GitHub - Idov31/Cronos: PoC for a new sleep obfuscation technique leveraging waitable timers to evade memory scanners.
https://github.com/Idov31/Cronos
Skidaddle Skideldi - I just pwnd your PKI – LuemmelSec – Just an admin on someone else´s computer
https://luemmelsec.github.io/Skidaddle-Skideldi-I-just-pwnd-your-PKI/
'Handmaid's Tale,' 'Girls Who Code' and Other Books Just Banned in the U.S.
https://www.newsweek.com/handmaids-tale-girls-who-code-other-books-banned-us-1745890
Windows 11 now warns when typing your password in Notepad, websites
https://www.bleepingcomputer.com/news/microsoft/windows-11-now-warns-when-typing-your-password-in-notepad-websites/
New hacking group ‘Metador’ lurking in ISP networks for months
https://www.bleepingcomputer.com/news/security/new-hacking-group-metador-lurking-in-isp-networks-for-months/
Documentation for the PaX project
https://pax.grsecurity.net/docs/
Week 39 – 2022 – This Week In 4n6
http://thisweekin4n6.com/2022/09/25/week-39-2022/
InfoSec Handlers Diary Blog - SANS Internet Storm Center
https://i5c.us/d29084
Faraaz Sareshwala on Twitter: "This morning, my wife left Orlando, Florida aboard @SouthwestAir flight 1630 (MCO to PHX). She sat behind this man. She had been attending the Grace Hopper Conference all week and was resting her head on her tray table, trying to sleep a bit. Let me tell you what happened. https://t.co/fsfN4OmFaf" / Twitter
https://twitter.com/fsareshwala/status/1573858944623136768
Masih Alinejad 🏳️ on Twitter: "This is Iran today. A woman proudly burning the most visible symbol of religious dictatorship; compulsory hijab. Hijab police killed #MahsaAmini but now there are millions of Mahsa in Iran who are shouting NO to Forced hijab NO to gender apartheid regime. #مهسا_امینی https://t.co/9tzd9IRwgB" / Twitter
https://twitter.com/AlinejadMasih/status/1571954828741410823
Signal >> Blog >> Help people in Iran reconnect to Signal – a request to our community
https://signal.org/blog/run-a-proxy/
GitHub - Pwnrin/CVE-2022-30206: Exploit for CVE-2022-30206
https://github.com/Pwnrin/CVE-2022-30206
GitHub - AssuranceMaladieSec/AD-description-password-finder: Retrieve AD accounts description and search for password in it
https://github.com/AssuranceMaladieSec/AD-description-password-finder
GitHub - SunWeb3Sec/DeFiHackLabs: Reproduce DeFi hack incidents using Foundry.
https://github.com/SunWeb3Sec/DeFiHackLabs
Ransomware data theft tool may show a shift in extortion tactics
https://www.bleepingcomputer.com/news/security/ransomware-data-theft-tool-may-show-a-shift-in-extortion-tactics/
ABC News on Twitter: "New security measures to be unveiled following massive Optus data breach https://t.co/ZS0OIl0P5X" / Twitter
https://twitter.com/abcnews/status/1573886939584811009
Carl Schou on Twitter: "Be aware that opening IDA Pro by @HexRaysSA while playing the new modern warfare will get you instantly banned." / Twitter
https://twitter.com/vm_call/status/1574011183803387905
anna phylaxis on Twitter: "The notion that the only people who haven't caught COVID-19 so far are "superdodgers" with genetic mutations is infuriating to me. I think it should be upsetting to you, too, and I'd like to explain why. I've never caught COVID. I intend to try to never catch it." / Twitter
https://twitter.com/quatoria/status/1574057921532542977
reshmasaujani on Twitter: "I woke up this morning to a news alert that our @GirlsWhoCode middle-grade book series was banned by some school districts as part of the Mom for Liberty effort to ban books. To be honest, I am so angry I cannot breathe. https://t.co/5rBJkcGQDV" / Twitter
https://twitter.com/reshmasaujani/status/1573692989561446400
A Less Known Attack Vector, Second Order IDOR Attacks | by Ozgur Alp | Medium
https://ozguralp.medium.com/a-less-known-attack-vector-second-order-idor-attacks-14468009781a
Hackers Actively Exploiting New Sophos Firewall RCE Vulnerability
https://thehackernews.com/2022/09/hackers-actively-exploiting-new-sophos.html
BGGP3: Chipping Out
https://www.da.vidbuchanan.co.uk/blog/bggp3.html
Emerson Collins on Twitter: "The weirdest flight ever. These sounds started over the intercom before takeoff and continued throughout the flight. They couldn’t stop it, and after landing still had no idea what it was. https://t.co/F8lJlZHJ63" / Twitter
https://twitter.com/ActuallyEmerson/status/1573107117254639616
Germán Fernández on Twitter: "Apparently this is still in use, there is a new file in this opendir used by Ransomware actors. They have moved with #Curator, then #ALPHV (aka #BlackCat) and now also #AvosLocker, a possible evolution in the path of this affiliate 🤔 #RaaS H/T @MichalKoczwara @r3dbU7z https://t.co/EEGj9y4Gr9" / Twitter
https://twitter.com/1ZRR4H/status/1571933868747378691
InfoSec Handlers Diary Blog - SANS Internet Storm Center
https://i5c.us/d29086
Powershell For Hackers - YouTube
https://youtube.com/playlist?list=PL3NRVyAumvmppdfMFMUzMug9Cn_MtF6ub
Snowflake ❄️
https://snowflake.torproject.org
InQuest Labs - DFI - InQuest.net
https://labs.inquest.net/dfi/sha256/fd78991e6cf4ccfd26e2f8707e98dfa39bec6fb912b5f993c3d12c363e4a8b0b
Pentesting_Active_directory_dark.xmind - Xmind.works
https://xmind.works/#/share/pZPo4gOi
GitHub - Porchetta-Industries/CrackMapExec: A swiss army knife for pentesting networks
https://github.com/Porchetta-Industries/CrackMapExec
VirusTotal - File - f34d178d34f3173b7f7f0686901603565936f6b6d988fa4fbd7183dd4dd84625
https://www.virustotal.com/gui/file/f34d178d34f3173b7f7f0686901603565936f6b6d988fa4fbd7183dd4dd84625/detection
VirusTotal - File - c562503c84ad2dab477e925bf8c0620363c7621f9a21d44574b4cd4f61413998
https://www.virustotal.com/gui/file/c562503c84ad2dab477e925bf8c0620363c7621f9a21d44574b4cd4f61413998/detection
Jimmy on Twitter: "Russia is terror-bombing civilian targets in Odesa with Iranian "Shahid" kamikaze drones. Around 8 have been launched against the city this morning - most likely from Russian occupied Crimea. https://t.co/f5YU81C4D4" / Twitter
https://twitter.com/jimmysecuk/status/1573945778011340800
Exploit Development: No Code Execution? No Problem! Living The Age of VBS, HVCI, and Kernel CFG | Home
https://connormcgarr.github.io/hvci/
20220325_Appelbaum_hf.pdf
https://pure.tue.nl/ws/portalfiles/portal/197416841/20220325_Appelbaum_hf.pdf
Accused Russian RSOCKS Botmaster Arrested, Requests Extradition to U.S. – Krebs on Security
https://krebsonsecurity.com/2022/09/accused-russian-rsocks-botmaster-arrested-requests-extradition-to-u-s/
Presentations/McGarr_BSidesKC2022.pdf at master · connormcgarr/Presentations · GitHub
https://github.com/connormcgarr/Presentations/blob/master/McGarr_BSidesKC2022.pdf
Home | GCHQ Careers
http://gchq-careers.co.uk
American Airlines learned it was breached from phishing targets
https://www.bleepingcomputer.com/news/security/american-airlines-learned-it-was-breached-from-phishing-targets/
Gus on Twitter: "And this other graph is about how many snowflake users we have at the moment! (woooo!) https://t.co/lyUhZv3Th7" / Twitter
https://twitter.com/0xggus/status/1574004323763294211
misc/TamperingAllArgumentsSyscalls.cpp at main · rad9800/misc · GitHub
https://github.com/rad9800/misc/blob/main/TamperingAllArgumentsSyscalls.cpp