ExploitHub

■■■■□ #WashingtoPost Security vulnerability

State: Still un-patched
Severity: Medium / High
Details: https://blog.ckure.xyz/archives/51
Wild Exploitation: Most likely
Password: will be shared once the issue is fixed.

2.3K views17:29

ExploitHub

■■■■□ #LD_preload

https://github.com/gaul/awesome-ld-preload

GitHub

GitHub - gaul/awesome-ld-preload: List of resources related to LD_PRELOAD, a mechanism for changing application behavior at run…

List of resources related to LD_PRELOAD, a mechanism for changing application behavior at run-time - gaul/awesome-ld-preload

2.3K views17:29

ExploitHub

■■■■■

Analyzing #iOS #WhatsApp Calls
Analysis of the network traffic + binary files + runtime behavior

https://link.medium.com/yi4uD2Q1P3

Medium

Analyzing WhatsApp Calls

How I revealed parts of the VoIP protocol with Wireshark, radare2 and Frida.

2.5K views17:29

ExploitHub

■■■■□ #BlueTeam ops #Statistic

https://securityaffairs.co/wordpress/97380/hacking/microsoft-web-shells-report.html

Security Affairs

Microsoft detects 77,000 active web shells on a daily basis

Microsoft published an interesting report that investigates web shell attacks, the IT giant says it detects 77,000 active web shells daily.

2.4K views17:29

ExploitHub

■■■□□ #DataBreach

https://www.bleepingcomputer.com/news/security/medicaid-cco-vendor-breach-exposes-health-personal-info-of-654k/

BleepingComputer

Medicaid CCO Vendor Breach Exposes Health, Personal Info of 654K

Medicaid coordinated care organization (CCO) Health Share of Oregon today disclosed a data breach exposing the health and personal info of 654,362 individuals following the theft of a laptop owned by its transportation vendor GridWorks IC.

2.5K views17:29

ExploitHub

■■■■■
Bluetooth Vulnerability in Android (CVE-2020-0022)

Bug allows an attacker to execute arbitrary code with the privileges of the Bluetooth daemon
https://insinuator.net/2020/02/critical-bluetooth-vulnerability-in-android-cve-2020-0022/

Insinuator.net

Critical Bluetooth Vulnerability in Android (CVE-2020-0022) – BlueFrag

On November 3rd, 2019, we have reported a critical vulnerability affecting the Android Bluetooth subsystem. This vulnerability has been assigned CVE-2020-0022 and was now patched in the latest security patch from February 2020. The security impact is as follows:…

2.7K views17:29

ExploitHub

■□□□□ #WhatsApp

https://www.theregister.co.uk/2020/02/05/whatsapp_xss_bug/

The Register

Terrifying bug in WhatsApp allows hackers to steal files. So get patching all nine of you using it on the desktop

Dear Facebook, please keep up with Electron and Chromium fixes, ta

2.6K views17:29

ExploitHub

■■■■■ One of the best articles available on #DOM based #XSS.

https://portswigger.net/web-security/dom-based

portswigger.net

DOM-based vulnerabilities | Web Security Academy

In this section, we will describe what the DOM is, explain how insecure processing of DOM data can introduce vulnerabilities, and suggest how you can ...

2.6K views17:29

ExploitHub

■■■■■ #CDPwn | #Cisco's #CDP (Cisco Discover Protocol) vulnerable with 5 #ZeroDay vulnerabilities caused due to memory corruption.

#bof #0day

Briefing: https://youtu.be/nYtDJlzU-ao

Demo:
https://youtu.be/uIQJQ5equvU [Network Switch]
https://youtu.be/dJpgoLilZQY [VoIP phone]

Details: https://www.armis.com/cdpwn/

YouTube

CDPwn Explained

Armis has discovered five critical, zero-day vulnerabilities in various implementations of the Cisco Discovery Protocol (CDP) that can allow remote attackers to completely take over devices without any user interaction. CDP is a Cisco proprietary Layer 2…

2.7K views17:29

ExploitHub

■■■□□ #Android: How to Bypass Root Check and Certificate Pinning

https://medium.com/@cintainfinita/android-how-to-bypass-root-check-and-certificate-pinning-36f74842d3be

Medium

Android: How to Bypass Root Check and Certificate Pinning

Recently I needed to pentest an Android application. When I installed the app in my virtual device (Android Emulator), a pop up…

2.8K views17:29

ExploitHub

■■■□□ #iOS exploit development series:

Part 1: Heap Exploit Development:
https://azeria-labs.com/heap-exploit-development-part-1/

Part 2: Heap Overflows and the iOS Kernel Heap
https://azeria-labs.com/heap-overflows-and-the-ios-kernel-heap/

Part 3: Grooming the iOS Kernel Heap
https://azeria-labs.com/grooming-the-ios-kernel-heap/

Azeria-Labs

Heap Exploit Development

2.9K views17:29

ExploitHub

■■□□□ #GoodReport #XXE via File upload (#SVG)

https://0xatul.github.io/posts/2020/02/external-xml-entity-via-file-upload-svg/

2.9K views17:29

ExploitHub

■■■■□ #Iran|ian #BlackHat hacker group @Cra3ked [telegram] released an efficient #BruteForce utility to hack web logins with #PoC

https://github.com/Fr13ND3/1tinymvz.net/

3.1K views17:29

ExploitHub

■■■□□ #GoodReport: LFI + file upload = #RCE (#CodeExecution)

https://medium.com/@armaanpathan/chain-the-bugs-to-pwn-an-organisation-lfi-unrestricted-file-upload-remote-code-execution-93dfa78ecce

Medium

Chain The Bugs to Pwn an Organisation ( LFI + Unrestricted File Upload = Remote Code Execution )

Hi everyone, After completing my OSCP certification I thought to give a try to bug bounty, as OSCP has sharpened my exploitationSkills.

3.3K views17:31

ExploitHub

Source

Title: BugBounty types — HTML injection via email

Description: HTML injection é um ataque muito parecido com o Cross-site Scripting (XSS), enquanto no XSS o invasor pode injetar e executar códigos em…

Continue reading on Medium »

Medium

BugBounty types — HTML injection via email

HTML injection é um ataque muito parecido com o Cross-site Scripting (XSS), enquanto no XSS o invasor pode injetar e executar códigos em…

3.4K views17:33

ExploitHub

XSS To Good XSS With ClickJacking on Subdomain Microsoft

https://link.medium.com/4EXo7G8Sk1

#XSS
#ClickJacking
#BugBounty

Medium

XSS To Good XSS With ClickJacking on Subdomain Microsoft

Bismillah hirrahman nirrahim.

3.2K viewsedited 01:39

About

Blog

Apps

Platform