konik_polanowy

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.03.13.md

BodySnatcher (CVE-2025-12420): A Broken Authentication and Agentic Hijacking Vulnerability in ServiceNow - https://appomni.com/ao-labs/bodysnatcher-agentic-ai-security-vulnerability-in-servicenow/

Arbitrary App Installation on Intune Managed Android Enterprise BYOD - https://jgnr.ch/sites/android_enterprise.html

ARM64 Reversing And Exploitation Part 4 – Using mprotect() to bypass NX Protection - https://8ksec.io/arm64-reversing-and-exploitation-part-4-using-mprotect-to-bypass-nx-protection-8ksec-blogs/

No Leak, No Problem – Bypassing ASLR with a ROP Chain to Gain RCE - https://modzero.com/en/blog/no-leak-no-problem/

Developing An AI Vishing Model For £37.49 - https://http418infosec.com/developing-an-ai-vishing-model-for-37-49

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.03.11.md

Defeating Windows DEP Using ROP Chains Leveraging VirtualAlloc - https://screetsec.com/blog/defeating-windows-dep-using-rop-chains-leveraging-virtualalloc

When Windows takes a nap and leaves you evidence: Inside hiberfil.sys - https://www.magnetforensics.com/blog/when-windows-takes-a-nap-and-leaves-you-evidence-inside-hiberfil-sys/

CVE-2025-68668: Breaking Out of the Python Sandbox in n8n - https://www.smartkeyss.com/post/cve-2025-68668-breaking-out-of-the-python-sandbox-in-n8n

A 0-click exploit chain for the Pixel 9 Part 1: Decoding Dolby - https://projectzero.google/2026/01/pixel-0-click-part-1.html

Competing in Pwn2Own ICS 2022 Miami: Exploiting a zero click remote memory corruption in ICONICS Genesis64 - https://doar-e.github.io/blog/2023/05/05/competing-in-pwn2own-ics-2022-miami-exploiting-a-zero-click-remote-memory-corruption-in-iconics-genesis64/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.03.09.md

Next Generation Endpoint Security Check Your Privilege: The Curious Case of ETW's SecurityTrace Flag - https://www.originhq.com/blog/securitytrace-etw-ppl

RondoDox v2: Evolution of RondoDox Botnet with 650% More Exploits - https://beelzebub.ai/blog/rondo-dox-v2/

CVE-2025-43530: Exploiting a private API for VoiceOver - https://jhftss.github.io/CVE-2025-43530/

Privilege Escalation With Jupyter From the Command Line - https://www.adversis.io/blogs/privilege-escalation-with-jupyter-from-the-command-line

LANDFALL: New Commercial-Grade Android Spyware in Exploit Chain Targeting Samsung Devices - https://unit42.paloaltonetworks.com/landfall-is-new-commercial-grade-android-spyware/

#informatyka

433 + 1 = 434

Tytuł: Punkty krytyczne: Amerykańskie strategie w czasie wojen handlowych

Autor: Edward Fishman

Kategoria: biznes, finanse

Format: e-book

Ocena: 6/10

Książka składa się z kilku części. Pierwsza to opis to czym są tytułowe punkty krytyczne i dlaczego USA nimi "włada". Dalej są rozdziały kolejno o Iranie, Rosji i Chinach. Całość kończy coś na zasadzie sankcje w praktyce, czyli inwazja Ukrainy na Rosję. Każdy tych rozdziałów opisuje w jaki sposób dane sankcje zostały nałożone i dlaczego. Więc dowiadujemy się jak to za Busha sankcje nie działały, za Obamy to urzędnicy USA latali nawet to Turkmenistanu tylko, żeby Iran nie miał dostępu do zachodniego systemu płatności. Putin nie spodziewał, że na Centralny Bank Rosji zostaną nałożone sankcje. Dobrze, że jest wytłumaczenie jak to Moskwa "widzi" rozszerzenie NATO w 1999, Ukrainę od 2014 roku i Niemcy, którego do czasu jak miały gaz i ropę z Rosji to zachowywały się jak primadonna w Europie. Więc jakiś obiektywizm został zachowany. "Jakiś", bo książka trochę ma taki proamerykański charakter, gdzie autor dostrzega wyjście poszczególnych krajów z punktów krytycznych to jest to skazane na porażkę. W rozdziale o Chinach jest cała lista naiwności USA jak i całego Zachodu. Razem z nowymi technologiami przyjdą demokratyczne zmiany w Państwie Środka. Chiny zostały dodane do WTO, żeby amerykańskie korporacje miały kolejny rynek zbytu. Chińczycy postąpili inaczej i tak do 2008 roku przestali "uczyć się" od Amerykanów. Koniec to opis sankcji na Rosję nakładanych przez UE i USA, bardziej taka historia i popłynięcie w hollywodzki sposób patrzenia na świat.

Wygenerowano za pomocą https://bookmeter.xyz

#bookmeter

432 + 1 = 433

Tytuł: Odetnij napięcie. Jak pokonać stres dzięki praktykom psychosomatycznym

Autor: Rebekkah LaDyne

Kategoria: poradniki

Format: e-book

Ocena: 7/10

Książka o tym, że jak zaczniesz głęboko oddychać i się wyprostujesz to stres i jego skutki się zmienią. Dalej autorka na swoim przykładzie i pacjentów wskazuje jak to ćwiczyć i jakie pozytywne aspekty ze sobą niesie. Jak ktoś takie już coś takiego czytał to nic nowego nie znajdzie

Wygenerowano za pomocą https://bookmeter.xyz

#bookmeter

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.03.07.md

Self-XSS in Facebook payments flow leads to Instagram and Facebook account takeovers - https://ysamm.com/uncategorized/2025/01/15/self-xss-facebook-payments.html

TP-Link ER605 DDNS Pre-Auth RCE: Chaining CVE-2024-5242, CVE-2024-5243, CVE-2024-5244 - https://oobs.io/posts/er605-1day-exploit/

The Shady World of IP Leasing - https://acid.vegas/blog/the-shady-world-of-ip-leasing/

A Race Within A Race: Exploiting CVE-2025-38617 in Linux Packet Sockets - https://blog.calif.io/p/a-race-within-a-race-exploiting-cve

Avira: Deserialize, Delete and Escalate - The Proper Way to Use an AV - https://blog.quarkslab.com/avira-deserialize-delete-and-escalate-the-proper-way-to-use-an-av.html

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.03.05.md

CVE-2025-8556 - Cryptographic Issues in Cloudflare’s CIRCL FourQ Implementation - https://www.botanica.software/blog/cryptographic-issues-in-cloudflares-circl-fourq-implementation

Windows ARM64 Internals: Deconstructing Pointer Authentication - https://www.originhq.com/blog/windows-arm64-internals-deconstructing-pointer-authentication

Sniffing established BLE connections with HackRF One - https://blog.lexfo.fr/sniffing-ble-sdr.html

hackerbot-claw: An AI-Powered Bot Actively Exploiting GitHub Actions - Microsoft, DataDog, and CNCF Projects Hit So Far - https://www.stepsecurity.io/blog/hackerbot-claw-github-actions-exploitation

Vectored Exception Handling Squared - https://fluxsec.red/vectored-exception-handling-squared-rust

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.03.03.md

When NAS Vendors Forget How TLS Works - https://www.interruptlabs.co.uk/articles/when-nas-vendors-forget-how-tls-works

TP-Link Tapo C200: Hardcoded Keys - https://www.evilsocket.net/2025/12/18/TP-Link-Tapo-C200-Hardcoded-Keys-Buffer-Overflows-and-Privacy-in-the-Era-of-AI-Assisted-Reverse-Engineering/

Pentesting Next.js Server Actions - https://www.adversis.io/blogs/pentesting-next-js-server-actions

From DDS Packets to Robot Shells: - https://boschko.ca/unitree-go2-rce/

Pwning Claude Code in 8 Different Ways - https://flatt.tech/research/posts/pwning-claude-code-in-8-different-ways/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.03.01.md

Bypassing Apache FOP Postscript Escaping to reach GhostScript - https://offsec.almond.consulting/bypassing-apache-fop-escaping-to-reach-ghostscript.html

The "Ghost" in the Annotations - https://defensendepth.substack.com/p/the-ghost-in-the-annotations

Spring Boot Actuator - Using misconfigurations to your advantage: paths, bypasses, techniques - https://www.dsecured.com/en/articles/spring-boot-actuator-using-misconfig-to-your-advantage-paths-bypasses-techniques

Datr cookie theft and AI leads to Facebook account takeover via trusted device recovery - https://ysamm.com/uncategorized/2025/01/15/steal-dtsg-cookie.html

The Forgotten Bug: How a Node.js Core Design Flaw Enables HTTP Request Splitting - https://r3verii.github.io/cve/2026/02/27/nodejs-toctou.html

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.02.28.md

HonoJS JWT/JWKS Algorithm Confusion - https://devansh.bearblog.dev/honojs/

Desktop Window Manager Array Out Of Bounds LPE - https://ssd-disclosure.com/desktop-window-manager-array-out-of-bounds-lpe/

The security paradox of local LLMs - https://quesma.com/blog/local-llms-security-paradox/

TARmageddon (CVE-2025-62518) - https://edera.dev/stories/tarmageddon

Operation MacroMaze: new APT28 campaign using basic tooling and legit infrastructure - https://lab52.io/blog/operation-macromaze-new-apt28-campaign-using-basic-tooling-and-legit-infrastructure/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.02.26.md

LockBit Returns — and It Already Has Victims - https://blog.checkpoint.com/research/lockbit-returns-and-it-already-has-victims/

ARM64 Reversing and Exploitation Part 3 - A Simple ROP Chain | 8kSec Blogs - https://8ksec.io/arm64-reversing-and-exploitation-part-3-a-simple-rop-chain/

pyLDAPGui - How It was Born - https://blog.zsec.uk/pyldapgui/

Leveraging Machine Learning to Enhance Acoustic Eavesdropping Attacks (Part 1 of 4) - https://cc-sw.com/leveraging-machine-learning-to-enhance-acoustic-eavesdropping-attacks-part-1-of-4/

Unlocking free WiFi on British Airways - https://saxrag.com/tech/reversing/2025/06/01/BAWiFi.html

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.02.24.md

Modding And Distributing Mobile Apps with Frida - https://pit.bearblog.dev/modding-and-distributing-mobile-apps-with-frida/

Achieving remote code execution in LangSmith Playground using unsafe template formatting - https://lab.ctbb.show/research/langsmith-unsafe-formatting-to-rce

Windows User Mode Exploit Development: Part 1 - https://memn0ps.github.io/windows-user-mode-exploit-development-part-1/

Singularity: Deep Dive into a Modern Stealth Linux Kernel Rootkit - https://blog.kyntra.io/Singularity-A-final-boss-linux-kernel-rootkit

Drone Hacking Part 1: Dumping Firmware and Bruteforcing ECC - https://neodyme.io/en/blog/drone_hacking_part_1/#intro

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.02.22.md

Hacking Furbo - A Hardware Research Project – Part 2: Mobile and P2P Exploits - https://www.softwaresecured.com/post/hacking-furbo-a-hardware-research-project-part-2-mobile-and-p2p-exploits

PureVPN IPv6 leak - https://anagogistis.com/posts/purevpn-ipv6-leak/

Why nested deserialization is STILL harmful – Magento RCE (CVE-2025-54236) - https://slcyber.io/research-center/why-nested-deserialization-is-still-harmful-magento-rce-cve-2025-54236/

Casting a Net(ty) for Bugs, and Catching a Big One (CVE-2025-59419) - https://depthfirst.com/post/casting-a-net-ty-for-bugs-and-catching-a-big-one-cve-2025-59419

Critical Account Takeover via Unauthenticated API Key Creation in better-auth (CVE-2025-61928) - https://zeropath.com/blog/breaking-authentication-unauthenticated-api-key-creation-in-better-auth-cve-2025-61928

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.02.20.md

Reversing a Microsoft‑Signed Rootkit: The Netfilter Driver - https://splintersfury.github.io/mal_blog/post/netfilter_driver/

Pwning Supercomputers - A 20yo vulnerability in Munge - https://blog.lexfo.fr/munge-heap-buffer-overflow.html

AI System Intrusion Methodology: Attacking Machine Learning End-to-End, from Source to Service - https://aet1us.github.io/article_ia_en

CVE-2025-8078: Remote Code Execution via CLI Command Injection https://rainpwn.blog/blog/cve-2025-8078/

Clang Hardening Cheat Sheet - Ten Years Later - https://blog.quarkslab.com/clang-hardening-cheat-sheet-ten-years-later.html

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.02.18.md

ElysiaJS Cookie Signature Validation Bypass - https://devansh.bearblog.dev/elysiajs/

Endpoint Evasion Techniques (2020–2025): The Evolution of Attacks Bypassing EDR - https://windshock.github.io/en/post/2025-05-28-endpoint-security-evasion-techniques-20202025/

You name it, VMware elevates it (CVE-2025-41244) - https://blog.nviso.eu/2025/09/29/you-name-it-vmware-elevates-it-cve-2025-41244/

Large-Scale Attack Targeting Macs via GitHub Pages Impersonating Companies to Attempt to Deliver Stealer Malware - https://blog.lastpass.com/posts/attack-targeting-macs-via-github-pages

Abusing Microsoft Warbird for Shellcode Execution - https://cirosec.de/en/news/abusing-microsoft-warbird-for-shellcode-execution/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.02.16.md

General Graboids: Worms and Remote Code Execution in Command & Conquer - https://www.atredis.com/blog/2026/1/26/generals

Azure Attack Paths - https://cloudbrothers.info/en/azure-attack-paths/

CVE-2025-9133: Configuration Exposure via Authorization Bypass - https://rainpwn.blog/blog/cve-2025-9133/

The MCP Security Tool You Probably Need - MCP Snitch - https://www.adversis.io/blogs/the-mcp-security-tool-you-probably-need---mcp-snitch

Carbonara: The MediaTek exploit nobody served - https://itssho.my/blog/article/serving-carbonara

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.02.14.md

Fundamental of Virtual Memory - https://nghiant3223.github.io/2025/05/29/fundamental_of_virtual_memory.html

Registry Writes Without Registry Callbacks - https://deceptiq.com/blog/ntuser-man-registry-persistence

EDR Evasion: A New Technique Using Hardware Breakpoints – Blindside -https://cymulate.com/blog/blindside-a-new-technique-for-edr-evasion-with-hardware-breakpoints/

Journeys in Hosting 1/x - Precomputed SSH Host Keys - https://dataplane.org/jtk/blog/2025/09/hosting-stories-1/

Accelerating Malicious Script Analysis with AMSI - https://theshadowslights.com/posts/malware-analysis/02/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.02.12.md

Detecting AI Fakes with Compression Artifacts - https://dmanco.dev/2025/09/15/basics-of-image-forensics-1.html

Enketo 6.2.1 - Auth-Bypass, SSRF, and XXE Browser Abuse to File Read - https://thinkloveshare.com/offenskill/enketo-auth-bypass-ssrf-xxe-and-file-read/

Hunting Bugs in Linux Kernel With KASAN: How to Use it & What's the Benefit? - https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/

Hacking High-Profile Bug Bounty Targets: Deep Dive into a Client-Side Chain - https://vitorfalcao.com/posts/hacking-high-profile-targets/

FrankenPHP - Unicode Case‑Folding Bug and PHP Sandbox Escape - https://internethandout.com/post/ezupload

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.02.10.md

Blind Enumeration of gRPC Services - https://www.adversis.io/blogs/blind-enumeration-of-grpc-services

Let's compile Quake like it's 1997! - https://fabiensanglard.net/compile_like_1997/index.html

[ENG] 2025 SECCON CTF 14 Quals Web Challenges Writeup - https://research.rewritelab.org/2025/12/31/%5BENG%5D%202025%20SECCON%20CTF%2014%20Quals%20Web%20Challenges%20Writeup/

Modus Operandi of Subtle Snail - https://catalyst.prodaft.com/public/report/modus-operandi-of-subtle-snail/overview#heading-1000|0

Another Crack in the Chain of Trust: Uncovering (Yet Another) Secure Boot Bypass - https://www.binarly.io/blog/another-crack-in-the-chain-of-trust

#informatyka

277 + 1 = 278

Tytuł: Nowy Bliski Wschód. Po wielkiej wojnie Izraela

Autor: Paweł Rakowski

Kategoria: reportaż

Format: e-book

Ocena: 8/10

Książka dla zaawansowanych. Tych, co wiedzą, że Hamas i Zachodni Brzeg to nie to samo. Podobnie wiedzą kim był Nasrallah bez odpytywania chatgpt. Trzeba wiedzieć, bo cała książka skupia się głównie na jednej dacie: 7 października 2023 roku. Następnie jak to w szczególnych miastach jak Doha, Gaza, Teheran, Moskwa, Tel Awiw, Damaszek, Rijad etc. miała ona swój wydźwięk. Później jest wojna "dwunastodniowa" i zapowiedziane amerykańskie gongi w irański program nuklearny. Krótka książka, bo jak mówił Nasrallah"to nie ta wojna". Większe rzeczy będą się działy po 2035 roku.

Wygenerowano za pomocą https://bookmeter.xyz

#bookmeter