-links/2022.07.01.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-06-30T00:41:26+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.30.md
RISC-V Instruction-Set Cheatsheet - https://itnext.io/risc-v-instruction-set-cheatsheet-70961b4bbe8
AOL 3.0 is Back (DRAFT, 6/10/22) - https://g.livejournal.com/10829.html
The Current State and Future of Reversing Flutter™ Apps - https://www.guardsquare.com/blog/current-state-and-future-of-reversing-flutter-apps
Embedding Payloads and Bypassing Controls in Microsoft InfoPath - https://spaceraccoon.dev/embedding-payloads-bypassing-controls-microsoft-infopath/
Privilege Escalation Cheatsheet (Vulnhub) - https://github.com/Ignitetechnologies/Privilege-Escalation

news-and-links/2022.06.30.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

Zostań Patronem Hejto i odblokuj dodatkowe korzyści tylko dla Patronów

Włączona możliwość zarabiania na swoich treściach
Całkowity brak reklam na każdym urządzeniu
Oznaczenie w postaci rogala , który świadczy o Twoim wsparciu
Wcześniejszy dostęp, do wybranych funkcji na Hejto

konik_polanowy

Osobistość

w Ciekawostki 2022-06-28T14:43:28+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.28.md
Embedding Payloads and Bypassing Controls in Microsoft InfoPath - https://spaceraccoon.dev/embedding-payloads-bypassing-controls-microsoft-infopath/
A Kernel Hacker Meets Fuchsia OS - https://a13xp0p0v.github.io/2022/05/24/pwn-fuchsia.html
A Holistic Look on SLAAC and DHCPv6 - https://theinternetprotocolblog.wordpress.com/2021/01/04/a-holistic-look-on-slaac-and-dhcpv6/
The Secret Hacking Unit of the Israeli Military Darknet Diaries Ep. 28: Unit 8200 Breaking Secure Boot on Google Nest Hub (2nd Gen) to run Ubuntu - https://www.youtube.com/watch?v=jEZxNPIjAPo
ALL IN ONE Hacking Tool For Hackers - https://github.com/Z4nzu/hackingtool

news-and-links/2022.06.28.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-06-26T01:00:06+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.26.md
Breaking Secure Boot on Google Nest Hub (2nd Gen) to run Ubuntu - https://fredericb.info/2022/06/breaking-secure-boot-on-google-nest-hub-2nd-gen-to-run-ubuntu.html
Linux Threat Hunting: ‘Syslogk’ a kernel rootkit - https://decoded.avast.io/davidalvarez/linux-threat-hunting-syslogk-a-kernel-rootkit-found-under-development-in-the-wild/
reverse-shell-generator - https://github.com/0dayCTF/reverse-shell-generator
Offensive Windows IPC Internals 2: RPC - https://csandker.io/2021/02/21/Offensive-Windows-IPC-2-RPC.html
Hacking into the worldwide Jacuzzi SmartTub network - https://eaton-works.com/2022/06/20/hacking-into-the-worldwide-jacuzzi-smarttub-network/

news-and-links/2022.06.26.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-06-24T19:12:56+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.24.md
<br /> Linux.Nasty: Assembly x64 ELF virus - https://www.guitmz.com/linux-nasty-elf-virus/
Red Team Tactics: Utilizing Syscalls in C# - Prerequisite Knowledge - https://jhalon.github.io/utilizing-syscalls-in-csharp-1/
Dogwalk Proof-of-Conceptfeet - https://github.com/ariary/Dogwalk-rce-poc
iOS 16 - restricted Userclients - https://saaramar.github.io/ios16_restricted_iouserclients/
Ransomware Group Debuts Searchable Victim Data - https://krebsonsecurity.com/2022/06/ransomware-group-debuts-searchable-victim-data/

news-and-links/2022.06.24.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-06-22T00:38:10+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.22.md
Not all "Internet Connections" are Equal - https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/not-all-internet-connections-are-equal/
Linux Threat Hunting: ‘Syslogk’ a kernel rootkit - https://decoded.avast.io/davidalvarez/linux-threat-hunting-syslogk-a-kernel-rootkit-found-under-development-in-the-wild/
Hands-on: X25519 Key Exchange - https://x25519.ulfheim.net/
The Android kernel mitigations obstacle race - https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/
A not-so-common and stupid privilege escalation - https://decoder.cloud/2022/04/25/a-not-so-common-and-stupid-privilege-escalation/

news-and-links/2022.06.22.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-06-20T00:15:13+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.20.md
Guide to Reversing and Exploiting iOS binaries Part 2: ARM64 ROP Chains - https://www.inversecos.com/2022/06/guide-to-reversing-and-exploiting-ios.html
Android 101 - https://secrary.com/android-reversing/android101/
How to download eBooks from Google Play Store without paying for them - https://webs3c.com/t/how-to-download-ebooks-from-google-play-store-without-paying-for-them/79
Unbricking SHIELD TV (2015) with a Bootrom Exploit - https://yifan.lu/2022/06/17/unbricking-shield-tv-2015-with-a-bootrom-exploit/
Zimbra Email - Stealing Clear-Text Credentials via Memcache injection - https://blog.sonarsource.com/zimbra-mail-stealing-clear-text-credentials-via-memcache-injection/

news-and-links/2022.06.20.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-06-18T00:18:05+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.18.md
Awesome list of secrets in environment variables - https://github.com/Puliczek/awesome-list-of-secrets-in-environment-variables
V8 Heap pwn and /dev/memes - WebOS Root LPE - https://www.da.vidbuchanan.co.uk/blog/webos-wampage.html
MS-FSRVP coercion abuse PoC - https://github.com/ShutdownRepo/ShadowCoerce
Course repository for PowerShell for Pentesters Course - https://github.com/dievus/PowerShellForPentesters
Analysis and reverse-engineering of the original Starlink router - https://olegkutkov.me/2021/12/25/analysis-and-reverse-engineering-of-the-original-starlink-router/

news-and-links/2022.06.18.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-06-16T00:28:34+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.16.md
Maintained collection of OSINT related resources - https://github.com/Ph055a/OSINT_Collection
The Race To Zero Defects In Auto ICs - https://semiengineering.com/the-race-to-zero-defects-in-auto-ics/
CVE-2022-26937: Microsoft Windows Network File System NLM Portmap Stack Buffer Overflow - https://www.zerodayinitiative.com/blog/2022/6/7/cve-2022-26937-microsoft-windows-network-file-system-nlm-portmap-stack-buffer-overflow
Scan installed EDRs and AVs on Windows - https://github.com/FourCoreLabs/EDRHunt
Reverse engineering the 1988 NeXT keyboard protocol - https://journal.spencerwnelson.com/entries/nextkb.html

news-and-links/2022.06.16.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-06-14T00:42:13+02:00

ink on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.14.md
Cracking 22 year old DRM: Pac-Man Adventures in Time - https://openpunk.com/pages/cracking-22-yr-old-drm/
Khepri Post-exploiton tool written in Golang and C++ - https://github.com/geemion/Khepri
CVE-2019-13382: Local Privilege Escalation in SnagIt - https://enigma0x3.net/2019/07/24/cve-2019-13382-privilege-escalation-in-snagit/
TA570 Qakbot (Qbot) tries CVE-2022-30190 (Follina) exploit - https://isc.sans.edu/diary/28728
Pwn2Own 2021 Canon ImageCLASS MF644Cdw writeup - https://doar-e.github.io/blog/2022/06/11/pwn2own-2021-canon-imageclass-mf644cdw-writeup/

news-and-links/2022.06.14.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-06-12T00:14:54+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.12.md
A journey into IoT – Unknown Chinese alarm – Part 2 – Firmware dump and analysis - https://security.humanativaspa.it/a-journey-into-iot-unknow-chinese-alarm-part-2-firmware-dump-and-analysis/
Understanding Follina (CVE-2022-30190) - Malware for Fun - https://www.youtube.com/watch?v=G_CFSF4Vh-s
Does a USB drive get heavier as you store more files on it? - https://www.sciencefocus.com/future-technology/does-a-usb-drive-get-heavier-as-you-store-more-files-on-it/
Exploration of the Dirty Pipe Vulnerability (CVE-2022-0847) - https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/
A Story of a Bug Found Fuzzing - https://microsoftedge.github.io/edgevr/posts/a-story-of-a-bug-found-fuzzing/

news-and-links/2022.06.12.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-06-10T00:28:45+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.10.md
Subdomain Enumeration & Analysis - https://github.com/Screetsec/Sudomy
x86-64 Assembler based on Zydis - https://github.com/zyantific/zasm
Hardware-accelerated virtual machines on jailbroken iPhone 12 / iOS 14.1 - https://worthdoingbadly.com/hv/
ACTIVE DIRECTORY #00 Creating our Server + Workstation Virtual Environment - https://www.youtube.com/watch?v=pKtDQtsubio
Brute force attacks against Windows Remote Desktop - https://trunc.org/learning/brute-force-attacks-against-windows-remote-desktop

news-and-links/2022.06.10.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-06-08T00:28:31+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.08.md
UPnProxyChain: a Tool to Exploit Devices Vulnerable to UPnProxy - https://shufflingbytes.com/posts/upnproxychain-a-tool-to-exploit-devices-vulnerable-to-upnproxy/
How NAT traversal works - https://tailscale.com/blog/how-nat-traversal-works/
Weird Ways to Run Unmanaged Code in .NET - https://blog.xpnsec.com/weird-ways-to-execute-dotnet/
Creating a backdoor in PAM in 5 line of code - https://0x90909090.blogspot.com/2016/06/creating-backdoor-in-pam-in-5-line-of.html
CVE Farming through Software Center – A group effort to flush out zero-day privilege escalations - https://clearbluejar.github.io/posts/mining-google-chrome-cve-data/

news-and-links/2022.06.08.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-06-06T00:17:54+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.06.md
SSD Advisory – Rocket.Chat Client-side Remote Code Execution https://ssd-disclosure.com/ssd-advisory-rocket-chat-client-side-remote-code-execution/
Conti RaaS group chat leaked (English translation) https://github.com/hardenedvault/bootkit-samples/blob/master/osint/conti_leaked_chat.md
Arbitrary File Upload Tricks In Java https://pyn3rd.github.io/2022/05/07/Arbitrary-File-Upload-Tricks-In-Java/
Turbo Intruder: Embracing the billion-request attack https://clearbluejar.github.io/posts/mining-google-chrome-cve-data/
Mining Google Chrome CVE data https://clearbluejar.github.io/posts/mining-google-chrome-cve-data/

news-and-links/2022.06.06.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-06-04T00:41:18+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.04.md
WELA (Windows Event Log Analyzer - https://github.com/Yamato-Security/WELA
Malware Analysis Report – APT29 C2-Client Dropbox Loader - https://github.com/Dump-GUY/Malware-analysis-and-Reverse-engineering/blob/main/APT29_C2-Client_Dropbox_Loader/APT29-DropboxLoader_analysis.md
Twitch Internal Security Tools: In-depth Analysis of the Leaked Twitch Security Tools - https://mazinahmed.net/blog/indepth-analysis-twitch-security-tools/
All the Fake Data for All Your Real Needs - https://github.com/ngneat/falso
Advanced SQL Injection Cheatsheet - https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet

news-and-links/2022.06.04.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-06-02T00:14:15+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.06.02.md
The printer goes brrrrr!!! - https://www.synacktiv.com/en/publications/the-printer-goes-brrrrr.html
npm security update: Attack campaign using stolen OAuth tokens - https://github.blog/2022-05-26-npm-security-update-oauth-tokens/
Hacking Ham Radio: WinAPRS – Part 5 - https://www.coalfire.com/the-coalfire-blog/hacking-ham-radio-winaprs-part-5
Laserlock RE Techical Paper - https://www.lucadamico.dev/papers/laserlock/Evolva.pdf
DEF CON 26 - Sean Metcalf - Exploiting Active Directory Administrator Insecurities - https://www.youtube.com/watch?v=ze1UcSLOypw

news-and-links/2022.06.02.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-05-31T00:13:13+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.05.31.md
Hacking Ham Radio: WinAPRS – Part 1 - https://www.coalfire.com/the-coalfire-blog/hacking-ham-radio-winaprs-part1
Working with 010 Hex-Editor - https://www.youtube.com/playlist?list=PLCS2zI95IiNwheFCTaUEytA1GT0mNOOdn
CppCon 2017: James McNellis “Everything You Ever Wanted to Know about DLLs” - https://www.youtube.com/watch?v=JPQWQfDhICA
Zyxel firmware extraction and password analysis - https://security.humanativaspa.it/zyxel-firmware-extraction-and-password-analysis/
.ISO Files With Office Maldocs & Protected View in Office 2019 and 2021 - https://blog.didierstevens.com/2022/04/04/iso-files-with-office-maldocs-protected-view-in-office-2019-and-2021/

news-and-links/2022.05.31.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-05-29T00:35:01+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.05.29.md
New Research Paper: Pre-hijacking Attacks on Web User Accounts - https://msrc-blog.microsoft.com/2022/05/23/pre-hijacking-attacks/
ELF file viewer/editor f or Windows, Linux and MacOS - https://github.com/horsicq/XELFViewer
Apple, Google and Microsoft Commit to Expanded Support for FIDO Standard to Accelerate Availability of Passwordless Sign-Ins - https://fidoalliance.org/apple-google-and-microsoft-commit-to-expanded-support-for-fido-standard-to-accelerate-availability-of-passwordless-sign-ins/
Automated Crossword Solving - https://arxiv.org/pdf/2205.09665.pdf
Take domains on stdin and output them on stdout if they get resolved - https://github.com/thelicato/fire

news-and-links/2022.05.29.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

konik_polanowy

Osobistość

w Ciekawostki 2022-05-27T00:40:45+02:00

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.05.27.md
mip22 is a advanced phishing tool - https://github.com/makdosx/mip22
Fuzzing ClamAV with real malware samples - https://mmmds.pl/clamav/
S4fuckMe2selfAndUAndU2proxy - A low dive into Kerberos delegations - https://luemmelsec.github.io/S4fuckMe2selfAndUAndU2proxy-A-low-dive-into-Kerberos-delegations/
Programming Attacks Using RISC-V Instruction Trace Data - https://ieeexplore.ieee.org/document/9762913
A fully-modern text-based browser, rendering to TTY and browsers - https://github.com/browsh-org/browsh

news-and-links/2022.05.27.md at gh-pages · Nieuport/news-and-links

Contribute to Nieuport/news-and-links development by creating an account on GitHub.

GitHub

Zaloguj się aby komentować

Poprzednia strona

34 35 36

Następna strona