cKure Red

cKure Red pinned «✔️ BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution. https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup.html»

17:09

cKure Red

⚡️

HTML entities that create ASCII characters inside a JavaScript URL.

https://shazzer.co.uk/vectors/667b4120d631543fa1c420a5

Please open Telegram to view this post

VIEW IN TELEGRAM

shazzer.co.uk

HTML entities that create ASCII characters inside a JavaScript URL - Shazzer

This vector loops through all entities and assigns them to a JavaScript URL and checks if they decode to ASCII characters.

1.92K views22:28

cKure Red

🇺🇦

An interesting thread on Top 10 Williams exposé.

https://x.com/ThePollLady/status/1805912910687793244

Please open Telegram to view this post

VIEW IN TELEGRAM

X (formerly Twitter)

The Poll Lady (@ThePollLady) on X

10 most controversial exposé by WikiLeaks founded by Julian Assange.

Thread🧵

1.85K views21:59

cKure Red

🇺🇦 An interesting thread on Top 10 Williams exposé. https://x.com/ThePollLady/status/1805912910687793244

0:36

This media is not supported in your browser

VIEW IN TELEGRAM

Statement on disinformation and lies by Mr. Julian Assange

2.34K views22:04

cKure Red

0:41

This media is not supported in your browser

VIEW IN TELEGRAM

✔️

Zero-Day: Breaking BitLocker via MitM between CPU and TPM chip.

Please open Telegram to view this post

VIEW IN TELEGRAM

11.9K views10:03

cKure Red

cKure Red pinned a video

10:05

cKure Red

🤍

Rockyou-2024 has been released on July 4, 2024, in a 45 GB zip file.

Previous Rockyou-2021 had 8.4 billion passwords, and the new version has 1.5 billion (added by hacker 'ObamaCare'), making it a 10 billion word-list.

Please open Telegram to view this post

VIEW IN TELEGRAM

2.35K views09:28

cKure Red

🤍Rockyou-2024 has been released on July 4, 2024, in a 45 GB zip file. Previous Rockyou-2021 had 8.4 billion passwords, and the new version has 1.5 billion (added by hacker 'ObamaCare'), making it a 10 billion word-list.

https://s3.timeweb.cloud/fd51ce25-6f95e3f8-263a-4b13-92af-12bc265adb44/rockyou2024.zip

2.7K views17:35

cKure Red

BlastRADIUS

Critical vulnerability in the RADIUS protocol leaves networking equipment open to attack.

https://www.helpnetsecurity.com/2024/07/09/blastradius-radius-protocol-vulnerability/

Help Net Security

Critical vulnerability in the RADIUS protocol leaves networking equipment open to attack

A critical vulnerability in the RADIUS protocol, dubbed BlastRADIUS, leaves most networking equipment open to Man-in-the-Middle attacks.

1.82K views17:30

cKure Red

p25.pdf

593.2 KB

🖥

Header Enrichment: A technique used by Telco operators to acquire MSISDN (phone number) through a website (HTTP-GET is enough).

It can be used to trace users and target them for ads by the ISP or their associated vendors. And if the API key 🔑 is leaked through a vendor or ISP itself.

Scenarios:
1. The token can be used by anyone in a get request to fetch the end-user's phone number. This request can be posted via QR-codes of restaurant menus where there will be HTTP-302 (redirection) to the actual menu or by injecting 💉.js in a vulnerable website (viz. XSS); which is famous (like some blog or forum).

2. A user sharing hotspot from their phone, the hotspot client can acquire the phone number. In addition to this, if the HE enables authentication. This would lead to 0-click account takeover.

● I had tested systems for this implementation for a telco. The telco without informing users (IMHO) was sharing data to third parties.
-Admin cKure

Source: https://conferences.sigcomm.org/sigcomm/2015/pdf/papers/hotmiddlebox/p25.pdf

Please open Telegram to view this post

VIEW IN TELEGRAM

2.47K viewsedited 21:03

cKure Red

💥

VPN Zero-Day

DYK most VPN services can actually make you less secure? Today x.com/PET_Symposium, Benjamin Mixon-Baca will present research done in collaboration with the Citizen Lab about how VPNs can enable an attacker to act as an in-path router between you and the VPN server. The study identifies a new vulnerability called a “port shadow”.

https://petsymposium.org/popets/2024/popets-2024-0070.pdf

Please open Telegram to view this post

VIEW IN TELEGRAM

X (formerly Twitter)

PETS (@PET_Symposium) on X

Official account of the Privacy Enhancing Technologies Symposium. Next event: PETS 2025, July 14-19, Washington, DC and Online.
mastodon: @PET_Symposium@infosec

2.14K views20:15

cKure Red

0:25

This media is not supported in your browser

VIEW IN TELEGRAM

🆕

WhatsApp trick: Android malware can impersonate PDF file.

https://www.mobile-hacker.com/2024/07/23/whatsapp-trick-android-malware-can-impersonate-pdf-file/

Please open Telegram to view this post

VIEW IN TELEGRAM

2.26K views09:57

cKure Red

💥

👉

Breached Forum backend data is publicly searchable.

Includes credentials, registrant IP, and last login IP, among other details.

https://bf.based.re/

Please open Telegram to view this post

VIEW IN TELEGRAM

2.21K viewsedited 21:47

cKure Red

cKure Red pinned «

💥

👉 Breached Forum backend data is publicly searchable. Includes credentials, registrant IP, and last login IP, among other details. https://bf.based.re/»

21:47

cKure Red

💎

Abusing RCU callbacks with a Use-After-Free read to defeat KASLR.

https://anatomic.rip/abusing_rcu_callbacks_to_defeat_kaslr/

Please open Telegram to view this post

VIEW IN TELEGRAM

a place of anatomical precision

Abusing RCU callbacks with a Use-After-Free read to defeat KASLR

Introduction In this article, I will be walking you through a clever technique that can be used to leak addresses and defeat KASLR in the Linux Kernel when you have a certain type of Use-After-Free by abusing RCU callbacks. It is by no means a novel technique…

2.01K views19:44

cKure Red

🎧Basic offensive security tactics for various domains.