Linux, Material de hacking y noticias
@Linux_and_hacking_material
1.47K
subscribers
246
photos
28
videos
3.36K
files
9.66K
links
Canal destinado a diversos contenidos: material de Linux, hacking y seguridad informática
Download Telegram
Join
Linux, Material de hacking y noticias
1.47K subscribers
Linux, Material de hacking y noticias
https://iustin24.github.io/Cache-Key-Normalization-Denial-of-Service/?cb=1
Linux, Material de hacking y noticias
https://vulnerability.ch/2021/01/introducing-yara-scan-service-test-your-yara-rules-online/
vulnerability
Introducing “Yara Scan Service” – Test Your Yara Rules Online
Did it happen to you that you wanted to quickly test a Yara rule you created, but you are missing a large enough data set to test your rule against? This is exactly what Yara Scan is designed for. …
Linux, Material de hacking y noticias
https://vanmieghem.io/stealth-outlook-persistence/
Vincent Van Mieghem
An Outlook parasite for stealth persistence
Persisting in Outlook using add-ins
Linux, Material de hacking y noticias
https://medium.com/bugbountywriteup/remote-code-execution-through-cross-site-scripting-in-electron-f3b891ad637
Medium
Remote Code Execution Through Cross-Site Scripting In Electron
CVE-2020–35717 — RCE through XSS in zonote Electron App
Linux, Material de hacking y noticias
https://github.com/HoangKien1020/Joomla-SQLinjection
GitHub
GitHub - HoangKien1020/Joomla-SQLinjection: Collection about PoC for sql injection on Joomla
Collection about PoC for sql injection on Joomla. Contribute to HoangKien1020/Joomla-SQLinjection development by creating an account on GitHub.
Linux, Material de hacking y noticias
https://starlabs.sg/blog/2021/01/chrome-1-day-hunting-uncovering-and-exploiting-cve-2020-15999/
starlabs.sg
Chrome 1-Day Hunting - Uncovering and Exploiting CVE-2020-15999
Introduction This blog post details the exploitation process for the vulnerability CVE 2020-15999 in Google Chrome 86.0.4222.0 on Linux. While CVE 2020-15999 is a heap-based buffer overflow in the font-loading library Freetype rather than Chrome proper, its…
Linux, Material de hacking y noticias
https://github.com/ajpc500/BOFs/tree/main/StaticSyscallsInject
GitHub
BOFs/StaticSyscallsInject at main · ajpc500/BOFs
Collection of Beacon Object Files. Contribute to ajpc500/BOFs development by creating an account on GitHub.
Linux, Material de hacking y noticias
https://github.com/fozavci/ta505plus
GitHub
GitHub - fozavci/ta505plus: TA505+ Adversary Simulation
TA505+ Adversary Simulation. Contribute to fozavci/ta505plus development by creating an account on GitHub.
Linux, Material de hacking y noticias
https://securityboulevard.com/2021/01/cve-2020-35774-twitter-server-xss-vulnerability-discovered/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+SecurityBloggersNetwork+%28Security+Bloggers+Network%29
Security Boulevard
CVE-2020-35774: twitter-server XSS Vulnerability Discovered
According to its official documentation, “twitter-server” is a Twitter OSS project used to provide a template from which servers at Twitter are built. It provides common application components such as an administrative HTTP server, tracing, stats, and more…
Linux, Material de hacking y noticias
https://connormcgarr.github.io/thread-hijacking/
Connor McGarr’s Blog
Malware Development: Leveraging Beacon Object Files for Remote Process Injection via Thread Hijacking
Utilizing Cobalt Strike’s in-memory C capabilities to inject a Beacon implant into a remote process without spawning a remote thread on 64-bit systems.
Linux, Material de hacking y noticias
https://therealunicornsecurity.github.io/TPLink
therealunicornsecurity.github.io
Reversing TL-WR840N
Buying cheap routers to find vulnerabilities in them
Linux, Material de hacking y noticias
https://gitlab.com/riccardo.ancarani94/ntdll-refresher-hook-removal-bof
GitLab
Riccardo Ancarani / ntdll-refresher-hook-removal-bof
Linux, Material de hacking y noticias
https://www.secjuice.com/how-to-use-apis/
Linux, Material de hacking y noticias
https://mega.nz/folder/3Z5QDRLS#3NzgSym3FvyeLBT6EU9nEg
mega.nz
1.09 GB folder on MEGA
29 files
Linux, Material de hacking y noticias
https://m.youtube.com/watch?v=qUh507Na9nk&feature=emb_logo
YouTube
Kernel Root Exploit via a ptrace() and execve() Race Condition
Let's have a look at a recent kernel local privilege escalation exploit!
Exploit Source: https://hxp.io/blog/79/hxp-CTF-2020-wisdom2/
Kernel Developer Walkthrough: https://www.youtube.com/watch?v=LORxdO1XUjY
Syscalls, Kernel vs. User Mode and Linux Kernel…
Linux, Material de hacking y noticias
https://github.com/Al1ex/CVE-2020-36179
GitHub
GitHub - Al1ex/CVE-2020-36179: CVE-2020-36179~82 Jackson-databind SSRF&RCE
CVE-2020-36179~82 Jackson-databind SSRF&RCE. Contribute to Al1ex/CVE-2020-36179 development by creating an account on GitHub.
Linux, Material de hacking y noticias
https://vx-underground.org/threats.html
Linux, Material de hacking y noticias
1492.pdf
290.1 KB
1492.pdf
Linux, Material de hacking y noticias
https://mega.nz/folder/wZ9kTJ7K#J5MHY7OgMPcVXLzb4GJv1A
mega.nz
File folder on MEGA
Linux, Material de hacking y noticias
https://bhabeshraj.com/post/detect-domain-admins-logons-to-workstations