Last Week in Security (LWiS) - 2024-12-16
LDAP RCE 😵, worst.fit (@orange_8361 + @_splitline_) Grok AI vulns (@wunderwuzzi23), automating exploits (@FuzzySec + @chompie1337), and more!
Showing only posts tagged Exploits. Show all posts.
Last Week in Security (LWiS) - 2024-12-09
Vuln finding with graphs (@two06), review of Postex kit (@_RastaMouse), OpenWRT firmware upgrade vuln (@ryotkak), iOS decompilation tool (@lauriewired), and more!
Last Week in Security (LWiS) - 2024-12-02
Windows LPE (@SecuriTeam_SSD), Nighthawk 0.3.3 (@MDSecLabs), Advanced Cobalt Strike Usage (@_RastaMouse), Webcam LED control (@andreyknvl), AI/ML attacks (@olivier_boschko), and more!
Last Week in Security (LWiS) - 2024-11-25
Sitecore Exploit (@assetnote + @plopz0r), CI/CD CTF (@MagisterQuis), new Mythic agent (@silentwarble), cmake based win32 shellcode template (@ilove2pwn_), and more!
Last Week in Security (LWiS) - 2024-11-18
Arc browser RCE (@RenwaX23), more Fortinet woes (@SinSinology), PowerHuntShares v2 (@_nullbind), make_token_cert (@freefirex2), BOFs without DFR (@netbiosX), and more!
Last Week in Security (LWiS) - 2024-11-12
🕵️📱 Mysterious iPhone reboots, Tor under attack, Citrix Unauth RCE (@SinSinology), GitHub Actions attack (@adnanthekhan), and more!
Last Week in Security (LWiS) - 2024-11-04
WAF bypasses (@MDSecLabs), sastsweep (@_chebuya), Early Cascade injection (@DaWouw), and more!
Last Week in Security (LWiS) - 2024-10-28
Delta Sues Crowdstrike (@CrowdStrike), Jenkins Post-Exploitation (@TrustedSec), PE embedded within a PNG (@MalDevAcademy), Prompt Injection to C2 (@wunderwuzzi23), and more!
Last Week in Security (LWiS) - 2024-10-21
VNC-Like over SCCM (@netero_1010), Use LLMs to find CVEs (@ProtectAICorp), New process 💉 technique (@OutflankNL), 💰 Big acquisition (@Sophos), and more!
Last Week in Security (LWiS) - 2024-10-14
FortiGate exploit (@watchtowrcyber), Azure admin approval bypass (@PedroGabaldon), dylib 💉 in Teams (@Coiffeur0x90), Ivanti Connect Secure vuln (@buffaloverflow), and more!
page 1 | older articles »