#Infosec_Standards
NIST IR 8401:
"Satellite Ground Segment:
Applying the Cybersecurity Framework to Assure Satellite Command and Control", December 2022.

#Research
"Website Defacement Detection and Monitoring Methods: A Review", 2022.

]-> Web Defacement Detection Tool:
https://github.com/CERT-hr/Web-Defacement-Detection-Tool

Hi Techies, Ethical Hackers and Cyber security enthusiasts. I am offering a great opportunity to you all to work with us at Techofide.

Here is the link to apply: https://forms.gle/4c4zohet8oKbBv6D8

Waiting for your responses everyone! Have a great day😀

90% Pakistan is out of electricity after major cyber attack on electricity systems.

बिजली प्रणालियों पर बड़े साइबर हमले के बाद 90% पाकिस्तान में बिजली गुल।

Solaris 10 LPE Exploit

Download: https://system32.ink/news-feed/p/169/

CVE-2023-22809 – sudo Privilege escalation

Affected sudo versions: 1.8.0 to 1.9.12p1

This script automates the exploitation of the CVE-2023-22809 vulnerability to gain a root shell.

Script: https://system32.ink/news-feed/p/170/

Echidna – A Fast Smart Contract Fuzzer

Echidna is a weird creature that eats bugs and is highly electrosensitive (with apologies to Jacob Stanley)

https://system32.ink/news-feed/p/173/

PhoneSploit Pro

PhoneSploit with Metasploit Integration.

An All-In-One hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.

https://system32.ink/news-feed/p/174/

SQLi Hunter v2 is a python program that checks for SQL (and Blind) injection vulnerability in URL’s. The program is designed to be easy to use, practical and beneficial. The intention of this tool is to include it in your ethical Bug Bounty Hunting methodology. Please do not use this tool on any website without having its permission.

https://system32.ink/news-feed/p/175/

#Offensive_security
1. Cobalt Strike Beacon Object File for kernel exploitation using AMD's Ryzen Master Driver (version 17)
https://github.com/tijme/amd-ryzen-master-driver-v17-exploit
2. A script to automate privilege escalation with CVE-2023-22809 vulnerability
https://github.com/n3m1dotsys/CVE-2023-22809-sudoedit-privesc

#Analytics
Cybersecurity Trends Q1/23:

⬆️ Pwd spraying/creds stuffing;
⬆️ Phishing w/ new file types, eg .one, .iso, .lnk;
⬆️ Rust malware / loaders (+Go +Nim +Zig);
⬆️ Sliver implants;
⬆️ Abused legit RA software;
⬆️ Abused legit encryption tools (ransom);
⬆️ Token/Cloud API abuse;

⬇️ Malware attacks on non-standard ports;
⬇️ E-Skimming Incidents;
⬇️ Office Macros.

#Hardware_Security
Intel iTLB multihit bug
https://www.tacitosecurity.com/multihit.html
]-> PoC: https://github.com/ergot86/itlb_poc

#Threat_Research
Traffic signals: The VASTFLUX Takedown
https://www.humansecurity.com/learn/blog/traffic-signals-the-vastflux-takedown

#tools
#Red_Team_Tactics
1. qscan - Quick Network Scanner
https://github.com/0xor0ne/qscan
+ its companion command line tool qsc:
https://github.com/0xor0ne/qscan/tree/main/qsc
2. Bypassing Applocker, UAC, and Getting Administrative Persistence
https://assume-breach.medium.com/home-grown-red-team-bypassing-applocker-uac-and-getting-administrative-persistence-88b85c81343e

#DFIR
ShareFinder: How Threat Actors Discover File Shares
https://thedfirreport.com/2023/01/23/sharefinder-how-threat-actors-discover-file-shares

#Tech_book
#Cloud_Security
"Wireshark for Network Forensics: An Essential Guide for IT and Cloud Professionals", 2023.

Bug : Facebook Group Members Disclosure

Intro : A Non-member can determine if someone is the member of a private group or not via CometHovercardQueryRendererQuery graphQL mutation.

Video POC:- https://system32.ink/news-feed/p/176/