07/05
07/06
07/07
31 Posts

Apple expands commitment to protect users from mercenary spyware - Apple

https://www.apple.com/newsroom/2022/07/apple-expands-commitment-to-protect-users-from-mercenary-spyware/
Apple expands commitment to protect users from mercenary spyware - Apple
27 Posts

Account hijacking using "dirty dancing" in sign-in OAuth-flows - Detectify Labs

https://labs.detectify.com/2022/07/06/account-hijacking-using-dirty-dancing-in-sign-in-oauth-flows/
Account hijacking using "dirty dancing" in sign-in OAuth-flows - Detectify Labs
21 Posts

2271 - Windows: Kerberos Redirected Logon Buffer EoP - project-zero

https://bugs.chromium.org/p/project-zero/issues/detail?id=2271
2271 - Windows: Kerberos Redirected Logon Buffer EoP - project-zero
15 Posts

talks/unorthodox-lateral-movement.pdf at master · RiccardoAncarani/talks · GitHub

https://github.com/RiccardoAncarani/talks/blob/master/F-Secure/unorthodox-lateral-movement.pdf
talks/unorthodox-lateral-movement.pdf at master · RiccardoAncarani/talks · GitHub
13 Posts

Brute Ratel C4 Red Teaming Tool Being Abused by Malicious Actors

https://unit42.paloaltonetworks.com/brute-ratel-c4-tool/
Brute Ratel C4 Red Teaming Tool Being Abused by Malicious Actors
11 Posts

Game Of Active Directory v2 | Mayfly

https://mayfly277.github.io/posts/GOADv2/
Game Of Active Directory v2 | Mayfly
10 Posts

Threat report: Maui ransomware - Stairwell

https://stairwell.com/news/threat-research-report-maui-ransomware/
Threat report: Maui ransomware - Stairwell
9 Posts

A Diamond (Ticket) in the Ruff | Semperis

https://www.semperis.com/blog/a-diamond-ticket-in-the-ruff/
A Diamond (Ticket) in the Ruff | Semperis
8 Posts

Hive Ransomware Upgrades to Rust for More Sophisticated Encryption Method

https://thehackernews.com/2022/07/hive-ransomware-upgrades-to-rust-for.html
Hive Ransomware Upgrades to Rust for More Sophisticated Encryption Method
7 Posts

Bitter APT Hackers Continue to Target Bangladesh Military Entities

https://thehackernews.com/2022/07/bitter-apt-hackers-continue-to-target.html
Bitter APT Hackers Continue to Target Bangladesh Military Entities
7 Posts

MalwareBazaar | SHA256 3bb0e8547e8c04387ae9cf9ea4beceb76efb5cc59fcdb750d25172b9b2efb6af (IcedID)

https://bazaar.abuse.ch/sample/3bb0e8547e8c04387ae9cf9ea4beceb76efb5cc59fcdb750d25172b9b2efb6af/
MalwareBazaar | SHA256 3bb0e8547e8c04387ae9cf9ea4beceb76efb5cc59fcdb750d25172b9b2efb6af (IcedID)
7 Posts

Hatching Triage | Behavioral Report

https://tria.ge/220706-wl7wkshgg2/behavioral1
Hatching Triage | Behavioral Report
7 Posts

OrBit: New Undetected Linux Threat Uses Unique Hijack of Execution Flow

https://www.intezer.com/blog/incident-response/orbit-new-undetected-linux-threat/
OrBit: New Undetected Linux Threat Uses Unique Hijack of Execution Flow
7 Posts

One I/O Ring to Rule Them All: A Full Read/Write Exploit Primitive on Windows 11 – Winsider Seminars & Solutions Inc.

https://windows-internals.com/one-i-o-ring-to-rule-them-all-a-full-read-write-exploit-primitive-on-windows-11/
One I/O Ring to Rule Them All: A Full Read/Write Exploit Primitive on Windows 11 – Winsider Seminars & Solutions Inc.
7 Posts

Learn Node.js - Full Tutorial for Beginners - YouTube

https://www.youtube.com/watch?v=RLtyhwFtXQA
Learn Node.js - Full Tutorial for Beginners - YouTube
7 Posts

Malware Analysis and Reverse Engineering Workflow | Malware Hell

https://c3rb3ru5d3d53c.github.io/documents/malware-analysis-reversing-workflow/
Malware Analysis and Reverse Engineering Workflow | Malware Hell
7 Posts

Learn JavaScript - Full Course for Beginners - YouTube

https://www.youtube.com/watch?v=PkZNo7MFNFg
Learn JavaScript - Full Course for Beginners - YouTube
7 Posts

Learn Ruby on Rails - Full Course - YouTube

https://www.youtube.com/watch?v=fmyvWz5TUWg
Learn Ruby on Rails - Full Course - YouTube
7 Posts

PHP Programming Language Tutorial - Full Course - YouTube

https://www.youtube.com/watch?v=OK_JCtrrv-c
PHP Programming Language Tutorial - Full Course - YouTube
7 Posts

Chrome Releases: Stable Channel Update for Desktop

https://chromereleases.googleblog.com/2022/07/stable-channel-update-for-desktop.html
Chrome Releases: Stable Channel Update for Desktop
6 Posts

Apple Announces 'Extreme' Privacy Mode for Targets of Government Spyware

https://www.vice.com/en/article/88qnag/apple-announces-extreme-privacy-mode-for-targets-of-government-spyware
Apple Announces 'Extreme' Privacy Mode for Targets of Government Spyware
6 Posts

https://www.openssl.org/news/secadv/20220705.txt

https://www.openssl.org/news/secadv/20220705.txt
6 Posts

New RedAlert Ransomware targets Windows, Linux VMware ESXi servers

https://www.bleepingcomputer.com/news/security/new-redalert-ransomware-targets-windows-linux-vmware-esxi-servers/
New RedAlert Ransomware targets Windows, Linux VMware ESXi servers
6 Posts

OpenSSL Releases Patch for High-Severity Bug that Could Lead to RCE Attacks

https://thehackernews.com/2022/07/openssl-releases-patch-for-high.html
OpenSSL Releases Patch for High-Severity Bug that Could Lead to RCE Attacks
6 Posts

Security advisory accidentally exposes vulnerable systems

https://www.bleepingcomputer.com/news/security/security-advisory-accidentally-exposes-vulnerable-systems/
Security advisory accidentally exposes vulnerable systems
6 Posts

Romain Thomas

https://www.romainthomas.fr/publication/22-pst-the-poor-mans-obfuscator
Romain Thomas
6 Posts

ware70.pdf

https://csrc.nist.gov/csrc/media/publications/conference-paper/1998/10/08/proceedings-of-the-21st-nissc-1998/documents/early-cs-papers/ware70.pdf
ware70.pdf