Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2022.02.02.md
Intro to Embedded RE Part 1: Tools and Series Overview - https://voidstarsec.com/blog//2022/01/17/intro-to-embedded-part-1
MoonBounce: the dark side of UEFI firmware - https://securelist.com/moonbounce-the-dark-side-of-uefi-firmware/105468/
Unauthenticated Dumping of Usernames via Cisco Unified Call Manager (CUCM) - https://www.n00py.io/2022/01/unauthenticated-dumping-of-usernames-via-cisco-unified-call-manager-cucm
Moodle: Blind SQL Injection (CVE-2021-36393) and Broken Access Control (CVE-2021-36397) - https://0xkasper.com/articles/moodle-sql-injection-broken-access-control.html
Practical HTTP Header Smuggling: Sneaking Past Reverse Proxies to Attack AWS and Beyond - https://www.youtube.com/watch?v=RAtpG6OYYNM&list=PLH15HpR5qRsW62N-GLRb1q56Zr7sm10rF&t=1s
Intro to Embedded RE Part 1: Tools and Series Overview - https://voidstarsec.com/blog//2022/01/17/intro-to-embedded-part-1
MoonBounce: the dark side of UEFI firmware - https://securelist.com/moonbounce-the-dark-side-of-uefi-firmware/105468/
Unauthenticated Dumping of Usernames via Cisco Unified Call Manager (CUCM) - https://www.n00py.io/2022/01/unauthenticated-dumping-of-usernames-via-cisco-unified-call-manager-cucm
Moodle: Blind SQL Injection (CVE-2021-36393) and Broken Access Control (CVE-2021-36397) - https://0xkasper.com/articles/moodle-sql-injection-broken-access-control.html
Practical HTTP Header Smuggling: Sneaking Past Reverse Proxies to Attack AWS and Beyond - https://www.youtube.com/watch?v=RAtpG6OYYNM&list=PLH15HpR5qRsW62N-GLRb1q56Zr7sm10rF&t=1s
Zaloguj się aby komentować