2023-09-23 | Hacker Trends

09/22

09/23

09/24

5 Posts

DualShock4 Reverse Engineering - Part 1

https://blog.the.al/2023/01/01/ds4-reverse-engineering.html

DualShock4 Reverse Engineering - Part 1

5 Posts

Analysis of VirtualBox CVE-2023-21987 and CVE-2023-21991

https://qriousec.github.io/post/vbox-pwn2own-2023/

Analysis of VirtualBox CVE-2023-21987 and CVE-2023-21991

5 Posts

New Apple Zero-Days Exploited to Target Egyptian ex-MP with Predator Spyware

https://thehackernews.com/2023/09/latest-apple-zero-days-used-to-hack.html

New Apple Zero-Days Exploited to Target Egyptian ex-MP with Predator Spyware

5 Posts

Deadglyph: New Advanced Backdoor with Distinctive Malware Tactics

https://thehackernews.com/2023/09/deadglyph-new-advanced-backdoor-with.html

Deadglyph: New Advanced Backdoor with Distinctive Malware Tactics

4 Posts

Evasive Gelsemium hackers spotted in attack against Asian govt

https://www.bleepingcomputer.com/news/security/evasive-gelsemium-hackers-spotted-in-attack-against-asian-govt/

Evasive Gelsemium hackers spotted in attack against Asian govt

4 Posts

GitHub - microsoft/windows-drivers-rs: Platform that enables Windows driver development in Rust. Developed by Surface.

https://github.com/microsoft/windows-drivers-rs

GitHub - microsoft/windows-drivers-rs: Platform that enables Windows driver development in Rust. Developed by Surface.

4 Posts

Backchannel Diplomacy: APT29’s Rapidly Evolving Diplomatic Phishing Operations | Mandiant

https://www.mandiant.com/resources/blog/apt29-evolving-diplomatic-phishing

Backchannel Diplomacy: APT29’s Rapidly Evolving Diplomatic Phishing Operations | Mandiant

3 Posts

Air Canada discloses data breach of employee and 'certain records'

https://www.bleepingcomputer.com/news/security/air-canada-discloses-data-breach-of-employee-and-certain-records/

Air Canada discloses data breach of employee and 'certain records'

3 Posts

Some experiments with Process Hollowing – Insinuator.net

https://insinuator.net/2022/09/some-experiments-with-process-hollowing/

Some experiments with Process Hollowing – Insinuator.net

3 Posts

Investigating HVNC Attacks |

https://emptydc.com/2023/09/22/investigating-hvnc-attacks/

Investigating HVNC Attacks |

3 Posts

mandiant-apt1-report.pdf

https://www.mandiant.com/sites/default/files/2021-09/mandiant-apt1-report.pdf

mandiant-apt1-report.pdf

3 Posts

50 Methods For Lsass Dump(RTC0002) | RedTeamRecipe

https://redteamrecipe.com/50-Methods-For-Dump-LSASS/

50 Methods For Lsass Dump(RTC0002) | RedTeamRecipe

3 Posts

Debugging and understanding remote threads with IDA - YouTube

https://youtu.be/GeNYHX1dubc

Debugging and understanding remote threads with IDA - YouTube

3 Posts

Emulating IoT Firmware Made Easy: Start Hacking Without the Physical Device

https://boschko.ca/qemu-emulating-firmware/

Emulating IoT Firmware Made Easy: Start Hacking Without the Physical Device

3 Posts

EDR Unhooking: Patching Falcon hooks without VirtualProtect | Inbits Blog

https://inbits-sec.com/posts/in-memory-unhooking/

EDR Unhooking: Patching Falcon hooks without VirtualProtect | Inbits Blog

3 Posts

SMB Relay - cheatsheet

https://aas-s3curity.gitbook.io/cheatsheet/internalpentest/active-directory/exploitation/exploit-without-account/smb-relay

SMB Relay - cheatsheet