Nighthawk: An Up-and-Coming Pentest Tool Likely to Gain Threat Actor Notice | Proofpoint US
https://www.proofpoint.com/us/blog/threat-insight/nighthawk-and-coming-pentest-tool-likely-gain-threat-actor-notice
VirusTotal - File - a8527a88fb9a48f043a0b762c7431fb52e601b72ff2fa0d35327e5cc72404edc
https://www.virustotal.com/gui/file/a8527a88fb9a48f043a0b762c7431fb52e601b72ff2fa0d35327e5cc72404edc
Backdooring and Hijacking Azure AD Accounts by Abusing External Identities - YouTube
https://www.youtube.com/watch?v=uKDS2t9_KsA
Twittodon.com - Connect your Twitter and Mastodon accounts and verify it!
http://Twittodon.com
hardwear.io on Twitter: "鈿reaking into iPhone's last Security Barrier 馃摫Tihmstar @tihmstar presented his work on attacking the iPhone's hardware AES crypto core through an EM-side-channel in order to retrieve the hardware fused GID & UID keys 馃嵖Enjoy the talk鈻讹笍https://t.co/o7HiFb8RqD #hw_ioNL2022" / Twitter
https://twitter.com/hardwear_io/status/1594645417924362240
xnu/IOUserServer.cpp at 27b03b360a988dfd3dfdf34262bb0042026747cc 路 apple-oss-distributions/xnu 路 GitHub
https://github.com/apple-oss-distributions/xnu/blob/27b03b360a988dfd3dfdf34262bb0042026747cc/iokit/Kernel/IOUserServer.cpp#L1338
CVE-2022-41924 - RCE in Tailscale, DNS Rebinding, and You
https://emily.id.au/tailscale
MalwareBazaar | Browse Checking your browser
https://bazaar.abuse.ch/sample/f64e61c7e08bb909b67afe3e90b194ee53b286a5bd0cf8d7843e2c34e46fc3a8/
xnu/IOUserServer.cpp at 27b03b360a988dfd3dfdf34262bb0042026747cc 路 apple-oss-distributions/xnu 路 GitHub
https://github.com/apple-oss-distributions/xnu/blob/27b03b360a988dfd3dfdf34262bb0042026747cc/iokit/Kernel/IOUserServer.cpp#L5554
xnu/IOUserServer.cpp at 5c2921b07a2480ab43ec66f5b9e41cb872bc554f 路 apple-oss-distributions/xnu 路 GitHub
https://github.com/apple-oss-distributions/xnu/blob/5c2921b07a2480ab43ec66f5b9e41cb872bc554f/iokit/Kernel/IOUserServer.cpp#L1380
Qakbot/Qakbot_BB07_22.11.2022.txt at main 路 pr0xylife/Qakbot 路 GitHub
https://github.com/pr0xylife/Qakbot/blob/main/Qakbot_BB07_22.11.2022.txt
GitHub - 0x90n/InfoSec-Black-Friday: All the deals for InfoSec related software/tools this Black Friday
https://github.com/0x90n/InfoSec-Black-Friday
MalwareBazaar | Browse Checking your browser
https://bazaar.abuse.ch/sample/085f0f3f25b1328d153a7c56125e1d8a4d43bc882fe3f250d742ea5247850c02/
Till REcollapse - 0xacb
https://0xacb.com/2022/11/21/recollapse/
Two Estonians arrested for running $575M crypto Ponzi scheme
https://www.bleepingcomputer.com/news/security/two-estonians-arrested-for-running-575m-crypto-ponzi-scheme/
Releases 路 hasherezade/pe_to_shellcode
https://github.com/hasherezade/pe_to_shellcode/releases/
Part 1: SocGholish, a very real threat from a very fake update | Proofpoint US
https://www.proofpoint.com/us/blog/threat-insight/part-1-socgholish-very-real-threat-very-fake-update
Daixin Ransomware Gang Steals 5 Million AirAsia Passengers' and Employees' Data
https://thehackernews.com/2022/11/daixin-ransomware-gang-steals-5-million.html
Hackers steal $300,000 in DraftKings credential stuffing attack
https://www.bleepingcomputer.com/news/security/hackers-steal-300-000-in-draftkings-credential-stuffing-attack/