Linux, Material de hacking y noticias
@Linux_and_hacking_material
1.47K
subscribers
246
photos
28
videos
3.36K
files
9.66K
links
Canal destinado a diversos contenidos: material de Linux, hacking y seguridad informática
Download Telegram
Join
Linux, Material de hacking y noticias
1.47K subscribers
Linux, Material de hacking y noticias
https://m.youtube.com/watch?v=zjafMP7EgEA&feature=emb_logo
YouTube
How We Hacked a TP-Link Router and Took Home $55,000 in Pwn2Own
In this video we will show you how we found and exploited vulnerabilities in the TP-Link Archer AC1750 to win $5,000 in Pwn2Own Tokyo 2019.
We made a total of $55,000 hacking routers in this competition!
00:00 Intro
01:48 Finding debug interface
04:35 Finding…
Linux, Material de hacking y noticias
https://cybergeeks.tech/analyzing-apt19-malware-using-a-step-by-step-method/
Linux, Material de hacking y noticias
https://blog.malwarebytes.com/threat-analysis/2021/01/retrohunting-apt37-north-korean-apt-used-vba-self-decode-technique-to-inject-rokrat/
Linux, Material de hacking y noticias
https://ax1al.com/projects/hawkbase/index.html
Linux, Material de hacking y noticias
https://github.com/KasperskyLab/TinyCheck
Linux, Material de hacking y noticias
https://github.com/six2dez/reconftw
GitHub
GitHub - six2dez/reconftw: reconFTW is a tool designed to perform automated recon on a target domain by running the best set of…
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities - six2dez/reconftw
Linux, Material de hacking y noticias
https://www.accessnow.org/nso-victims-voices-will-not-be-silenced/
Access Now
Human rights organizations respond to NSO: victims’ voices will not be silenced - Access Now
Access Now and seven other human rights organizations have filed a reply to NSO Group’s opposition to the coalition’s amicus brief in the case of WhatsApp v. NSO in the U.S. Federal 9th Circuit Court.
Linux, Material de hacking y noticias
https://www.intezer.com/blog/research/operation-electrorat-attacker-creates-fake-companies-to-drain-your-crypto-wallets/
Intezer
ElectroRAT: Attacker Creates Fake Companies to Drain Crypto Wallets
Wide-spread campaign already with thousands of victims promotes trojanized applications on niche cryptocurrency forums and social media.
Linux, Material de hacking y noticias
https://wadcoms.github.io/
Linux, Material de hacking y noticias
https://medium.com/malware-buddy/reverse-engineering-tips-ida-python-bd0ce64a48ed
Medium
[Reverse Engineering Tips] — IDA Python
One of the greatest features of IDA is the ability to use Python directly in the interface to manipulate the disassembly code. IDAPython…
Linux, Material de hacking y noticias
https://0xc0decafe.com/malware-analysts-guide-to-aplib-decompression/
0Xc0Decafe
The malware analyst’s guide to aPLib decompression
From l0w to h1gh level - full stack cyber!
Linux, Material de hacking y noticias
https://damonmohammadbagher.github.io/Posts/ebookBypassingAVsByCsharpProgramming/index.htm?page=Chapter%2011%20-%20Part%201.html
Linux, Material de hacking y noticias
https://gist.github.com/myrtus0x0/c9b8cc4bf52a17778967f4f1282b55e7
Gist
CRC32 brute force for dridex network requests
CRC32 brute force for dridex network requests. GitHub Gist: instantly share code, notes, and snippets.
Linux, Material de hacking y noticias
https://iustin24.github.io/Cache-Key-Normalization-Denial-of-Service/?cb=1
Linux, Material de hacking y noticias
https://vulnerability.ch/2021/01/introducing-yara-scan-service-test-your-yara-rules-online/
vulnerability
Introducing “Yara Scan Service” – Test Your Yara Rules Online
Did it happen to you that you wanted to quickly test a Yara rule you created, but you are missing a large enough data set to test your rule against? This is exactly what Yara Scan is designed for. …
Linux, Material de hacking y noticias
https://vanmieghem.io/stealth-outlook-persistence/
Vincent Van Mieghem
An Outlook parasite for stealth persistence
Persisting in Outlook using add-ins
Linux, Material de hacking y noticias
https://medium.com/bugbountywriteup/remote-code-execution-through-cross-site-scripting-in-electron-f3b891ad637
Medium
Remote Code Execution Through Cross-Site Scripting In Electron
CVE-2020–35717 — RCE through XSS in zonote Electron App
Linux, Material de hacking y noticias
https://github.com/HoangKien1020/Joomla-SQLinjection
GitHub
GitHub - HoangKien1020/Joomla-SQLinjection: Collection about PoC for sql injection on Joomla
Collection about PoC for sql injection on Joomla. Contribute to HoangKien1020/Joomla-SQLinjection development by creating an account on GitHub.
Linux, Material de hacking y noticias
https://starlabs.sg/blog/2021/01/chrome-1-day-hunting-uncovering-and-exploiting-cve-2020-15999/
starlabs.sg
Chrome 1-Day Hunting - Uncovering and Exploiting CVE-2020-15999
Introduction This blog post details the exploitation process for the vulnerability CVE 2020-15999 in Google Chrome 86.0.4222.0 on Linux. While CVE 2020-15999 is a heap-based buffer overflow in the font-loading library Freetype rather than Chrome proper, its…
Linux, Material de hacking y noticias
https://github.com/ajpc500/BOFs/tree/main/StaticSyscallsInject
GitHub
BOFs/StaticSyscallsInject at main · ajpc500/BOFs
Collection of Beacon Object Files. Contribute to ajpc500/BOFs development by creating an account on GitHub.