GitHub - Wh04m1001/DFSCoerce
https://github.com/Wh04m1001/DFSCoerce
The ugly side of collaboration in bug bounties
https://shubs.io/the-ugly-side-of-collaboration-in-bug-bounties/
CVE-2022-26809 Reaching Vulnerable Point starting from 0 Knowledge on RPC | Just Another Blog
https://s1ckb017.github.io/2022/06/17/CVE-2022-26809-Server-Side-vulnerable-point-reachability.html
David Ledbetter on Twitter: "Anyone have any Jobs I can start within a week for my skillset ? I'm IDA Challenged and Never used splunk.. So probably not.." / Twitter
https://twitter.com/Ledtech3/status/1538198903094394880
GitHub - s1ckb017/PoC-CVE-2022-26809: PoC for CVE-2022-26809, analisys and considerations are shown in the github.io.
https://github.com/s1ckb017/PoC-CVE-2022-26809
Zakk Cash on Twitter: "@mcuban just saved my life making my seizure medication affordable. 💕 https://t.co/8gyPIICv0g" / Twitter
https://twitter.com/zakk_cash/status/1538178191751192577
A Public Statement re: the actions of BSides Cleveland and the handling of the Chris Hadnagy talk – Skytalks
https://skytalks.info/a-public-statement-re-the-actions-of-bsides-cleveland-and-the-handling-of-the-chris-hadnagy-talk/
Jonas L on Twitter: "New DLL injection method- auto inject into all should be possible. https://t.co/vYQLHtLD0G" / Twitter
https://twitter.com/jonaslyk/status/1352729173631135751?lang=en
How I Found multiple SQL Injection with FFUF and Sqlmap in a few minutes | by Mahmoud Youssef | Medium
https://link.medium.com/AkUscaTUYqb
Azure Attack Paths: Common Findings and Fixes (Part 1)
https://blog.zsec.uk/azure-fundamentals-pt1/
The Beer Farmers - BeerCon4: All Together Now
https://beercon.tv/cfp
Brute Ratel C4 v/s Nighthawk and Open Source Sleep Obfuscation Techniques - YouTube
https://youtu.be/nB5QHVtN9_g
Malware Hell
https://c3rb3ru5d3d53c.github.io/docs/kvm-malware-lab/
GitHub - NtQuerySystemInformation/NlsCodeInjectionThroughRegistry: Dll injection through code page id modification in registry. Based on jonas lykk research
https://github.com/NtQuerySystemInformation/NlsCodeInjectionThroughRegistry
The Beer Farmers - YouTube
https://beercon.tv/youtube
GitHub - joe-desimone/patriot
https://github.com/joe-desimone/patriot
InfoSec Handlers Diary Blog - SANS Internet Storm Center
https://i5c.us/d28762
Nmap & CrackMapExec (CME) – PwnDefend
https://www.pwndefend.com/2022/06/19/nmap-crackmapexec-cme/
SEC670: Red Team Ops – Windows Tool Development Preview | SANS Institute
https://www.sans.org/u/1lCG
Android 101 | secrary[dot]com
https://secrary.com/android-reversing/android101/![Android 101 | secrary[dot]com](/image/screenshot/561dca3de2c97c80a35123747a639207.webp)
BSidesCleveland on Twitter: "We communicated with him between then and now, and when he felt like he might be at a point to get back to speaking, we added a Special Guest to the lineup. Two weeks ago Chris confirmed he would like to try to speak, and we neglected to remove the Special Guest on the lineup." / Twitter
https://twitter.com/bsidescleveland/status/1538225678180667392
Seth Abramovitch on Twitter: "Don’t emasculate your dad with “brunch”" / Twitter
https://twitter.com/sethabramovitch/status/1538533877244841984
Oh my API, abusing TYK cloud API management to hide your malicious C2 traffic - Shells.Systems
https://shells.systems/oh-my-api-abusing-tyk-cloud-api-management-service-to-hide-your-malicious-c2-traffic/
5pider on Twitter: "Ekko Sleep Obfuscation by using CreateTimerQueueTimer to queue the ROP Chain that performs the sleep obfuscation. https://t.co/DiZt4NDDVn" / Twitter
https://twitter.com/C5pider/status/1537947267159625730
Access denied
https://www.bleepingcomputer.com/news/security/android-wiping-brata-malware-is-evolving-into-a-persistent-threat/
MITMPcap - A Script that allows you to capture pcaps with TLS secrets for later analysis in Wireshark · GitHub
https://gist.github.com/c3rb3ru5d3d53c/d9eb9d752882fcc630d338a6b2461777
Access denied
https://www.bleepingcomputer.com/news/security/cisco-says-it-won-t-fix-zero-day-rce-in-end-of-life-vpn-routers/
web3 is going just great on Twitter: "The proposal passed with 1.15 million votes in support and 30,101 votes against. One single voter provided 1 million of the "yes" votes, passing the proposal. https://t.co/tlgb7z3AWm" / Twitter
https://twitter.com/web3isgreat/status/1538548028872826880
How I Became a Network Engineer at Cisco - YouTube
https://youtu.be/MbTEOkku3Rg
GitHub - algorand/go-sumhash
https://github.com/algorand/go-sumhash
Unbricking SHIELD TV (2015) with a Bootrom Exploit | Yifan Lu
https://yifan.lu/2022/06/17/unbricking-shield-tv-2015-with-a-bootrom-exploit/
GitHub - daffainfo/Oneliner-Bugbounty: A collection oneliner scripts for bug bounty
https://github.com/daffainfo/Oneliner-Bugbounty
SSRF to a Full Account Takeover (ATO) | by Kwadwo Amoako | Medium
https://link.medium.com/n9oHmEkVYqb
Exposing Earth Berberoka: A Multiplatform APT Campaign Targeting Online Gambling Sites - Security News
https://research.trendmicro.com/3MMQ7lz
strandjs on Twitter: "First, I want to apologize to the @BSidesCleveland attendees. I will not be presenting. Second, we did not know about this in advance. Finally, I will be giving my presentation online in the near future. This situation sucks." / Twitter
https://twitter.com/strandjs/status/1538215084723429382
GitHub - alufers/mitmproxy2swagger: Automagically reverse-engineer REST APIs via capturing traffic
https://github.com/alufers/mitmproxy2swagger
Access denied
https://www.bleepingcomputer.com/news/security/new-phishing-attack-infects-devices-with-cobalt-strike/
mal_unpack_py/mal_unpack_lib at master · hasherezade/mal_unpack_py · GitHub
https://github.com/hasherezade/mal_unpack_py/tree/master/mal_unpack_lib
mitmhttp - a simple mitmproxy http redirector tool · GitHub
https://gist.github.com/c3rb3ru5d3d53c/3bc8041a182467ccae0207394c1e16b3
👑 The Flying CISO 🦄 on Twitter: "So @BSidesCleveland chose to ambush attendees with a "surprise speaker" who is a man publicly banned from another con series for violating their CoC. I'm sure they'll say the secrecy had nothing to do with the fact that many don't feel safe around him and would not have come. 1/" / Twitter
https://twitter.com/alyssam_infosec/status/1538153729135878146
GitHub - AnLoMinus/Bug-Bounty: Bug Bounty ~ Awesomes | Books | Cheatsheets | Checklists | Tools | Wordlists | More
https://github.com/Anlominus/Bug-Bounty
Experts warn of a new eCh0raix ransomware campaign targeting QNAP NAS - Security AffairsSecurity Affairs
https://securityaffairs.co/wordpress/132410/cyber-crime/ech0raix-ransomware-attacks.html
Binni Shah on Twitter: "mitmproxy2swagger : Automagically reverse-engineer REST APIs via capturing traffic : https://t.co/pdzd3p5jnE https://t.co/71lLcgXglN" / Twitter
https://twitter.com/binitamshah/status/1538096432779251712
ςεяβεяμs - мαℓωαяε яεsεαяςнεя on Twitter: "Ultimate #Malware #Analysis #KVM Guide ✅ PFSense Router ✅ Remnux VM as Gateway ✅ Windows Dynamic Analysis VM ✅ Spice Agent and Guest Tools ✅ Anonymous VPN Networking ✅ List Malware Analysis Tools (my top picks) https://t.co/QzmlE8e4o5 https://t.co/nVxKUrJ6pG" / Twitter
https://twitter.com/c3rb3ru5d3d53c/status/1538116188118695938
https://securereload.tech/Phishing/Lists/Latest/
https://securereload.tech/Phishing/Lists/Latest/
What It Means that the U.S. Is Conducting Offensive Cyber Operations Against Russia
https://zetter.substack.com/p/what-it-means-that-the-us-is-conducting
GitHub - S3cur3Th1sSh1t/PowerSharpPack
https://github.com/S3cur3Th1sSh1t/PowerSharpPack
Blocking ISO mounting on Windows : blueteamsec
http://dlvr.it/SSSX96
