VSTO: The Payload Installer That Probably Defeats Your Application Whitelisting Rules bohops.com/2018/01/31/vst… #Pentesting #CyberSecurity #Infosec

CVR: The Mines of Kakadûm bughunters.google.com/blog/622075742… #Pentesting #CyberSecurity #Infosec

Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths github.com/klezVirus/Driv… #Pentesting #CyberSecurity #Infosec

Elastic releases the Detection Engineering Behavior Maturity Model elastic.co/security-labs/… #Pentesting #CyberSecurity #Infosec

Why Django’s [DEBUG=True] is a Goldmine for Hackers medium.com/@verylazytech/…

Phishing Pages Delivered Through Refresh HTTP Response Header unit42.paloaltonetworks.com/rare-phishing-… #Pentesting #CyberSecurity #Infosec

Diving into ADB protocol internals (1/2) synacktiv.com/publications/d… #Pentesting #CyberSecurity #Infosec

DarkGPT: The OSINT Assistant Powered by GPT-4-200K for Efficient Database Querying in Traditional OSINT Processes darkwebinformer.com/darkgpt-the-os… #Pentesting #OSINT #CyberSecurity #Infosec

Automating SCCM with Ludus: A Configuration Manager for Your Configuration Manager posts.specterops.io/automating-scc…

Putting Our Hooks Into Windows trustedsec.com/blog/putting-o… #Pentesting #CyberSecurity #Infosec

Jump Over Firewall Finding Origin IP ott3rly.com/jump-over-fire… #Pentesting #OSINT #CyberSecurity #Infosec

The Art of Exploiting Active Directory from Linux gatari.dev/posts/the-art-… #Pentesting #Linux#CyberSecurity #Infosec

Introducing BLACKBIRD Burpsuite Integration Extension blog.blackbirdsec.eu/introducing-bl… #Pentesting #CyberSecurity #Infosec

Using Symbolic Execution to Devirtualise a Virtualised Binary blog.deobfuscate.io/using-symbolic… #Pentesting #CyberSecurity #Infosec

A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques. github.com/Escape-Technol… #Pentesting #CyberSecurity #Infosec

[New] Potential Escalation via Vulnerable MSI Repair - CVE-2024-38014 #4076 github.com/elastic/detect… #Pentesting #CyberSecurity #Infosec

Decrypt GlobalProtect configuration and cookie files. github.com/rotarydrone/Gl… #Pentesting #CyberSecurity #Infosec

Malware and cryptography 32: encrypt payload via FEAL-8 algorithm. Simple C example. cocomelonc.github.io/malware/2024/0… #Pentesting #Malware #cryptography #CyberSecurity #Infosec

Analyse MSI files for vulnerabilities github.com/CICADA8-Resear… #Pentesting #CyberSecurity #Infosec

Ivanti EPM AgentPortal RCE Vulnerability github.com/horizon3ai/CVE… #Pentesting #Vulnerability #CyberSecurity #Infosec