Yaniv Nizry on Twitter: "Stay tuned for a blogpost ;) https://t.co/D56WpVsuF3" / Twitter
https://twitter.com/YNizry/status/1475764153373573120
LastPass users warned their master passwords are compromised
https://www.bleepingcomputer.com/news/security/lastpass-users-warned-their-master-passwords-are-compromised/
Playing around COM objects - PART 1 - Red Teaming's Dojo
https://mohamed-fakroud.gitbook.io/t3nb3w/playing-around-com-objects-part-1#before-hooking
Introduction · Reverse Engineering
https://0xinfection.github.io/reversing/
Turning bad SSRF to good SSRF: Websphere Portal (CVE-2021-27748) – Assetnote
https://blog.assetnote.io/2021/12/26/chained-ssrf-websphere/
Ask HN: How did my LastPass master password get leaked? | Hacker News
https://news.ycombinator.com/item?id=29705957
RedLine malware shows why passwords shouldn't be saved in browsers
https://www.bleepingcomputer.com/news/security/redline-malware-shows-why-passwords-shouldnt-be-saved-in-browsers/
Log4j – Apache Log4j Security Vulnerabilities
https://logging.apache.org/log4j/2.x/security.html
Releases · hasherezade/hollows_hunter
https://github.com/hasherezade/hollows_hunter/releases/
Releases · hasherezade/pe-sieve
https://github.com/hasherezade/pe-sieve/releases/
[LOG4J2-3293] JDBC Appender should use JNDI Manager and JNDI access should be limited. - ASF JIRA
https://issues.apache.org/jira/browse/LOG4J2-3293![[LOG4J2-3293] JDBC Appender should use JNDI Manager and JNDI access should be limited. - ASF JIRA](/image/screenshot/ec52586804fa06e42bcfd59343a314fd.webp)
V8 Heap pwn and /dev/memes - WebOS Root LPE | Blog
https://www.da.vidbuchanan.co.uk/blog/webos-wampage.html
Expert IT Training for Networking, Cyber Security and Cloud | INE
https://bit.ly/3m6RG2d
optee-qemu/README.md at main · pjlantz/optee-qemu · GitHub
https://github.com/pjlantz/optee-qemu/blob/main/README.md
Active Defense & Cyber Deception w/ John Strand - Antisyphon
https://www.antisyphontraining.com/active-defense-cyber-deception-w-john-strand/
Experts Detail Logging Tool of DanderSpritz Framework Used by Equation Group Hackers
https://thehackernews.com/2021/12/experts-detail-logging-tool-of.html
「Emotet(エモテット)」と呼ばれるウイルスへの感染を狙うメールについて:IPA 独立行政法人 情報処理推進機構
https://www.ipa.go.jp/security/announce/20191202.html
0xbb - PHP LFI with Nginx Assistance
https://bierbaumer.net/security/php-lfi-with-nginx-assistance/
CS6038/CS5138 Malware Analysis, UC by ckane
https://class.malware.re/
GitHub - klezVirus/vortex: VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit
https://github.com/klezVirus/vortex