Put an io_uring on it: Exploiting the Linux Kernel - Blog | Grapl
https://www.graplsecurity.com/post/iou-ring-exploiting-the-linux-kernel
Revisiting Phishing Simulations. Rethinking the way that we approach… | by SpecterOps | Posts By SpecterOps Team Members
https://posts.specterops.io/revisiting-phishing-simulations-94d9cd460934
Oracle Access Manager Pre-Auth RCE (CVE-2021–35587 Analysis) | by Jang | Medium
https://testbnull.medium.com/oracle-access-manager-pre-auth-rce-cve-2021-35587-analysis-1302a4542316
MalwareBazaar | SHA256 cfb899331aa5fefe8580a9272df61dbfcd29bcfb218081a4d071764ac2100777 (CoinMiner)
https://bazaar.abuse.ch/sample/cfb899331aa5fefe8580a9272df61dbfcd29bcfb218081a4d071764ac2100777/
Bypassing EDR Real-Time Injection Detection Logic - RedBluePurple
https://blog.redbluepurple.io/offensive-research/bypassing-injection-detection
GitHub - cube0x0/SyscallPack: BOF and Shellcode for full DLL unhooking using dynamic syscalls
https://github.com/cube0x0/SyscallPack
Does This Look Infected? A Summary of APT41 Targeting U.S. State Governments | Mandiant
https://www.mandiant.com/resources/apt41-us-state-governments
vx-underground - Directory
https://samples.vx-underground.org/APTs/2022/2022.03.01(1)/Samples/
Introducing RunOF - Arbitrary BOF tool - Nettitude Labs
https://labs.nettitude.com/blog/introducing-runof-arbitrary-bof-tool/
Emotet Redux - Lumen
https://blog.lumen.com/emotet-redux/
APC UPS zero-day bugs can remotely burn out devices, disable power
https://www.bleepingcomputer.com/news/security/apc-ups-zero-day-bugs-can-remotely-burn-out-devices-disable-power/
SpecterOps 🇺🇦 on Twitter: "As the state of security continues to evolve, we decided it was time to renew our approach to phishing during red team operations. Today, we're outlining our plans to make initial access ops more valuable to our customers. Read more here: https://t.co/BRiBLceiJN" / Twitter
https://twitter.com/SpecterOps/status/1501611285607239686
Tavis Ormandy on Twitter: "@h4knet Yes, offensive security tools. There's a group of Mandiant people being obnoxious about it and spamming their agendas on twitter." / Twitter
https://twitter.com/taviso/status/1210595769297686529
The secret US mission to bolster Ukraine’s cyber defences ahead of Russia’s invasion | Financial Times
https://www.ft.com/content/1fb2f592-4806-42fd-a6d5-735578651471
Cisco Talos Intelligence Group - Comprehensive Threat Intelligence: Threat advisory: Cybercriminals compromise users with malware disguised as pro-Ukraine cyber tools
https://blog.talosintelligence.com/2022/03/threat-advisory-cybercriminals.html
Malware-IOCs/2022-03-09_CobaltStrikeConfigs at main · CronUp/Malware-IOCs · GitHub
https://github.com/CronUp/Malware-IOCs/blob/main/2022-03-09_CobaltStrikeConfigs
Roblox Players Are Mining Crypto Just to Get Robux
https://www.vice.com/en/article/epxkmk/roblox-mine-robux-cryptocurrency
Inside Conti leaks: The Panama Papers of ransomware - The Record by Recorded Future
https://therecord.media/conti-leaks-the-panama-papers-of-ransomware/
Chinese APT41 Hackers Broke into at Least 6 U.S. State Governments: Mandiant
https://thehackernews.com/2022/03/chinese-apt41-hackers-broke-into-at.html
Cobalt Strike Roadmap Update - Cobalt Strike Research and Development
https://www.cobaltstrike.com/blog/cobalt-strike-roadmap-update/
Expert IT Training for Networking, Cyber Security and Cloud | INE
https://bit.ly/3tCo0wS
Attacking and Defending Active Directory Lab
https://bit.ly/2AXXbM2
Erin Reed on Twitter: "Idaho's house just passed HB 675. It passed by a vote of 55-13. It would make providing gender affirming care to trans teens a felony with a life sentence.. Worse... it makes leaving the state with your trans teen to move elsewhere and provide them with care a felony as well. https://t.co/k3jX086h9a" / Twitter
https://twitter.com/ErinInTheMorn/status/1501314842992467975
Triage | Malware sandboxing report by Hatching Triage
http://tria.ge/220309-awfdeseebq
Kostas on Twitter: "I usually make short-form satirical videos for fun, but never share them with the world. This time tho, I thought I'd make one for the infosec community. Some might even find it educational 😅 If you're in #infosec and you feel a little down this week, this video is for you💙 https://t.co/bxzQ2W77kP" / Twitter
https://twitter.com/Kostastsale/status/1501543323521138695
Critical RCE Bugs Found in Pascom Cloud Phone System Used by Businesses
https://thehackernews.com/2022/03/critical-rce-bugs-found-in-pascom-cloud.html
Chinese phishing actors consistently targeting EU diplomats
https://www.bleepingcomputer.com/news/security/chinese-phishing-actors-consistently-targeting-eu-diplomats/
APNIC on Twitter: "Threat hunting with Yara. @vkamluk shares the first post in a series detailing real-life examples of advanced #Yara use: https://t.co/1TtGEWHWik #ThreatHunting #security" / Twitter
https://twitter.com/apnic/status/1501344612861968389
chompie on Twitter: "Thrilled to share my new blog post: Put an io_uring on it: Exploiting the Linux kernel. Follow me while I learn a new kernel subsystem + its attack surface, find an 0day, build an exploit, + come up with some new tricks. I go deep and demystify the process https://t.co/bGEHcjWXrP" / Twitter
https://twitter.com/chompie1337/status/1501267770473734146
REcon - Home
https://recon.cx
Glance by Mirametrix Vulnerability - Lenovo Support US
https://support.lenovo.com/us/en/product_security/LEN-78115
Critical Security Patches Issued by Microsoft, Adobe and Other Major Software Firms
https://thehackernews.com/2022/03/critical-security-patches-issued-by.html
410 account suspended — Medium
https://monochelsea12.medium.com/best-papers-to-read-on-nlp-2d83d5e8f104?source=rss------deep_learning-5