Spoofing Microsoft 365 Like It’s 1995 - Black Hills Information Security
https://www.blackhillsinfosec.com/spoofing-microsoft-365-like-its-1995/
Revisiting a Credential Guard Bypass | itm4n's blog
https://itm4n.github.io/credential-guard-bypass/
European Cybersecurity Blogger Awards - VOTE FOR YOUR WINNERS
https://docs.google.com/forms/d/e/1FAIpQLSdNDzjvToMSq36YkIHQWwhma90SR0E9rLndflZ3Cu_gVI2Axw/viewform
Shivan Kaul Sahib on Twitter: "This is shocking. DuckDuckGo has a search deal with Microsoft which prevents them from blocking MS trackers. And they can't talk about it! This is why privacy products that are beholden to giant corporations can never deliver true privacy; the business model just doesn't work. https://t.co/bzxw8vaxsy" / Twitter
https://twitter.com/shivan_kaul/status/1528879590772338689
x86_opcode_structure_and_instruction_overview.pdf
https://pnx.tf/files/x86_opcode_structure_and_instruction_overview.pdf
InterProcessCommunication-Samples/ALPC/CPP-ALPC-Basic-Client-Server at master · csandker/InterProcessCommunication-Samples · GitHub
https://github.com/csandker/InterProcessCommunication-Samples/tree/master/ALPC/CPP-ALPC-Basic-Client-Server
Offensive Windows IPC Internals 3: ALPC · csandker.io
https://csandker.io/2022/05/24/Offensive-Windows-IPC-3-ALPC.html
European Cybersecurity Blogger Awards - VOTE FOR YOUR WINNERS
https://forms.gle/uMJwq2mtV3AYdwkS8
grsecurity - Tetragone: A Lesson in Security Fundamentals
https://grsecurity.net/tetragone_a_lesson_in_security_fundamentals
Release v2.3.1 · JPCERTCC/EmoCheck · GitHub
https://github.com/JPCERTCC/EmoCheck/releases/tag/v2.3.1
Somdev Sangwan on Twitter: "🚨 ALERT 🚨 Python's ctx library and a fork of PHP's phpass have been compromised. 3 million users combined. The malicious code sends all the environment variables to a heroku app, likely to mine AWS credentials." / Twitter
https://twitter.com/s0md3v/status/1529005758540808192
Shadow Chaser Group on Twitter: "Today our researchers have found sample which maybe belongs to #Lazarus(#Dangerouspassword) APT group ITW:f03dad1037de1748ec6b4824a46b403a filename:UST Stablecoin Analysis (Protected).zip ITW:6f69d65470e49709ba4ee9673ea95367 filename: Password.txt.lnk https://t.co/JZ3FQwH1bD" / Twitter
https://twitter.com/ShadowChasing1/status/1528908080972693505
Researchers to release exploit for new VMware auth bypass, patch now
https://www.bleepingcomputer.com/news/security/researchers-to-release-exploit-for-new-vmware-auth-bypass-patch-now/
2254 - Zoom: Remote Code Execution with XMPP Stanza Smuggling - project-zero
https://bugs.chromium.org/p/project-zero/issues/detail?id=2254
PSBits/SetAppLockerHashCache.c at master · gtworek/PSBits · GitHub
https://github.com/gtworek/PSBits/blob/master/CopyEAs/SetAppLockerHashCache.c
GitHub - improsec/SharpEventPersist: Persistence by writing/reading shellcode from Event Log
https://github.com/improsec/SharpEventPersist
The faces from China’s Uyghur detention camps
https://www.bbc.co.uk/news/extra/85qihtvw6e/the-faces-from-chinas-uyghur-detention-camps
GitHub - lowleveldesign/comon: A WinDbg extension to trace COM interactions
https://github.com/lowleveldesign/comon
2022 Data Breach Investigations Report | Verizon
https://verizon.com/dbir
Microsoft Warns of Web Skimmers Mimicking Google Analytics and Meta Pixel Code
https://thehackernews.com/2022/05/microsoft-warns-of-web-skimmers.html
Russian Offensive Campaign Assessment, May 23 | Institute for the Study of War
https://isw.pub/RusCampaignMay23
Russian Offensive Campaign Assessment, May 22 | Institute for the Study of War
https://isw.pub/RusCampaignMay22
tweets/2022-05-23-IOCs-for-IcedID-and-DarkVNC.txt at master · pan-unit42/tweets · GitHub
https://bit.ly/3wOk4ef
Conti Ransomware Operation Shut Down After Splitting into Smaller Groups
https://thehackernews.com/2022/05/conti-ransomware-gang-shut-down-after.html
Yashma Ransomware, Tracing the Chaos Family Tree
https://blogs.blackberry.com/en/2022/05/yashma-ransomware-tracing-the-chaos-family-tree
Someone Stole Seth Green's Bored Ape And Star Of His New NFT Show
https://www.buzzfeednews.com/article/sarahemerson/seth-green-bored-ape-stolen-tv-show
unusual_whales on Twitter: "Monkeypox outbreak is primarily spreading through sex, WHO officials say." / Twitter
https://twitter.com/unusual_whales/status/1528791203700805632