konik_polanowy

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2023.10.11.md

Huawei TrustZone HW_KEYMASTER Vulnerabilities - https://blog.impalabs.com/2309_advisory_huawei_trustzone_hw-keymaster.html

Introducing cmloot.py - New tooling for attacking Configuration Manager - https://www.shelltrail.com/research/cmloot/

A Pain in the NAS: Exploiting Cloud Connectivity to PWN your NAS: Synology DS920+ Edition - https://claroty.com/team82/research/a-pain-in-the-nas-exploiting-cloud-connectivity-to-pwn-your-nas-synology-ds920-edition

Critical WebP bug: many apps, not just browsers, under threat - https://stackdiary.com/critical-vulnerability-in-webp-codec-cve-2023-4863/

How Browser Sync Can Unknowingly Risk Your Business - https://socradar.io/how-browser-sync-can-unknowingly-risk-your-business/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2023.10.09.md

C2 Server Hunting: Empowering Threat Intelligence with Nuclei Templates - https://blog.projectdiscovery.io/hunting-c2-servers/

My Methods To Achieve Persistence In Linux Systems - https://flaviu.io/advanced-persistent-threat/

Converting Tokens to Session Cookies for Outlook Web Application - https://labs.lares.com/owa-cap-bypass/

Breaking Fortinet Firmware Encryption - https://bishopfox.com/blog/breaking-fortinet-firmware-encryption

Sequence of calls to a credential provider in Windows - https://dennisbabkin.com/blog/?i=AAA12400

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2023.10.07.md

How to Detect BLASTPASS Inside a WebP File - https://www.magnetforensics.com/blog/how-to-detect-blastpass-inside-a-webp-file/

Rust on ESP32 - https://apollolabsblog.hashnode.dev/

Overview of GLIBC heap exploitation techniques - https://0x434b.dev/overview-of-glibc-heap-exploitation-techniques/

Your printer is not your printer ! - Hacking Printers at Pwn2Own Part I - https://devco.re/blog/2023/10/05/your-printer-is-not-your-printer-hacking-printers-pwn2own-part1-en/

CVE-2023-34040 Spring Kafka Deserialization Remote Code Execution - https://pyn3rd.github.io/2023/09/15/CVE-2023-34040-Spring-Kafka-Deserialization-Remote-Code-Execution/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2023.10.05.md

Port knocking from the scratch - https://antonio-cooler.gitbook.io/coolervoid-tavern/port-knocking-from-the-scratch

Using silent SMS to localize LTE users - https://mandomat.github.io/2023-09-21-localization-with-silent-SMS/

JTAG 'Hacking' the Original Xbox in 2023 - https://blog.ret2.io/2023/08/09/jtag-hacking-the-original-xbox-2023/

Everything you never knew about NATs and wish you hadn't asked - https://educatedguesswork.org/posts/nat-part-1/

Helpdesk Telephone Attack: How to Close Process and Technology Gaps - https://www.praetorian.com/blog/helpdesk-telephone-attack/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2023.10.03.md

Abusing undocumented features to spoof PE section headers - https://secret.club/2023/06/05/spoof-pe-sections.html

Windows Hook Events - https://scorpiosoftware.net/2023/09/24/windows-hook-events/

Dynamic analysis of firmware components in IoT devices - https://ics-cert.kaspersky.com/publications/reports/2022/07/06/dynamic-analysis-of-firmware-components-in-iot-devices/

Exploiting HTTP Parsers Inconsistencies - https://rafa.hashnode.dev/exploiting-http-parsers-inconsistencies

.NET Assembly Obfuscation for Memory Scanner Evasion - https://www.r-tec.net/r-tec-blog-net-assembly-obfuscation-for-memory-scanner-evasion.html

#informatyka

CVE-2023-32364 - a macOS sandbox escape by mounting https://gergelykalman.com/CVE-2023-32364-a-macOS-sandbox-escape-by-mounting.html

Escaping the Google kCTF Container with a Data-Only Exploit  https://h0mbre.github.io/kCTF_Data_Only_Exploit/

Client-side JavaScript Instrumentation https://blog.doyensec.com//2023/09/25/clientside-javascript-instrumentation.html

Local Privilege Escalation on the DJI RM500 Smart Controller https://icanhack.nl/blog/dji-rm500-privilege-escalation/

[REL] A Journey Into Hacking Google Search Appliance  https://devco.re/blog/2023/07/07/a-journey-into-hacking-google-search-appliance-en/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2023.09.29.md

DirtyCred Remastered: how to turn an UAF into Privilege Escalation - https://exploiter.dev/blog/2022/CVE-2022-2602.html

Incident Response Playbooks - https://github.com/LetsDefend/incident-response-playbooks

REArchive: Reverse engineering APT37’s GOLDBACKDOOR dropper - https://www.0x0v1.com/rearchive-goldbackdoor/

Rooting Xiaomi WiFi Routers - https://blog.thalium.re/posts/rooting-xiaomi-wifi-routers/

Source Code at Risk: Critical Code Vulnerability in CI/CD Platform TeamCity - https://www.sonarsource.com/blog/teamcity-vulnerability/

#informatyka

Szukam listy najpopularniejszych #nsbm tak do 2011 roku

#metal

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2023.09.27.md

Analysis of VirtualBox CVE-2023-21987 and CVE-2023-21991 - https://qriousec.github.io/post/vbox-pwn2own-2023/

Scan 2.4Ghz Band with nRF24L01 - https://github.com/cifertech/2.4-GHz-band-Scanner

GKE (Google Kubernetes Engine) Review - https://matduggan.com/gke-google-kubernetes-engine-review/

Awesome Command & Control - https://github.com/tcostam/awesome-command-control

Pulling MikroTik into the Limelight - https://margin.re/2022/06/pulling-mikrotik-into-the-limelight/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2023.09.25.md

A Potholing Tour in a SoC - https://eshard.com/posts/sca-attacks-on-armv8

The hidden side of 24/7/365 – The dreadful APAC shift - https://www.hexacorn.com/blog/2023/09/23/the-hidden-side-of-24-7-365-the-dreadful-apac-shift/

DualShock4 Reverse Engineering - Part 1 - https://blog.the.al/2023/01/01/ds4-reverse-engineering.html

Hacking a Toy Drone to Put Artificial Intelligence on It, Part I : The Hack! - https://lemaizi.com/blog/hacking-a-toy-drone-to-put-artificial-intelligence-on-it-part-i-the-hack/

ZIP Exploitation: Critical Vulnerabilities Found in Popular Zip Libraries in Swift and Flutter - https://blog.ostorlab.co/zip-packages-exploitation.html

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2023.09.23.md

Embedded Systems Security and TrustZone https://embeddedsecurity.io/

Emulating IoT Firmware Made Easy: Start Hacking Without the Physical Device https://boschko.ca/qemu-emulating-firmware/

The Attackers Guide to Azure AD Conditional Access https://danielchronlund.com/2022/01/07/the-attackers-guide-to-azure-ad-conditional-access/

Pwntools 102 - Crafting Shellcode with Shellcraft https://www.archcloudlabs.com/projects/pwntools-shellcraft/

Reverse your first VM-obfuscated code https://negromarco.it/post/reverse-your-first-vm-obfuscated-code/

#informatyka

563 + 1 = 564

Tytuł: Między pesymizmem a optymizmem. Szczęście w rozumie

Autor: Elaine Fox

Kategoria: nauki społeczne (psychologia, socjologia, itd.)

Ocena: 7/10

Książka z dziedziny psychologi, ale z tych popularnonaukowych. Są skomplikowane "zaklęcia" i wielostronicowe ich wyjaśnieni. Tabelki również są. Ale spokojnie, pisana prostym językiem. Od razu mogę napisać, że nie zdiagnozujesz sam siebie, mimo podawania odpowiednich testów przez autorkę. Również mit jakoby optymizm/pesymizm był na stały zapisany w naszych genach. Środowisko, w jakim żyjemy i to, co nam się przydarza, ma spory wpływ.

Prywatny licznik: 104/200

Wygenerowano za pomocą https://bookmeter.vercel.app/

#bookmeter

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2023.09.21.md

CAN Injection: keyless car theft https://kentindell.github.io/2023/04/03/can-injection/

Implement a Blind Error-Based SQLMap payload for SQLite https://sokarepo.github.io/web/2023/08/24/implement-blind-sqlite-sqlmap.html

Hacking Some More Secure USB Flash Drives (Part I) https://blog.syss.com/posts/hacking-usb-flash-drives-part-1/

AWS’s Hidden Threat: AMBERSQUID Cloud-Native Cryptojacking Operation https://sysdig.com/blog/ambersquid/

House of Muney - Leakless Heap Exploitation Technique https://maxwelldulin.com/BlogPost/House-of-Muney-Heap-Exploitation

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2023.09.19.md

A Deep Dive into TPM-based BitLocker Drive Encryption - https://blog.scrt.ch/2023/09/15/a-deep-dive-into-tpm-based-bitlocker-drive-encryption/

Revisiting the User-Defined Reflective Loader Part 1: Simplifying Development - https://www.cobaltstrike.com/blog/revisiting-the-udrl-part-1-simplifying-development

Android security checklist: theft of arbitrary files - https://blog.oversecured.com/Android-security-checklist-theft-of-arbitrary-files/

Azure Attack Paths - https://cloudbrothers.info/en/azure-attack-paths/#aad-connect---application-takeover

Tool Release: Cartographer - https://research.nccgroup.com/2023/07/20/tool-release-cartographer/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2023.09.17.md

Zenbleed - https://lock.cmpxchg8b.com/zenbleed.html

Exploiting MikroTik RouterOS Hardware with CVE-2023-30799 - https://vulncheck.com/blog/mikrotik-foisted-revisited

Practical Introduction to BLE GATT Reverse Engineering: Hacking the Domyos EL500 - https://jcjc-dev.com/2023/03/19/reversing-domyos-el500-elliptical/

CVE-2023-38146: Arbitrary Code Execution via Windows Themes - https://exploits.forsale/themebleed/

Malware Reverse Engineering for Beginners - Part 1: From 0x0 - https://intezer.com/blog/malware-analysis/malware-reverse-engineering-beginners/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2023.09.15.md

House of Muney - Leakless Heap Exploitation Technique - https://maxwelldulin.com/BlogPost/House-of-Muney-Heap-Exploitation

CVE-2023-35671 - https://github.com/MrTiz/CVE-2023-35671

From MQTT Fundamentals to CVE - https://blog.compass-security.com/2023/09/from-mqtt-fundamentals-to-cve/

Technical Analysis of HijackLoader - https://www.zscaler.com/blogs/security-research/technical-analysis-hijackloader

Holy Macroni! A recipe for progressive language enhancement - https://blog.trailofbits.com/2023/09/11/holy-macroni-a-recipe-for-progressive-language-enhancement/

#informatyka

553 + 1 = 554

Tytuł: Hands-On Network Forensics

Autor: Nipun Jaswal

Kategoria: informatyka

Wydawnictwo: Packt Publishing

Ocena: 6/10

Książka dotycząca network forensics z podziałem na kilka rozdziałów, gdzie przedstawiany jest różny case. Zaczyna się do krótkiego wprowadzenia do wiresharka i wyszukiwania kluczowych informacji z pcapa.

Prywatny licznik: 103/200

#bookmeter

552 + 1 = 553

Tytuł: Tarcza i miecz : rosyjskie służby specjalne 1991-1998

Autor: Andrzej Grajewski

Kategoria: historia

Ocena: 7/10

Książka jest z 1998 roku i opisuje zmiany, jakie zaszły w rosyjskich służbach specjalnych. Dość obszerna pozycja. Są krótkie biografie ważniejszych postaci, pucze i polityka międzynarodowa w postaci surowców naturalnych oraz działalność służb wywiadowczych.

Prywatny licznik: 102/200

Wygenerowano za pomocą https://bookmeter.vercel.app/

#bookmeter

551 + 1 = 552

Autor: Grzegorz Swoboda

Kategoria: historia

Ocena: 8/10

Za sprawą licznych publikacji z dziedziny militariów i historii, które są pisane przez Amerykanów, nie da się nie znać tej bitwy. Jest wciskana, gdzie się da. Tutaj jest inaczej. Wydanie z 1999 roku, gdzie nie ma takiego zachwytu nad historią Stanów Zjednoczonych. Zaczyna się klasycznie od powodów, tych było wiele i nie chodzi tu głównie o niewolnictwo. Opis uzbrojenia, morale i społeczeństwa jednej i drugiej strony również ma swoje miejsce. Podobnie jak zabiegi na arenie międzynarodowej. Niestety mapki są na końcu książki.

Prywatny licznik: 101/200

Wygenerowano za pomocą https://bookmeter.vercel.app/

#bookmeter

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2023.09.13.md

Reverse Engineering Yaesu FT-70D Firmware Encryption - https://landaire.net/reversing-yaesu-firmware-encryption/

Diving Into Smart Contract Decompilation - https://jbecker.dev/research/diving-into-decompilation

mast1c0re: Introduction – Exploiting the PS4 and PS5 through a game save - https://mccaulay.co.uk/mast1c0re-introduction-exploiting-the-ps4-and-ps5-through-a-gamesave/

Remote Code Execution through Dependency Confusion using Burpsuite Extension - https://jineeshak.github.io/posts/Dependency-Confusion/

Shambles: The Next-Generation IoT Reverse Engineering Tool to Discover 0-Day Vulnerabilities - https://boschko.ca/shambles/

#informatyka