So, you want to get into bug bounties?
https://shubs.io/so-you-want-to-get-into-bug-bounties/
Detecting and Fingerprinting Infostealer Malware-as-a-Service platforms
https://blog.bushidotoken.net/2022/11/detecting-and-fingerprinting.html
GitHub - Coldzer0/ReverseSock5Proxy: A tiny Reverse Sock5 Proxy written in C :V
https://github.com/Coldzer0/ReverseSock5Proxy
U.S. Bans Chinese Telecom Equipment and Surveillance Cameras Over National Security Risk
https://thehackernews.com/2022/11/us-bans-chinese-telecom-equipment-and.html
GitHub - wavvs/nanorobeus: COFF file (BOF) for managing Kerberos tickets.
https://github.com/wavvs/nanorobeus
Alvar C.H. Freude on Twitter: "~2 Jahre hat eine Arbeitsgruppe der Konferenz der unabhängigen Datenschutz-Aufsichtsbehörden von Bund und Ländern (DSK) versucht, Nachbesserungen bei Microsoft 365 zu erreichen. 👉 Zusammenfassung des Berichts der AG zu #MS365: https://t.co/E8BPZtZON2 Festlegung der DSK: 👇 https://t.co/1joWa0EfYX" / Twitter
https://twitter.com/alvar_f/status/1596179727311863809
Introduction to Linux Heap Exploitation / Twitter
https://twitter.com/i/broadcasts/1YqxoAndjnyGv
Ransomware gang targets Belgian municipality, hits police instead
https://www.bleepingcomputer.com/news/security/ransomware-gang-targets-belgian-municipality-hits-police-instead/
Connor McGarr on Twitter: "(1/4) tgtdelegation is a Beacon Object File (BOF) I just released that uses the TGT delegation trick leveraged by Kekeo and Rubeus to obtain a usable TGT in both .ccache and .kirbi formats. Link: https://t.co/mLnk2jEEFM" / Twitter
https://twitter.com/33y0re/status/1462856545218310145
Access Denied
https://www.tesla.com/.gitignore
Root Cause
https://struct.github.io/pointer_tagging.html
Russia-based RansomBoggs Ransomware Targeted Several Ukrainian Organizations
https://thehackernews.com/2022/11/russia-based-ransomboggs-ransomware.html
CircleCityCon10.0 CFP
https://circlecitycon10cfp.busyconf.com/proposals
PEGA-PR-738492_EN.pdf
https://www.europarl.europa.eu/doceo/document/PEGA-PR-738492_EN.pdf
The Impossible Port: MacOS
https://blog.ryujinx.org/the-impossible-port-macos/
Update Chrome Browser Now to Patch New Actively Exploited Zero-Day Flaw
https://thehackernews.com/2022/11/update-chrome-browser-now-to-patch-new.html
The Difficulties and Dubiousness of Darkweb Data Leaks Sites
https://www.curatedintel.org/2022/11/the-difficulties-and-dubiousness-of.html
Google pushes emergency Chrome update to fix 8th zero-day in 2022
https://www.bleepingcomputer.com/news/security/google-pushes-emergency-chrome-update-to-fix-8th-zero-day-in-2022/
OWASP-K8s-Top-Ten Cloud Native SecurityCon - Google スライド
https://docs.google.com/presentation/d/1zTF3HQCsE07sSOBqoVckExeojFH0CMOn3lsDQaCCyLg
Joxean Koret (@matalaz): "The importance of having a tes…" - Mastodon
https://mastodon.social/@joxean/109409604083509575
Exploiting CORS Misconfigurations - attack ships on fire
https://attackshipsonfi.re/p/exploiting-cors-misconfigurations
GitHub - 3gstudent/ntfsDump: Use to copy a file from an NTFS partitioned volume by reading the raw volume and parsing the NTFS structures.
https://github.com/3gstudent/ntfsDump
MalwareBazaar | Browse Checking your browser
https://bazaar.abuse.ch/browse/tag/clineti2022/
GitHub - ironmansoftware/psedit: A terminal-based editor for PowerShell
https://github.com/ironmansoftware/psedit
New ransomware attacks in Ukraine linked to Russian Sandworm hackers
https://www.bleepingcomputer.com/news/security/new-ransomware-attacks-in-ukraine-linked-to-russian-sandworm-hackers/
SwiftOnSecurity on Twitter: "Cyber workers: If anyone shows romantic interest in you, it's likely a foreign honeytrap, report to your C-suite immediately. 🫡 They almost got you." / Twitter
https://twitter.com/swiftonsecurity/status/1595990377781424128
Massive Twitter data breach worse that reported; multiple hacks
https://9to5mac.com/2022/11/25/massive-twitter-data-breach/
Introducing the OWASP Top Ten for Kubernetes - Jimmy Mesta, KSOC Labs, Inc. - YouTube
https://youtu.be/wE5Nim3DVjk