Result of my research about current situation with #deserialization vulns in #javascript / #nodejs acunetix.com/blog/web-secur… #hacking #PenTest

ZeroNights WebVillage squad: H̷͙̰͕̼̫̥͔̮͓͈͉̩͇̯̍̄̍́͊̋̓͜_̸̭̤̻̫͚̗͒̀́̊͆͜D̷̛̈́̏̓̈̒̈͂̚͝, Ivan Chalykin, Sergey Bobrov, @L1kvID, @xSoolfaa, Aleksei Tiurin, @ahack_ru, Paul Axe, web_rock, Bo0oM, Shikari Senpai, Sergey Belov will upgrade your skills! 2018.zeronights.ru/en/news/webvil… Don't miss it!

Yet another memory leak in #ImageMagick or how to #exploit CVE-2018–16323. medium.com/@ilja.bv/yet-a…

#ZeroNights 2018 Web Village 2018.zeronights.ru/en/materials/

Wow, I had three talks on #ZeroNights: “Chat with a hacker” on Track2, “CRLF +OpenRedirect” and “CSTI” on WebVillage. I will share the presentations later! :)

We released our plugin - security checks pack for Burp Suite #burp #extension #zeronights github.com/yandex/burp-mo… Burp Suite

All info about TLS Redirection / Virtual Host Confusion attacks github.com/GrrrDog/TLS-Re… and my presentation about new attack techniques slideshare.net/GreenD0g/mitm-… #ZeroNights

My slides "CRLF and OpenRedirect for Dummies" from #ZeroNights #WebVillage. Introduction to #СRLF and #OpenRedirect vulnerability: - Basics - Search methods - Payloads - Tricks Slides have many useful links! #XSS speakerdeck.com/shikarisenpai/…

And another slides about #CSTI vulnerability from #ZeroNights #WebVillage 😅 - Basics (for AngularJS) - Search methods - Sandbox bypass - HTML Sanitizer problem - CSP is hard Slides have many-many references to other hard talks! #XSS speakerdeck.com/shikarisenpai/…

Dear Apple Support, we noticed a *HUGE* security issue at MacOS High Sierra. Anyone can login as "root" with empty password after clicking on login button several times. Are you aware of it Apple?

Data exfiltration with Metasploit. Meterpreter DNS tunnel project pre-released: asintsov.blogspot.de/2017/12/data-e…

Personal #cheatsheet for #iOS and #macOS #pentest tools, frameworks, slides and so on. Any feedback, commits and stars are welcome! github.com/ansjdnakjdnajk…

Jann Horn (Jann Horn - [email protected]) from Project Zero discovered and reported an attack to read privileged memory with a side-channel: security.googleblog.com/2018/01/todays…

Yet another gadget for java deserialization: Misusing Oracle JDBC for SSRF-attacks agrrrdog.blogspot.ru/2018/01/java-d… #javadeser #ZeroNights

CVE-2018-1000006 (electronjs.org/blog/protocol-…) that affects windows based Electron app (like Slack, Skype, Atom) looks super simple to exploit: "myapp://?--no-sandbox --gpu-launcher=cmd.exe /c start calc". Update all your electron apps now!

Talk on Windows network authentication mechanism and Windows network pentesting. Topics: - #NTLM - Authentication mechanism - Hash cracking - Hash stealing - #IE #Edge - #NetBIOSSpoofing - #GroupPolicyHijacking For Mail RU and RuCTF speakerdeck.com/shikarisenpai/…

Our with whitel1st tool for #GroupPolicyHijacking github.com/whitel1st/GP_H…

First talk by Shikari Senpai at #RuCTF2018 #RuCTF