Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2025.10.03.md

SharePoint ToolShell – One Request PreAuth RCE Chain - https://blog.viettelcybersecurity.com/sharepoint-toolshell/

The Havoc framework - https://lorenzomeacci.com/the-havoc-framework

Executive Offense - Building AI Hackbots, Part 1 - https://executiveoffense.beehiiv.com/p/ai-hackbots-part-1

Out-of-bound read in ANGLE CopyNativeVertexData from Compromised Renderer - https://qriousec.github.io/post/oob-angle/

Domain Fronting is Dead. Long Live Domain Fronting! - https://www.praetorian.com/blog/domain-fronting-is-dead-long-live-domain-fronting/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2025.10.01.md

The art of self mutating malware - https://0xf00sec.github.io/0x48

CrushFTP RCE Explained - https://pwn.guide/free/web/crushftp

Getting Started With Malware Development - https://www.crow.rip/nest/mal/dev/getting-started

Lifting Binaries, Part 0: Devirtualizing VMProtect and Themida: It's Just Flattening? - https://nac-l.github.io/2025/01/25/lifting_0.html

nRF51 RBPCONF bypass for firmware dumping - https://lessonsec.com/posts/nrf51-bypass/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2025.09.29.md

Turning Camera Surveillance on its Axis - https://claroty.com/team82/research/turning-camera-surveillance-on-its-axis

Quick-Skoping through Netskope SWG Tenants - CVE-2024-7401 - https://quickskope.com/

CPP / C++ Notes - Windows API Programming Win32 - https://caiorss.github.io/C-Cpp-Notes/WindowsAPI-cpp.html

Using Reflective Loaders to Replace LoadLibrary for Hot Swappable Modules in C++ - https://racoten.gitbook.io/red-team-developments-and-operations

More than you wanted to know about how Game Boy cartridges work - https://abc.decontextualize.com/more-than-you-wanted-to-know/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2025.09.27.md

[CVE-2025-41243] Spring Cloud Gateway: complicating evaluation context - https://blog.z3r.ru/posts/spring-cloud-gateway-spel-vuln/

How to Unpack Malware with x64dbg - https://www.varonis.com/blog/x64dbg-unpack-malware

Fixing A FakeNet/-NG PCAP - https://packetsmith.ca/tutorial-fakenet/

How We Accidentally Discovered a Remote Code Execution Vulnerability in ETQ Reliance - https://slcyber.io/assetnote-security-research-center/how-we-accidentally-discovered-a-remote-code-execution-vulnerability-in-etq-reliance/

Invision Community <= 5.0.7 (oauth/callback) Reflected Cross-Site Scripting Vulnerability - https://karmainsecurity.com/KIS-2025-05

#informatyka

Dlaczego mi wcześniej nie zapaliła się lampka? Po przejęciu przez NetArt hostingu netmark wywalili ceny w kosmos. Za przedłużenie domeny .pl wołają 295 brutto! Nie wspominając już o cenie za hosting... Czy ktoś ma do polecenia jakiś SPRAWDZONY hosting w normalnych pieniądzach?

Wymagania: 2 domeny (.pl i .eu), 3 subdomeny, MySQL, node.js + e-mail

#informatyka #hosting #cebula #kiciochpyta

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2025.09.25.md

Silly EDR Bypasses and Where To Find Them - https://malwaretech.com/2023/12/silly-edr-bypasses-and-where-to-find-them.html

Direct Syscalls in Beacon Object Files - https://www.outflank.nl/blog/2020/12/26/direct-syscalls-in-beacon-object-files/

Inside Windows Sessions: A Deep Dive with Pavel - https://trainsec.net/library/windows-internals/inside-windows-sessions/

A Novel Technique for SQL Injection in PDO’s Prepared Statements - https://slcyber.io/assetnote-security-research-center/a-novel-technique-for-sql-injection-in-pdos-prepared-statements/

Creating a C2 infrastructure on AWS - https://lorenzomeacci.com/creating-a-c2-infrastructure-on-aws

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2025.09.23.md

Reversing for dummies - x86 assembly and C code (Beginner/ADHD friendly) - https://0x44.cc/reversing/2021/07/21/reversing-x86-and-c-code-for-beginners.html

Dissecting DCOM partie 1 - https://www.synacktiv.com/publications/dissecting-dcom-partie-1

Binder Fuzzing - https://androidoffsec.withgoogle.com/posts/binder-fuzzing/

HITCON CTF 2025 -- calc - https://bruce30262.github.io/hitcon-ctf-2025-calc/

Root Shell on Credit Card Terminal - https://stefan-gloor.ch/yomani-hack

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2025.09.21.md

When a Wi-Fi SSID Gives You Root on an MT02 Repeater - https://chocapikk.com/posts/2025/when-a-wifi-name-gives-you-root/

Hosting a WebSite on a Disposable Vape - https://bogdanthegeek.github.io/blog/projects/vapeserver/

Code auditing 101 - https://blog.rodolpheg.xyz/posts/code-auditing--101/

Mapping Hidden Alliances in Russian-Affiliated Ransomware - https://dti.domaintools.com/mapping-hidden-alliances-russian-affiliated-ransomware/

Extraction of Synology encrypted archives - Pwn2Own Ireland 2024 - https://www.synacktiv.com/en/publications/extraction-of-synology-encrypted-archives-pwn2own-ireland-2024

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2025.09.19.md

Copy-Paste Pitfalls: Revealing the AppLocker Bypass Risks in The Suggested Block-list Policy - https://www.varonis.com/blog/applocker-bypass-risks

A Simple AD Problem - https://techbrandon.github.io/active%20directory/security/rant/2025/09/09/a-simple-ad-problem.html

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass - https://www.welivesecurity.com/en/eset-research/introducing-hybridpetya-petya-notpetya-copycat-uefi-secure-boot-bypass/

Windows local privilege escalation through the bitpixie vulnerability - https://blog.syss.com/posts/bitpixie/

Qualcomm DSP Kernel Internals - https://streypaws.github.io/posts/DSP-Kernel-Internals/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2025.09.17.md

Automated Function ID Database Generation in Ghidra on Windows - https://blog.mantrainfosec.com/blog/17/automated-function-id-database-generation-in-ghidra-on-windows

Learning Lens Blur Fields - https://blur-fields.github.io/

Training Specialist Models: Automating Malware Development - https://www.outflank.nl/blog/2025/08/07/training-specialist-models/

CVE-2025-48384: Breaking Git with a carriage return and cloning RCE - https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384

Exploiting the Impossible: A Deep Dive into A Vulnerability Apple Deems Unexploitable - https://jhftss.github.io/Exploiting-the-Impossible/

#informatyka