PoC Exploit Released for Zero-Click Vulnerability CVE-2024-49112 in Windows
https://securityonline.info/poc-exploit-released-for-zero-click-vulnerability-cve-2024-49112-in-windows/
LDAPNightmare: SafeBreach Publishes First PoC Exploit (CVE-2024-49113)
https://www.safebreach.com/blog/ldapnightmare-safebreach-labs-publishes-first-proof-of-concept-exploit-for-cve-2024-49112/
December 2, 2024 - Exodus Intelligence
https://blog.exodusintel.com/2024/12/02/
The (Anti-)EDR Compendium
https://blog.deeb.ch/posts/how-edr-works/
An unexpected journey into Microsoft Defender's signature World — retooling_
https://retooling.io/blog/an-unexpected-journey-into-microsoft-defenders-signature-world
Windows Kernel False File Immutability attack on registry hives via the Cloud Filter API [42451734] - Project Zero
https://project-zero.issues.chromium.org/issues/42451734![Windows Kernel False File Immutability attack on registry hives via the Cloud Filter API [42451734] - Project Zero](/image/screenshot/b3c5981cd932edaf85cdc635b0607201.webp)
Over 3 million mail servers without encryption exposed to sniffing attacks
https://www.bleepingcomputer.com/news/security/over-3-million-mail-servers-without-encryption-exposed-to-sniffing-attacks/
GitHub - SafeBreach-Labs/CVE-2024-49113: LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113
https://github.com/SafeBreach-Labs/CVE-2024-49112
Treasury Sanctions Entities in Iran and Russia That Attempted to Interfere in the U.S. 2024 Election | U.S. Department of the Treasury
https://home.treasury.gov/news/press-releases/jy2766
Pentest-Tools-Collection/tools/Azure/AzurePwn.ps1 at main · LuemmelSec/Pentest-Tools-Collection · GitHub
https://github.com/LuemmelSec/Pentest-Tools-Collection/blob/main/tools/Azure/AzurePwn.ps1
Severe Security Flaws Patched in Microsoft Dynamics 365 and Power Apps Web API
https://thehackernews.com/2025/01/severe-security-flaws-patched-in.html
DOOM® CAPTCHA
http://doom-captcha.vercel.app
Malicious Obfuscated NPM Package Disguised as an Ethereum Tool Deploys Quasar RAT
https://thehackernews.com/2025/01/malicious-obfuscated-npm-package.html
GitHub - alufers/mitmproxy2swagger: Automagically reverse-engineer REST APIs via capturing traffic
https://github.com/alufers/mitmproxy2swagger
Chinese hackers targeted sanctions office in Treasury attack
https://www.bleepingcomputer.com/news/security/chinese-hackers-targeted-sanctions-office-in-treasury-attack/
Elon Musk Uses Cybertruck Explosion to Show Tesla Can Remotely Unlock and Monitor Vehicles
https://www.404media.co/elon-musk-uses-cybertruck-explosion-to-show-tesla-can-remotely-unlock-and-monitor-vehicles/
Goodware Hash Sets - SANS Internet Storm Center
https://isc.sans.edu/diary/31556