Fuzzing sockets, part 1: FTP servers https://securitylab.github.com/research/fuzzing-sockets-FTP
GitHub Security Lab
Fuzzing sockets, part 1: FTP servers
Antonio shares findings and tips from his research on socket-based fuzzing. Let’s start with the audit of three widely-used FTP servers, with details on interesting CVEs found along the way.
CVE-2020-6110 Zoom Client Application Chat Code Snippet Remote Code Execution Vulnerability https://talosintelligence.com/vulnerability_reports/TALOS-2020-1056
Reversing DexGuard https://www.pnfsoftware.com/blog/reversing-dexguard/
Looking at Big Threats Using Code Similarity. Part 1 https://securelist.com/big-threats-using-code-similarity-part-1/97239/
Securelist
Looking at Big Threats Using Code Similarity – part 1
Big Threats Using Code Similarity. Part 1 Today, we are announcing the release of KTAE, the Kaspersky Threat Attribution Engine. This code attribution technology, developed initially for internal use by the Kaspersky Global Research and Analysis Team,
Attacking FreeIPA — Part IV: CVE-2020–10747 https://posts.specterops.io/attacking-freeipa-part-iv-cve-2020-10747-7c373a1bf66b
Medium
Attacking FreeIPA — Part IV: CVE-2020–10747
This post is the final part in a series about my experiences attacking FreeIPA. In Part I of this series, we reviewed some of the…
Bahrain, Kuwait and Norway contact tracing apps among most dangerous for privacy https://www.amnesty.org/en/latest/news/2020/06/bahrain-kuwait-norway-contact-tracing-apps-danger-for-privacy/
Amnesty International
Bahrain, Kuwait and Norway contact tracing apps a danger for privacy
Amnesty investigation of contact tracing apps from Europe, Middle East and North Africa finds several are dangerous for human rights.
A Click from the Backyard | Analysis of CVE-2020-9332, a Vulnerable USB Redirection Software https://labs.sentinelone.com/click-from-the-backyard-cve-2020-9332/
CVE-2020-1054 Analysis https://0xeb-bp.github.io/blog/2020/06/15/cve-2020-1054-analysis.html
0xeb_bp
CVE-2020-1054 Analysis
This post is an analysis of the May 2020 security vulnerability identified by CVE-2020-1054. The bug is an elevation of privilege in Win32k. The bug was reported by Netanel Ben-Simon and Yoav Alon from Check Point Research as well as bee13oy of Qihoo 360…
Hackers use fake Windows error logs to hide malicious payload https://www.bleepingcomputer.com/news/security/hackers-use-fake-windows-error-logs-to-hide-malicious-payload/
BleepingComputer
Hackers use fake Windows error logs to hide malicious payload
Hackers have been using fake error logs to store ASCII characters disguised as hexadecimal values that decode to a malicious payload designed to prepare the ground for script-based attacks.
Broken phishing accidentally exploiting Outlook zero-day https://isc.sans.edu/diary.html?storyid=26254
CVE-2020-8163 - Remote code execution of user-provided local names in Rails
https://github.com/sh286/CVE-2020-8163/
https://github.com/sh286/CVE-2020-8163/
GitHub
GitHub - lucasamorimca/CVE-2020-8163: CVE-2020-8163 - Remote code execution of user-provided local names in Rails
CVE-2020-8163 - Remote code execution of user-provided local names in Rails - lucasamorimca/CVE-2020-8163
A glibc heap exploitation tutorial, using a heap buffer overflow in SANE Backends as an example, by @kevin_backhouse https://securitylab.github.com/research/last-orders-at-the-house-of-force
GitHub Security Lab
Last orders at the House of Force
When his prank was thwarted by COVID-19, Kevin Backhouse decided to write a glibc heap exploitation tutorial instead. Learners, you’re in luck, enter the House of Force!
BitterAPT Revisited: the Untold Evolution of an Android Espionage Tool https://labs.bitdefender.com/2020/06/bitterapt-revisited-the-untold-evolution-of-an-android-espionage-tool/
Bitdefender Labs
BitterAPT Revisited: the Untold Evolution of an Android Espionage Tool
In 2016, a sophisticated malware campaign targeting Pakistani nationals made headlines. Dubbed Bitter, the Advanced Persistent Threat group (also... #BitterAPT #targetedattack #ThreatIntelligence
The Art of Packet Crafting with Scapy
https://github.com/0xbharath/art-of-packet-crafting-with-scapy — online workshop notes at https://scapy.disruptivelabs.in/
https://github.com/0xbharath/art-of-packet-crafting-with-scapy — online workshop notes at https://scapy.disruptivelabs.in/
GitHub
GitHub - 0xbharath/art-of-packet-crafting-with-scapy: A workshop on Packet Crafting using Scapy.
A workshop on Packet Crafting using Scapy. Contribute to 0xbharath/art-of-packet-crafting-with-scapy development by creating an account on GitHub.
Binaries, PowerShell scripts and information about Digital Signature Hijacking. https://github.com/netbiosX/Digital-Signature-Hijack
GitHub
GitHub - netbiosX/Digital-Signature-Hijack: Binaries, PowerShell scripts and information about Digital Signature Hijacking.
Binaries, PowerShell scripts and information about Digital Signature Hijacking. - GitHub - netbiosX/Digital-Signature-Hijack: Binaries, PowerShell scripts and information about Digital Signature H...