GitHub - realoriginal/bootlicker: A generic UEFI bootkit used to achieve initial usermode execution. It works with modifications.
https://github.com/realoriginal/bootlicker
https://tmpout.sh/blog/vol3-cfp.html
https://tmpout.sh/blog/vol3-cfp.html
Identify anomalies and unexpected changes in cost - Microsoft Cost Management | Microsoft Learn
https://learn.microsoft.com/en-us/azure/cost-management-billing/understand/analyze-unexpected-charges
Hacking Articles on Twitter: "Pic of the Day #infosec #cybersecurity #cybersecuritytips #pentesting #oscp #redteam #informationsecurity #cissp #cybersecuritytips https://t.co/SYvpdngQLD" / Twitter
https://twitter.com/hackinarticles/status/1629358865870643200
Linux Rootkits Part 2: Ftrace and Function Hooking :: TheXcellerator
https://xcellerator.github.io/posts/linux_rootkits_02/
Linux Rootkits Part 1: Introduction and Workflow :: TheXcellerator
https://xcellerator.github.io/posts/linux_rootkits_01/
Linux Rootkits Part 3: A Backdoor to Root :: TheXcellerator
https://xcellerator.github.io/posts/linux_rootkits_03/
Manuel Frigerio on Twitter: "Please don't apply for a Senior dev position if your Github looks like this... https://t.co/MOxMqCKFje" / Twitter
https://twitter.com/manuel_frigerio/status/1629059975418089474
GitHub - rizemon/exploit-writing-for-oswe: Tips on how to write exploit scripts (faster!)
https://github.com/rizemon/exploit-writing-for-oswe
Zoë Schiffer on Twitter: "Just got confirmation that Esther Crawford, chief executive of Twitter Payments, is out." / Twitter
https://twitter.com/zoeschiffer/status/1629917304799760384
SANS 2023 | Cyber Security Training
https://www.sans.org/u/1o2c
GitHub - kraken-ng/Kraken: Kraken, a modular multi-language webshell coded by @secu_x11
https://github.com/kraken-ng/Kraken
eBPF: A new frontier for malware - Red Canary
https://redcanary.com/blog/ebpf-malware/
mr.d0x on Twitter: "For the past couple of months @NUL0x4C and I have been working on a module-based malware dev training course that covers various techniques in-depth. Its emphasis is on simplifying complex concepts & evasion. Every module contains highly commented custom code. Stay tuned! https://t.co/TpETK7nGeg" / Twitter
https://twitter.com/mrd0x/status/1629868440239390721
CVE-2022-25845 - Fastjson RCE vulnerability analysis
https://jfrog.com/blog/cve-2022-25845-analyzing-the-fastjson-auto-type-bypass-rce-vulnerability/
Example Domain
https://example.org/
Clasiopa: New Group Targets Materials Research | Symantec Enterprise Blogs
https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/clasiopa-materials-research
Unauthenticated RCE in Goanywhere - vsociety
https://www.vicarius.io/vsociety/blog/unauthenticated-rce-in-goanywhere
ChromeLoader campaign lures with malicious VHDs for popular games
https://www.bleepingcomputer.com/news/security/chromeloader-campaign-lures-with-malicious-vhds-for-popular-games/
Windows Kernel Programming… by Pavel Yosifovich [PDF/iPad/Kindle]
https://leanpub.com/windowskernelprogrammingsecondedition![Windows Kernel Programming… by Pavel Yosifovich [PDF/iPad/Kindle]](/image/screenshot/53f5765eeeceb0380b00f3b0a011728c.webp)
Telegram: Contact @hackgit
https://t.me/hackgit/7707
Desde Chile con Malware (From Chile with Malware)
https://www.team-cymru.com/post/from-chile-with-malware
Microsoft Edge's built-in VPN support is around the corner
https://www.bleepingcomputer.com/news/microsoft/microsoft-edges-built-in-vpn-support-is-around-the-corner/
POLITICO on Twitter: "Ukraine withstood a deluge of cyberattacks from Russia in the past year, but Russia will test its cyber defenses further as the war drags on https://t.co/TPS5395ACD" / Twitter
https://twitter.com/politico/status/1629542153666846723
Enterprise Attack Initial Access w/ Steve Borosh - Antisyphon
https://www.antisyphontraining.com/enterprise-attack-initial-access-w-steve-borosh/
Abusing Code Signing Certificates :: Axelarator Blog — A simple theme for Hugo
https://axelarator.github.io/posts/codesigningcerts/
dotnet | LOLBAS
https://lolbas-project.github.io/lolbas/OtherMSBinaries/Dotnet/#execute
Chief Nerd on Twitter: "If you noticed your iPhone is charging a little slower recently it may be due to a new setting Apple added in iOS 16.1 — Clean Energy Charging With it turned on, iOS will only recharge the iPhone's battery when the electrical grid uses cleaner energy sources like solar or wind… https://t.co/ANW3GZwYSd" / Twitter
https://twitter.com/i/web/status/1629668080170287105
Arrested: Fearmongering data thieves who victimized thousands of businesses
http://dlvr.it/Sk1H2Q
Hydrochasma: Previously Unknown Group Targets Medical and Shipping Organizations in Asia | Symantec Enterprise Blogs
https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/hydrochasma-asia-medical-shipping-intelligence-gathering
Dish Network goes offline after likely cyberattack, employees cut off
https://www.bleepingcomputer.com/news/security/dish-network-goes-offline-after-likely-cyberattack-employees-cut-off/