Google Chrome V8 ArrayShift Race Condition Remote Code Execution - Exodus Intelligence
https://blog.exodusintel.com/2023/05/16/google-chrome-v8-arrayshift-race-condition-remote-code-execution/
From DA to EA with ESC5. There’s a new, practical way to… | by Andy Robbins | May, 2023 | Posts By SpecterOps Team Members
https://posts.specterops.io/from-da-to-ea-with-esc5-f9f045aa105c
GitHub - trustedsec/PPLFaultDumpBOF
https://github.com/trustedsec/PPLFaultDumpBOF
The Dangers of Google’s .zip TLD. Can you quickly tell which of the URLs… | by Bobbyr | May, 2023 | Medium
https://medium.com/@bobbyrsec/the-dangers-of-googles-zip-tld-5e1e675e59a5
Filesec.io
http://filesec.io
The Dragon Who Sold His Camaro: Analyzing Custom Router Implant - Check Point Research
https://research.checkpoint.com/2023/the-dragon-who-sold-his-camaro-analyzing-custom-router-implant/
LOTS Project - Living Off Trusted Sites
http://lots-project.com
LOLDrivers
http://loldrivers.io
persistence-info.github.io
http://persistence-info.github.io
Hijack Libs
http://hijacklibs.net
Home - Unprotect Project
http://unprotect.it
572983.pdf
https://repositorio-aberto.up.pt/bitstream/10216/142935/2/572983.pdf
Hackers use Azure Serial Console for stealthy access to VMs
https://www.bleepingcomputer.com/news/security/hackers-use-azure-serial-console-for-stealthy-access-to-vms/
Qakbot/Qakbot_BB28_Pikabot_17.05.2023.txt at main · pr0xylife/Qakbot · GitHub
https://github.com/pr0xylife/Qakbot/blob/main/Qakbot_BB28_Pikabot_17.05.2023.txt
Power Rankings: 2022 Ransomware Malicious Quadrant
https://www.halcyon.ai/blog/power-rankings-2022-ransomware-malicious-quadrant
Dynamic Device Code Phishing - Black Hills Information Security
https://www.blackhillsinfosec.com/dynamic-device-code-phishing/
GitHub - vdohney/keepass-password-dumper
https://github.com/vdohney/keepass-password-dumper
Homeland Security Uses AI Tool to Analyze Social Media of U.S. Citizens and Refugees
https://www.vice.com/en/article/m7bge3/dhs-uses-ai-tool-babel-x-babel-street-social-media-citizens-refugees
Simple script to extract local admin password in cleartext with LAPSv2 using impacket · GitHub
https://gist.github.com/zblurx/009633b2db25918bdbbff664a01508fc
MiSSing links – Intrusion Truth
https://intrusiontruth.wordpress.com/2023/05/17/missing-links/
A More Complete Exploit for Fortinet CVE-2022-42475 | Bishop Fox
https://bishopfox.com/blog/exploit-cve-2022-42475
Extreme PowerShell Obfuscation – Cerbero Blog
https://blog.cerbero.io/?p=2709
Pen Test HackFest 2022 Call for Presentations | SANS Institute
https://www.sans.org/mlp/pen-test-hackfest-cfp/
Jason Haddix on Twitter: "The gartner-like magic quadrant for... RANSOMWARE groups 👀 https://t.co/t6ls5UYnUO https://t.co/dp2f14s3dq" / Twitter
https://twitter.com/i/web/status/1658588895012069377
SIM Swapping and Abuse of the Microsoft Azure Serial Console: Serial Is Part of a Well Balanced Attack | Mandiant
https://www.mandiant.com/resources/blog/sim-swapping-abuse-azure-serial