More Fortinet RCE (@frycos), alloc-less injection (@bohops), embedded system hacking (@levaronsky), miniDLNA head exploitation (@hyprdude), dump creds from sshd (@jm33_m0), MS Teams phishing (@CorbridgeMax + @tde_sec), ThreatCheck + Ghidra (@_RastaMouse), driver dev for red team (@V3ded), and more!
A months worth of news, techniques, tools and exploits!
From DA to EA (@_wald0), CS OPSEC (@joehowwolf), CS BOFs in BRC4 (@NVISOsecurity), Avast LPE (@Denis_Skvortcov), LOLBINs in AV (@nas_bench), and more!
Windows DHCPv6 RCE (@thezdi), hashcat rule process (@JakeWnuk@infosec.exchange), 🐍 FSB implant (@NSACyber), x64dbg XFG plugin (@m417z), Freeze.rs (@Tyl0us), and more!
ML packer classification (@accidentalrebel), DLL unlinking (@christophetd@infosec.exchange), Apache Superset and Papercut RCEs (@Horizon3Attack), SushiSwap hack (@Dooflin5), macOS LPE (@patch1t), macros in 2023 (@ptrpieter), nanodump update (@s4ntiago_p), and more!
PDF RCE (@sigabrt9), more PersistAssist (@FortyNorthSec), 5x SMM vulns (@uffeux), PRTG XSS 0day (@SkylightCyber), and more!
Windows installer LPE (@a_denkiewicz), unhooking without direct syscalls (@Kharosx0), dynamic linking injection (@praetorianlabs), suspending AV (@freefirex2), dir2json (@bitsadmin), DPAPISnoop (@lefterispan), and more!
RCE any Samsung phone (@itswillis), Parallels escape (@the_impalabs), AD trust issues (@exploitph), glitching past all ESP32 defenses (@raelizecom), PPL defeated again (@itm4n), and more!
Cobalt Strike 4.8 (@gregdarwin), Timeroasting, Mythic 3.0 (@its_a_feature_), LastPass breach saga continues, CosmosDB XSS to account takeover (@Creastery), 😈 chrome extension (@mattfriz), and more!
FortiNAC RCE, NimPlant (@chvancooten), LPE via GPO (@decoder_it), bypassing Okta MFA (@n00py1), injection with NtQueueApcThreadEx (@LloydLabs), DKOM attacks on ETW providers (@FuzzySec), PCIe on Windows (@4lpine), and more!