Rise of Broken Access Control
https://medium.com/@rafinrahmanchy/rise-of-broken-access-control-51356916235f
https://medium.com/@rafinrahmanchy/rise-of-broken-access-control-51356916235f
Critical misconfiguration in Firebase — Bug bounty
https://medium.com/@facu.tha/critical-misconfiguration-in-firebase-e682ec4239d6
https://medium.com/@facu.tha/critical-misconfiguration-in-firebase-e682ec4239d6
Cueing up a calculator: an introduction to exploit development on Linux
https://github.blog/2023-12-06-cueing-up-a-calculator-an-introduction-to-exploit-development-on-linux
https://github.blog/2023-12-06-cueing-up-a-calculator-an-introduction-to-exploit-development-on-linux
godap: A complete TUI for LDAP written in Golang
https://github.com/Macmod/godap
https://github.com/Macmod/godap
CVE-2023-45866: Unauthenticated Bluetooth keystroke-injection in Android, Linux, macOS and iOS
https://github.com/skysafe/reblog/tree/main/cve-2023-45866
https://github.com/skysafe/reblog/tree/main/cve-2023-45866
Unhooking EDR by remapping ntdll.dll
https://bobvanderstaak.medium.com/unhooking-edr-by-remapping-ntdll-dll-101a99887dfe
https://bobvanderstaak.medium.com/unhooking-edr-by-remapping-ntdll-dll-101a99887dfe
Elevating Privileges with SeBackupPrivilege on Windows
https://infosecwriteups.com/elevating-privileges-with-sebackupprivilege-on-windows-107bd34befa2
https://infosecwriteups.com/elevating-privileges-with-sebackupprivilege-on-windows-107bd34befa2
Unicode XSS via Combining Characters
https://gist.github.com/paj28/86c7b8f37371d89c9a36ed0280fcf450
https://gist.github.com/paj28/86c7b8f37371d89c9a36ed0280fcf450
Tricks for Reliable Split-Second DNS Rebinding in Chrome and Safari
https://www.intruder.io/research/split-second-dns-rebinding-in-chrome-and-safari
https://www.intruder.io/research/split-second-dns-rebinding-in-chrome-and-safari
RPC or Not, Here We Log: Preventing Exploitation and Abuse with RPC Firewall
https://blog.nviso.eu/2023/12/08/rpc-or-not-here-we-log-preventing-exploitation-and-abuse-with-rpc-firewall
https://blog.nviso.eu/2023/12/08/rpc-or-not-here-we-log-preventing-exploitation-and-abuse-with-rpc-firewall
The Pool Party You Will Never Forget: New Process Injection Techniques Using Windows Thread Pools
https://www.safebreach.com/blog/process-injection-using-windows-thread-pools
PoolParty: A set of fully-undetectable process injection techniques abusing Windows Thread Pools
https://github.com/SafeBreach-Labs/PoolParty
https://www.safebreach.com/blog/process-injection-using-windows-thread-pools
PoolParty: A set of fully-undetectable process injection techniques abusing Windows Thread Pools
https://github.com/SafeBreach-Labs/PoolParty
Pentesting with Secure LDAP and LDAP Channel Binding
https://rootsecdev.medium.com/pentesting-with-secure-ldap-and-ldap-channel-binding-fd5baa0f7345
https://rootsecdev.medium.com/pentesting-with-secure-ldap-and-ldap-channel-binding-fd5baa0f7345
Apt style exploitation of Chrome 0day CVE-2023-4357
https://github.com/OgulcanUnveren/CVE-2023-4357-APT-Style-exploitation
https://github.com/OgulcanUnveren/CVE-2023-4357-APT-Style-exploitation
Simple Shellcode Runner in Rust Language
https://github.com/CyberSecurityUP/shellcode-runner-rust
https://github.com/CyberSecurityUP/shellcode-runner-rust
Defender Exclusions Creator BOF
https://github.com/EspressoCake/Defender-Exclusions-Creator-BOF
https://github.com/EspressoCake/Defender-Exclusions-Creator-BOF
Cookie Monster BOF: Steal browser cookies for edge, chrome and firefox through a BOF or exe! Cookie-Monster will extract the WebKit master key, locate a browser process with a handle to the Cookies and Login Data files, copy the handle(s) and then filelessly download the target
https://github.com/KingOfTheNOPs/cookie-monster
https://github.com/KingOfTheNOPs/cookie-monster