Citrix ADC RCE (@assetnote + @bishopfox), Zenbleed (@taviso), coolest hack of the year [CVE-2023-38408] (@qualys), AWS CNI for k8s abuse (@BerneCampbell), WebKit exploitation (@typeconfuser + @sherl0ck__), CS2BR (@MoritzLThomas), Mockingjay PoC (@dottor_morte), LPE via installers (@AndrewOliveau), and more!
Microsoft O365 was compromised for a few months for 25 customers, block EDR DLL loading (@ShitSecure), stashing shellcode in 3D models (@TrustedSec), AMSI bypasses (@pfiatde), Atlassian Companion macOS RCE (@_r3ggi), the smallest C# binary (@washi_dev), >350 blogs monitored, and more!
LPEs for Windows and Linux, Mastodon TooRoot, tons of web app hacking, and a bunch of new tools, and more!
More Fortinet RCE (@frycos), alloc-less injection (@bohops), embedded system hacking (@levaronsky), miniDLNA head exploitation (@hyprdude), dump creds from sshd (@jm33_m0), MS Teams phishing (@CorbridgeMax + @tde_sec), ThreatCheck + Ghidra (@_RastaMouse), driver dev for red team (@V3ded), and more!
A months worth of news, techniques, tools and exploits!
From DA to EA (@_wald0), CS OPSEC (@joehowwolf), CS BOFs in BRC4 (@NVISOsecurity), Avast LPE (@Denis_Skvortcov), LOLBINs in AV (@nas_bench), and more!
Windows DHCPv6 RCE (@thezdi), hashcat rule process (@JakeWnuk@infosec.exchange), 🐍 FSB implant (@NSACyber), x64dbg XFG plugin (@m417z), Freeze.rs (@Tyl0us), and more!
ML packer classification (@accidentalrebel), DLL unlinking (@christophetd@infosec.exchange), Apache Superset and Papercut RCEs (@Horizon3Attack), SushiSwap hack (@Dooflin5), macOS LPE (@patch1t), macros in 2023 (@ptrpieter), nanodump update (@s4ntiago_p), and more!
PDF RCE (@sigabrt9), more PersistAssist (@FortyNorthSec), 5x SMM vulns (@uffeux), PRTG XSS 0day (@SkylightCyber), and more!
Windows installer LPE (@a_denkiewicz), unhooking without direct syscalls (@Kharosx0), dynamic linking injection (@praetorianlabs), suspending AV (@freefirex2), dir2json (@bitsadmin), DPAPISnoop (@lefterispan), and more!