2022-09-02 | Hacker Trends

09/01

09/02

09/03

10 Posts

Hardening Interface

https://phi.cryptonit.fr/policies_hardening_interface/interface/windows/

Hardening Interface

10 Posts

GitHub - scipag/HardeningKitty: Invoke-HardeningKitty - Checks and hardens your Windows configuration

https://github.com/scipag/HardeningKitty

GitHub - scipag/HardeningKitty: Invoke-HardeningKitty - Checks and hardens your Windows configuration

10 Posts

Practical guide for Golden SAML

https://nodauf.dev/p/practical-guide-for-golden-saml/

Practical guide for Golden SAML

9 Posts

Nmap Announce: Nmap 7.93 - 25th Anniversary Release!

https://seclists.org/nmap-announce/2022/1

Nmap Announce: Nmap 7.93 - 25th Anniversary Release!

9 Posts

Windows Kernel Introspection (WKI) :: am0nsec

https://amonsec.net/posts/2022/09/0000000d/

Windows Kernel Introspection (WKI) :: am0nsec

8 Posts

NCC Group Research & Technology on Twitter: "Blog: SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250) against the latest Ubuntu (22.04) and Linux kernel 5.15 - by @saidelike , @alexjplaskett and @FidgetingBits - https://t.co/3XHuzQ5mBj https://t.co/MUYovvJwVk" / Twitter

https://twitter.com/NCCGroupInfosec/status/1565265069184847872

NCC Group Research & Technology on Twitter: "Blog: SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250) against the latest Ubuntu (22.04) and Linux kernel 5.15 - by @saidelike , @alexjplaskett and @FidgetingBits - https://t.co/3XHuzQ5mBj https://t.co/MUYovvJwVk" / Twitter

7 Posts

Thousands lured with blue badges in Instagram phishing attack

https://www.bleepingcomputer.com/news/security/thousands-lured-with-blue-badges-in-instagram-phishing-attack/

Thousands lured with blue badges in Instagram phishing attack

7 Posts

Reviewing macOS Unified Logs | Mandiant

https://www.mandiant.com/resources/blog/reviewing-macos-unified-logs

Reviewing macOS Unified Logs | Mandiant

6 Posts

Exploiting CVE-2018-19134: Ghostscript RCE through type confusion | GitHub Security Lab

https://securitylab.github.com/research/cve-2018-19134-ghostscript-rce/

Exploiting CVE-2018-19134: Ghostscript RCE through type confusion | GitHub Security Lab

6 Posts

GitHub - Wra7h/FlavorTown: Various ways to execute shellcode

https://github.com/Wra7h/FlavorTown

GitHub - Wra7h/FlavorTown: Various ways to execute shellcode

6 Posts

Firmware Attack Surface Reduction (FASR) - Windows drivers | Microsoft Docs

https://docs.microsoft.com/en-us/windows-hardware/drivers/bringup/firmware-attack-surface-reduction

Firmware Attack Surface Reduction (FASR) - Windows drivers | Microsoft Docs

6 Posts

Warning: PyPI Feature Executes Code Automatically After Python Package Download

https://thehackernews.com/2022/09/warning-pypi-feature-executes-code.html

Warning: PyPI Feature Executes Code Automatically After Python Package Download

6 Posts

Attackers Using FRP (Fast Reverse Proxy) to Attack Korean Companies - ASEC BLOG

https://asec.ahnlab.com/en/38156/

Attackers Using FRP (Fast Reverse Proxy) to Attack Korean Companies - ASEC BLOG

6 Posts

GitHub - mandiant/macos-UnifiedLogs

https://github.com/mandiant/macos-UnifiedLogs

GitHub - mandiant/macos-UnifiedLogs

6 Posts

Who pollutes your prototype? Find the libs on cdnjs in an automated way - Huli

https://blog.huli.tw/2022/09/01/en/angularjs-csp-bypass-cdnjs/

Who pollutes your prototype? Find the libs on cdnjs in an automated way - Huli

6 Posts

The DEF CON® Media Server - Archives of the conferences

https://media.defcon.org/

The DEF CON® Media Server - Archives of the conferences

6 Posts

One day short of a full chain: Part 1 - Android Kernel arbitrary code execution | GitHub Security Lab

https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/

One day short of a full chain: Part 1 - Android Kernel arbitrary code execution | GitHub Security Lab