AppSec Ezines Url (https://github.com/Simpsonpt/AppSecEzine) from 1 to 309

The GitHub repository "AppSecEzine" by Simpsonpt compiles a list of URLs (from issue 1 to 309) linking to various application security (AppSec) resources, including articles, tools, and vulnerability disclosures. The collection features links to security research on topics such as XSS, SQL injection, reverse engineering, and exploit development, sourced from blogs, academic papers, and platforms like HackerOne. The file is presented as a plain text list of URLs, with some links shortened or hidden, intended for security professionals and enthusiasts.

Last active May 23, 2026 09:00 - - Save 0xd33pstack/0f6b29b408d82c4a9f0903c70db2fe7b to your computer and use it in GitHub Desktop. AppSec Ezines Url https://github.com/Simpsonpt/AppSecEzine https://github.com/Simpsonpt/AppSecEzine from 1 to 309 This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode characters https://github.co/hiddenchars | https://gist.github.com/cure53/df34ea68c26441f3ae98f821ba1feb9c | | | http://goo.gl/ZIOZqG + | | | http://rol.im/asux/ | | | https://bitbucket.org/decalage/oletools | | | https://goo.gl/fBEuSF + | | | https://intothesymmetry.blogspot.co.uk/2016/05/holy-redirecturi-batman.html | | | https://unlogic.co.uk/2016/04/12/binary-bomb-with-radare2-prelude/ | | | http://www.oreilly.com/webops-perf/free/files/docker-security.pdf | | | http://goo.gl/QM0mZx + | | | https://www.cs.tau.ac.il/~tromer/mobilesc/ | | | https://scumjr.github.io/2016/01/10/from-smm-to-userland-in-a-few-bytes/ | | | http://winternl.com/2016/05/02/hello-world/ | | | http://blog.frizn.fr/bkpctf-2016/qwn2own-bkpctf16 | | | https://eev.ee/blog/2016/04/12/apple-did-not-invent-emoji/ | | | http://www.backtrack-linux.org/backtrack/backtrack-0day-privilege-escalation/ | | | https://goo.gl/BVzfDH + | | | http://mksben.l0.cm/2016/05/xssauditor-bypass-flash-basetag.html | | | https://goo.gl/Hdo0Xt + | | | http://www.shellntel.com/blog/2016/3/30/vpn-over-dns-1 | | | https://snyk.io/blog/marked-xss-vulnerability/ | | | http://goo.gl/ZRPrGm + | | | https://www.notsosecure.com/crafting-way-json-web-tokens/ | | | https://steamdb.info/blog/breaking-steam-client-cryptography/ | | | https://nullsecure.org/building-your-own-passivedns-feed/ | | | https://goo.gl/2LrWzM + | | | http://yurichev.com/blog/breaking simple exec crypto/ | | | https://boris.in/blog/2016/the-bank-job/ | | | https://vagmour.eu/why-resolving-to-internal-ips-really-hurts/ | | | https://www.thanassis.space/arm.html | | | http://gutomaia.net/pyNES/ | | | http://goo.gl/hEhxXH + | | | https://derevenets.com/ | | | http://goo.gl/nctrWn + | | | https://corner.squareup.com/2016/05/content-security-policy-single-page-app.html | | | https://www.informationsecurity.ws/2016/01/pwning-windows-7-with-avg-av/ | | | https://goo.gl/t0Cc6s + | | | https://dfir.it/blog/2015/08/12/webshell-every-time-the-same-purpose/ | | | http://www.contextis.com/resources/blog/push-hack-reverse-engineering-ip-camera/ | | | http://www.neutralizethreat.com/2016/02/lazagne-credential-recovery-binary-used.html | | | http://phishme.com/powerpoint-and-custom-actions/ | | | https://seanmelia.files.wordpress.com/2016/02/yahoo-remote-code-execution-cms1.pdf | | | https://learn.adafruit.com/hacking-the-kinect/overview | | | http://ipv6excuses.com/ | | | http://blog.detectify.com/post/82370846588/how-we-got-read-access-on-googles-production-servers | | | http://pwnrules.com/flickr-from-sql-injection-to-rce/ | | | http://nahamsec.com/2014/04/paypal-marketing-remote-code-execution/ | | | https://www.unix-ag.uni-kl.de/~conrad/krypto/pkcrack.html | | | http://www.sec-down.com/wordpress/?p=373 | | | https://www.appsecconsulting.com/appsec-blog/searching-for-credit-card-track-data-in-memory/menu-id-193.html | | | http://javascript.info/tutorial/clickjacking | | | http://n0where.net/basic-integer-overflows/ | | | http://thehackerblog.com/crossdomain-xml-proof-of-concept-tool/ | | | http://www.ctnieves.com/blogpost.php?id=1 | | | http://phrack.org/papers/fall of groups.html | | | https://gist.github.com/epixoip/10570627 | | | https://hackerone.com/reports/390 | | | https://esevece.github.io/2016/06/01/taking-over-heroku-accounts.html | | | https://gist.github.com/HarmJ0y/3328d954607d71362e3c | | | http://goo.gl/gOwiwL + | | | http://blog.securelayer7.net/mongodb-security-injection-attacks-with-php | | | http://cn33liz.blogspot.pt/2016/05/bypassing-amsi-using-powershell-5-dll.html | | | http://en.wooyun.io/2016/02/29/44.html | | | https://goo.gl/Y6aa6S + | | | http://blog.cr4.sh/2016/02/exploiting-smm-callout-vulnerabilities.html | | | http://drops.wooyun.org/papers/15430 | | | https://hackerone.com/reports/111192 | | | http://gursevkalra.blogspot.pt/2016/01/ysoserial-commonscollections1-exploit.html | | | https://hackerone.com/reports/123660 | | | https://threatbutt.com/map/ | | | https://hackerone.com/reports/136169 | | | https://blog.zsec.uk/pwning-pornhub/ | | | https://goo.gl/tNemh7 + | | | https://owtf.github.io/ | | | https://zneak.github.io/fcd/ | | | https://www.greyhathacker.net/?p=500 | | | http://www.powertheshell.com/powershell-obfuscator/ | | | http://halcyon-ide.org/ | | | https://security-base.com:8000/ | | | http://www.gironsec.com/blog/2016/06/backdooring-a-dll/ | | | https://goo.gl/u6fqEf + | | | https://tyranidslair.blogspot.co.uk/2013/02/fun-with-java-serialization-and.html | | | http://haxx.ml/post/140552592371/remote-code-execution-in-apache-jetspeed-230-and | | | https://goo.gl/ojUIiP + | | | https://goo.gl/WgmTsi + | | | https://snyk.io/blog/sql-injection-orm-vulnerabilities/ | | | http://blog.kcnabin.com.np/find my iphone can-be-failed/ | | | https://digitalfreedom.io/map/ | | | http://makthepla.net/blog/=/scornhub-bounty | | | http://austingwalters.com/export-a-command-line-curl-command-to-an-executable/ | | | https://paraschetal.in/writing-your-own-shellcode/ | | | https://www.adamlogue.com/revisiting-xss-payloads-in-png-idat-chunks/ | | | http://blog.blindspotsecurity.com/2016/06/advisory-http-header-injection-in.html | | | https://gist.github.com/sourceincite/985fd1476b7e1623cdbf7e22f3cc42e8 | | | http://goo.gl/HgflG6 + | | | https://gist.github.com/rygorous/e0f055bfb74e3d5f0af20690759de5a7 | | | http://incolumitas.com/2016/06/08/typosquatting-package-managers/ | | | http://marcoramilli.blogspot.pt/2016/03/recovering-files-from-brand-new.html | | | http://www.deependresearch.org/2016/04/jboss-exploits-view-from-victim.html | | | http://www.debuginfo.com/articles/easywindbg.html | | | http://oalmanna.blogspot.pt/2016/03/startssl-domain-validation.html | | | http://www.0verl0ad.net/2016/03/bypassing-disablefunctions-y.html | | | https://datavibe.net/~sneak/20141023/wtf-icloud/ | | | https://evertpot.com/PHP-Sucks/ | | | https://blog.benjojo.co.uk/post/ssh-port-fluxing-with-totp | | | https://gist.github.com/graceavery/01ec404e555571a4a668c271c8f62e8b | | | https://blog.kchung.co/reverse-engineering-hid-iclass-master-keys/ | | | https://goo.gl/mH93Rr + | | | http://goo.gl/mmktjE + | | | https://goo.gl/wrqfg0 + | | | https://goo.gl/3eGtjK + | | | https://ghostbin.com/paste/2w26u | | | http://www.kahusecurity.com/2016/locky-js-and-url-revealer/ | | | https://hackerone.com/reports/128085 | | | https://olivierbeg.com/finding-xss-vulnerabilities-in-flash-files/ | | | https://www.sixdub.net/?p=591 | | | http://blog.jan-ahrens.eu/2014/03/22/threema-protocol-analysis.html | | | https://goo.gl/oZrJor + | | | https://www.nutmeginfosec.com/anatomy-of-a-javascript-downloader/ | | | https://mborgerson.com/hacking-the-blynclight | | | https://goo.gl/umSem4 + | | | https://goo.gl/j0Efzh + | | | https://hackerone.com/reports/137229 | | | http://d3adend.org/blog/?p=722 | | | http://jerrygamblin.com/2016/05/31/kalibrowser/ | | | http://blog.knownsec.com/2016/06/php-5-4-34-unserialize-uaf-exploit/ | | | https://bitbucket.org/iwseclabs/gunpack/ | | | https://goo.gl/v8UgSQ + | | | http://www.cosc.canterbury.ac.nz/research/reports/HonsReps/2015/hons 1504.pdf | | | https://goo.gl/cr8pg6 + | | | http://www.secalert.net/2013/12/13/ebay-remote-code-execution/ | | | http://netanelrub.in/2016/05/17/magento-unauthenticated-remote-code-execution/ | | | https://webtransparency.cs.princeton.edu/webcensus/index.html | | | http://jcjc-dev.com/2016/04/08/reversing-huawei-router-1-find-uart/ | | | http://goo.gl/2FEOPl + | | | https://blog.cylance.com/compromising-an-entire-julia-cluster | | | http://irq5.io/2016/06/22/designing-the-x-ctf-2016-badge/ | | | https://blog.benjojo.co.uk/post/cheap-hdmi-capture-for-linux | | | https://luc10.github.io/onedrive-an-easter-egg-into-ms-library/ | | | http://blog.bentkowski.info/2016/07/xss-es-in-google-caja.html | | | https://hackerone.com/reports/131450 | | | https://alexaltea.github.io/hasher/ | | | http://pentestmonkey.net/blog/ssh-with-no-tty | | | https://modexp.wordpress.com/2016/06/04/winux/ | | | http://srcincite.io/advisories/src-2016-22/ | | | http://onready.me/old horse attacks.html | | | https://gist.github.com/mattifestation/97ceccd93133c7a1d39a1661922fe545 | | | https://blogs.securiteam.com/index.php/archives/2701 | | | https://goo.gl/5iX4at + | | | http://justhaifei1.blogspot.pt/2015/10/watch-your-downloads-risk-of-auto.html | | | http://goo.gl/hrhPSo + | | | http://infoseczone.net/mssql-union-based-injection-step-step/ | | | http://blog.gosecure.ca/2016/05/26/detecting-hidden-backdoors-in-php-opcache/ | | | https://blog.bugcrowd.com/discovering-subdomains | | | http://marcoramilli.blogspot.pt/2016/05/process-hollowing.html | | | https://auth0.com/blog/2016/05/31/cookies-vs-tokens-definitive-guide | | | https://blog.filippo.io/securing-a-travel-iphone/ | | | http://blog.innerht.ml/rpo-gadgets/ | | | https://www.josipfranjkovic.com/blog/race-conditions-on-web | | | http://jasminderpalsingh.info/single.php?p=87 | | | https://labs.mwrinfosecurity.com/tools/pivot-with-ping/ | | | https://hub.docker.com/r/jgamblin/tiny-tor/ | | | https://pastebin.com/raw/CC6UPcbZ | | | http://pastebin.com/hVx08e6U | | | https://danielgrzelak.com/backdooring-an-aws-account-da007d36f8f9 | | | http://goo.gl/s9tfxL + | | | http://scottgriffy.com/blogs/rat-in-the-shellcode.html | | | https://itsjack.cc/blog/2016/05/poor-mans-malware-hawkeye-keylogger-reborn/ | | | https://goo.gl/fFR7Gg + | | | http://drops.wooyun.org/tips/16381 | | | https://www.pentestpartners.com/blog/hacking-the-mitsubishi-outlander-phev-hybrid-suv | | | https://hackerone.com/reports/136531 | | | https://notehub.org/5zo2v | | | http://haxx.ml/post/142844845111/hacking-mattermost-from-unauthenticated-to-system | | | https://www.youtube.com/watch?v=jOyfZex7B3E | | | https://www.anfractuosity.com/projects/cditter/ | | | https://abdullah-iq.blogspot.pt/2016/06/medium-full-account-takeover.html | | | http://mksben.l0.cm/2016/07/xxn-caret.html | | | https://www.josipfranjkovic.com/blog/hacking-facebook-csrf-device-login-flow | | | https://gist.github.com/mattifestation/5d1565348d71b54ad02c44a5b94839f8 | | | http://goo.gl/HYUocq + | | | http://goo.gl/CZ1Sii + | | | http://www.shellntel.com/blog/2016/6/7/weaponizing-nessus | | | https://habrahabr.ru/post/281374/ | | | https://goo.gl/OnyUTd + | | | https://thusoy.com/2016/mitming-postgres | | | https://chloe.re/2016/06/16/badonions/ | | | http://blog.gdssecurity.com/labs/2016/6/13/email-injection.html | | | https://toschprod.wordpress.com/2012/01/31/mitm-4-arp-spoofing-exploit/ | | | https://0x41.no/mr-robot-s02e01-easter-egg/ | | | https://httpoxy.org/ | | | https://goo.gl/SSHshf + | | | https://www.evonide.com/how-we-broke-php-hacked-pornhub-and-earned-20000-dollar/ | | | http://www.binsim.com/ | | | https://goo.gl/K7f9kF + | | | http://www.andreybazhan.com/dbgkit.html | | | http://www.halfdog.net/Security/2016/DebianEximSpoolLocalRoot/EximUpgrade.c | | | https://subt0x10.blogspot.pt/2016/06/what-you-probably-didnt-know-about.html | | | https://blog.zsec.uk/csv-dangers-mitigations/ | | | http://moyix.blogspot.pt/2016/07/fuzzing-with-afl-is-an-art.html | | | http://home.arcor.de/skanthak/sentinel.html | | | http://goo.gl/umnWPN + | | | https://goo.gl/gqeJyL + | | | http://xlab.tencent.com/en/2016/06/17/BadTunnel-A-New-Hope/ | | | https://en.blog.nic.cz/2016/06/13/dnssec-signing-with-knot-dns-and-yubikey/ | | | https://agrrrdog.blogspot.pt/2016/06/remote-detection-of-users-av-via-flash.html | | | https://goo.gl/yVrOhP + | | | https://alexgaynor.net/2016/mar/14/anatomy-of-a-crypto-vulnerability/ | | | http://bugbounty.fail/ | | | https://banmeihack.wordpress.com/2016/07/27/hacking-pokemon-into-candy-crush/ | | | http://akat1.pl/?id=2 | | | http://www.gattack.io/ | | | https://ericrafaloff.com/client-side-redis-attack-poc/ | | | https://gitlab.com/litm/redirect/tree/master | | | https://goo.gl/78WtUr + | | | https://shubs.io/high-frequency-security-bug-hunting-120-days-120-bugs/ | | | http://theori.io/research/jscript9 typed array | | | http://goo.gl/ThDhM8 + | | | https://reverse.put.as/2016/06/25/apple-efi-firmware-passwords-and-the-scbo-myth/ | | | http://xlab.tencent.com/badbarcode/ | | | https://research.g0blin.co.uk/xss-and-wordpress-the-aftermath/ | | | https://bazad.github.io/2016/05/mac-os-x-use-after-free/ | | | http://blog.cr4.sh/2016/06/exploring-and-exploiting-lenovo.html | | | https://suchakra.wordpress.com/2016/07/03/unravelling-code-injection-in-binaries/ | | | https://magoo.github.io/Blockchain-Graveyard/ | | | https://zwischenzugs.wordpress.com/2016/04/12/hitler-uses-docker-annotated/ | | | https://community.rapid7.com/community/metasploit/blog/2014/04/15/exploiting-csrf-without-javascript | | | http://breaktoprotect.blogspot.in/2014/04/feedly-android-application-zero-day.html | | | http://pyrasite.readthedocs.org/en/latest/CLI.html | | | https://code.google.com/p/pdf-grapher/ | | | http://phrack.org/papers/revisiting-mac-os-x-kernel-rootkits.html | | | http://www.mehmetince.net/codeigniter-object-injection-vulnerability-via-encryption-key/ | | | http://www.sodnpoo.com/posts.xml/spoofing the samsung smart tv internet check.xml | | | http://www.debasish.in/2014/04/attacking-audio-recaptcha-using-googles.html | | | http://2014.hackitoergosum.org/slides/ | | | https://www.youtube.com/watch?v=whEWE6WC1Ew | | | http://annasagrera.com/on-ascii-youtube-and-letting-go/ | | | https://goo.gl/G3rxy2 + | | | https://avicoder.me/2016/07/22/Twitter-Vine-Source-code-dump/ | | | https://bugs.chromium.org/p/project-zero/issues/detail?id=884 | | | https://labs.nettitude.com/tools/poshc2/ | | | https://benmmurphy.github.io/blog/2016/07/11/rails-webconsole-dns-rebinding/ | | | http://www.forceprojectx.com/services/apps/memory dumper | | | http://www.nyxbone.com/malware/odcodc.html | | | https://deadcode.me/blog/2016/07/01/UPC-UBEE-EVW3226-WPA2-Reversing.html | | | https://goo.gl/RwShjR + | | | https://goo.gl/Cfzilu + | | | https://goo.gl/VpRb9R + | | | http://anee.me/reversing-an-elf/ | | | https://kjaer.io/extension-malware/ | | | https://premium.wpmudev.org/blog/xml-rpc-wordpress/ | | | http://theori.io/research/cve-2016-0189 | | | https://0x90909090.blogspot.pt/2016/07/analyzing-zip-with-wsf-file-inside.html | | | https://smealum.github.io/3ds/ | | | http://goo.gl/9drpjq + | | | https://introvertmac.wordpress.com/2016/07/30/hacking-google-for-fun-and-profit/ | | | http://www.martinvigo.com/steal-2999-99-minute-venmo-siri/ | | | https://warroom.securestate.com/bypassing-gmails-malicious-macro-signatures/ | | | https://hackerone.com/reports/131202 | | | https://www.npmjs.com/package/btlejuice | | | http://www.contextis.com/resources/blog/attacks-https-malicious-pac-files/ | | | http://goo.gl/dh9UDb + | | | https://www.sensepost.com/blog/2016/universal-serial-abuse/ | | | https://rol.im/securegoldenkeyboot/ | | | https://goo.gl/Tn22Hq + | | | https://gist.github.com/cure53/521c12e249478c1c50914b3b41d8a750 | | | http://goo.gl/9z1NXK + | | | https://gist.github.com/Kopachris/b8bb1de2cada4fdde88666e018167926 | | | https://gist.github.com/anonymous/e48209b03f1dd9625a992717e7b89c4f | | | http://blog.deniable.org/blog/2016/08/09/cracking-orcus-rat/ | | | http://dnstun.com/ | | | https://www.cs.bham.ac.uk/~exr/lectures/opsys/10 11/lectures/os-dev.pdf | | | https://artsploit.blogspot.pt/2016/08/pprce2.html | | | https://medium.com/@nmalcolm/hacking-imgur-for-fun-and-profit-3b2ec30c9463 .ql8goaiky | | | http://goo.gl/4pbewk + | | | http://cryptoanarchic.me/wat.txt | | | https://blog.silentsignal.eu/2016/08/25/bake-your-own-extrabacon/ | | | https://systemoverlord.com/2016/08/24/posting-json-with-an-html-form.html | | | https://breakdev.org/how-i-hacked-an-android-app-to-get-free-beer/ | | | https://sysforensics.org/2016/08/jtaging-mobile-phones/ | | | https://blog.xyz.is/2016/webkit-360.html | | | http://goo.gl/37GYKN + | | | http://stackstatus.net/post/147710624694/outage-postmortem-july-20-2016 | | | http://carnal0wnage.attackresearch.com/2016/08/got-any-rces.html | | | https://hshrzd.wordpress.com/2016/07/21/how-to-turn-a-dll-into-a-standalone-exe/ | | | http://co9.io/post/148716614744/defcon-24-badge-challenge | | | https://hackerone.com/reports/156098 | | | http://www.paulosyibelo.com/2016/08/instagram-stored-oauth-xss.html | | | https://httpsonly.blogspot.pt/2016/08/turning-self-xss-into-good-xss-v2.html | | | https://c0nradsc0rner.wordpress.com/2016/07/06/cookie-shadow-path-injection/ | | | https://averagesecurityguy.github.io/2016/04/21/cracking-mongodb-passwords/ | | | http://legalhackers.com/advisories/vBulletin-SSRF-Vulnerability-Exploit.txt | | | https://hackerone.com/reports/131210 | | | http://sh3ifu.com/Breaking-The-Great-Wall-Of-Web-Rafay-Baloch.pdf | | | https://ret2libc.wordpress.com/2016/04/04/analysing-swf-files-for-vulnerabilities/ | | | http://goo.gl/rP8BTW + | | | http://goo.gl/KlikSg + | | | http://goo.gl/D91R2U + | | | https://hackerone.com/reports/151058 | | | http://www.exploit-monday.com/2016/07/Win10IoTCore-Build14393-EoP.html | | | https://chloe.re/2016/07/25/bypassing-paths-with-open-redirects-in-csp/ | | | http://pixelat.ion.land/ | | | http://bouk.co/blog/hacking-developers/ | | | https://room362.com/post/2016/snagging-creds-from-locked-machines/ | | | http://goo.gl/x6TVjl + | | | http://goo.gl/pYL8eZ + | | | https://gist.github.com/rvrsh3ll/cc93a0e05e4f7145c9eb | | | https://sumofpwn.nl/advisory/2016/ajax load more local file inclusion vulnerability.html | | | http://goo.gl/VaK5Ts + | | | https://sektioneins.de/en/blog/16-09-02-pegasus-ios-kernel-vulnerability-explained.html | | | http://blog.zorinaq.com/nginx-resolver-vulns/ | | | https://enigma0x3.net/2016/07/22/bypassing-uac-on-windows-10-using-disk-cleanup/ | | | https://sites.utexas.edu/iso/2016/07/21/using-nodejs-to-deobfuscate-malicious-javascript/ | | | http://www.keysniffer.net/ | | | https://osandamalith.com/2016/08/01/making-your-shellcode-undetectable-using-net/ | | | https://stratumsecurity.com/2010/04/26/owasp-2010-adding-it-all-up/ | | | http://goo.gl/AwXfpT + | | | https://lcamtuf.blogspot.com/2016/08/css-mix-blend-mode-is-bad-for-keeping.html | | | https://blog.fletchto99.com/2016/september/asus-disclosure/ | | | https://goo.gl/kjWNZv + | | | https://blog.didierstevens.com/2016/08/12/mimikatz-golden-ticket-dcsync/ | | | https://gist.github.com/chtg/bac6459587dbb79190d0a4c235901f03 | | | https://gist.github.com/chtg/a2acf86d44315146e85b6f88f4d2b5eb | | | https://honeybadger.readthedocs.io/en/latest/ | | | https://goo.gl/nj3zNK + | | | https://www.vusec.net/projects/flip-feng-shui/ | | | https://goo.gl/m1JdoI + | | | https://goo.gl/0C91rO + | | | https://httpsonly.blogspot.pt/2016/08/cve-2016-0782-writeup.html | | | https://goo.gl/JIOvxT + | | | https://linux-audit.com/elf-binaries-on-linux-understanding-and-analysis/ | | | https://blog.exodusintel.com/2016/08/09/vxworks-execute-my-packets/ | | | http://ohshitgit.com/ | | | https://support.microsoft.com/en-us/kb/261186 | | | https://weblog.sh/ | | | https://sasi2103.blogspot.pt/2016/09/combination-of-techniques-lead-to-dom.html | | | https://goo.gl/DjOEHf + | | | http://www.blackhillsinfosec.com/?p=5230 | | | https://goo.gl/tnW7hD + | | | https://nixaid.com/encrypted-chat-with-netcat/ | | | https://andreas-mausch.github.io/whatsapp-viewer/ | | | https://deadcode.me/blog/2016/09/02/Blind-Java-Deserialization-Commons-Gadgets.html | | | https://goo.gl/ClLuZH + | | | https://goo.gl/ENPsiI + | | | http://blog.nickbloor.co.uk/2016/08/drupal-coder-module-unauthenticated.html | | | https://goo.gl/Uqcs96 + | | | https://hostoftroubles.com/ | | | https://tom.vg/2016/08/request-and-conquer/ | | | http://antirez.com/news/96 | | | https://access.redhat.com/blogs/766093/posts/2592591 | | | https://www.thijsbroenink.com/2016/09/xiaomis-analytics-app-reverse-engineered/ | | | https://44con.com/2016/09/19/getting-started-with-your-hidiot-badge/ | | | http://blog.k3170makan.com/2016/09/abusing-webvtt-and-cors-for-fun-and.html | | | https://goo.gl/sGPM4p + | | | https://back-flip.blogspot.pt/2016/08/steal-google-account-on-stolen-or.html | | | https://gist.github.com/freddyb/29eedc12b3ae4b1a26d645ee90a5912d | | | https://jaq.alibaba.com/community/art/show?articleid=532 | | | https://goo.gl/2tSUyp + | | | https://www.optiv.com/blog/mssql-agent-jobs-for-command-execution | | | http://lab.truel.it/flash-sandbox-bypass/ | | | https://goo.gl/P0cFa8 + | | | https://sweet32.info/ | | | https://goo.gl/lVm81H + | | | http://www.sjoerdlangkemper.nl/2016/08/29/kayako-xss/ | | | https://www.aidanwoods.com/blog/faulty-login-pages | | | https://thel3l.me/blog/winprivesc/index.html | | | http://tinysubversions.com/notes/ethical-ad-blocker/ | | | https://archive.org/details/softwarelibrary msdos games | | | https://diracdeltas.github.io/blog/backdooring-js/ | | | https://5haked.blogspot.pt/2016/10/how-i-hacked-pornhub-for-fun-and-profit.html | | | https://hackerone.com/reports/61312 | | | https://goo.gl/c2opyI + | | | https://173210.github.io/psp2 | | | http://www.mbsd.jp/blog/20160921 2.html | | | http://paper.seebug.org/58/ | | | https://goo.gl/Jt751V + | | | https://goo.gl/t7rg3A + | | | http://paper.seebug.org/42/ | | | http://mksben.l0.cm/2016/09/safari-uxss-showModalDialog.html | | | https://hackerone.com/reports/158148 | | | https://www.jardinesoftware.net/2016/09/12/xxe-in-net-and-xpathdocument/ | | | https://goo.gl/UiIWfL + | | | http://calebmadrigal.com/hackrf-replay-attack-jeep/ | | | https://goo.gl/pkPDb2 + | | | https://blog.tarq.io/node-js-request-smuggling/ | | | http://blog.wesecureapp.com/xss-by-tossing-cookies/ | | | https://www.cgsec.co.uk/powershell-empire-cve-2016-0189-profit/ | | | https://hackerone.com/reports/53004 | | | https://goo.gl/ZQK5fU + | | | https://goo.gl/63HPVG + | | | https://goo.gl/ZxXu7l + | | | http://rednaga.io/2016/09/21/reversing go binaries like a pro/ | | | https://www.virtuesecurity.com/blog/jquery-security-model/ | | | http://blog.rewolf.pl/blog/?p=1630 | | | https://goo.gl/6KQMdJ + | | | https://blog.nelhage.com/2011/03/exploiting-pickle/ | | | http://www.gwan.com/blog/20160405.html | | | http://nedbatchelder.com//blog/201609/computing primes with css.html | | | http://blog.tjll.net/ssh-kung-fu/ | | | http://blog.gdssecurity.com/labs/2014/4/24/sql-injection-in-dynamically-constructed-images-and-other-sq.html | | | http://tetraph.com/covert redirect/oauth2 openid covert redirect.html | | | http://thehelpfulhacker.net/2011/11/15/virtual-box-openbsd-router/ | | | https://www.netspi.com/blog/entryid/223/executing-msf-payloads-via-powershell-webshellery | | | http://duartes.org/gustavo/blog/post/anatomy-of-a-program-in-memory/ | | | http://www.incapsula.com/blog/world-largest-site-xss-ddos-zombies.html | | | http://cert.inteco.es/extfrontinteco/img/File/intecocert/EstudiosInformes/INT Telegram EN.pdf | | | http://blog.emaze.net/2014/04/attack-campaign-targeting-struts2.html | | | http://joxeankoret.com/blog/2014/05/02/a-vulnerability-that-wasnt/ | | | http://programmingexcuses.com/ | | | http://secalert.net/slack-security-bug-bounty.html | | | https://sites.google.com/site/bughunteruniversity/best-reports/openredirectsthatmatter | | | https://goo.gl/o6KYtc + | | | https://goo.gl/nG92Fe + | | | https://techanarchy.net/2016/10/extracting-lastpass-site-credentials-from-memory/ | | | http://lightbulbone.com/2016/10/04/intro-to-macos-kernel-debugging.html | | | https://www.ixiacom.com/company/blog/equation-groups-firewall-exploit-chain | | | https://goo.gl/oE7r5q + | | | http://www.seg.inf.uc3m.es/~guillermo-suarez-tangil/papers/2016mal-iot.pdf | | | https://archive.is/TpVVg | | | https://goo.gl/oHV88F + | | | https://desc0n0cid0.blogspot.pt/2016/09/stack-based-buffer-overflow.html | | | http://www.ms509.com/?p=439 | | | https://goo.gl/1HSx1l + | | | https://robinlinus.github.io/socialmedia-leak/ | | | https://robots.thoughtbot.com/is-your-site-leaking-password-reset-links | | | https://henryhoggard.co.uk/blog/Paypal-2FA-Bypass | | | https://sourceforge.net/projects/rcexploiter/ | | | https://www.leavesongs.com/HTML/chrome-xss-auditor-bypass-collection.html | | | http://x42.obscurechannel.com/?p=310 | | | https://regala.im/2016/10/05/fixing-burp-ssl-handshake-failed-alert/ | | | https://goo.gl/yzBzCN + | | | http://dirtycow.ninja/ | | | https://www.vusec.net/projects/drammer/ | | | https://hackerone.com/reports/150179 | | | http://paper.seebug.org/91/ | | | https://www.thanassis.space/android.html | | | https://www.pietroalbini.org/blog/gandi-security-vulnerability-2fa-bypass/ | | | http://www.miasm.re/blog/2016/09/03/zeusvm analysis.html first-stages | | | https://zone13.io/post/Snagging-credentials-over-WiFi-Part1/ | | | https://goo.gl/XczEiJ + | | | http://www.gifcities.org/ / | | | https://shubs.io/guide-to-building-the-tastic-rfid-thief/ | | | https://codepo8.github.io/logo-o-matic/ | | | http://www.blackhillsinfosec.com/?p=5396 | | | https://hackerone.com/reports/178152 | | | http://blog.x1622.com/2016/01/poc-how-to-steal-httponly-session.html | | | https://gist.github.com/anonymous/908a087b95035d9fc9ca46cef4984e97 | | | https://osandamalith.com/2016/10/10/fun-with-sqlite-load extension/ | | | https://bitquark.co.uk/blog/2016/10/03/exfiltrating files with busybox | | | http://bloggerbust.ca/2016/10/26/browsersmack-a-browser-stack-proxy-vulnerability/ | | | https://goo.gl/4JiEfd + | | | https://goo.gl/LFF2Qa + | | | https://goo.gl/czhcHM + | | | http://www.alexkyte.me/2016/10/how-textsecure-protocol-signal-whatsapp.html | | | https://vah13.github.io/AVDetection/ | | | http://blog.senr.io/blog/jtag-explained | | | https://rudk.ws/2016/10/17/reverse-engineering-by-using-chrome/ | | | https://goo.gl/Z7Aly4 + | | | https://devwerks.net/blog/16/how-not-to-use-html-purifier/ | | | https://goo.gl/D8jxL8 + | | | https://www.cs.umd.edu/hcil/members/bshneiderman/nsd/rejection letter.html | | | http://www.blacknurse.dk/ | | | http://blog.andrewlang.net/post/152805939304/tumblr-xss-exploit | | | http://blog.securityfuse.com/2016/11/gmail-account-hijacking-vulnerability.html | | | http://secalert.net/ CVE-2016-4977 | | | https://www.netzob.org/ | | | https://slashcrypto.org/2016/11/07/Netflix/ | | | https://goo.gl/CXHtg5 + | | | https://hosakacorp.net/p/systemd-user.html | | | https://goo.gl/KAEZe6 + | | | https://goo.gl/rcf3ao + | | | https://zuh4n.blogspot.co.uk/2016/10/adobe-importance-of-up-to-date.html | | | https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit | | | http://www.fuzzysecurity.com/tutorials/27.html | | | http://b.fl7.de/2016/08/d-link-nas-dns-xss-via-smb.html | | | https://www.invincealabs.com/blog/2016/11/wemo-hardware-bypass/ | | | http://websdr.ewi.utwente.nl:8901/?tune=7030usb | | | http://386bsd.org/ | | | https://hackerone.com/reports/180074 | | | https://gist.github.com/x-42/3d822d85e6b547e7018c919c6d657e8e | | | https://kimiyuki.net/blog/2016/09/16/one-gadget-rce-ubuntu-1604/ | | | https://sourceforge.net/projects/vbscan/ | | | https://gallery.technet.microsoft.com/Net-Cease-Blocking-Net-1e8dcb5b | | | https://www.poweradmin.com/paexec/ | | | http://hmarco.org/bugs/CVE-2016-4484/CVE-2016-4484 cryptsetup initrd shell.html | | | http://d3adend.org/blog/?p=851 | | | https://goo.gl/eWXUvR + | | | https://sethsec.blogspot.pt/2016/11/exploiting-python-code-injection-in-web.html | | | https://goo.gl/lR1WeY + | | | https://woumn.wordpress.com/2016/09/24/smashing-the-stack-into-a-reverse-shell/ | | | http://www.ioactive.com/Arnaboldi-XML-Schema-Vulnerabilities.pdf | | | http://www.davidlitchfield.com/BypassingXSSFiltersusingXMLInternalEntities.pdf | | | https://goo.gl/gme14H + | | | http://zseano.com/tut/4.html | | | https://sidbala.com/h-264-is-magic/ | | | https://yifan.lu/2016/11/01/taihen-cfw-framework-for-ps-vita/ | | | https://cure53.de/pentest-report curl.pdf | | | https://medium.com/@joewalnes/tail-f-to-the-web-browser-b933d9056cc .4rnmefbo1 | | | https://averagesecurityguy.github.io/2016/10/21/recon-ng-dorks-burp/ | | | https://www.netresec.com/?page=findject | | | https://slack.engineering/syscall-auditing-at-scale-e6a3ca8ac1b8 .hlfdfpeiv | | | https://www.utkusen.com/blog/sending-valid-phishing-emails-from-microsoftcom.html | | | https://goo.gl/ssq3Oo + | | | http://blog.0x3a.com/post/153468210759/monitoring-dns-inside-the-tor-network | | | https://goo.gl/0wvoBX + | | | http://ropgadget.com/posts/pebwalk.html | | | https://arno0x0x.wordpress.com/2015/11/27/hacking-voip/ | | | https://pierrekim.github.io/blog/2016-11-01-gpon-ftth-networks-insecurity.html | | | https://www.n00py.io/2016/10/using-email-for-persistence-on-os-x/ | | | http://graffiti.gaurs.io/ | | | http://jerrygamblin.com/2016/11/12/automated-burp-suite-scanning-and-reporting-to-slack/ | | | http://www.glamenv-septzen.net/en/view/6 | | | https://hackerone.com/reports/182358 | | | http://blog.intothesymmetry.com/2016/11/all-your-paypal-tokens-belong-to-me.html | | | http://ianduffy.ie/blog/2016/11/26/azure-bug-bounty-pwning-red-hat-enterprise-linux/ | | | http://legalhackers.com/exploits/tomcat-rootprivesc-deb.sh | | | https://gist.github.com/subTee/c51ea995dfaf919fd4bd36b3f7252486 | | | http://paper.seebug.org/95/ | | | http://research.aurainfosec.io/bypassing-saml20-SSO/ | | | https://goo.gl/bCn3yk + | | | https://www.contrastsecurity.com/security-influencers/dom-xss-in-wix.com | | | https://g-laurent.blogspot.pt/2016/11/ms16-137-lsass-remote-memory-corruption.html | | | https://goo.gl/HskhRe + | | | https://eprint.iacr.org/2016/1013.pdf | | | http://labs.lastline.com/evasive-jscript | | | https://deadcode.me/blog/2016/11/05/Active-Deauth-Kismet-Wardriving.html | | | https://gist.github.com/kennwhite/1f3bc4d889b02b35d8aa | | | https://natmchugh.blogspot.pt/2014/10/how-i-created-two-images-with-same-md5.html | | | https://goo.gl/QAtMIt + | | | https://insert-script.blogspot.pt/2016/12/firefox-svg-cross-domain-cookie.html | | | https://goo.gl/jX2CTk + | | | https://sintonen.fi/advisories/tar-extract-pathname-bypass.proper.txt | | | https://objective-see.com/blog/blog 0x14.html | | | http://www.adlice.com/google-chrome-secure-preferences/ | | | http://colin.keigher.ca/2016/12/going-viral-on-imgur-with-powershell.html | | | https://mambrui.github.io/2016/11/rooting-vm | | | https://blog.paranoidsoftware.com/dirty-cow-cve-2016-5195-docker-container-escape/ | | | https://goo.gl/yCPYpL + | | | https://dougallj.wordpress.com/2016/11/13/exploiting-dolphin-part-1/ | | | https://blog.ripstech.com/2016/roundcube-command-execution-via-email/ | | | https://goo.gl/eIfu9b + | | | https://blog.zimperium.com/analysis-of-multiple-vulnerabilities-in-airdroid/ | | | https://peteris.rocks/blog/htop/ | | | https://laurent22.github.io/so-injections/ | | | https://urlscan.io | | | https://klikki.fi/adv/yahoo2.html | | | https://vulnsec.com/2016/netgear-router-rce/ | | | https://humblesec.wordpress.com/2016/12/08/escaping-a-restricted-shell/ | | | https://goo.gl/MLt1p7 + | | | https://goo.gl/xvrb0T + | | | https://gist.github.com/dergachev/7916152 | | | https://jolmos.blogspot.pt/2016/11/rtldecompresbuffer-vulnerability.html | | | https://goo.gl/CKQPZv + | | | https://blog.lizzie.io/notes-about-cve-2016-7117.html | | | https://goo.gl/3BHsWQ + | | | http://www.ateijelo.com/blog/2016/09/13/making-an-msx-font | | | https://labs.detectify.com/2016/12/15/postmessage-xss-on-a-million-sites/ | | | https://goo.gl/ULx7Ud + | | | https://donncha.is/2016/12/compromising-ubuntu-desktop/ | | | https://goo.gl/CTp8We + | | | https://goo.gl/fb63MI + | | | https://nebelwelt.net/publications/files/16STM.pdf | | | https://goo.gl/zllfk3 + | | | http://blog.skylined.nl/20161206001.html | | | https://hub.zhovner.com/geek/how-skype-fixes-security-vulnerabilities/ | | | https://c0rni3sm.blogspot.pt/2016/12/fiat-chrysler-automobiles-bug-bounty.html | | | http://rednaga.io/2016/11/14/hackingteam back for your androids/ | | | http://www.sec-down.com/wordpress/?p=696 | | | https://goo.gl/xxEiWP + | | | https://goo.gl/aZSbLk + | | | https://www.pelock.com/articles/how-to-write-a-crackme-for-a-ctf-competition | | | https://www.unforgettable.dk/ | | | http://penturalabs.wordpress.com/2014/05/04/reverse-dom-xss/ | | | http://www.websecresearch.com/2014/05/a-way-to-bypass-authentication.html | | | http://blog.flowdock.com/2014/05/07/how-we-found-a-directory-traversal-vulnerability-in-rails-routes/ | | | http://makthepla.net/blog/=/plesk-sso-xxe-xss | | | https://code.google.com/p/wfuzz/ | | | http://www.frida.re/ | | | https://code.google.com/p/volafox/ | | | http://blog.mrg-effitas.com/publishing-of-mrg-effitas-automatic-xor-decryptor-tool/ | | | http://www.blisstonia.com/software/Decrypto/ | | | http://www.thespanner.co.uk/2014/05/06/mxss/ | | | http://www.nirgoldshlager.com/2013/02/how-i-hacked-facebook-oauth-to-get-full.html | | | http://car-online.fr/files/publications/2014-03-CODASPY/kameleonfuzz-evolutionary blackbox XSS fuzzing-duchene-codaspy 2014-paper.pdf | | | http://thehackpot.blogspot.ie/2014/04/android-hacking-using-armitage.html | | | http://rce4fun.blogspot.pt/2014/05/windows-heap-overflow-exploitation.html | | | http://pastebin.com/raw.php?i=gjkivAf3 | | | https://gist.github.com/quchen/5280339 | | | https://randywestergren.com/persistent-xss-verizons-webmail-client/ | | | https://chloe.re/2016/12/04/dealing-with-user-uploaded-files/ | | | http://tayyabqadir.com/2016/12/17/paypal-2fa-bypass-by-tayyab-qadir/ | | | https://gitlab.com/e271/usblogger/tree/master | | | https://hackerone.com/reports/142549 | | | https://goo.gl/fsiEqm + | | | https://d0hnuts.com/2016/12/21/basics-of-making-a-rootkit-from-syscall-to-hook/ | | | https://goo.gl/uMEzce + | | | https://goo.gl/SFAHof + | | | https://goo.gl/Vh6ufm + | | | http://blogs.360.cn/360safe/2016/11/29/three-roads-lead-to-rome-2/ | | | http://0xthem.blogspot.pt/2015/03/hijacking-ssh-to-inject-port-forwards.html | | | https://dhavalkapil.com/blogs/SQL-Attack-Constraint-Based/ | | | https://goo.gl/nzmNqK + | | | https://www.robertputt.co.uk/2016/11/28/learn-from-your-attackers-ssh-honeypot/ | | | http://docker-saigon.github.io/post/Docker-Internals/ | | | https://goo.gl/NE7btw + | | | https://gist.github.com/subTee/c34d0499e232c1501ff9f0a8dd302cbd | | | http://security.szurek.pl/e107-cms-211-privilege-escalation.html | | | http://hacksys.vfreaks.com/research/shellcode-of-death.html | | | http://lucumr.pocoo.org/2016/12/29/careful-with-str-format/ | | | http://asintsov.blogspot.pt/2016/12/bypassing-exploit-protection-of-norton.html | | | https://goo.gl/f5qb4m + | | | https://goo.gl/eLAj3P + | | | https://www.swordshield.com/2016/10/multi-tool-multi-user-http-proxy/ | | | https://bugs.chromium.org/p/project-zero/issues/detail?id=978 | | | http://www.peter.hartmann.tk/single-post/2016/11/29/Fuzzing-Qt-with-libFuzzer | | | https://haveyousecured.blogspot.pt/2016/12/attempting-to-detect-responder-with.html | | | https://subt0x10.blogspot.pt/2016/12/mimikatz-delivery-via-clickonce-with.html | | | https://threejs.org | | | http://blog.orange.tw/2017/01/bug-bounty-github-enterprise-sql-injection.html | | | http://sebastian-lekies.de/csp/bypasses.php | | | https://goo.gl/Qz8NV1 + | | | https://goo.gl/7diAiw + | | | https://lowleveldesign.wordpress.com/2016/11/30/decrypting-asp-net-4-5/ | | | http://www.hemanthjoseph.com/2016/11/how-i-bypassed-apples-most-secure-find.html | | | https://siguza.github.io/cl0ver/ | | | https://hackmag.com/security/ad-forest/ | | | http://www.netmux.com/blog/cracking-12-character-above-passwords | | | http://ramtin-amin.fr/ nvmedma | | | https://goo.gl/PVbpJs + | | | https://hackerone.com/reports/5534 | | | https://www.foo.be/2016/12/OpenPGP-really-works | | | http://chris.beams.io/posts/git-commit/ | | | https://finnwea.com/blog/stealing-passwords-from-mcdonalds-users | | | http://insert-script.blogspot.pt/2016/10/pdf-how-to-steal-pdfs-by-injecting.html | | | http://4lemon.ru/2017-01-17 facebook imagetragick remote code execution.html | | | https://goo.gl/MdCd6S + | | | http://techlog360.com/all-windows-cmd-commands/ | | | http://blog.win-fu.com/2016/11/every-windows-10-in-place-upgrade-is.html | | | https://digi.ninja/blog/rdp show login page.php | | | https://gitlab.com/micaksica/CVE-2016-1000304 | | | http://dumpco.re/cve-2016-7434/ | | | https://goo.gl/U57NCx + | | | https://goo.gl/ZA2NUG + | | | http://blog.amossys.fr/intro-to-use-after-free-detection.html | | | https://goo.gl/abZVVL + | | | https://insinuator.net/2016/12/analyzing-yet-another-smart-home-device/ | | | https://www.curesec.com/blog/article/blog/Tap-039n039-Sniff-185.html | | | https://www.dsinternals.com/en/impersonating-office-365-users-mimikatz/ | | | https://goo.gl/YXYM3N + | | | https://hackerone.com/reports/187134 | | | http://yolocaust.de/ | | | https://gist.github.com/marcan/a2eafd605d3d6ac76eb10a7c64f736c3 | | | https://goo.gl/90LFIj + | | | https://goo.gl/KuuOMq + | | | https://httpsonly.blogspot.pt/2017/01/0day-writeup-xxe-in-ubercom.html | | | https://pentest.blog/windows-privilege-escalation-methods-for-pentesters/ | | | https://gist.github.com/anonymous/f0b9a85e25ea097f810b4d79e9e005a5 | | | https://gist.github.com/chtg/4849e0c2cfc1f08eb6532f347594c66c | | | https://gist.github.com/Wack0/a3435cafa5eb372b190f971190a506b8 | | | http://andresriancho.github.io/nimbostratus/ | | | https://yurichev.com/writings/toy decompiler.pdf | | | https://woumn.wordpress.com/2016/12/07/rop-heap-spray-for-a-reverse-shell-in-ie8/ | | | http://sten0.ghost.io/2016/10/13/abusing-dorking-and-robots-txt/ | | | https://nation.state.actor/mcafee.html | | | https://boredhackerblog.blogspot.pt/2016/02/how-we-broke-into-your-house.html | | | https://pentest.blog/data-ex-filtration-with-dns-in-sqli-attacks/ | | | https://securitycafe.ro/2017/01/18/practical-jsonp-injection/ | | | https://0x00sec.org/t/remote-exploit-shellcode-without-sockets/1440 | | | http://blog.tihmstar.net/2017/01/how-to-downgrade-without-jailbreak.html | | | https://goo.gl/eUDIqC + | | | http://astronaut.io/ | | | https://goo.gl/N9Ia4k + | | | https://s1gnalcha0s.github.io/epub/2017/01/25/This-book-reads-you.html | | | http://phrack.org/papers/cyber grand shellphish.html | | | https://hackerone.com/reports/166942 | | | https://doxmyipwindowstool.codeplex.com/ | | | https://phpinfo.me/2016/07/07/1275.html | | | http://security.szurek.pl/winpower-v4904-privilege-escalation.html | | | https://web-in-security.blogspot.pt/2017/01/printer-security.html | | | https://raz0r.name/articles/universal-isomorphic-web-applications-security/ | | | https://goo.gl/9LGkzY + | | | https://lukasa.co.uk/2016/12/Debugging Your Operating System/ | | | http://blog.thinkst.com/p/canarytokensorg-quick-free-detection.html | | | https://goo.gl/qFFdEI + | | | https://goo.gl/wrJFoL + | | | http://blog.volema.com/nginx-insecurities.html .WFMh WGLSV5 | | | http://blog.frizk.net/2016/12/filevault-password-retrieval.html | | | http://incept10n.com/ | | | https://www.expeditedssl.com/aws-in-plain-english | | | https://cmdchallenge.com/ | | | https://goo.gl/9zv6U7 + | | | http://sirdarckcat.blogspot.pt/2017/02/unpatched-0day-jquery-mobile-xss.html | | | https://goo.gl/fuAQaC + | | | https://sensepost.com/blog/2016/intercepting-passwords-with-empire-and-winning/ | | | https://zerosum0x0.blogspot.pt/2016/05/xml-attack-for-c-remote-code-execution.html | | | https://goo.gl/8eHB5Y + | | | https://goo.gl/ssYMu2 + | | | https://goo.gl/CYvxms + | | | https://goo.gl/KqHGkN + | | | https://filippo.io/Ticketbleed/ | | | https://hackerone.com/reports/172562 | | | https://techblog.mediaservice.net/2016/10/exploiting-ognl-injection/ | | | https://osandamalith.com/2017/02/03/mysql-out-of-band-hacking/ | | | https://securityresear.ch/2017/02/08/oneplus3-bootloader-vulns/ | | | https://blog.appcanary.com/2017/http-security-headers.html | | | http://theori.io/research/chakra-jit-cfg-bypass | | | https://xuset.github.io/planktos/ | | | http://deadpool.sh/2017/RCE-Springs/ | | | https://www.brokenbrowser.com/uxss-ie-htmlfile/ | | | https://goo.gl/nlojkc + | | | https://goo.gl/R9gdqX + | | | http://blog.inspired-sec.com/archive/2017/02/14/Mail-Server-Setup.html | | | https://goo.gl/vOXIvA + | | | https://goo.gl/ywuBjX + | | | https://what.pwned.me/index.php/2017/01/23/axis-206-pwned/ | | | http://exfil.co/2017/01/17/wiegotcha-rfid-thief/ | | | https://www.x41-dsec.de/lab/advisories/x41-2016-signal/ | | | https://www.tazj.in/en/1486830338 | | | https://goo.gl/X7rYaC + | | | http://blog.ioactive.com/2016/12/in-flight-hacking-system.html | | | https://www.foo.be/2017/01/Squashfs As A Forensic Container | | | http://pwnanisec.blogspot.pt/2017/02/use-after-free-in-google-hangouts.html | | | https://vulnsec.com/2017/reverse-engineering-a-book-cover/ | | | https://gist.github.com/danielfaust/998441 | | | https://goo.gl/lUkrm7 + | | | https://shattered.it/ | | | https://dhavalkapil.com/blogs/Attacking-the-OAuth-Protocol/ | | | https://thesbros.github.io/2017/02/16/geforce-experience-vulnerability.html | | | https://goo.gl/Les62U + | | | https://nlnetlabs.nl/projects/dnssec-trigger/ | | | http://newandroidbook.com/tools/jtrace.html | | | http://bernardodamele.blogspot.pt/2011/09/reverse-shells-one-liners.html | | | http://security-assessment.com/files/documents/advisory/SplunkAdvisory.pdf | | | https://ruimarinho.gitbooks.io/yubikey-handbook/content/ | | | https://goo.gl/hE1V1S + | | | https://www.stevencampbell.info/2017/02/configure-pentest-dropbox-dns-tunneling/ | | | https://shiftordie.de/blog/2017/02/18/smtp-over-xxe/ | | | http://blog.blindspotsecurity.com/2017/02/advisory-javapython-ftp-injections.html | | | https://goo.gl/WW01xo + | | | http://www.cs.vu.nl/~herbertb/download/papers/anc ndss17.pdf | | | https://security.tencent.com/index.php/blog/msg/110 | | | https://goo.gl/TBPei2 + | | | https://goo.gl/R3ehjE + | | | https://lamehackersguide.blogspot.pt/2017/02/weaponizing-postscript.html | | | https://goo.gl/3V9m3m + | | | http://omergil.blogspot.pt/2017/02/web-cache-deception-attack.html | | | https://www.zyantific.com/blog/bypassing-telekom-fon-hotspot-authentication/ | | | https://www.xorrior.com/Empire-Domain-Fronting/ | | | http://leucosite.com/FireFox-RCE/ | | | https://goo.gl/9Z2HmN + | | | https://akondrat.blogspot.pt/2016/12/pivoting-kerberos-golden-tickets-in.html | | | https://blog.xyz.is/2016/vita-netps-ioctl.html | | | https://goo.gl/YjcDMC + | | | https://mijailovic.net/2017/01/22/removing-edge-magazine-drm/ | | | https://mo.github.io/2017/02/20/cross-origin-resource-sharing.html | | | https://improsec.com/blog//windows-kernel-shellcode-on-windows-10-part-1 | | | https://goo.gl/3pCejL + | | | http://timeofcheck.com/time-based-blind-sqli-on-news-starbucks-com/ | | | https://goo.gl/aFfO6E + | | | https://sagi.io/2016/09/cve-2016-3873-arbitrary-kernel-write-in-nexus-9/ | | | https://team-sik.org/trent portfolio/password-manager-apps/ | | | https://www.secureworks.com/blog/attacking-windows-smb-zero-day-vulnerability | | | http://pc.textmod.es/ | | | http://www.oauthsecurity.com/ | | | http://www.securatary.com/Portals/0/Vulnerabilities/PayPal/Paypal%20Manager%20Account%20Hijack.pdf | | | http://bouk.co/blog/elasticsearch-rce/ | | | http://holloway.co.nz/steg/ | | | https://blog.curesec.com/article/blog/32.html | | | http://xip.io/ | | | http://www.securityaegis.com/the-big-fat-metasploit-post/ | | | http://samsclass.info/124/proj14/p6x-NTP-DrDOS.htm | | | http://www.aldeid.com/wiki/Fiddler Example: Decrypting malware HTTPS traffic | | | http://blog.ioactive.com/2014/05/glass-reflections-in-pictures-osint.html | | | http://www.jakoblell.com/blog/2014/05/07/hacking-contest-rootkit/ | | | http://blog.ptsecurity.com/2014/05/obtaining-passwords-from-cisco-wireless.html | | | https://www.adafruit.com/blog/2014/04/04/new-product-cupcade-the-raspberry-pi-powered-micro-arcade-cabinet-kit-beta/ | | | https://www.alchemistowl.org/pocorgtfo/spoiler03.html | | | https://klikki.fi/adv/bttv.html | | | https://goo.gl/0GUXQJ + | | | https://goo.gl/7yUj5d + | | | https://goo.gl/YrxqHQ + | | | https://www.redteam-pentesting.de/advisories/rt-sa-2016-001.txt | | | https://www.exploitee.rs/index.php/Western Digital MyCloud | | | https://www.myhackerhouse.com/naenara-browser-3-5-exploit-jackrabbit/ | | | https://squeal.net/bypassing-twitter-account-protection/ | | | https://alephsecurity.com/2017/03/08/nexus9-fiq-debugger/ | | | https://pierrekim.github.io/blog/2017-03-08-camera-goahead-0day.html | | | https://pages.nist.gov/mobile-threat-catalogue/ | | | https://goo.gl/iVOK1o + | | | https://goo.gl/1Iml0J + | | | https://goo.gl/6t10EZ + | | | https://rftap.github.io/blog/2016/09/01/rftap-wifi.html | | | https://www.toshellandback.com/2017/02/11/psexec/ | | | http://jamesbvaughan.com/python-twilio-scraping/ | | | https://goo.gl/ObQkkZ + | | | https://thehftguy.com/2017/02/23/docker-in-production-an-update/ | | | https://goo.gl/wJH2GY + | | | https://goo.gl/3mVdcz + | | | https://goo.gl/96ZeIk + | | | https://blog.sourceclear.com/rails admin-vulnerability-disclosure/ | | | http://pentestdan.com/rop-primer-level-0-explained/ | | | https://goo.gl/7t86Kw + | | | http://www.economyofmechanism.com/github-saml.html | | | https://securitycafe.ro/2017/02/28/time-based-data-exfiltration/ | | | https://goo.gl/YVYxD4 + | | | https://bierbaumer.net/security/asuswrt/ | | | https://bo0om.ru/telegram-love-phdays-en | | | https://vez.mrsk.me/freebsd-defaults.txt | | | https://goo.gl/XqLInP + | | | http://www.redblue.team/2017/02/abusing-google-app-scripting-through.html | | | http://jackson.thuraisamy.me/oracle-opera.html | | | https://yurichev.com/blog/minesweeper/ | | | https://rsync.samba.org/how-rsync-works.html | | | https://goo.gl/r9a3MX + | | | https://goo.gl/n3QisR + | | | http://netanelrub.in/2017/03/20/moodle-remote-code-execution/ | | | https://gist.github.com/subTee/3610a16a54bcbc1fe0ebc46313f5c02e | | | http://www.hackwhackandsmack.com/?p=1021 | | | https://biterrant.io/ | | | http://www.fuzzysecurity.com/tutorials/28.html | | | https://goo.gl/RrCmN1 + | | | http://blog.inspired-sec.com/archive/2017/03/17/COM-Moniker-Privesc.html | | | https://goo.gl/ZEw1eh + | | | https://goo.gl/GB5Hd7 + | | | https://www.hurricanelabs.com/blog/new-xssi-vector-untold-merits-of-nosniff | | | https://openai.com/blog/adversarial-example-research/ | | | https://blogs.securiteam.com/index.php/archives/3052 | | | http://hwreblog.com/projects/arduino nand reader.html | | | https://goo.gl/gNY8Dv + | | | https://stephensclafani.com/2017/03/21/stealing-messenger-com-login-nonces/ | | | https://artkond.com/2017/03/23/pivoting-guide/ | | | https://goo.gl/5Zq7Hw + | | | https://goo.gl/n4fhc3 + | | | https://saelo.github.io/posts/firefox-script-loader-overflow.html | | | http://bugkraut.de/posts/tainting | | | https://www.ibrahim-elsayed.com/?p=150 | | | https://blog.silentsignal.eu/2017/02/17/not-so-unique-snowflakes/ | | | https://goo.gl/Ysh7W7 + | | | https://goo.gl/nOQ2iQ + | | | https://www.invincea.com/2017/03/powershell-exploit-analyzed-line-by-line/ | | | http://bugkraut.de/posts/bounty-txt | | | https://alephsecurity.com/2017/03/26/oneplus3t-adb-charger/ | | | https://www.dancounsell.com/building-a-hackintosh-pro/ | | | http://cybersquirrel1.com/ | | | https://goo.gl/MT32ED + | | | https://bugs.chromium.org/p/project-zero/issues/detail?id=1225 | | | http://hexinject.sourceforge.net/ | | | https://gist.github.com/joernchen/f28ec01de20b22bbbee1622a41deb601 | | | https://goo.gl/pIKwVU + | | | https://unmitigatedrisk.com/?p=570 | | | https://razygon.github.io/2016/09/23/iOS-kernel-heap-review-5-10/ | | | https://cobbr.io/ObfuscatedEmpire.html | | | https://goo.gl/D6mU2f + | https://goo.gl/eHsPc1 + | | | https://goo.gl/xcQhzl + | | | https://capacitorset.github.io/mathjs/ | | | https://www.aptive.co.uk/blog/unrestricted-file-upload-testing/ | | | https://bamboofox.github.io/2017/03/20/Synology-Bug-Bounty-2016/ | | | http://offsecbyautomation.com/Automating-Web-Content-Discovery/ | | | https://codewhitesec.blogspot.pt/2017/04/amf.html | | | https://mastodon.social/ | | | https://calebfenton.github.io/2017/04/05/creating java vm from android native code/ | | | https://www.notsosecure.com/anatomy-hack-sqli-via-crypto/ | | | http://blog.intothesymmetry.com/2017/04/csrf-in-facebookdropbox-mallory-added.html | | | https://gist.github.com/anonymous/5fd967b3fe5d9201e0ec7a1d35c03a19 | | | https://cedricvb.be/post/tracing-api-calls-in-burp-with-frida/ | | | https://www.uperesia.com/booby-trapped-shortcut-generator | | | https://goo.gl/JA65ce + | | | https://www.vgrsec.com/post20170402.html | | | https://goo.gl/xQ8tdz + | | | http://struct.github.io/oilpan metadata.html | | | https://blogs.securiteam.com/index.php/archives/3107 | | | https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html | | | https://goo.gl/GnSddg + | | | https://artkond.com/2017/04/10/cisco-catalyst-remote-code-execution/ | | | https://goo.gl/ObZ5eL + | | | https://goo.gl/buPacq + | | | https://www.brokenbrowser.com/sop-bypass-abusing-read-protocol/ | | | https://goo.gl/TvYytI + | | | https://goo.gl/vi9oqr + | | | http://threatexpress.com/2016/12/slack-notifications-for-cobalt-strike/ | | | https://goo.gl/EfyJxm + | | | https://securedorg.github.io/RE101/ | | | http://www.threathunting.net/ | | | https://martinfowler.com/articles/session-secret.html | | | https://securitybytes.io/sudont-escape-so-easily-ce8801bf9a4b .a941nrlj4 | | | https://www.n0tr00t.com/2016/12/30/jsm-Bypass-via-CreateClassLoader.html | | | https://statuscode.ch/2016/01/subtle-vulnerabilties-with-php-and-curl/ | | | http://eryanbot.com/jtp/2012/06/30/game-hacking-utilizing-code-caves/ | | | https://goo.gl/j0UImT + | | | https://goo.gl/Vfkqdm + | | | http://blog.svenbrauch.de/2017/02/19/homemade-10-mbits-laser-optical-ethernet-transceiver/ | | | https://goo.gl/SXXey1 + | | | https://hackerone.com/reports/220494 | | | https://scotthelme.co.uk/nomx-the-worlds-most-secure-communications-protocol | | | http://offsecbyautomation.com/Open-Redirection-Bobrov/ | | | https://jaq.alibaba.com/community/art/show?articleid=781 | | | https://blogs.securiteam.com/index.php/archives/2928 | | | https://www.ambionics.io/blog/drupal-services-module-rce | | | https://goo.gl/E2rgJ6 + | | | https://blog.cugu.eu/post/apfs/ | | | https://goo.gl/QG0FPF + | | | https://www.scip.ch/en/?labs.20170105 | | | http://blog.opensecurityresearch.com/2013/01/windows-dll-injection-basics.html | | | https://textslashplain.com/2017/01/14/the-line-of-death/ | | | https://goo.gl/NMtcp2 + | | | https://goo.gl/AbEKml + | | | https://www.youtube.com/watch?v=uNjxe8ShM-8 | | | http://xproger.info/projects/OpenLara/ | | | https://www.ssh.com/ssh/port | | | http://www.paulosyibelo.com/2017/05/twitter-xss-csp-bypass.html | | | https://hackerone.com/reports/212696 | | | https://goo.gl/HZn7Yb + | | | https://goo.gl/le4nvm + | | | https://improsec.com/blog//bypassing-control-flow-guard-in-windows-10 | | | https://stringbleed.github.io | | | https://goo.gl/F1xBst + | | | https://www.evilsocket.net/2017/04/27/Android-Applications-Reversing-101/ | | | https://blog.joshlemon.com.au/protecting-your-pdf-files-and-metadata/ | | | http://www.abatchy.com/2017/05/tcp-bind-shell-in-assembly-null.html | | | https://goo.gl/V6EsOr + | | | https://www.vgrsec.com/post20170219.html | | | http://blog.jpcert.or.jp/2016/01/windows-commands-abused-by-attackers.html | | | https://poshsecurity.com/blog/deconstructing-secure-http-without-https | | | https://theshell.xyz/ | | | https://bugs.chromium.org/p/project-zero/issues/detail?id=1252&desc=5 | | | https://hackerone.com/reports/88719 | | | https://quanyang.github.io/part-1-continuous-pwning/ | | | https://goo.gl/h2dWbh + | | | https://phoenhex.re/2017-05-04/pwn2own17-cachedcall-uaf | | | https://insinuator.net/2017/05/git-shell-bypass-by-abusing-less-cve-2017-8386/ | | | https://goo.gl/728eER + | | | https://goo.gl/4J95NW + | | | https://micahflee.com/2017/04/breaking-the-security-model-of-subgraph-os/ | | | https://bugs.chromium.org/p/project-zero/issues/detail?id=1096 | | | https://blogs.securiteam.com/index.php/archives/3171 | | | http://snf.github.io/2017/05/04/exploit-protection-i-page-heap/ | | | https://goo.gl/3npUqt + | | | http://nahamsec.com/?p=210 | | | http://blog.shubh.am/how-i-bypassed-2-factor-authentication-on-google-yahoo-linkedin-and-many-others/ | | | http://blog.techorganic.com/2014/05/14/from-fuzzing-to-0-day/ | | | http://cybermashup.com/2014/05/01/jtag-debugging-made-easy-with-bus-pirate-and-openocd/ | | | http://www.room362.com/blog/2014/04/19/executing-code-via-smb-without-psexec/ | | | https://bitbucket.org/mihaila/bintrace/wiki/Home | | | https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories txt/20140508-0 AVG Remote Administration Multiple critical vulnerabilities v10.txt | | | https://www.trustedsec.com/may-2014/moar-shellz/ | | | https://doar-e.github.io/blog/2014/04/30/corrupting-arm-evt/ | | | https://fail0verflow.com/blog/2014/enhancing-the-avic-5000nex.html | | | http://habrahabr.ru/company/dsec/blog/222993/ | | | http://int0xcc.svbtle.com/stripping-upatre-trojan-downloader | | | http://syncthing.net/ | | | http://blogs.msdn.com/b/debuggingtoolbox/archive/2014/05/14/hacking-minesweeper-for-windows-8.aspx | | | http://blog.cloudflare.com/bpf-the-forgotten-bytecode | | | https://slashcrypto.org/2017/05/17/5k Error Page/ | | | https://goo.gl/ium1x1 + | | | https://goo.gl/QNgi0K + | | | https://goo.gl/9TL0an + | | | https://goo.gl/XQohRS + | | | https://klue.github.io/blog/2017/04/macos kernel debugging vbox/ | | | https://checkmarx.gitbooks.io/go-scp/ | | | https://irssi.org/2017/05/12/fuzzing-irssi/ | | | https://shhnjk.blogspot.pt/2017/05/is-your-epub-reader-secure-enough.html | | | https://unmitigatedrisk.com/?p=586 | | | https://goo.gl/AuoG68 + | | | https://modexp.wordpress.com/2017/01/24/shellcode-x84/ | | | https://blog.bi.tk/2017/01/20/findbug/ | | | https://goo.gl/7eGSu8 + | | | https://xerub.github.io/ios/kpp/2017/04/13/tick-tock.html | | | http://www.unixwiz.net/techtips/sql-injection.html | | | https://goo.gl/KKSSqD + | | | https://goo.gl/DGJIZJ + | | | https://devnull-as-a-service.com/features/ | | | http://kedrisec.com/twitter-publish-by-any-user/ | | | https://www.ambionics.io/blog/oracle-peoplesoft-xxe-to-rce | | | https://randywestergren.com/xss-sms-hacking-text-messages-verizon-messages/ | | | http://www.debasish.in/2017/05/openxmolar-ms-openxml-format-fuzzing 20.html | | | http://www.exfiltrated.com/research-BIOS Based Rootkits.php | | | http://blog.timac.org/?p=1570 | | | https://cobbr.io/ScriptBlock-Logging-Bypass.html | | | http://cloak-and-dagger.org/ | | | https://wald0.com/?p=112 | | | https://goo.gl/Xzy1ql + | | | https://www.elttam.com.au/blog/playing-with-canaries/ | | | https://goo.gl/4oruRY + | | | https://tyranidslair.blogspot.pt/2017/05/exploiting-environment-variables-in.html | | | https://animal0day.blogspot.co.uk/2017/05/fuzzing-apache-httpd-server-with.html | | | https://medium.com/@d0znpp/how-to-bypass-libinjection-in-many-waf-ngwaf-1e2513453c0f | | | https://gist.github.com/winocm/e3eb9c9b061c7414441c45a4938a0c57 | | | http://research.rootme.in/h1-xssi/ | | | https://ysx.me.uk/road-to-unauthenticated-recovery-downloading-github-saml-codes/ | | | https://goo.gl/rkzXun + | | | http://www.thegreycorner.com/2017/01/exploiting-difficult-sql-injection.html | | | https://hackerone.com/reports/217745 | | | https://goo.gl/OBoFZ1 + | | | https://scarybeastsecurity.blogspot.pt/2017/05/bleed-more-powerful-dumping-yahoo.html | | | https://goo.gl/vHiyry + | | | http://wphutte.com/avada-5-1-4-stored-xss-and-csrf/ | | | https://winscripting.blog/2017/05/12/first-entry-welcome-and-uac-bypass/ | | | https://goo.gl/p0molg + | | | https://sizzop.github.io/2016/07/05/kernel-hacking-with-hevd-part-1.html | | | https://lowleveldesign.org/2017/03/07/how-to-securely-sign-dotnet-assemblies/ | | | https://ysx.me.uk/a-pair-of-plotly-bugs-stored-xss-and-aws-metadata-ssrf/ | | | http://blog.martinfenner.org/2014/08/25/using-microsoft-word-with-git/ | | | http://kubernetesbyexample.com/ | | | https://www.shodan.io/host/203.254.47.164 | | | https://vvyper.com/2017/05/22/instagram-stories-ssl/ | | | https://hackerone.com/reports/231053 | | | https://medium.com/@th3g3nt3l/how-i-got-5500-from-yahoo-for-rce-92fffb7145e6 | | | http://www.rpcview.org/index.html | | | https://phoenhex.re/2017-06-02/arrayspread | | | https://bling.kapsi.fi/blog/no-proc-process-recon.html | | | https://goo.gl/5EeZC0 + | | | https://goo.gl/1HRwSB + | | | https://msitpros.com/?p=3877 | | | http://c0rni3sm.blogspot.pt/2017/06/from-js-to-another-js-files-lead-to.html | | | https://raz0r.name/vulnerabilities/arbitrary-file-reading-in-next-js-2-4-1/ | | | https://chao-tic.github.io/blog/2017/05/24/dirty-cow | | | https://sploitfun.wordpress.com/2015/02/10/understanding-glibc-malloc/ | | | https://goo.gl/gJ1LiQ + | | | https://oded.ninja/2017/05/14/amt-n-ken-hack/ | | | https://sonniesedge.co.uk/blog/a-day-without-javascript | | | http://pentestit.com/wordsteal-steal-ntlm-hashes-remotely/ | | | https://www.hackerone.com/blog-How-To-Server-Side-Request-Forgery-SSRF | | | https://goo.gl/Zy8Nhe + | | | https://firefart.at/post/turning piwik superuser creds into rce/ | | | https://goo.gl/Tv6uRg + | | | https://0x00sec.org/t/c-a-simple-runtime-crypter/519 | | | https://0patch.blogspot.pt/2017/01/micropatching-remote-code-execution-in.html | | | http://blog.blindspotsecurity.com/2016/09/nodejs-breaking-jade-pug-dlopen.html | | | https://goo.gl/AL1b7q + | | | https://www.securitysift.com/understanding-wordpress-auth-cookies | | | https://medium.com/@br4nsh/from-linux-to-ad-10efb529fae9 | | | https://goo.gl/ea1gwR + | | | https://borgandrew.blogspot.pt/2017/01/h1-margin-bottom-0.html | | | https://goo.gl/t23oea + | | | http://el.che.moe/Writeup VoiceAttack.html | | | https://blog.kchung.co/rfid-hacking-with-the-proxmark-3/ | | | https://habrahabr.ru/company/aladdinrd/blog/329166/ | | | http://switchbrew.org | | | http://www.lofibucket.com/articles/64k intro.html | | | https://angelmmiguel.github.io/svgi/ | | | https://goo.gl/3dSAS2 + | | | https://goo.gl/8SMkHF + | | | http://offsecbyautomation.com/Subdomain-Delegation-Takeover/ | | | https://sourceware.org/systemtap/ | | | https://goo.gl/2gCFrE + | | | https://guidovranken.wordpress.com/2017/06/21/the-openvpn-post-audit-bug-bonanza/ | | | https://phoenhex.re/2017-06-21/firefox-structuredclone-refleak | | | https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt | | | https://goo.gl/ENZQiQ + | | | https://bo0om.ru/just-enter-the-space-attacks-en | | | https://goo.gl/w38a3h + | | | https://goo.gl/KnVyxr + | | | https://oleb.net/blog/2017/01/fun-with-string-interpolation/ | | | https://mostsecure.pw/ | | | http://ngailong.com/uber-login-csrf-open-redirect-account-takeover/ | | | https://goo.gl/WyXvVf + | | | http://ostinato.org/ | | | https://securityonline.info/bypass-waf-php-webshell-without-numbers-letters/ | | | https://goo.gl/ygKLLx + | | | https://blog.cylance.com/running-executables-on-macos-from-memory | | | https://www.bishopfox.com/blog/2017/06/how-i-built-an-xss-worm-on-atmail/ | | | https://goo.gl/PU7zc2 + | | | https://yurichev.com/blog/symbolic/ | | | https://www.contextis.com/resources/blog/hacking-unicorns-web-bluetooth/ | | | https://goo.gl/ezUM9n + | | | https://jamescoote.co.uk/phishlulz-tutorial/ | | | https://jankopecky.net/index.php/2017/04/18/0day-textplain-considered-harmful/ | | | http://inspirobot.me/ | | | https://arogozhnikov.github.io/3d nn/ | | | https://goo.gl/h7QdzQ + | | | https://medium.com/@FreedomCoder/following-the-white-rabbit-5e392e3f6fb9 | | | https://mrpapercut.com/sites/wscript/ | | | https://www.mzrst.com/ | | | http://hacking-printers.net | | | https://goo.gl/VD8BxF + | | | http://vegardno.blogspot.pt/2017/03/fuzzing-openssh-daemon-using-afl.html | | | https://lowleveldesign.org/2017/07/04/decrypting-tfs-secret-variables/ | | | https://www.itsec.nl/en/2017/06/26/drive-by-remote-code-execution-by-mamp/ | | | https://goo.gl/Jsze4P + | | | https://goo.gl/41PZHT + | | | https://blog.rubidus.com/2017/02/06/preventing-subdomain-takeover/ | | | https://dev.to/fenceposterror/hacking-open-source-software-for-fun-and-non-profit | | | https://zerosum0x0.blogspot.pt/2017/07/puppet-strings-dirty-secret-for-free.html | | | https://blog.haschek.at/post/f2fda | | | http://www.righto.com/2017/07/bitcoin-mining-on-vintage-xerox-alto.html | | | https://blog.zsec.uk/blind-xxe-learning/ | | | https://goo.gl/5TNzwu + | | | https://goo.gl/Y3odmB + | | | https://gist.github.com/hasherezade/e3b5682fee27500c5dabf5343f447de3 | | | https://gist.github.com/ryhanson/227229866af52e2d963cf941af135a52 | | | https://goo.gl/BhW3Lt + | | | https://goo.gl/GSGgjX + | | | https://www.rcesecurity.com/2014/07/slae-shell-reverse-tcp-shellcode-linux-x86/ | | | https://myexploit.wordpress.com/hunt-for-the-domain-admin-da/ | | | https://krbtgt.pw/oracle-oam-10g-session-hijacking/ | | | https://goo.gl/is7Tyu + | | | http://boosterok.com/blog/broadpwn/ | | | http://www.nmattia.com/posts/2017-03-05-crack-luks-stutter-gnu-parallel.html | | | https://medium.com/wemake-services/testing-bash-applications-85512e7fe2de | | | https://blog.preempt.com/new-ldap-rdp-relay-vulnerabilities-in-ntlm | | | http://acez.re/the-weak-bug-exploiting-a-heap-overflow-in-vmware/ | | | http://hacker-news.verylegit.link/ | | | http://aem1k.com/symmetry/ | | | https://trueschool.se/html/fonts.html | | | https://goo.gl/wSKFLS + | | | https://xakep.ru/2017/07/06/safari-localfile-read/ | | | https://gist.github.com/jobertabma/e9a383a8ad96baa189b65cdc8d74a845 | | | https://blog.netspi.com/attacking-javascript-web-service-proxies-burp/ | | | https://blog.ropnop.com/upgrading-simple-shells-to-fully-interactive-ttys/ | | | https://goo.gl/uLeBCf + | | | https://goo.gl/ehHr8U + | | | https://goo.gl/RmmyFJ + | | | http://blog.deniable.org/blog/2017/07/16/inject-all-the-things/ | | | http://wapiflapi.github.io/2015/04/22/single-null-byte-heap-overflow/ | | | https://pentestarmoury.com/2017/07/19/s3-buckets-for-good-and-evil/ | | | https://oneupsecurity.com/research/remote-code-execution-in-source-games | | | https://www.coresecurity.com/blog/solving-post-exploitation-issue-cve-2017-7308 | | | http://news.dieweltistgarnichtso.net/posts/gnome-thumbnailer-msi-fail.html | | | https://goo.gl/Qc7ZPm + | | | http://blog.sec-consult.com/2017/06/ghosts-from-past-authentication-bypass.html | | | https://goo.gl/YGBuph + | | | https://goo.gl/vfkPjf + | | | http://dmitry.gr/index.php?r=05.Projects&proj=25.%20VMU%20Hacking | | | http://op-co.de/blog/posts/hacking the nx300/ | | | http://cyvera.com/cve-2014-1776-how-easy-it-is-to-attack-these-days/ | | | http://insanecoding.blogspot.ro/2014/04/common-libressl-porting-mistakes.html | | | https://zyan.scripts.mit.edu/blog/wordpress-fail/ | | | http://rotlogix.com/2014/05/21/exploiting-local-file-includes-with-liffy/ | | | http://m-austin.com/blog/?p=118 | | | http://www.hexacorn.com/blog/2014/05/21/rce-list-of-64-bit-tools/ | | | https://code.google.com/p/libbde/ | | | http://eternal-todo.com/blog/cve-2013-2729-exploit-zeusp2p-gameover | | | http://www.vupen.com/blog/20140520.Advanced Exploitation Firefox UaF Pwn2Own 2014.php | | | http://www.scriptjunkie.us/2013/11/adding-easy-ssl-client-authentication-to-any-webapp/ | | | http://www.websec.mx/advisories/view/Generador-de-WPA-Huawei-HG8245-y-HG8247 | | | http://williamknowles.co.uk/?p=16 | | | http://www.circl.lu/projects/CIRCLean/ | | | https://goo.gl/vDEMKL + | | | https://gerbenjavado.com/the-race-to-the-top-of-a-bug-bounty-program/ | | | https://goo.gl/jQJK3U + | | | https://asciinema.org/a/130730 | | | https://security.gerhardt.link/RCE-in-Factorio/ | | | https://bling.kapsi.fi/blog/jvm-deserialization-broken-classldr.html | | | https://elaineou.com/2017/01/19/how-the-twitter-app-bypasses-paywalls/ | | | https://goo.gl/s5Eyy4 + | | | https://goo.gl/kLaawx + | | | https://pierrekim.github.io/blog/2017-02-09-tplink-c2-and-c20i-vulnerable.html | | | https://www.gironsec.com/blog/2017/07/keylogger-using-directx/ | | | http://rh0dev.github.io/blog/2017/the-return-of-the-jit/ | | | https://bneg.io/2017/07/26/empire-without-powershell-exe/ | | | https://goo.gl/aEPUuS + | | | https://goo.gl/djcEh1 + | | | https://www.stefanjudis.de/hidden-messages-in-javascript-property-names.html | | | https://hackernoon.com/a-collision-too-perfect-279a47fb5d42 | | | https://doesmysiteneedhttps.com/ | | | https://blog.innerht.ml/testing-new-features/ | | | http://blog.orange.tw/2017/07/how-i-chained-4-vulnerabilities-on.html | | | https://blog.zsec.uk/rce-starwars/ | | | https://vallejo.cc/2017/07/16/anti-antidebugging-windbg-scripts/ | | | https://gist.github.com/marcan/6a2d14b0e3eaa5de1795a763fb58641e | | | http://paper.seebug.org/230/ | | | https://0x00sec.org/t/reverse-engineering-101/1233 | | | https://goo.gl/h5EJDE + | | | http://rohk.io/free-bits-on-twitch/ | | | https://goo.gl/mqi664 + | | | http://blog.huntingmalware.com/notes/WMI | | | https://comsecuris.com/blog/posts/path of least resistance/ | | | https://scarybeastsecurity.blogspot.pt/2017/03/black-box-discovery-of-memory.html | | | https://goo.gl/986jDv + | | | https://cybersyndicates.com/2017/02/os-x-packet-capture--empire/ | | | https://medium.com/0xcc/how-to-turn-photoshop-into-a-remote-access-tool-805485a9480 | | | https://z4ziggy.wordpress.com/2017/07/21/zigfrid-a-passive-rfid-fuzzer/ | | | https://blog.lessonslearned.org/building-a-more-secure-development-chromebook/ | | | https://bo0om.ru/xss-everywhere | | | https://sites.google.com/site/testsitehacking/10k-host-header | | | http://staaldraad.github.io/pentest/phishing/2017/08/02/o356-phishing-with-oauth/ | | | http://blog.safebuff.com/2016/07/03/SSRF-Tips/ | | | http://blog.securelayer7.net/thick-client-penetration-testing-1/ | | | http://www.rvrsh3ll.net/blog/offensive/ssl-domain-fronting-101/ | | | https://blog.doyensec.com/2017/08/03/electron-framework-security.html | | | https://zerosum0x0.blogspot.pt/2017/04/doublepulsar-initial-smb-backdoor-ring.html | | | https://goo.gl/FdwEKQ + | | | https://landave.io/2017/07/bitdefender-remote-stack-buffer-overflow-via-7z-ppmd/ | | | https://goo.gl/3xEuby + | | | https://blog.phusion.nl/2015/01/20/docker-and-the-pid-1-zombie-reaping-problem/ | | | https://ysx.me.uk/managed-apps-and-music-a-tale-of-two-xsses-in-google-play/ | | | http://www.phreedom.org/research/tinype/ | | | https://goo.gl/fu93Mg + | | | https://goo.gl/XAq8qW + | | | http://lightningsecurity.io/blog/password-not-provided/ | | | http://redplait.blogspot.pt/2017/08/wincheck-rc858.html | | | https://gist.github.com/marcan/23e1ec416bf884dcd7f0e635ce5f2724 | | | http://illmatics.com/carhacking.html | | | https://goo.gl/Yg4QHV + | | | https://l.avala.mp/?p=241 | | | https://lowlevelbits.org/reverse-engineering-stickies.app/ | | | https://www.psattack.com/articles/20170810/application-compatibility-shims/ | | | https://lolware.net/2017/08/01/capturing-mfa-logons.html | | | https://blog.netspi.com/attacking-sso-common-saml-vulnerabilities-ways-find/ | | | https://goo.gl/P8EdJH + | | | https://aspe1337.blogspot.pt/2017/04/writeup-of-cve-2017-7199.html | | | http://www.exploit-monday.com/2017/07/bypassing-device-guard-with-dotnet-methods.html | | | http://hackethereum.com/ | | | https://gist.github.com/MerryMage/797c523724e2dc02ada86a1cfadea3ee | | | http://sheepsec.com/blog/username enumeration via jar.html | | | https://hackerone.com/reports/198690 | | | https://goo.gl/zsevzD + | | | https://duo.com/blog/hunting-malicious-npm-packages | | | https://iayanpahwa.github.io/Reverse-Engineering-IoT-Devices/ | | | https://toshellandback.com/2017/08/16/mousejack/ | | | https://0x00sec.org/t/game-hacking-winxp-minesweeper/1266 | | | http://thecyberrecce.net/2017/02/12/reversing-the-trendnet-ts-402/ | | | https://zhuanlan.zhihu.com/p/28575189 | | | https://goo.gl/KBsZtt + | | | https://goo.gl/ViLaih + | | | http://nahamsec.com/secure-your-jenkins-instance-or-hackers-will-force-you-to/ | | | https://ae7.st/g/ | | | https://dave.cheney.net/2017/08/21/the-here-is-key | | | http://gbppr.dyndns.org/~gbpprorg/l0pht/l0pht.html | | | https://hackerone.com/reports/207042 | | | https://medium.com/@arbazhussain/pre-domain-wildcard-cors-exploitation-2d6ac1d4bd30 | | | https://goo.gl/d15wVv + | | | https://phoenixpwn.com/ | | | https://sintonen.fi/advisories/qnap-qts-42-multiple-vulnerabilities.txt | | | http://bsmt.me/posts/openxc-reversing/ | | | https://goo.gl/7grxsj + | | | https://raw.githubusercontent.com/hatRiot/token-priv/master/abusing token eop 1.0.txt | | | https://gerbenjavado.com/manual-sql-injection-discovery-tips/ | | | https://goo.gl/7psV1M + | | | https://appscreener.us/blog/?code=reading-ios-app-binary-files | | | https://goo.gl/2JbZAv + | | | https://goo.gl/xFHvXr + | | | https://research.swtch.com/zip | | | https://chris.bolin.co/offline/ | | | http://madeintheusbwebsite.azurewebsites.net | | | http://zhchbin.github.io/2017/08/30/Uber-XSS-via-Cookie/ | | | https://opnsec.com/2017/08/advanced-flash-vulnerabilities-in-youtube/ | | | https://blog.didierstevens.com/2017/09/05/abusing-a-writable-windows-service/ | | | https://www.doyler.net/security-not-included/certreq-exfiltration | | | https://lgtm.com/blog/apache struts CVE-2017-9805 | | | http://blog.thinkst.com/2017/08/disrupting-aws-s3-logging.html | | | http://dmitry.gr/index.php?r=05.Projects&proj=23.%20PSoC4 | | | https://reactarmory.com/answers/how-can-i-use-css-in-js-securely | | | http://www.martinvigo.com/diy-spy-program-abusing-apple-call-relay-protocol/ | | | https://benkowlab.blogspot.pt/2017/08/from-onliner-spambot-to-millions-of.html | | | http://blog.pentestbegins.com/2017/08/05/remote-xss-attack-using-csrf/ | | | https://goo.gl/JhkeQj + | | | http://www.ringzerolabs.com/2017/08/bypassing-anti-analysis-technique-in.html | | | https://blogs.securiteam.com/index.php/archives/3379 | | | https://www.imperialviolet.org/2017/08/13/securitykeys.html | | | https://blog.quarkslab.com/flash-dumping-part-i.html | | | https://goo.gl/DtNjd8 + | | | https://goo.gl/H8T3kz + | | | https://goo.gl/tkrdbm + | | | https://goo.gl/omukkh + | | | https://goo.gl/54L7rS + | | | https://rtpbleed.com/ | | | http://go.armis.com/hubfs/BlueBorne%20Technical%20White%20Paper-1.pdf | | | https://goo.gl/3DfDJT + | | | https://goo.gl/WZXckr + | | | https://goo.gl/2CgsS4 + | | | https://courk.fr/index.php/2017/09/10/reverse-engineering-exploitation-connected-clock/ | | | http://tinyhack.com/2017/09/05/mastercard-internet-gateway-service-hashing-design-flaw/ | | | https://www.mdsec.co.uk/2017/09/exploiting-cve-2017-8759-soap-wsdl-parser-code-injection/ | | | https://diablohorn.com/2017/09/09/understanding-practicing-java-deserialization-exploits/ | | | http://www.exploit-monday.com/2017/08/exploiting-powershell-code-injection.html | | | https://jesuscoin.network/ | | | https://quoteinvestigator.com/2013/03/06/artists-steal/amp/ | | | https://safiire.github.io/blog/2017/08/19/solving-danish-defense-intelligence-puzzle/ | | | https://goo.gl/SsWjW6 + | | | https://goo.gl/NTE4H9 + | | | https://www.virtuesecurity.com/blog/aws-penetration-testing-s3-buckets/ | | | https://blog.avuln.com/article/4 | | | http://patrickhurd.pro/blog/posts/popjsanalysis.html | | | http://qiita.com/alfa/items/b0e807ae040fc8f61d20 | | | https://www.hopperapp.com/blog/?p=219 | | | https://goo.gl/QTqj8t + | | | http://guptashubham.com/all-about-hackerone-private-program-terapeak/ | | | https://wtf.horse/2017/09/19/common-wifi-attacks-explained/ | | | https://0x10f8.wordpress.com/2017/08/07/reverse-engineering-an-eclipse-plugin/ | | | https://www.antid0te.com/blog.html | | | http://blog.quarkslab.com/make-confide-great-again-no-we-cannot.html | | | https://goo.gl/fcmP1Y + | | | https://dev.to/tkaczanowski/explaining-programming-to-6-years-old-kids | | | https://goo.gl/GbJLyc + | | | https://learn.sparkfun.com/tutorials/gas-pump-skimmers | | | https://goo.gl/D2HWmu + | | | https://goo.gl/mtUa28 + | | | http://www.shawarkhan.com/2017/08/sarahah-xss-exploitation-tool.html | | | https://rails-sqli.org/ | | | https://un-excogitate.org/dormant-domination | | | https://goo.gl/SwBQnX + | | | http://hatriot.github.io/blog/2017/09/19/abusing-delay-load-dll/ | | | https://www.incapsula.com/blog/blocking-session-hijacking-on-gitlab.html | | | https://specterops.io/assets/resources/SpecterOps Subverting Trust in Windows.pdf | | | http://defencely.com/blog/defencely-clarifies-python-object-injection-exploitation/ | | | https://www.twistlock.com/2017/06/25/alpine-linux-pt-1-2/ | | | https://medium.com/@th3g3nt3l/900-xss-in-yahoo-recon-wins-65ee6d4bfcbd | | | https://blog.rapid7.com/2013/07/02/a-penetration-testers-guide-to-ipmi/ | | | https://pokeinthe.io/2017/09/14/http-status-code-handling/ | | | http://ccsinjection.lepidum.co.jp/blog/2014-06-05/CCS-Injection-en/index.html | | | http://radare.today/technical-analysis-of-the-gnutls-hello-vulnerability/ | | | http://blog.internot.info/2014/05/facebook-skype-to-email-leak-3000-bounty.html | | | http://www.sysvalue.com/en/heartbleed-cupid-wireless/ | | | https://henryhoggard.co.uk/?p=68 | | | http://moscrack.sourceforge.net/ | | | https://code.google.com/p/xssf/ | | | http://blog.j-michel.org/post/86992432269/from-nand-chip-to-files | | | http://www.securitybydefault.com/2012/07/backdooring-apache.html | | | http://blog.opensecurityresearch.com/2014/05/acquiring-linux-memory-from-server-far.html | | | http://www.securityartwork.es/2014/06/04/read-htaccess-file-through-blind-sql-injection/?lang=en | | | http://www.labofapenetrationtester.com/2014/06/introducing-antak.html | | | http://kukuruku.co/hub/nix/writing-a-file-system-in-linux-kernel | | | https://wireedit.com/ | | | http://www.moserware.com/2009/09/stick-figure-guide-to-advanced.html | | | http://blog.blackfan.ru/2017/09/devtwittercom-xss.html | | | https://forsec.nl/2017/09/smart-home-remote-command-execution-rce/ | | | https://wmie.codeplex.com/ | | | https://goo.gl/X5tmUW + | | | http://noxxi.de/research/breaking-dkim-on-purpose-and-by-chance.html | | | https://phoenhex.re/2017-06-09/pwn2own-diskarbitrationd-privesc | | | https://blog.filippo.io/we-need-to-talk-about-session-tickets/ | | | https://goo.gl/AZ8qRV + | | | https://halbecaf.com/2017/05/24/exploiting-a-v8-oob-write/ | | | https://sockpuppet.org/blog/2015/01/15/against-dnssec/ | | | https://goo.gl/Fk6FpM + | | | https://blog.ropchain.com/2017/04/03/disarming-emet-5-52/ | | | https://ro-che.info/articles/2017-09-17-booking-com-manipulation | | | https://jordaneldredge.com/projects/winamp2-js/ | | | http://georgemauer.net/2017/10/07/csv-injection.html | | | https://justi.cz/security/2017/10/07/rubygems-org-rce.html | | | https://blog.zsec.uk/subdomainhijack/ | | | https://goo.gl/d6XGkh + | | | https://goo.gl/96rGuw + | | | http://www.chokepoint.net/2017/10/exposing-server-ips-behind-cloudflare.html | | | https://goo.gl/HEpNnN + | | | https://smartlockpicking.com/tutorial/my-smart-lock-vendor-disappeared/ | | | https://goo.gl/z1zesp + | | | https://blog.liftsecurity.io/2017/04/14/sql-and-more-via-xss-in-pgadmin4/ | | | https://goo.gl/F7fdBb + | | | https://sensepost.com/blog/2017/macro-less-code-exec-in-msword/ | | | https://medium.com/websec/wordpress-sqli-bbb2afcc8e94 | | | http://clickheretosavetheworld.com/ | | | https://gavv.github.io/blog/pulseaudio-under-the-hood/ | | | https://kate.io/blog/git-bomb/ | | | https://blogs.securiteam.com/index.php/archives/3430 | | | https://kciredor.com/taking-over-every-ad-on-olx-automated-an-idor-story.html | | | https://www.nomotion.net/blog/sharknatto/ | | | https://warroom.securestate.com/cve-2017-9769/ | | | https://www.krackattacks.com/ | | | http://hexdetective.blogspot.pt/2017/02/exploiting-android-s-boot-getting.html | | | https://goo.gl/kqbzgz + | | | http://codepool.me/NET-Reverse-Enginering-Part-1/ | | | https://goo.gl/Ap47c2 + | | | https://crocs.fi.muni.cz/public/papers/rsa ccs17 | | | https://www.bamsoftware.com/papers/fronting/ | | | https://blog.flanker017.me/cve-2017-2416-gif-remote-exec/ | | | https://goo.gl/sSF3up + | | | https://gist.github.com/1wErt3r/4048722 | | | http://blog.intothesymmetry.com/2017/10/slack-saml-authentication-bypass.html | | | https://goo.gl/hMHdD7 + | | | http://infosecninja.blogspot.pt/2017/09/android-kiosk-browser-lock-down.html | | | http://subt0x10.blogspot.pt/2017/08/msxslexe-working-as-designed.html | | | https://goo.gl/5jwWoj + | | | https://0.me.uk/ev-phishing/ | | | https://www.fidusinfosec.com/tp-link-remote-code-execution-cve-2017-13772/ | | | http://bobao.360.cn/learning/detail/4534.html | | | http://www.sysadminjd.com/adv170014-ntlm-sso-exploitation-guide/ | | | https://appelsiini.net/2017/reverse-engineering-location-services/ | | | https://nickcano.com/reversing-league-of-legends-client/ | | | https://fail0verflow.com/blog/2017/ps4-namedobj-exploit/ | | | http://www.geeknik.net/7k9et2d9e | | | https://embedi.com/blog/uefi-bios-holes-so-much-magic-dont-come-inside | | | https://goo.gl/rYdJdk + | | | https://goo.gl/xASVx1 + | | | http://www.dicewarepasswords.com/ | | | http://webjack.io/ | | | https://goo.gl/Up218B + | | | http://stamone-bug-bounty.blogspot.pt/2017/10/dom-xss-auth 14.html | | | https://goo.gl/Arvvgp + | | | https://benkowlab.blogspot.pt/2017/05/feedback-on-how-to-build-smb-honeypot.html | | | https://goo.gl/kojasB + | | | https://edoverflow.com/2017/broken-link-hijacking/ | | | https://security.tencent.com/index.php/blog/msg/116 | | | https://lucasg.github.io/2017/10/15/Api-set-resolution/ | | | https://goo.gl/n6rbcT + | | | https://goo.gl/STZHRC + | | | https://goo.gl/jkFJjg + | | | https://goo.gl/mJoCR2 + | | | http://agrrrdog.blogspot.pt/2017/03/autobinding-vulns-and-spring-mvc.html | | | https://adamcaudill.com/2017/10/04/exploiting-jackson-rce-cve-2017-7525/ | | | https://www.sneakymonkey.net/2016/10/30/raspberrypi-nsm/ | | | https://goo.gl/geiujj + | | | https://philippeharewood.com/posting-gifs-as-anyone-on-facebook/ | | | https://ysx.me.uk/app-maker-and-colaboratory-a-stored-google-xss-double-bill/ | | | https://goo.gl/Apc2Mr + | | | https://diablohorn.com/2017/08/15/brute-forcing-encrypted-web-login-forms/ | | | https://git.stan.sh/SL-Process/DataBuster-VPN | | | https://pentestlab.blog/2017/08/29/command-and-control-dropbox/ | | | https://goo.gl/DD871b + | | | https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/ | | | https://pleasestopnamingvulnerabilities.com/ | | | https://gdelugre.github.io/2017/11/06/samba-path-pivot-attack/ | | | https://jesux.es/exploiting/blueborne-android-6.0.1/ | | | https://modexp.wordpress.com/2017/10/30/poly-mutex-names/ | | | http://research.rootme.in/stealing-csvs-crossdomain/ | | | https://goo.gl/QyY7fX + | | | https://whereisk0shl.top/Dark%20Composition%20Exploit%20in%20Ring0.html | | | http://trillian.mit.edu/~jc/humor/ATT Copyright true.html | | | https://gamehistory.org/aladdin-source-code/ | | | http://www.noob.ninja/2017/11/local-file-read-via-xss-in-dynamically.html | | | https://justi.cz/security/2017/11/14/couchdb-rce-npm.html | | | http://blog.vulspy.com/2017/11/09/Wordpress-4-8-2-SQL-Injection-POC/ | | | http://rickyhan.com/jekyll/update/2017/11/10/bypassing-recaptcha.html | | | https://www.illuminatejs.com | | | https://bo0om.ru/chrome-and-safari-uxss | | | https://staaldraad.github.io/2017/11/12/polycom-hdx-rce/ | | | https://goo.gl/zgaNZu + | | | https://ionize.com.au/stealing-amazon-ec2-keys-via-xss-vulnerability/ | | | https://rot.fi/2017/11/07/wan-to-lan-exploitation-of-4g-broadband-modem/ | | | https://goo.gl/oPM722 + | | | https://goo.gl/k6wTv6 + | | | https://depthsecurity.com/blog/using-python-to-get-a-shell-without-a-shell | | | http://antonioparata.blogspot.pt/2017/11/shed-inspect-net-malware-like-sir.html | | | https://xorl.wordpress.com/2017/11/11/cve-2017-13089-wget-http-integer-overflow/ | | | https://edoverflow.com/2017/ruby-resolv-bug/ | | | http://korban.net/posts/postgres/2017-11-02-the-case-against-orms/ | | | https://martinmelhus.com/web-audio-modem/ | | | https://statuscode.ch/2017/11/from-markdown-to-rce-in-atom/ | | | https://blog.zsec.uk/rce-chain/ | | | https://embedi.com/blog/skeleton-closet-ms-office-vulnerability-you-didnt-know-about | | | https://goo.gl/Mh8xdi + | | | https://ss64.com/ps/ | | | https://mike-n1.github.io/ExtensionsOverview | | | https://goo.gl/sXaCHB + | | | https://goo.gl/6kXDq6 + | | | https://openeffect.ca/snifflab-an-environment-for-testing-mobile-devices/ | | | https://goo.gl/SF3fE2 + | | | https://digi.ninja/blog/xss steal csrf token.php | | | https://goo.gl/UWPKNC + | | | https://blog.xpnsec.com/becoming-system/ | | | https://goo.gl/3LbCnL + | | | https://samczsun.com/privilege-escalation-legalrobot/ | | | https://diablohorn.com/2017/05/21/quantum-insert-bypassing-ip-restrictions/ | | | https://blog.conscioushacker.io/index.php/2017/10/25/evading-microsofts-autoruns/ | | | https://goo.gl/hVo9SC + | | | https://nickjanetakis.com/blog/run-the-first-edition-of-unix-1972-with-docker | | | https://goo.gl/oQexiF + | | | https://ysx.me.uk/taking-note-xss-to-rce-in-the-simplenote-electron-client/ | | | https://objective-see.com/blog/blog 0x24.html | | | http://c0d3g33k.blogspot.pt/2017/11/story-of-json-xss.html | | | https://osandamalith.com/2017/03/24/places-of-interest-in-stealing-netntlm-hashes | | | http://jacksonbaker.net/reverse-engineering-the-misfit-bolt-btle-protocol/ | | | https://medium.com/bindecy/huge-dirty-cow-cve-2017-1000405-110eca132de0 | | | https://haiderm.com/fully-undetectable-backdooring-pe-files/ | | | https://goo.gl/k5FhZY + | | | https://goo.gl/1oGthj + | | | https://raesene.github.io/blog/2017/05/01/Kubernetes-Security-etcd/ | | | https://medium.com/@5yx/dde-word-exec-3e57cc45b401 | | | https://www.xorrior.com/You-Have-The-Right-to-Remain-Cylance/ | | | https://medium.com/@infodox/pwning-red-team-toys-crunchrat-rce-ce83e1d09ae9 | | | http://blog.sec-consult.com/2017/04/what-unites-hp-philips-and-fujitsu-one.html | | | http://tldr.sh/ | | | http://www.readylinux.com/ | | | https://www.darkoperator.com/blog/2017/11/20/some-comments-and-thoughts-on-tradecraft | | | https://goo.gl/XrGehX + | | | https://goo.gl/VdAeoT + | | | https://www.mailsploit.com/index | | | https://goo.gl/oTx3iE + | | | https://bitrot.sh/post/30-11-2017-domain-fronting-with-meterpreter/ | | | http://decidedlygray.com/2017/08/10/modifying-and-building-burp-extensions/ | | | https://blog.elcomsoft.com/2017/11/ios-11-horror-story-the-rise-and-fall-of-ios-security/ | | | https://goo.gl/FZuEMi + | | | https://codinguy.net/2013/06/03/insertion-encoderdecoder-shellcode/ | | | http://blog.bentkowski.info/2017/11/yet-another-google-caja-bypasses-hat.html | | | http://az4n6.blogspot.fr/2017/10/finding-and-decoding-malicious.html | | | https://www.chrisdcmoore.co.uk/post/oneplus-analytics/ | | | http://blog.talosintelligence.com/2017/11/exploiting-cve-2016-2334.html | | | https://blog.xpnsec.com/windows-warbird-privesc/ | | | https://www.twistlock.com/2017/11/20/cve-2017-16544-busybox-autocompletion-vulnerability/ | | | http://karl-voit.at/2016/02/07/accessing-home-ssh-via-tor/ | | | http://dmitry.gr/?r=05.Projects&proj=07.%20Linux%20on%208bit | | | http://c0rni3sm.blogspot.pt/2014/02/youtube-stored-xss-strikes-back.html | | | http://blog.saynotolinux.com/2014/02/05/whats-that-smell-sniffing-cross-origin-frames-in-firefox/ | | | https://blog.whitehatsec.com/flash-307-redirect-game-over/ | | | https://www.scriptjunkie.us/2014/02/installing-linux-on-a-live-windows-system/ | | | http://insert-script.blogspot.co.at/2014/02/svg-fun-time-firefox-svg-vector.html | | | http://projectshellcode.com/?q=node/12 | | | http://bugscollector.com/tricks/12/ | | | http://blog.sucuri.net/2014/02/new-iframe-injections-leverage-png-image-metadata.html | | | http://www.troyhunt.com/2014/02/heres-how-bell-was-hacked-sql-injection.html | | | http://blogs.law.harvard.edu/zeroday/2014/02/05/so-this-is-what-getting-pwned-is-like/ | | | http://imgur.com/LiixgJ4 | | | https://www.schneier.com/blog/archives/2014/02/hacking airline.html | | | https://www.youtube.com/watch?v=tc4ROCJYbm0 | | | http://www.orenh.com/2014/06/one-token-to-rule-them-all-tale-of.html | | | http://c0rni3sm.blogspot.pt/2014/06/xss-in-google-mapmaker.html | | | https://cybersmartdefence.com/docs/Paypal-Safely-Double-your-Money.csd | | | http://nahamsec.com/?p=267 | | | https://zyan.scripts.mit.edu/blog/a-boring-xss-dissection/ | | | http://n0where.net/hexinject/ | | | https://www.shellterproject.com/introducing-shellter/ | | | http://blog.cylance.com/a-study-in-bots-lobotomy | | | http://iss.oy.ne.ro/Aether | | | http://blog.opensecurityresearch.com/2014/05/multi-stagedmulti-form-csrf.html | | | http://sirdarckcat.blogspot.pt/2014/05/matryoshka-web-application-timing.html | | | http://labs.neohapsis.com/2014/06/02/smarttv-smartphone-dial-an-attack-surface/ | | | http://xn--thibaud-dya.fr/jenkins credentials.html | | | http://penturalabs.wordpress.com/2014/03/17/iclass-is-not-enough/ | | | http://piratebox.cc/ | | | https://robotattack.org/ | | | https://medium.com/bugbountywriteup/bug-bounty-fastmail-feeda67905f5 | | | https://goo.gl/v2uyi2 + | | | http://www.pwntester.com/blog/2013/12/23/rce-via-xstream-object-deserialization38/ | | | https://goo.gl/1knbkp + | | | https://www.tarlogic.com/en/blog/exploiting-word-cve-2017-11826/ | | | https://lewisardern.github.io/2017/12/10/blind-xss/ | | | https://benkowlab.blogspot.pt/2017/12/an-inside-view-of-password-stealer.html | | | https://research.kudelskisecurity.com/2017/11/01/zigbee-security-basics-part-1/ | | | https://medium.com/@palantir/osquery-across-the-enterprise-3c3c9d13ec55 | | | https://symeonp.github.io/2017/09/17/fuzzing-winafl.html | | | https://goo.gl/RchdtG + | | | https://goo.gl/GxynDa + | | | https://dnstrails.com | | | https://medium.com/@shinkurt/exploiting-a-tricky-xss-in-zendesk-80bdeaea4dad | | | http://www.sxcurity.pro/2017/12/17/hackertarget/ | | | https://nyansatan.github.io/dualboot/ | | | https://packettotal.com/ | | | https://bsdmag.org/freebsd-port-knocking-abdorrahman-homaei/ | | | https://www.talosintelligence.com/reports/TALOS-2017-0432 | | | https://goo.gl/k67GVK + | | | http://riscy.business/2017/12/lenovos-unsecured-objects/ | | | http://blog.blindspotsecurity.com/2017/12/advanced-sql-server-mitm-attacks.html | | | https://goo.gl/7i24Kk + | | | https://msitpros.com/?p=3909 | | | http://www.alexlambert.com/2017/12/18/kernel-debugging-for-newbies.html | | | https://goo.gl/KUrtkX + | | | https://www.twosixlabs.com/bluesteal-popping-gatt-safes/ | | | http://blog.stratumsecurity.com/2016/06/13/websockets-auth/ | | | https://goo.gl/EKsvWq + | | | https://wiki.postgresql.org/wiki/Sudoku solver | | | https://ha.cking.ch/s8 data line locator/ | | | https://hawkinsecurity.com/2017/12/13/rce-via-spring-engine-ssti/ | | | https://www.cyberis.co.uk/burp macros.html | | | https://secrary.com/ReversingMalware/UnpackingShade/ | | | https://staaldraad.github.io/2017/12/20/netstat-without-netstat/ | | | https://goo.gl/NpBqrf + | | | https://goo.gl/R5sLzw + | | | https://lbarman.ch/blog/stack smashing/ | | | https://lanrat.com/tethr/ | | | http://blog.gaurangbhatnagar.com/2017/12/02/Hacking-a-dating-app.html | | | https://laskowski-tech.com/2017/12/19/setting-up-a-honeypot-using-opencanary/ | | | https://goo.gl/c3uMW2 + | | | https://qiita.com/ pochi/items/4e20e38deee16a7615e1 | | | https://www.fireeye.com/blog/threat-research/2017/05/gaining-root-on-lenovo-vibe.html | | | http://sshtron.zachlatta.com/ | | | https://gist.github.com/keo/00f20ef27eddcdae78ab | | | https://meltdownattack.com/ | | | http://blog.blackfan.ru/2018/01/polygooglecom-xss.html | | | https://goo.gl/a3jJxR + | | | http://www.blackhillsinfosec.com/?p=5633 | | | https://devco.re/blog/2017/12/11/Exim-RCE-advisory-CVE-2017-16943-en/ | | | http://arnaucode.com/blog/coffeeminer-hacking-wifi-cryptocurrency-miner.html | | | https://www.elttam.com.au/blog/goahead/ | | | http://saleemrashid.com/2017/08/17/extracting-trezor-secrets-sram/ | | | https://goo.gl/iyryvz + | | | https://goo.gl/MPbfyS + | | | https://objective-see.com/blog/blog 0x22.html | | | https://goo.gl/BdbbZg + | | | https://0x0.li/trackmageddon/ | | | https://damow.net/building-a-thermal-camera/ | | | https://ml-cheatsheet.readthedocs.io/en/latest/index.html | | | https://cr0n1c.wordpress.com/2018/01/08/exploiting-cheap-labor/ | | | https://rcoh.me/posts/two-factor-auth/ | | | https://www.xorrior.com/In-Memory-Python-Imports/ | | | https://nickbloor.co.uk/2018/01/01/rce-with-bmc-server-automation/ | | | https://siguza.github.io/IOHIDeous/ | | | http://www.sxcurity.pro/2017/11/27/tricky-CORS/ | | | https://wpshout.com/complete-guide-sanitizing-escaping/ | | | https://goo.gl/MGEbmE + | | | https://www.anquanke.com/post/id/94210 | | | http://www.shelliscoming.com/2017/05/post-exploitation-mounting-vmdk-files.html | | | http://blog.en.elevenpaths.com/2017/12/breaking-out-hsts-and-hpkp-on-firefox.html | | | https://www.digitalinterruption.com/single-post/2018/01/04/ToyTalkBugBountyWriteup | | | https://medium.com/@palantir/alerting-and-detection-strategy-framework-52dc33722df2 | | | https://goo.gl/Nkrdni + | | | https://iknowwhatyoudownload.com/ | | | https://www.zachaysan.com/writing/2017-12-30-zero-width-characters | | | https://blog.kintoandar.com/2018/01/Building-healthier-containers.html | | | https://blog.xpnsec.com/evernote-webclipper-uxss/ | | | http://www.sxcurity.pro/2018/01/11/chaining-yahoo-bugs/ | | | https://www.josipfranjkovic.com/blog/hacking-facebook-oculus-integration-csrf | | | https://gist.github.com/singe/cba85800dd6e701c53d0614d8506b281 | | | https://goo.gl/aXGp9i + | | | https://www.nvteh.com/news/problems-with-public-ebs-snapshots | | | https://goo.gl/kw77MT + | | | https://duo.com/blog/understanding-bluetooth-security | | | https://blog.fox-it.com/2018/01/11/mitm6-compromising-ipv4-networks-via-ipv6/ | | | https://goo.gl/tzHsjA + | | | https://johanengelen.github.io/ldc/2018/01/14/Fuzzing-with-LDC.html | | | https://klikki.fi/adv/formidable.html | | | https://dhavalkapil.com/blogs/FILE-Structure-Exploitation/ | | | https://goo.gl/qgb6YU + | | | http://www.keras4kindergartners.com/ | | | https://blog.benjojo.co.uk/post/dns-filesystem-true-cloud-storage-dnsfs | | | https://www.rcesecurity.com/2017/08/from-lfi-to-rce-via-php-sessions/ | | | http://blog.orange.tw/2018/01/php-cve-2018-5711-hanging-websites-by.html | | | http://az4n6.blogspot.pt/2018/01/mounting-apfs-image-in-linux.html | | | https://diablohorn.com/2017/10/26/port-scanning-without-an-ip-address/ | | | https://pseudolaboratories.github.io/DarkComet-upload-vulnerability/ | | | https://pentesterslife.blog/2017/11/24/x64-egg-hunting-in-linux-systems/ | | | https://franklinta.com/2014/08/31/predicting-the-next-math-random-in-java/ | | | https://blog.zsec.uk/out-of-band-xxe-2/ | | | https://goo.gl/tDcRZs + | | | https://whereisk0shl.top/post/2018-01-17 | | | https://klikki.fi/adv/wpgform.html | | | https://ownyourbits.com/2017/10/29/sandbox-your-applications-with-firejail/ | | | https://blogs.securiteam.com/index.php/archives/3649 | | | https://makecode.com/ | | | https://startyourownisp.com/ | | | http://nullprogram.com/blog/2014/12/23/ | | | http://blog.jr0ch17.com//2018/No-RCE-then-SSH-to-the-box/ | | | https://goo.gl/e4HC7r + | | | http://whitehatstories.blogspot.in/2018/01/how-i-could-have-hacked-facebook.html | | | https://homjxi0e.wordpress.com/2018/01/20/whitelisting-bypassing-using-netsh-exec/ | | | http://www.sploitspren.com/2018-01-26-Windows-Privilege-Escalation-Guide/ | | | http://blog.swiecki.net/2018/01/fuzzing-tcp-servers.html | | | https://goo.gl/7QyUuJ + | | | https://goo.gl/Wtt6CB + | | | https://goo.gl/UGB2Ce + | | | https://depthsecurity.com/blog/exploiting-custom-template-engines | | | https://www.codemetrix.net/when-your-dns-leaks-your-infrastructure/ | | | https://sqlwiki.netspi.com/ | | | https://bazad.github.io/2017/09/live-kernel-introspection-ios/ | | | http://blog.ptsecurity.com/2018/01/running-unsigned-code-in-intel-me.html | | | https://goo.gl/K7hbDW + | | | https://landave.io/2018/01/7-zip-multiple-memory-corruptions-via-rar-and-zip | | | http://ponzicoin.co/home.html | | | https://ponnuki.net/2012/09/kindleberry-pi/ | | | https://ahussam.me/Amazon-leaking-csrf-token-using-service-worker/ | | | https://inteltechniques.com/buscador/ | | | https://xorl.wordpress.com/2018/02/04/ssh-hijacking-for-lateral-movement/ | | | https://blog.tarq.io/vestacp-root-privilege-escalation/ | | | https://xorl.wordpress.com/2017/11/20/reverse-engineering-isdebuggerpresent/ | | | https://goo.gl/8pqJek + | | | https://goo.gl/646izH + | | | http://trackwatch.com/windows-kernel-pool-spraying/ | | | https://goo.gl/8JYRYz + | | | https://thatoddmailbox.github.io/2017/01/28/iotaseed.html | | | https://goo.gl/V3dMKJ + | | | https://www.n00py.io/2017/01/removing-backdoors-powershell-empire-edition/ | | | http://www.paulosyibelo.com/2018/02/hotspot-shield-cve-2018-6460-sensitive.html | | | https://jsnes.fir.sh/ | | | https://x8x.net/2017/11/19/home-alarm-vs-bus-pirate/ | | | https://diagprov.ch/posts/2017/03/a-polyglot-mbrpdfjarzip-cv.html | | | https://blog.jensec.co/clickjacking-in-google-root-picker/ | | | https://sites.google.com/site/testsitehacking/-7-5k-Google-services-mix-up | | | https://gist.github.com/PseudoLaboratories/260b6f24844785aacc1e2fb61dd05c01 | | | https://goo.gl/si8EhL + | | | https://goo.gl/21Vtnp + | | | https://mohemiv.com/all/evil-xml/ | | | http://sploit3r.xyz/blueborne-exploitation-nexus-4/ | | | http://www.greyhathacker.net/?p=1006 | | | https://x-c3ll.github.io/posts/javascript-antidebugging/ | | | https://osandamalith.com/2018/02/11/mysql-udf-exploitation/ | | | http://baraktawily.blogspot.pt/2018/02/how-to-dos-29-of-world-wide-websites.html | | | https://www.halfdog.net/Security/2017/LibcRealpathBufferUnderflow/ | | | https://www.cybereason.com/blog/new-lateral-movement-techniques-abuse-dcom-technology | | | https://www.secforce.com/blog/2014/02/from-cvs-import-to-cmd-exe-via-sql-injection/ | | | https://blog.pnb.io/2018/02/bruteforcing-linux-full-disk-encryption.html | | | http://sandboxescaper.blogspot.pt/2018/02/how-to-escape-sandboxes-without.html | | | http://www.tomanthony.co.uk/blog/googlebot-javascript-random/ | | | https://transfer.sh/ | | | http://0x90909090.blogspot.pt/2015/07/no-one-expect-command-execution.html | | | http://www.insinuator.net/2014/05/django-image-validation-vulnerability/ | | | http://blog.cyberint.com/2014/05/facebook-hidden-friends-vulnerability.html | | | http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html | | | http://hacksecproject.com/?p=73 | | | http://immunityservices.blogspot.pt/2014/06/from-patch-to-crash-story-of-ms13-089.html | | | http://joe4security.blogspot.pt/2014/06/the-power-of-cookbooks-generic-https.html | | | http://itsecurity.telelink.com/dhcp-attacks/ | | | https://code.google.com/p/ghost-usb-honeypot/ | | | http://blog.quarkslab.com/usb-fuzzing-basics-from-fuzzing-to-bug-reporting.html | | | http://hackerforhire.com.au/data-exfiltration-over-ssl-with-srvdir/ | | | http://pastebin.com/raw.php?i=9s4TVqZq | | | http://lambdaops.com/rm-rf-remains | | | https://bughunt1307.herokuapp.com/googlebugs.html | | | https://bugs.chromium.org/p/project-zero/issues/detail?id=1524 | | | http://woshub.com/port-forwarding-in-windows/ | | | https://malpedia.caad.fkie.fraunhofer.de/ | | | https://goo.gl/MEEp3F + | | | https://0x00sec.org/t/malware-reversing-burpsuite-keygen/5167 | | | https://medium.com/@petergombos/lm-ntlm-net-ntlmv2-oh-my-a9b235c58ed4 | | | http://riscy.business/2018/02/ida-remote-execution/ | | | http://konukoii.com/blog/2018/02/16/5-min-tutorial-root-via-uart/ | | | https://zachgrace.com/2018/02/20/cobalt strike redirectors.html | | | https://medium.com/@europa /recoinnassance-7840824b9ef2 | | | http://blog.frizn.fr/glibc/glibc-heap-to-rip | | | https://textslashplain.com/2018/02/14/understanding-the-limitations-of-https/ | | | https://medium.com/@appmattus/android-security-ssl-pinning-1db8acb6621e | | | https://ipx.ac/run | | | https://ide.onelang.io/ | | | https://goo.gl/LAUsok + | | | https://slashcrypto.org/2018/02/27/TenX Account Takeover/ | | | https://hackerone.com/reports/303061 | | | https://goo.gl/NnoZPp + | | | https://goo.gl/YjRkGK + | | | http://jsyang.ca/hacks/gear-vr-rev-eng/ | | | https://nickbloor.co.uk/2018/02/28/popping-wordpress/ | | | http://agrrrdog.blogspot.pt/2018/01/java-deserialization-misusing-ojdbc-for.html | | | http://www.freebuf.com/articles/terminal/160041.html | | | https://tunnelshade.in/blog/2018/01/afl-internals-compile-time-instrumentation/ | | | https://krbtgt.pw/smbv3-null-pointer-dereference-vulnerability/ | | | http://blog.ptsecurity.com/2018/02/new-bypass-and-protection-techniques.html | | | https://www.mike-gualtieri.com/posts/stealing-data-with-css-attack-and-defense | | | https://disconnect3d.pl/2018/02/24/log-injection-aka-tailing-logs-is-unsafe/ | | | https://waveforms.surge.sh/waveforms-intro | | | https://medium.com/@malcomvetter/responsible-red-teams-1c6209fd43cc | | | https://goo.gl/eSAL6F + | | | https://s1gnalcha0s.github.io/dspl/2018/03/07/Stored-XSS-and-SSRF-Google.html | | | https://goo.gl/epujHQ + | | | https://zeltser.com/analyzing-malicious-documents/ | | | https://goo.gl/46qXeQ + | | | https://heap-exploitation.dhavalkapil.com/ | | | https://goo.gl/S4zdcJ + | | | https://erpscan.com/press-center/blog/adapting-hashcat-for-sap-half-hashes/ | | | https://goo.gl/iNxWA1 + | | | https://blog.varonis.com/understanding-malware-free-hacking-part/ | | | https://bazad.github.io/2018/03/a-fun-xnu-infoleak/ | | | https://arxiv.org/pdf/1710.08864.pdf | | | https://osandamalith.com/2018/02/01/exploiting-format-strings-in-windows/ | | | https://hackmd.io/s/rJ-3VKNPG | | | http://blog.koehntopp.info/index.php/3075-how-not-to-run-a-ca/ | | | https://lightningsecurity.io/blog/bypassing-payments-using-webhooks/ | | | https://www.josipfranjkovic.com/blog/facebook-friendlist-paymentcard-leak | | | https://labs.detectify.com/2018/03/14/graphql-abuse/ | | | https://goo.gl/vNVzN1 + | | | https://www.eideon.com/2018-03-02-THL03-WMIBackdoors/ | | | http://blog.japaric.io/safe-dma/ | | | https://goo.gl/iz1hLP + | | | https://secdevops.ai/ios-static-analysis-and-recon-c611eaa6d108 | | | https://goo.gl/ND8WeR + | | | https://reboare.github.io/lxd/lxd-escape.html | | | https://medium.com/@vysec.private/alibaba-cdn-domain-fronting-1c0754fa0142 | | | https://blog.stealthbits.com/dcshadow-attacking-active-directory-with-rogue-dcs/ | | | https://medium.com/secjuice/php-ssrf-techniques-9d422cb28d51 | | | https://infocon.org/ | | | https://opnsec.com/2018/03/stored-xss-on-facebook/ | | | https://ahussam.me/Leaking-WordPress-CSRF-Tokens/ | | | https://hackerone.com/reports/300748 | | | https://www.unix-ninja.com/p/A cheat-sheet for password crackers | | | http://developers-club.com/posts/250999/ | | | https://goo.gl/cAHW3N + | | | https://rastamouse.me/2018/03/laps---part-1/ | | | https://saleemrashid.com/2018/03/20/breaking-ledger-security-model/ | | | https://ryan.govost.es/2018/03/09/deepsound.html | | | https://staaldraad.github.io/post/2018-03-16-quick-win-with-graphql/ | | | https://goo.gl/y1y8bn + | | | https://blog.jessfraz.com/post/building-container-images-securely-on-kubernetes/ | | | https://oddvar.moe/2018/03/21/persistence-using-runonceex-hidden-from-autoruns-exe/ | | | https://www.guardicore.com/2018/03/recovering-plaintext-passwords-azure/ | | | https://goo.gl/64sxc8 + | | | http://misteralfa-hack.blogspot.pt/2018/03/leaking-facebook-internal-ip.html | | | https://codewhitesec.blogspot.pt/2018/03/exploiting-adobe-coldfusion.html | | | http://tech.jonathangardner.net/wiki/Why Java Sucks | | | https://gethead.info/ | | | https://medium.com/@Alra3ees/google-adwords-3133-7-stored-xss-27bb083b8d27 | | | https://hawkinsecurity.com/2018/03/24/gaining-filesystem-access-via-blind-oob-xxe/ | | | https://zero-day.io/modifyexploits/ | | | https://blog.jli.host/posts/cf-auto-minify/ | | | https://www.leavesongs.com/PENETRATION/client-session-security.html | | | https://goo.gl/fnxgfx + | | | https://jellyhive.com/activity/posts/2018/03/26/csp-implementations-are-broken/ | | | https://magisterquis.github.io/2018/03/11/process-injection-with-gdb.html | | | https://medium.com/@cloudyforensics/how-to-perform-aws-cloud-forensics-309a03a77aee | | | https://goo.gl/93GuBP + | | | https://goo.gl/5Nu3xo + | | | https://goo.gl/Vunae1 + | | | https://ncona.com/2015/02/consuming-a-google-id-token-from-a-server/ | | | https://jeremyrickard.github.io/post/fun-with-aci/ | | | https://pjreddie.com/darknet/yolo/ | | | https://jgthms.com/javascript-in-14-minutes/ | | | https://ngailong.wordpress.com/2018/02/13/the-mystery-of-postmessage/ | | | http://bit.ly/2IxLqdT + | | | http://www.getmantra.com/web-app-security-testing-with-browsers/ | | | https://syscall.eu/blog/2018/03/12/aigo part1/ | | | http://gosecure.net/2018/04/03/beyond-xss-edge-side-include-injection/ | | | http://bluec0re.blogspot.pt/2018/03/cve-2018-7160-pwning-nodejs-developers.html | | | https://blog.ice9.us/2018/04/stealing-credit-cards-from-fuze-bluetooth.html | | | https://magisterquis.github.io/2018/03/31/in-memory-only-elf-execution.html | | | https://medium.com/@cintainfinita/knocking-down-the-big-door-8e2177f76ea5 | | | http://blog.orange.tw/2018/03/pwn-ctf-platform-with-java-jrmp-gadget.html | | | https://phoenhex.re/2018-03-25/not-a-vagrant-bug | | | https://lightbulbone.com/posts/2016/10/dsmos-kext/ | | | https://krbtgt.pw/windows-remote-assistance-xxe-vulnerability/ | | | http://bit.ly/2Gz3aJj + | | | https://holeybeep.ninja/ | | | http://bit.ly/2q81V8U + | | | https://www.anishathalye.com/2018/04/03/macbook-touchscreen/ | | | https://philippeharewood.com/facebook-graphql-csrf/ | | | http://bit.ly/2v6ODPN + | | | https://secrary.com/Random/BypassUserHooks/ | | | http://bit.ly/2HvXjSg + | | | https://jdow.io/blog/2018/03/18/web-application-penetration-testing-methodology/ | | | https://blog.fabiopires.pt/running-your-instance-of-burp-collaborator-server/ | | | http://bit.ly/2GSKOmB + | | | http://bit.ly/2EGBVGP + | | | https://medium.com/@yassergersy/xss-to-session-hijack-6039e11e6a81 | | | https://snyk.io/blog/attacking-an-ftp-client/ | | | https://www.mindpointgroup.com/blog/pen-test/cloudfront-hijacking/ | | | https://embedi.com/blog/reflecting-upon-owasp-top-10-iot-vulnerabilities/ | | | https://clo.ng/blog/osquery reverse shell/ | | | https://medium.com/@jeremy.trinka/event-log-auditing-demystified-75b55879f069 | | | http://bit.ly/2EFUPhc + | | | https://osandamalith.com/2018/04/07/haxing-minesweeper/ | | | https://blog.benjojo.co.uk/post/tor-onions-to-v6-with-iptables-proxy | | | http://bit.ly/2HfV9ZS + | | | http://bit.ly/2HylK3L + | | | http://bit.ly/2HbjccF + | | | https://www.dasp.co/ | | | https://gist.github.com/sirdarckcat/fe8ce94ef25de375d13b7681d851b7b4 | | | https://pythontips.com/2018/04/15/reverse-engineering-soundcloud-api/ | | | http://byte-atlas.blogspot.pt/2018/04/apivectors.html | | | http://bit.ly/2qL2dCT + | | | http://bit.ly/2HMh9c9 + | | | https://ifc0nf1g.xyz/blog/post/pwning-admin-panel-with-recon/ | | | http://www.duskborn.com/how-to-read-write-llvm-bitcode/ | | | http://bit.ly/2JbbAU5 + | | | https://paper.seebug.org/563/ | | | https://blog.benjojo.co.uk/post/encoding-data-into-dubstep-drops | | | https://lightningsecurity.io/blog/linkedin/ | | | http://bit.ly/2HsCqdK + | | | http://bit.ly/2vOHq71 + | | | http://blog.secu.dk/blog/Tunnels in a hard filtered network | | | https://security.szurek.pl/exploit-bypass-php-escapeshellarg-escapeshellcmd.html | | | http://csl.com.co/rid-hijacking/ | | | http://bit.ly/2KgT5i9 + | | | https://blog.xpnsec.com/total-meltdown-cve-2018-1038/ | | | http://touhidshaikh.com/blog/?p=790 | | | https://arvanaghi.com/blog/reversing-ethereum-smart-contracts/ | | | http://bit.ly/2JqTRIs + | | | https://habrahabr.ru/post/272187/ | | | http://blogs.360.cn/blog/how-to-kill-a-firefox-en/ | | | http://bit.ly/2HQEpYV + | | | https://w00tsec.blogspot.pt/2018/04/abusing-mysql-local-infile-to-read.html | | | http://bit.ly/2vRctiE + | | | http://lab.onsec.ru/2014/06/xxe-oob-exploitation-at-java-17.html | | | http://blog.rop.io/http-cache-poisoning-explained.html | | | http://www.freebuf.com/articles/terminal/36503.html | | | https://www.duosecurity.com/blog/duo-security-researchers-uncover-bypass-of-paypal-s-two-factor-authentication | | | https://gist.github.com/willurd/5720255 | | | http://www.sploitmonkey.com/2014/06/introducing-pyhashcat.html | | | http://sourceforge.net/projects/zeppoo/ | | | https://examplecode.github.io/tools/2014/06/20/the-tools-prevent-dns-cache-pollution/ | | | http://blog.crackpassword.com/2014/06/breaking-into-icloud-no-password-required/ | | | http://www.labofapenetrationtester.com/2014/06/hacking-jenkins-servers.html | | | http://www.harmj0y.net/blog/ | | | http://hashcrack.org/index.html 190614 | | | http://yurichev.com/RE-book.html | | | https://medium.com/@oleavr/build-a-debugger-in-5-minutes-1-5-51dce98c3544 | | | https://www.technovelty.org/linux/what-actually-happens-when-you-plug-in-a-usb-device.html | | | https://dicesoft.net/projects/wildcard-code-execution-exploit.htm | | | https://eligrey.com/blog/google-inbox-spoofing-vulnerability/ | | | http://bit.ly/2Ib7xua + | | | http://bit.ly/2rjGMcf + | | | http://bit.ly/2rjC1zr + | | | https://erpscan.com/press-center/blog/oracle-ebs-penetration-testing-tool/ | | | https://www.exploit-db.com/exploits/44553/ | | | https://telekomsecurity.github.io/2018/04/trovebox-vulnerabilities.html | | | https://keenlab.tencent.com/en/2018/04/23/A-bunch-of-Red-Pills-VMware-Escapes/ | | | https://www.computest.nl/wp-content/uploads/2018/04/connected-car-rapport.pdf | | | http://bit.ly/2jqx9oP + | | | http://www.danielbohannon.com/blog-1/2018/3/19/test-your-dfir-tools-sysmon-edition | | | http://bit.ly/2HNPhHA + | | | https://insert-script.blogspot.pt/2018/05/adobe-reader-pdf-client-side-request.html | | | http://blog.nsfocus.net/cve-2018-6574/ | | | https://0x00rick.com/research/2018/04/20/afl intro.html | | | http://bit.ly/2jt5eVl + | | | https://www.atredis.com/blog/cylance-privilege-escalation-vulnerability | | | http://hanno-rein.de/archives/349 | | | https://blog.benjojo.co.uk/post/tls-https-server-from-a-yubikey | | | https://charles.dardaman.com/js coinhive in excel | | | http://blog.mindedsecurity.com/2018/04/dom-based-cross-site-scripting-in.html | | | http://bit.ly/2rzhJCi + | | | https://michael-eder.net/post/2018/native rdp pass the hash/ | | | https://goo.gl/JyAG1p + | | | https://xiaodaozhi.com/exploit/117.html | | | http://blog.redactedsec.net/exploits/2018/04/26/nagios.html | | | http://bit.ly/2rwqr5c + | | | https://diablohorn.com/2018/02/04/identify-a-whitelisted-ip-address/ | | | https://medium.com/101-writeups/hacking-json-web-token-jwt-233fe6c862e6 | | | http://bit.ly/2wuN0Mn + | | | http://sploit3r.xyz/cve-2017-13284-injection-in-configuration-file/ | | | https://medium.com/@vysec.private/domain-fronting-who-am-i-3c982ccd52e6 | | | http://everdox.net/popss.pdf | | | https://gdprchecklist.io/ | | | http://bit.ly/2KdA5k3 + | | | https://momo5502.com/blog/?p=34 | | | http://bit.ly/2rNr5LC + | | | http://bit.ly/2rKklhB + | | | https://ivrodriguez.com/reverse-engineer-ios-apps-ios-11-edition-part1/ | | | https://blog.ensilo.com/ctrl-inject | | | http://bit.ly/2KuMPCX + | | | http://bit.ly/2Iofw7L + | | | https://gdelugre.github.io/2018/05/10/3gpp-ota-security-evolution/ | | | https://systemoverlord.com/2018/04/16/the-iot-hackers-toolkit.html | | | https://musings.konundrum.org/2018/05/03/debugging-windows-services.html | | | https://0xpatrik.com/asset-discovery/ | | | http://bit.ly/2Kyi5AT + | | | http://www.insomniacsecurity.com/2018/05/09/boblobblob.html | | | https://neonsea.uk/blog/2018/04/15/pwn910nd.html | | | https://efail.de/ | | | http://ryan.govost.es/2018/03/27/sakuracam.html | | | https://try.mydatarequest.com/ | | | https://hackerone.com/reports/341876 | | | https://sites.google.com/site/testsitehacking/-36k-google-app-engine-rce | | | http://newosxbook.com/tools/jtool.html | | | https://x1m.nl/posts/laravel-xss-vuln/ | | | https://jaiverma.github.io/blog/ios-game-hacking | | | http://bit.ly/2KT59WD + | | | http://deniable.org/reversing/symbolic-execution | | | http://bit.ly/2GMLZ1V + | | | https://blog.jli.host/posts/cloudflare-scrape-shield/ | | | https://security.szurek.pl/gitbucket-unauthenticated-rce.html | | | https://medium.com/@canavaroxum/xxe-on-windows-system-then-what-76d571d66745 | | | http://bit.ly/2s4NrHM + | | | http://www.harmj0y.net/blog/powershell/command-and-control-using-active-directory/ | | | https://blog.benjojo.co.uk/post/bgp-battleships | | | http://www.computerhistory.org/atchm/adobe-photoshop-source-code/ | | | https://www.robertxiao.ca/hacking/locationsmart/ | | | https://hackerone.com/reports/85624 | | | https://poc-server.com/blog/2018/05/22/rce-by-uploading-a-web-config/ | | | http://www.orionforensics.com/w en page/USB forensic tracker.php | | | http://bit.ly/2J4uc8r + | | | https://andresriancho.com/recaptcha-bypass-via-http-parameter-pollution/ | | | https://justi.cz/security/2018/05/23/cdn-tar-oops.html | | | http://bit.ly/2kGAXmA + | | | http://blogs.360.cn/blog/eos-node-remote-code-execution-vulnerability/ | | | https://rhinosecuritylabs.com/aws/amazon-aws-misconfiguration-amazon-go/ | | | https://embedi.com/blog/dji-spark-hijacking/ | | | https://silviavali.github.io/Electron/only an electron away from code execution | | | https://blog.doyensec.com/2018/05/17/graphql-security-overview.html | | | http://bit.ly/2xwjIgR + | | | http://devalias.net/devalias/2018/05/13/usb-reverse-engineering-down-the-rabbit-hole/ | | | https://gdprhallofshame.com/ | | | https://resinos.io/ | | | http://www.maizure.org/projects/printf/index.html | | | http://bit.ly/2Lv2eUp + | | | https://blog.innerht.ml/internet-explorer-has-a-url-problem/ rpoingooglefusiontable | | | https://hackertarget.com/tcpdump-examples/ | | | http://bit.ly/2HrpwYT + | | | https://staaldraad.github.io/post/2018-06-03-cve-2018-11235-git-rce/ | | | https://blahcat.github.io/2018/03/11/fuzzing-arbitrary-functions-in-elf-binaries/ | | | https://www.serializing.me/2018/06/03/rooting-the-technicolor-7210/ | | | http://bit.ly/2JzKqtY + | | | http://gosecure.net/2018/05/15/beware-of-the-magic-spell-part-1-cve-2018-1273/ | | | https://ownyourbits.com/2018/05/23/the-real-power-of-linux-executables/ | | | https://blogs.securiteam.com/index.php/archives/3689 | | | https://nytrosecurity.com/2018/05/30/understanding-java-deserialization/ | | | https://nbulischeck.io/posts/misusing-debugfs-for-in-memory-rce | | | http://bigric3.blogspot.pt/2018/05/cve-2018-8120-analysis-and-exploit.html | | | https://eklitzke.org/lobotomizing-gnome | | | https://wtfutil.com | | | http://bit.ly/2JFjwl2 + | | | https://www.bishopfox.com/blog/2018/06/server-side-spreadsheet-injections/ | | | http://rift.stacktitan.com/debug-survival-the-compiled-dll/ | | | https://gist.github.com/ricardojba/ecdfe30dadbdab6c514a530bc5d51ef6 | | | http://bit.ly/2JT6dNe + | | | https://blog.umangis.me/persistent-r-w-on-ios-11-2-6/ | | | https://wojciechregula.blog/your-encrypted-photos-in-macos-cache/ | | | https://blog.ret2.io/2018/06/05/pwn2own-2018-exploit-development/ | | | https://blog.ripstech.com/2018/moodle-remote-code-execution/ | | | https://intoli.com/blog/not-possible-to-block-chrome-headless/ | | | http://bit.ly/2JOjXp8 + | | | https://neopg.io/blog/enigmail-signature-spoof/ | | | https://blog.spaceduck.io/siaberry-1/ | | | http://bit.ly/2JQFTTP + | | | http://bit.ly/2JAq4l3 + | | | https://undercurrents.io/ | | | https://bernsteinbear.com/blog/how-to-mess-with-your-roommate/ | | | https://jamchamb.github.io/2018/06/09/animal-crossing-developer-mode.html | | | https://sekurak.pl/xss-w-google-colaboratory-obejscie-content-security-policy/ | | | http://bit.ly/2yFRocH + | | | http://10degres.net/testing-flash-swf/ | | | https://codewhitesec.blogspot.com/2018/06/cve-2018-0624.html | | | https://www.sxcurity.pro/advanced-cors-techniques/ | | | https://medium.com/secjuice/waf-evasion-techniques-718026d693d8 | | | https://payatu.com/guide-linux-privilege-escalation/ | | | https://blog.sigmaprime.io/solidity-security.html | | | https://blog.vulnspy.com/2018/06/21/phpMyAdmin-4-8-x-Authorited-CLI-to-RCE/ | | | http://bit.ly/2MJqvHL + | | | http://bit.ly/2tgPERM + | | | https://www.tarlogic.com/en/blog/red-team-tales-0x01/ | | | https://www.sec-1.com/blog/2017/office365-activesync-username-enumeration | | | http://bit.ly/2KacLqQ + | | | http://bit.ly/2MxC5V9 + | | | https://finnwea.com/blog/stealing-passwords-from-mcdonalds-users/ | | | https://blog.bentkowski.info/2018/06/setting-arbitrary-request-headers-in.html | | | https://0xpatrik.com/subdomain-takeover-starbucks/ | | | http://mattwarren.org/2018/06/15/Tools-for-Exploring-.NET-Internals/ | | | https://blog.netspi.com/databases-and-clouds-sql-server-as-a-c2/ | | | http://agarri.fr/docs/ipobf.py | | | http://bit.ly/2KgbW0I + | | | http://bit.ly/2yyota8 + | | | http://bit.ly/2N7QCrJ + | | | https://latacora.singles/2018/06/21/loud-subshells.html | | | https://www.codewatch.org/blog/?p=453 | | | http://bit.ly/2tCi7BH + | | | https://alephsecurity.com/2018/06/26/spectre-browser-query-cache/ | | | http://bit.ly/2KhAN4f + | | | https://stek29.rocks/2018/06/26/nvram.html | | | https://modexp.wordpress.com/2018/06/08/stop-event-logger/ | | | https://medium.com/0xcc/bypass-macos-rootless-by-sandboxing-5e24cca744be | | | https://srcincite.io/blog/2018/05/21/adobe-me-and-a-double-free.html | | | http://bit.ly/2Kup8ec + | | | http://bit.ly/2KQdVoE + | | | http://bit.ly/2tXqWX4 + | | | https://gitlab.com/0x4ndr3/blog/tree/master/JSgen | | | https://hansesecure.de/backdooring-pe-file-with-aslr/ | | | https://alter-attack.net/ | | | https://lucasg.github.io/2017/06/07/listing-known-dlls/ | | | http://bit.ly/2tXrs7s + | | | http://bit.ly/2tYVsjf + | | | https://www.wst.space/ssl-part1-ciphersuite-hashing-encryption/ | | | https://www.jeremydaly.com/event-injection-a-new-serverless-attack-vector/ | | | http://nullprogram.com/blog/2018/06/23/ | | | https://www.shelliscoming.com/2018/06/windows-reuse-shellcode-based-on.html | | | http://bit.ly/2zd0Ap7 + | | | https://rampageattack.com/ | | | https://landlock.io/ | | | http://bit.ly/2tKjNs3 + | | | http://natashenka.ca/reversing-my-tamagotchi-forever-evolution/ | | | http://bit.ly/2zd35I1 + | | | http://blog.securitymouse.com/2014/06/raising-lazarus-20-year-old-bug-that.html | | | http://blog.h3xstream.com/2014/06/identifying-xml-external-entity.html | | | http://kos.io/outlook/ | | | http://blog.sucuri.net/2014/06/anatomy-of-a-remote-code-execution-bug-on-disqus.html | | | http://blog.nullmode.com/blog/2014/06/28/getting-personal-with-powershell/ | | | https://toastedcornflakes.github.io/blog/2014/06/28/static-analysis-of-cysca-2014-portknock-using-hopper-disassembler/ | | | http://www.mafiasecurity..com/install-guides/step-by-step-penetration-test/ | | | https://bitquark.co.uk/blog/2013/07/23/the unexpected dangers of preg replace | | | http://www.hackwhackandsmack.com/?p=315 | | | http://developers.mobage.jp/blog/2014/7/3/jsonsql-injection | | | http://moyix.blogspot.co.uk/2014/07/breaking-spotify-drm-with-panda.html | | | http://cfenollosa.com/misc/tricks.txt | | | http://bit.ly/2L1rTYd + | | | http://bit.ly/2JgS3RR + | | | https://x-c3ll.github.io/posts/Frida-Pwn-Adventure-3/ | | | http://bit.ly/2N7w8P8 + | | | http://bit.ly/2mfSKBI + | | | https://www.forcepoint.com/blog/security-labs/analyzing-webassembly-binaries | | | https://dyn.com/blog/shutting-down-the-bgp-hijack-factory/ | | | http://bit.ly/2mfL1mZ + | | | https://rootkits.xyz/blog/2017/06/kernel-setting-up/ | | | https://blog.netspi.com/bypass-sql-logon-triggers/ | | | https://0xpatrik.com/phishing-domains/ | | | https://objective-see.com/blog/blog 0x34.html | | | http://bazad.github.io/2018/07/xpc-string-leak/ | | | https://www.fastly.com/blog/hijacking-control-flow-webassembly-program | | | http://bit.ly/2KQK83a + | | | https://nahamsec.com/chaining-multiple-vulnerabilities-to-gain-admin-access/ | | | http://craftinginterpreters.com/ | | | http://bit.ly/2NLEwF3 + | | | http://bit.ly/2uC7Yp4 + | | | https://haiderm.com/how-i-was-able-to-delete-13k-microsoft-translator-projects/ | | | https://scund00r.com/all/rfid/tutorial/2018/07/12/rfid-theif-v2.html | | | https://www.anitian.com/blog/owning-saml/ | | | http://bit.ly/2LtgXPX + | | | https://www.endgame.com/blog/technical-blog/hunting-memory-net-attacks | | | https://posts.specterops.io/shelling-apache-felix-with-java-bundles-2450d3a099a | | | http://bit.ly/2O21CYc + | | | http://www.mohamedharon.com/2018/01/practical-jsonp-injection.html | | | https://nytrosecurity.com/2018/02/26/hooking-chromes-ssl-functions/ | | | http://bit.ly/2LxaXFU + | | | https://www.peckshield.com/2018/07/12/tradeRifle/ | | | http://bit.ly/2O5x7k2 + | | | https://www.ambionics.io/blog/prestashop-privilege-escalation | | | https://j00ru.vexillium.org/2018/07/exploiting-a-windows-10-pagedpool-off-by-one/ | | | https://jamie.build/how-to-build-an-npm-worm | | | https://iandouglasscott.com/2018/07/04/canon-dslr-bluetooth-remote-protocol/ | | | https://medium.com/@d0nut/exfiltration-via-css-injection-4e999f63097d | | | http://bit.ly/2mL4nAZ + | | | https://opnsec.com/2018/07/into-the-borg-ssrf-inside-google-production-network/ | | | http://bit.ly/2OgSvmB + | | | https://hackerone.com/reports/334488 | | | http://bit.ly/2LDtSSN + | | | http://blog.sevagas.com/?Advanced-USB-key-phishing | | | http://deniable.org/reversing/binary-instrumentation | | | https://blog.jse.li/posts/marveloptics-malware/ | | | https://medium.com/@jonathanbouman/persistent-xss-at-ah-nl-198fe7b4c781 | | | https://codecat.nl/2018/05/reverse-engineering-and-exploiting-a-game-trainer/ | | | http://bit.ly/2LqhndN + | | | https://blog.doyensec.com/2018/07/19/instrumenting-electron-app.html | | | https://arp242.net/weblog/yaml probably not so great after all.html | | | http://obtruse.syfrtext.com/2018/07/oracle-privilege-escalation-via.html | | | https://modexp.wordpress.com/2018/07/12/process-injection-writing-payload/ | | | https://neonsea.uk/blog/2018/07/21/tmp-to-rce.html | | | http://asintsov.blogspot.com/2018/07/cisco-webex-teams-remote-code-execution.html | | | https://manpages.bsd.lv/history.html | | | http://wouter.coekaerts.be/2018/java-type-system-broken | | | https://blog.bentkowski.info/2018/07/vulnerability-in-hangouts-chat-aka-how.html | | | https://medium.com/@tomnomnom/crlf-injection-into-phps-curl-options-e2e0d7cfe545 | | | http://bit.ly/2AGDeZs + | | | https://gitlab.com/expliot framework/expliot | | | http://bit.ly/2JUBHU1 + | | | https://asaf.me/2018/07/23/attacking-the-attackers/ | | | http://bit.ly/2KmNOV4 + | | | http://bit.ly/2MdGmxp + | | | https://medium.com/@Wflki/exploiting-electron-rce-in-exodus-wallet-d9e6db13c374 | | | http://liberty-shell.com/sec/2018/07/28/netshlep/ | | | http://bit.ly/2AAIPAE + | | | http://bit.ly/2OEFCmE + | | | https://movaxbx.ru/2018/07/16/bypass-data-execution-protection-dep/ | | | https://blog.xpnsec.com/hevd-null-pointer/ | | | http://bit.ly/2v9IbFk + | | | https://ntcore.com/?p=488 | | | https://brewpress.beer/ | | | https://hackerone.com/reports/260697 | | | http://bit.ly/2vvsgBc + | | | http://10degres.net/colorize-your-hunt/ | | | https://medium.com/@adam.toscher/new-attack-on-wpa-wpa2-using-pmkid-96c3119f7f99 | | | https://labs.mwrinfosecurity.com/blog/repacking-and-resigning-ios-applications/ | | | http://bit.ly/2vyB2NU + | | | http://bit.ly/2OWNkbW + | | | https://tpx.mx/blog/2018/google-pay-replay-attack.html | | | http://bit.ly/2AYffFu + | | | https://noncombatant.org/application-principals/ | | | https://edoverflow.com/2018/logic-flaws-in-wot-services | | | https://grimhacker.com/2018/03/09/just-a-printer/ | | | https://neonsea.uk/blog/2018/08/01/hikvision-keygen.html | | | http://bit.ly/2OWtGwK + | | | https://vztekoverflow.com/2018/07/31/tbal-dpapi-backdoor/ | | | https://manishearth.github.io/blog/2018/02/15/picking-apart-the-crashing-ios-string/ | | | http://blogs.360.cn/blog/eos-asset-multiplication-integer-overflow-vulnerability/ | | | https://regexcrossword.com/ | | | https://www.masswerk.at/nowgobang/2018/anatomy-of-an-rng | | | http://matthewearl.github.io/2018/06/28/smb-level-extractor/ | | | https://portswigger.net/blog/practical-web-cache-poisoning | | | http://blog.orange.tw/2018/08/how-i-chained-4-bugs-features-into-rce-on-amazon.html | | | http://bit.ly/2MkBTgE + | | | https://ohpe.github.io/juicy-potato/ | | | http://www.pwncode.club/2018/08/macro-used-to-spoof-parent-process.html | | | https://cofense.com/abusing-microsoft-windows-utilities-deliver-malware-fun-profit/ | | | https://blog.fox-it.com/2018/08/14/phishing-ask-and-ye-shall-receive/ | | | http://bit.ly/2MpV8of + | | | https://hackerone.com/reports/386807 | | | https://blog.trailofbits.com/2018/08/14/fault-analysis-on-rsa-signing/ | | | http://bit.ly/2Mhs0QG + | | | http://bit.ly/2Mx7cnB + | | | https://rayanfam.com/topics/inside-windows-page-frame-number-part1/ | | | https://pequalsnp-team.github.io/writeups/analisys telegram passport | | | https://foreshadowattack.eu | | | https://bohops.com/2018/08/04/capturing-netntlm-hashes-with-office-dot-xml-documents/ | | | http://bit.ly/2KYQngG + | | | http://bit.ly/2Mg11oJ + | | | https://shkspr.mobi/blog/2018/08/twitters-secret-guest-mode/ | | | https://jumpespjump.blogspot.com/2018/08/how-to-build-burner-device-for-def-con.html | | | https://ninja.style/post/bcard/ | | | https://hackerone.com/reports/395296 | | | https://www.blackhillsinfosec.com/how-to-hack-websockets-and-socket-io/ | | | https://ntdiff.github.io/ | | | http://www.kvakil.me/posts/ropchain/ | | | https://hackerone.com/reports/126522 | | | http://bit.ly/2NeGNs1 + | | | http://bit.ly/2wgLB8Q + | | | https://codewhitesec.blogspot.pt/2018/01/handcrafted-gadgets.html | | | https://blogs.securiteam.com/index.php/archives/3736 | | | http://bit.ly/2w67bOb + | | | https://shkspr.mobi/blog/2018/01/mailchimp-leaks-your-email-address/ | | | https://lgtm.com/blog/apache struts CVE-2018-11776 | | | http://bit.ly/2PtttS5 + | | | http://bit.ly/2BzZKDO + | | | https://uselesscsp.com/ | | | http://www.deaddialect.com/articles/2018/8/17/badge-story | | | https://hawkinsecurity.com/2018/08/27/traversing-the-path-to-rce/ | | | https://blog.scrt.ch/2018/08/24/remote-code-execution-on-a-facebook-server/ | | | https://www.powershellgallery.com/packages/InjectionHunter/1.0.0 | | | https://hackerone.com/reports/401136 | | | https://laconicwolf.com/2018/04/13/burp-extension-python-tutorial/ | | | https://hunter2.gitbook.io/darthsidious/privilege-escalation/alpc-bug-0day | | | https://gist.github.com/PaulSec/26251d56134c7fedb2176f2290202546 | | | https://gist.github.com/williballenthin/1c2bc539041ee3bea7a4c7129072a9ac | | | http://bit.ly/2MCbMBL + | | | https://mike-n1.github.io/Unusual XSS | | | https://objective-see.com/blog/blog 0x36.html | | | http://bit.ly/2o0Mm27 + | | | https://www.voidsecurity.in/2018/08/from-compiler-optimization-to-code.html | | | http://bit.ly/2o9oTvT + | | | https://landgrey.me/struts2-045-debugging/ | | | https://payatu.com/redteaming-from-zero-to-one-part-1/ | | | https://b2dfir.blogspot.com/2016/10/touch-screen-lexicon-forensics.html | | | https://lowleveldesign.org/2018/08/15/randomness-in-net/ | | | https://mattwarren.org/2018/08/28/Fuzzing-the-.NET-JIT-Compiler/ | | | https://www.contrastsecurity.com/security-influencers/cve-2018-15685 | | | https://bitmidi.com/ | | | http://bit.ly/2MQEqzs + | | | https://philippeharewood.com/view-private-instagram-photos/ | | | https://blog.reigningshells.com/2018/09/hacking-rpi-cam-web-interface.html | | | https://bneg.io/2018/01/15/iterm2-customizations-for-hackers/ | | | https://medium.com/@hakluke/haklukes-guide-to-hacking-without-metasploit-1bbbe3d14f90 | | | https://hackerone.com/reports/363971 | | | http://openwall.com/lists/oss-security/2018/05/17/1 | | | https://engineering.riotgames.com/news/riots-approach-anti-cheat | | | https://dangokyo.me/2018/08/26/analysis-on-cve-2017-3000/ | | | https://phoenhex.re/2018-08-26/csgo-fuzzing-bsp | | | https://justi.cz/security/2018/08/28/packagist-org-rce.html | | | https://insecure.design/ | | | http://bit.ly/2oKrYTd + | | | http://hatriot.github.io/blog/2018/08/22/dell-digital-delivery-eop/ | | | http://bit.ly/2MQSeK5 + | | | http://williamshowalter.com/a-universal-windows-bootkit/ | | | http://bit.ly/2MTheQP + | | | http://bit.ly/2M2eX0C + | | | https://rya.nc/bitfi-wallet.html | | | https://medium.com/@elkentaro/nothing-to-see-here-the-not-so-charger-62a51e3aab22 | | | https://hackerone.com/reports/317476 | | | https://ash-king.co.uk/facebook-bug-bounty-09-18.html | | | http://bit.ly/2CS01CN + | | | https://gitlab.com/technotame/cookie-decrypter | | | http://exceptionlevelone.blogspot.pt/2018/02/creating-your-own-ios-1112-jailbreak.html | | | https://gist.github.com/maldevel/1d46329e00ab0c076150ddbce90d94cd | | | https://quentinkaiser.be/pentesting/2018/09/07/node-red-rce/ | | | https://www.rfk.id.au/blog/entry/security-bugs-ssrf-via-request-splitting/ | | | http://reversing.io/posts/introducing-finch/ | | | https://blogs.projectmoon.pw/2018/08/17/Edge-InlineArrayPush-Remote-Code-Execution/ | | | http://bit.ly/2xaQu4q + | | | https://adapt-and-attack.com/2017/11/15/keying-payloads-for-scripting-languages/ | | | https://gracefulbits.com/2018/07/26/system-call-dispatching-for-windows-on-arm64/ | | | https://versprite.com/blog/json-deserialization-memory-corruption-vulnerabilities/ | | | http://bit.ly/2NcA6dG + | | | https://siguza.github.io/KTRR/ | | | http://bit.ly/2p3wcpa + | | | https://int0xcc.svbtle.com/using-concolic-execution-for-static-analysis-of-malware | | | https://www.michaelfogleman.com/rush/ | | | http://nandgame.com/ | | | http://w00tsec.blogspot.pt/2014/07/foxit-pdf-reader-stored-xss.html | | | https://www.sektioneins.de/en/blog/14-07-04-phpinfo-infoleak.html | | | http://words.zemn.me/csp | | | http://stephensclafani.com/2014/07/08/hacking-facebooks-legacy-api-part-1-making-calls-on-behalf-of-any-user/ | | | http://www.shelliscoming.com/2014/07/ip-knock-shellcode-spoofed-ip-as.html | | | http://www.hackwhackandsmack.com/?p=345 | | | http://blog.cyberis.co.uk/2013/08/egresser-enumerate-outbound-firewall.html | | | https://twindb.com/recover-innodb-table-after-drop-table-innodb/ | | | http://miki.it/blog/2014/7/8/abusing-jsonp-with-rosetta-flash/ | | | http://vamsoft.com/downloads/articles/vamsoft-headless-browsers-in-forum-spam.pdf | | | http://bogus.jp/wp/?p=1687 | | | https://community.rapid7.com/community/metasploit/blog/2014/07/07/virtualbox-filename-command-execution-via-gksu | | | http://www.acunetix.com/blog/web-security-zone/block-automated-scanners/ | | | https://community.qualys.com/blogs/securitylabs/2014/02/27/mediawiki-djvu-and-pdf-file-upload-remote-code-execution-vulnerability-cve-2014-1610 | | | https://gist.github.com/danielrehn/d2e6f2129e5f853c3166 | | | https://medium.com/@manicho/7af5d5f28038 | | | https://justi.cz/security/2018/09/13/alpine-apk-rce.html | | | https://hackerone.com/reports/408583 | | | https://medium.com/@jonathanbouman/local-file-inclusion-at-ikea-com-e695ed64d82f | | | https://cornerpirate.com/2018/07/24/grep-extractor-a-burp-extender/ | | | https://gamozolabs.github.io/fuzzing/2018/09/16/scaling afl.html | | | http://bit.ly/2NWlZcd + | | | https://blog.thomasorlita.cz/vulns/google-csp-evaluator/ | | | https://rastamouse.me/2017/08/jumping-network-segregation-with-rdp/ | | | https://uncoder.io/ | | | https://medium.com/@vishwaraj101/ocr-to-xss-42720d85f7fa | | | http://bit.ly/2OHA7mD + | | | http://blog.nsfocus.net/cve-2018-804-analysis/ | | | https://www.contextis.com/blog/wap-just-happened-my-samsung-galaxy | | | http://bit.ly/2NZYf78 + | | | http://bit.ly/2poFVXa + | | | https://blog.cylance.com/cracking-ransomware | | | https://rastating.github.io/creating-a-custom-shellcode-encoder/ | | | https://rhinosecuritylabs.com/aws/aws-privilege-escalation-methods-mitigation/ | | | http://bit.ly/2wiFctW + | | | https://oddvar.moe/2018/09/06/persistence-using-universal-windows-platform-apps-appx/ | | | http://rinseandrepeatanalysis.blogspot.com/2018/09/dde-downloaders-excel-abuse-and.html | | | http://tonsky.me/blog/disenchantment/ | | | https://lcq2.github.io/x86 iphone/ | | | http://bit.ly/2NMLnC0 + | | | https://medium.com/@jonathanbouman/reflected-xss-at-philips-com-e48bf8f9cd3c | | | http://bit.ly/2Qf34Ha + | | | https://www.n00py.io/2018/08/bypassing-duo-two-factor-authentication-fail-open/ | | | https://astr0baby.wordpress.com/2018/09/08/understanding-how-dll-hijacking-works/ | | | https://blog.secarma.co.uk/labs/hacking-with-git-git-enum-metasploit-module-release | | | https://blog.benjojo.co.uk/post/qemu-monitor-socket-rce-vnc | | | https://www.hackerone.com/blog/Guide-Subdomain-Takeovers | | | http://krystalgamer.me/spidey-breaking/ | | | https://cyseclabs.com/blog/linux-kernel-heap-spray | | | http://bit.ly/2N6yWM5 + | | | http://www.s3.eurecom.fr/projects/modern-android-phishing/ | | | http://bit.ly/2R3ohVC + | | | http://bit.ly/2xGnLEO + | | | https://medium.com/tenable-techblog/advantech-webaccess-unpatched-rce-ffe9f37f8b83 | | | http://bit.ly/2xUAdQT + | | | https://tunnelshade.in/blog/2018/09/hongfuzz-intel-pt-instrumentation/ | | | https://truepolyglot.hackade.org/ | | | https://safekeepcybersecurity.github.io/posts/2018/09/carhack urh/ | | | https://medium.com/@the4rchangel/email-spoofing-with-netcat-telnet-e558e4a10c1 | | | https://medium.com/@brs.sgdc/google-stored-xss-in-payments-350cd7ba0d1b | | | http://bit.ly/2OzZOsx + | | | https://www.n00py.io/2018/10/popping-shells-on-splunk/ | | | https://gitlab.com/gitlab-org/gitlab-ce/issues/49133 | | | https://jacksonvd.com/pwned-passwords-and-ntlm-hashes/ | | | https://www.x41-dsec.de/lab/blog/fax/ | | | https://medium.com/@efkan162/how-i-xssed-uber-and-bypassed-csp-9ae52404f4c5 | | | https://jordanpotti.com/2018/10/03/violating-your-personal-space-with-webex/ | | | http://bit.ly/2OUsLMP + | | | http://bit.ly/2DWsXtT + | | | https://letsencrypt.org/docs/certificates-for-localhost/ | | | https://blog.lexfo.fr/cve-2017-11176-linux-kernel-exploitation-part1.html | | | https://eli.thegreenplace.net/2011/01/23/how-debuggers-work-part-1/ | | | https://www.gironsec.com/blog/2018/01/expiring-payloads-in-the-metasploit-framework/ | | | http://ly0n.me/2015/08/01/writing-exploits-with-an-egghunter-part-1/ | | | https://blog.smartdec.net/smartdec-smart-contract-audit-beginners-guide-d04cc7f1c571 | | | http://blog.ptsecurity.com/2018/10/intel-me-manufacturing-mode-macbook.html | | | https://www.linuxboot.org/ | | | http://www.lambdashell.com/ | | | https://blog.sheddow.xyz/css-timing-attack/ | | | http://www.sec-down.com/wordpress/?p=809 | | | http://bit.ly/2OQkWuJ + | | | https://flatkill.org/ | | | http://bit.ly/2C601gF + | | | https://geosn0w.github.io/Jailbreaks-Demystified/ | | | https://www.nc-lp.com/blog/disguise-phar-packages-as-images | | | http://bit.ly/2yxlRWY + | | | http://bit.ly/2NC71nl + | | | https://prdeving.wordpress.com/2018/09/21/hiding-malware-in-windows-code-injection/ | | | https://ewilded.blogspot.pt/2018/01/vulnserver-my-kstet-exploit-delivering.html | | | http://bit.ly/2C9esjR + | | | https://alephsecurity.com/2018/01/22/qualcomm-edl-1/ | | | http://0xeb.net/2018/03/using-z3-with-ida-to-simplify-arithmetic-operations-in-functions/ | | | http://telegra.ph/ | | | https://blog.bejarano.io/hardening-macos.html | | | http://bit.ly/2EuxUKF + | | | http://bit.ly/2EttVhF + | | | https://hackerone.com/reports/405100 | | | https://digi.ninja/blog/hiding bash history.php | | | https://hackernoon.com/how-i-hacked-modern-vending-machines-43f4ae8decec | | | http://bit.ly/2AhbatG + | | | https://oddcoder.com/BROP-102/ | | | http://bit.ly/2J3ItTT + | | | https://leucosite.com/Microsoft-Edge-RCE/ | | | https://www.xorrior.com/persistent-credential-theft/ | | | http://bit.ly/2NNfkgs + | | | http://bit.ly/2yLKjDY + | | | https://paper.seebug.org/716/ | | | https://medium.com/bugbountywriteup/bug-bounty-mail-ru-234fa6f5a5a | | | https://outflank.nl/blog/2018/10/12/sylk-xlm-code-execution-on-office-2011-for-mac/ | | | https://tls.ulfheim.net/ | | | http://serveo.net/ | | | https://www.martinvigo.com/googlemeetroulette/ | | | https://rpadovani.com/facebook-responsible-disclosure | | | https://fosterelli.co/privilege-escalation-via-docker.html | | | http://bit.ly/2Jig0ti + | | | https://bugid.skylined.nl/20181017001.html | | | https://alephsecurity.com/2018/10/22/StackOverflowException/ | | | https://mp.weixin.qq.com/s/ebKHjpbQcszAy vPocW0Sg | | | https://blog.skullsecurity.org/2018/technical-rundown-of-webexec | | | http://bit.ly/2PlwTsN + | | | https://liberty-shell.com/sec/2018/10/20/living-off-the-land/ | | | https://hackerone.com/reports/348076 | | | https://gamozolabs.github.io/fuzzing/2018/10/18/terrible android fuzzer.html | | | https://blog.stratumsecurity.com/2018/10/17/route-53-as-a-pentest-infrastructure/ | | | https://shadowfile.inode.link/blog/2018/10/source-level-debugging-the-xnu-kernel/ | | | https://ops.tips/blog/how-linux-tcp-introspection/ | | | https://research.kudelskisecurity.com/2018/10/23/build-your-own-hardware-implant/ | | | http://bit.ly/2qnqbnO + | | | http://bit.ly/2QcNf46 + | | | https://bitrot.sh/post/01-16-2018-password spraying adfs with burp/ | | | http://bit.ly/2DjQT9m + | | | https://acru3l.github.io/2018/10/20/ropping-through-shady-corners/ | | | https://jerrygamblin.com/2018/10/29/google-home-insecurity/ | | | https://www.unix-ninja.com/p/attacking google authenticator | | | https://www.securepatterns.com/2018/10/cve-2018-14665-xorg-x-server.html | | | https://blog.quarkslab.com/playing-with-the-windows-notification-facility-wnf.html | | | https://sandboxescaper.blogspot.com/2018/10/reversing-alpc-where-are-your-windows.html | | | https://rhaidiz.net/2018/10/25/dribble-stealing-wifi-password-via-browsers-cache-poisoning | | | https://lgtm.com/blog/apple xnu icmp error CVE-2018-4407 | | | http://bit.ly/2zkcxpG + | | | http://bit.ly/2Jx7RBw + | | | http://bit.ly/2ETzzKg + | | | https://mango.pdf.zone/stealing-chrome-cookies-without-a-password | | | https://hackerone.com/reports/303730 | | | https://serializethoughts.com/2018/10/07/bypassing-android-flag secure-using-frida/ | | | https://danshumway.com/blog/gamasutra-vulnerabilities/ | | | https://habr.com/post/429004/ | | | https://wbenny.github.io/2018/11/04/wow64-internals.html | | | https://blog.xpnsec.com/rundll32-your-dotnet/ | | | http://bit.ly/2QoKsol + | | | http://bit.ly/2ROJSRt + | | | https://www.tarlogic.com/en/blog/red-team-tales-0x02-from-sqli-to-domain-admin/ | | | https://paper.seebug.org/737/ | | | https://lgtm.com/blog/icecast snprintf CVE-2018-18820 | | | https://poppopret.blogspot.com/2011/09/playing-with-mof-files-on-windows-for.html | | | https://marcan.st/2017/12/debugging-an-evil-go-runtime-bug/ | | | https://apapedulimu.click/clickjacking-on-google-myaccount-worth-7500/ | | | https://xlab.tencent.com/en/2018/11/13/cve-2018-4277/ | | | https://medium.com/@mrnikhilsri/oob-xxe-in-prizmdoc-cve-2018-15805-dfb1e474345c | | | https://strm.sh/post/abusing-insecure-docker-deployments/ | | | https://shkspr.mobi/blog/2018/11/domain-hacks-with-unusual-unicode-characters/ | | | https://blog.xyz.is/2018/enso.html | | | https://ibm.co/2FqIXoO + | | | http://blogs.360.cn/post/VBScript vul EN.html | | | https://security-bits.de/posts/2018/11/11/exposed sonos interface.html | | | https://wwws.nightwatchcybersecurity.com/2018/11/11/cve-2018-15835/ | | | https://www.ixiacom.com/company/blog/trinity-p2p-malware-over-adb | | | https://maxkersten.nl/binary-analysis-course/malware-analysis/dot-net-rat/ | | | https://medium.com/tenable-techblog/uac-bypass-by-mocking-trusted-directories-24a96675f6e | | | http://bit.ly/2RWjjtj + | | | https://medium.com/@mattharr0ey/lateral-movement-using-url-protocol-e6f7d2d6cf2e | | | https://twobithistory.org/2018/11/12/cat.html | | | http://bit.ly/2DSeKgK + | | | http://bit.ly/2R6zbcG + | | | https://out-of-tree.io/ | | | https://diary.shift-js.info/js-comment-block/ | | | https://ionize.com.au/multiple-transports-in-a-meterpreter-payload/ | | | https://www.hahwul.com/2018/11/waf-bypass-xss-payload-only-hangul.html | | | https://justi.cz/security/2018/11/14/gvisor-lpe.html | | | https://tinyhack.com/2018/11/21/reverse-engineering-pokemon-go-plus/ | | | https://fireshellsecurity.team/restricted-linux-shell-escaping-techniques/ | | | http://bit.ly/2zn0f0F + | | | http://bit.ly/2DCUGy1 + | | | https://www.elttam.com.au/blog/ruby-deserialization/ | | | http://bit.ly/2DTokQm + | | | https://blog.cotten.io/hacking-gmail-with-weird-from-fields-d6494254722f | | | https://menschers.com/2018/10/30/what-is-cve-2018-8493/ | | | https://wojciechregula.blog/your-signal-messages-can-leak-via-locked-screen-on-macos/ | | | http://signedmalware.org/ | | | https://nginxconfig.io/ | | | https://medium.com/@copyconstruct/socat-29453e9fc8a6 | | | https://vinicius777.github.io/blog/2014/07/14/truecrypt-privilege-escalation/ | | | http://www.tripwire.com/state-of-security/featured/analysis-for-phpmyadmin-xss-cve-2014-1879/ | | | http://blog.sucuri.net/2014/07/disclosure-insecure-nonce-generation-in-wptouch.html | | | https://home.regit.org/2014/06/pshitt-collect-passwords-used-in-ssh-bruteforce/ | | | http://www.commonexploits.com/penetration-testing-scripts/ | | | http://www.viper.li/ | | | http://blogs.telerik.com/fiddler/posts/14-07-10/capturing-traffic-via-virtual-router | | | https://archive.org/details/OISFOhioInformationSecurityForum2014 | | | http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/Hacking-POS-Terminal-for-Fun-and-Non-profit/ba-p/6540620 | | | http://www.vulcanproxy.com/ | | | http://drimel.org/2014/07/14/shellcode-analysis-like-a-semi-pro/ | | | http://deadliestwebattacks.com/2013/10/21/a-default-base-of-xss/ | | | https://gcc.gnu.org/bugzilla/show bug.cgi?id=30475 | | | http://vimeo.com/4530161 | | | http://tholman.com/giflinks/ | | | https://slashcrypto.org/2018/11/28/eBay-source-code-leak/ | | | https://www.ory.sh/sign-in-with-user-impersonation-oauth2-openid-connect | | | https://medium.com/@Bank Security/undetectable-c-c-reverse-shells-fab4c0ec4f15 | | | https://medium.com/@petergombos/smb-named-pipe-pivoting-in-meterpreter-462580fd41c5 | | | https://l.avala.mp/?p=285 | | | https://saleemrashid.com/2018/11/26/breaking-into-bitbox/ | | | http://bit.ly/2RnTVNd + | | | http://bit.ly/2zzlQmu + | | | https://medium.com/@SweetRollBandit/aws-slurp-github-takeover-f8c80b13e7b5 | | | https://blog.timac.org/2018/1126-deobfuscated-libmobilegestalt-keys-ios-12/ | | | http://bit.ly/2rbKlBV + | | | http://bit.ly/2P8u5v1 + | | | http://bit.ly/2TPBLWx + | | | https://gcemetery.co/ | | | http://bit.ly/2FXmMGS + | | | https://pwning.re/2018/12/04/github-desktop-rce/ | | | https://medium.com/@r0t1v/pwning-jboss-seam-2-like-a-boss-da5a43da6998 | | | https://secrary.com/Random/injectionwithoutinjection/ | | | https://www.justinoblak.com/2018/12/02/Smashing-AFL.html | | | https://dylankatz.com/digging-in-to-scp-command-injection/ | | | https://blog.intothesymmetry.com/2018/12/billion-laugh-attack-in.html | | | http://bit.ly/2zJXw1o + | | | https://geosn0w.github.io/Debugging-macOS-Kernel-For-Fun/ | | | https://secureidentity.se/delete-domain-admin-accounts/ | | | https://salmg.net/2018/12/01/intro-to-nfc-payment-relay-attacks/ | | | http://bit.ly/2SARmI9 + | | | https://medium.com/tenable-techblog/remotely-exploiting-zoom-meetings-5a811342ba1d | | | https://modexp.wordpress.com/2018/10/30/arm64-assembly/ | | | https://www.voidsecurity.in/2018/11/virtualbox-nat-dhcpbootp-server.html | | | https://gist.github.com/grugq/03167bed45e774551155 | | | http://bit.ly/2KYmIpj + | | | https://jamchamb.github.io/2018/12/03/gamecube-memory-card-raspi.html | | | https://www.honoki.net/2018/12/from-blind-xxe-to-root-level-file-read-access/ | | | https://www.betterhacker.com/2018/12/rce-in-hubspot-with-el-injection-in-hubl.html | | | https://landgrey.me/influxdb-api-unauthorized-exploit/ | | | https://ardern.io/2018/12/07/angularjs-bxss/ | | | https://www.corben.io/XSS-to-XXE-in-Prince/ | | | http://bit.ly/2RW53kT + | | | https://medium.com/@SecurityBender/exploiting-a-hql-injection-895f93d06718 | | | https://cyber.wtf/2018/03/28/dissecting-olympic-destroyer-a-walk-through/ | | | https://dev.to/antogarand/why-facebooks-api-starts-with-a-for-loop-1eob | | | http://bit.ly/2EutRx7 + | | | https://www.fidusinfosec.com/remote-code-execution-cve-2018-5767/ | | | https://blog.intothesymmetry.com/2018/12/persistent-xsrf-on-kubernetes-dashboard.html | | | https://medium.com/javascript-security/avoiding-xss-in-react-is-still-hard-d2b5c7ad9412 | | | https://www.cybereason.com/blog/fauxpersky-credstealer-malware-autohotkey-kaspersky-antivirus | | | http://fabiensanglard.net/dreamcast hacking/ | | | https://www.reaperbugs.com/index | | | https://mohemiv.com/all/exploiting-xxe-with-local-dtd-files/ | | | https://blog.avatao.com/How-I-could-steal-your-photos-from-Google/ | | | https://hackerone.com/reports/426944 | | | http://bit.ly/2Rd09mc + | | | https://medium.com/@jamie.shaw/pass-the-cache-to-domain-compromise-320b6e2ff7da | | | https://www.joachim-bauch.de/tutorials/loading-a-dll-from-memory/ | | | https://blog.cm2.pw/length-restricted-xss/ | | | http://bit.ly/2Rf4FAG + | | | https://bnbdr.github.io/posts/swisscheese/ | | | https://blog.sektor7.net/ res/2018/pure-in-memory-linux.md | | | https://samcurry.net/reading-asp-secrets-for-17000/ | | | http://bit.ly/2PMOBl7 + | | | https://bordplate.no/blog/en/post/interactive-rop-tutorial/ | | | http://bit.ly/2S8mfU9 + | | | http://blog.digital-forensics.it/2017/04/brush-up-on-dropbox-dbx-decryption.html | | | http://bit.ly/2LrTRKk + | | | https://security.szurek.pl/kallithea-0-3-4-incorrect-access-control-and-xss.html | | | https://smallstep.com/blog/everything-pki.html | | | https://leucosite.com/WebExtension-Security/ | | | http://bit.ly/2SmvFf6 + | | | https://jtnydv.xyz/2018/12/24/basic-xpath-injection/ | | | https://no1zy.hatenablog.com/entry/static-analysis-of-javascript-for-bughunters | | | https://blog.ropnop.com/serverless-toolkit-for-pentesters/ | | | https://0xrick.github.io/BinaryExploitation-BOF/ | | | http://bit.ly/2Q7lnNO + | | | https://blog.cm2.pw/ms-edge-http-access-control-cors-bypass/ | | | http://bit.ly/2SoL9iP + | | | https://blog.certfa.com/posts/the-return-of-the-charming-kitten/ | | | http://bit.ly/2Q8Lzbb + | | | https://blog.k3170makan.com/2018/11/glibc-heap-exploitation-basics.html | | | https://blog.erratasec.com/2018/10/systemd-is-bad-parsing-and-should-feel.html | | | https://mksben.l0.cm/2018/05/cve-2018-5175-firefox-csp-strict-dynamic-bypass.html | | | https://www.ipify.org/ | | | https://hackerone.com/reports/397478 | | | https://abiondo.me/2019/01/02/exploiting-math-expm1-v8/ | | | http://bit.ly/2Vox9aJ + | | | https://www.iceswordlab.com/2018/07/25/kdhack/ | | | http://www.pwn3d.org/posts/7821231-gxpn-prep-2basic-scapy-review | | | https://nebelwelt.net/blog/20181231-BOP.html | | | http://bit.ly/2Vth6bm + | | | https://www.davidwong.fr/tls13/ | | | https://www.lolhax.org/2019/01/02/extracting-keys-f00d-crumbs-raccoon-exploit/ | | | https://www.imperialviolet.org/2019/01/01/zkattestation.html | | | http://bit.ly/A-Long-Evening-With-macOSs-Sandbox + | | | http://bit.ly/2AvBujp + | | | https://akijosberryblog.wordpress.com/2019/01/01/malicious-use-of-microsoft-laps/ | | | https://www.secjuice.com/php-rce-bypass-filters-sanitization-waf/ | | | https://blog.talosintelligence.com/2018/05/telegrab.html | | | http://misbehaving.site/ | | | https://gamehistory.org/simcity/ | | | https://hackerone.com/reports/409850 | | | http://bit.ly/2RoDTqv + | | | http://bit.ly/2AER4JH + | | | https://www.roguesecurity.in/2018/12/02/a-guide-for-windows-penetration-testing/ | | | https://medium.com/bugbountywriteup/ping-power-icmp-tunnel-31e2abb2aaea | | | https://wietzebeukema.nl/blog/spoofing-google-search-results | | | https://wunderwuzzi23.github.io/blog/passthecookie.html | | | https://mn3m.info/posts/suid-vs-capabilities/ | | | https://niemand.com.ar/2019/01/01/how-to-hook-directx-11-imgui/ | | | http://bit.ly/2QDF93N + | | | https://sites.google.com/view/ltefuzz | | | https://www.veracode.com/blog/research/exploiting-jndi-injections-java | | | https://tyranidslair.blogspot.com/2018/12/abusing-mount-points-over-smb-protocol.html | | | https://revers.engineering/syscall-hooking-via-extended-feature-enable-register-efer/ | | | https://ericchiang.github.io/post/containers-from-scratch/ | | | https://research.checkpoint.com/hacking-fortnite/ | | | http://bit.ly/2RVTUDO + | | | https://0xdf.gitlab.io/2018/11/02/pwk-notes-tunneling.html | | | https://default-password.info/ | | | https://netsec.ws/?p=262 | | | http://bit.ly/2APgbtm + | | | http://bit.ly/2FDzxoy + | | | https://niemand.com.ar/2019/01/13/creating-your-own-wallhack/ | | | https://scorpiosoftware.net/2019/01/15/fun-with-appcontainers/ | | | http://bit.ly/2MhbFrV + | | | https://blogs.cisco.com/security/smb-and-the-return-of-the-worm | | | http://bit.ly/2Hig3bq + | | | https://blog.benpri.me/2019/01/13/why-you-shouldnt-be-using-bcrypt-and-scrypt/ | | | https://sysdig.com/blog/privilege-escalation-kubernetes-dashboard/ | | | http://www.greyhathacker.net/?p=1041 | | | https://dontkillmyapp.com/ | | | https://devhints.io/ | | | https://blog.haschek.at/2018/the-curious-case-of-the-RasPi-in-our-network.html | | | https://justi.cz/security/2019/01/22/apt-rce.html | | | https://medium.com/tenable-techblog/rooting-nagios-via-outdated-libraries-bb79427172 | | | http://bit.ly/2HuSb4y + | | | https://medium.com/@int0x33/upload-htaccess-as-image-to-bypass-filters-71dfcf797a86 | | | https://www.inputzero.io/2019/01/fuzzing-http-servers.html | | | https://neonsea.uk/blog/2018/12/26/firewall-includes.html | | | http://bit.ly/2UgpUQO + | | | http://bit.ly/2FZ8hAT + | | | http://bit.ly/2FMAKdN + | | | http://bit.ly/2Mudulx + | | | https://enigma0x3.net/2019/01/21/razer-synapse-3-elevation-of-privilege/ | | | https://dirkjanm.io/abusing-exchange-one-api-call-away-from-domain-admin/ | | | https://medium.com/@ mattata/packet-editing-live-connections-with-python-c0ed221dafcd | | | https://www.mdsec.co.uk/2019/01/abusing-office-web-add-ins-for-fun-and-limited-profit/ | | | http://bit.ly/2FMev7U + | | | https://lgtm.com/blog/ghostscript typeconfusion | | | https://bogner.sh/2019/01/querying-virustotal-from-excel/ | | | https://www.ezequiel.tech/2019/01/75k-google-cloud-platform-organization.html | | | http://bit.ly/2Wxv50A + | | | https://gist.github.com/sarazasasa/9450d63f96e7ff799824fc98fc7f3b43 | | | https://egre55.github.io/system-properties-uac-bypass/ | | | https://gist.github.com/3xocyte/0dc0bd4cb48cc7b4075bdc90a1ccc7d3 | | | https://insert-script.blogspot.com/2019/01/adobe-reader-pdf-callback-via-xslt.html | | | https://engineering.linecorp.com/en/blog/air-go-apk-signing/ | | | https://www.contextis.com/en/blog/basic-electron-framework-exploitation | | | https://lab.wallarm.com/xxe-that-can-bypass-waf-protection-98f679452ce0 | | | http://bit.ly/2sYgLQY + | | | https://www.adyta.pt/en/2019/01/29/writeup-samsung-app-store-rce-via-mitm-2/ | | | https://shenaniganslabs.io/2019/01/28/Wagging-the-Dog.html | | | http://bit.ly/2DLSrIl + | | | https://blog.scrt.ch/2019/01/24/magento-rce-local-file-read-with-low-privilege-admin-rights/ | | | https://alsid.com/company/news/abusing-s4u2self-another-sneaky-active-directory-persistence | | | http://bit.ly/2sYg76j + | | | https://medium.com/tenable-techblog/reversing-the-rachio3-smart-sprinkler-controller-ae7fc06aab9 | | | https://evolt.org/node/564 | | | https://alexhude.github.io/2019/01/24/hacking-leica-m240.html | | | http://sethsec.blogspot.gr/2014/07/crossdomain-bing.html | | | http://www.skycure.com/blog/malicious-profiles-the-sleeping-giant-of-ios-security/ | | | https://bitbucket.org/orbit-burg/nfc-emv/wiki/Home | | | http://lab.onsec.ru/2014/07/pamsteal-plugin-released.html | | | http://shell-storm.org/shellcode/ | | | http://penturalabs.wordpress.com/2014/07/18/execute-shellcode-bypassing-anti-virus/ | | | http://igurublog.wordpress.com/downloads/script-sandfox/ | | | https://archive.today/23mBC | | | https://lilithlela.cyberguerrilla.org/?p=6620 | | | http://www.irongeek.com/i.php?page=videos/bsidescleveland2014/mainlist | | | http://hashcrack.org/page?n=21072014 | | | https://www.netspi.com/blog/entryid/235/stealing-unencrypted-ssh-agent-keys-from-memory | | | https://www.pentestgeek.com/2014/07/22/phishing-frenzy-hta-powershell-attacks-with-beef/ | | | http://bit.ly/2BpGab7 + | | | http://bit.ly/2UNSyZH + | | | https://www.shawarkhan.com/2019/01/hijacking-accounts-by-retrieving-jwt.html | | | https://gist.github.com/mehaase/63e45c17bdbbd59e8e68d02ec58f4ca2 | | | http://bit.ly/2MT26jg + | | | http://bit.ly/2UKEKis + | | | https://versprite.com/blog/hacking-remote-start-system/ | | | https://vulnmind.io/i-heard-you-like-eop-to-system/ | | | https://maskop9.wordpress.com/2019/02/06/analysis-of-jacksbot-backdoor/ | | | https://doar-e.github.io/blog/2019/01/28/introduction-to-turbofan/ | | | https://acru3l.github.io/2019/02/02/exploiting-mb-anti-exploit/ | | | https://medium.com/@mattharr0ey/round-of-use-winrm-code-execution-xml-6e3219d3e31 | | | http://bit.ly/2MTPDfh + | | | http://bit.ly/2MUUJrx + | | | https://blog.benjojo.co.uk/post/eve-online-bgp-internet | | | https://outpost24.com/blog/X-forwarded-for-SQL-injection | | | https://ysamm.com/?p=185 | | | http://bit.ly/2SyIqaE + | | | https://gist.github.com/adamyordan/96da0ad5e72cbc97285f2df340cac43b | | | https://plainsec.org/how-to-bypass-instagram-ssl-pinning-on-android-v78/ | | | http://bit.ly/2TQYTmW + | | | https://shenaniganslabs.io/2019/02/13/Dirty-Sock.html | | | http://bit.ly/2BCPZSX + | | | https://perception-point.io/resources/research/cve-2019-0539-root-cause-analysis/ | | | https://medium.com/@x41x41x41/unauthenticated-ssrf-in-oracle-ebs-765bd789a145 | | | https://offensi.com/2019/01/31/lfi-in-apigee-portals/ | | | https://medium.com/tenable-techblog/make-it-rain-with-mikrotik-c90705459bc6 | | | https://www.secjuice.com/modsecurity-web-application-firewall-dns-over-https/ | | | https://lgtm.com/blog/ghostscript CVE-2018-19134 exploit | | | https://www.secureauth.com/labs/advisories/asus-drivers-elevation-privilege-vulnerabilities | | | https://cantunsee.space/ | | | https://leucosite.com/Microsoft-Office-365-Outlook-XSS/ | | | https://medium.com/@elberandre/1-000-ssrf-in-slack-7737935d3884 | | | http://bit.ly/2U0BPCz + | | | https://pwn.no0.be/exploitation/wifi/wpa enterprise/ | | | http://bit.ly/2tvFFaS + | | | https://bordplate.no/blog/en/post/debugging-a-windows-service/ | | | https://medium.com/@localh0t/unveiling-amazon-s3-bucket-names-e1420ceaf4fa | | | https://medium.com/@rvrsh3ll/hardening-your-azure-domain-front-7423b5ab4f64 | | | https://erfur.github.io/down the rabbit hole pt1/ | | | https://toshellandback.com/2015/11/24/ms-priv-esc/ | | | http://bit.ly/2GWaCx9 + | | | https://vmcall.github.io/reversal/2019/02/10/battleye-anticheat.html | | | http://bit.ly/2IsFpny + | | | https://research.checkpoint.com/extracting-code-execution-from-winrar/ | | | https://0x00sec.org/t/using-uri-to-pop-shells-via-the-discord-client/11673/2 | | | http://bit.ly/2NhVGup + | | | https://www.bishopfox.com/news/2019/02/openmrs-insecure-object-deserialization/ | | | https://blog.orange.tw/2019/01/hacking-jenkins-part-1-play-with-dynamic-routing.html | | | https://worldwideweb.cern.ch/ | | | https://ysamm.com/?p=240 | | | http://bit.ly/2tDRA6O + | | | https://medium.com/intigriti/abusing-autoresponders-and-email-bounces-9b1995eb53c2 | | | https://www.inputzero.io/2019/02/fuzzing-webkit.html | | | https://rootsh3ll.com/evil-twin-attack/ | | | https://thebabush.github.io/dumbo-llvm-based-dumb-obfuscator.html | | | http://bit.ly/2XpR4qN + | | | https://www.ambionics.io/blog/drupal8-rce | | | https://gitlab.com/invuls/iot-projects/iotsecfuzz | | | http://bit.ly/2GODica + | | | http://thunderclap.io/ | | | http://bit.ly/2IGJKUf + | | | https://www.pdf-insecurity.org | | | https://eklitzke.org/the-cbc-padding-oracle-problem | | | http://www.jackson-t.ca/lg-driver-lpe.html | | | https://paper.seebug.org/822/ | | | https://movaxbx.ru/2019/02/20/triaging-the-exploitability-of-ie-edge-crashes/ | | | http://bit.ly/2NxPIWm + | | | https://medium.com/@logicbomb 1/chain-of-hacks-leading-to-database-compromise-b2bc2b883915 | | | https://noclip.website/ | | | http://www.kwasstuff.altervista.org/RIP/index.html | | | https://staaldraad.github.io/post/2019-03-02-universal-rce-ruby-yaml-load/ | | | https://www.vulnano.com/2019/03/facebook-messenger-server-random-memory.html | | | https://ghidra-sre.org/ | | | https://0x90909090.blogspot.com/2019/02/executing-payload-without-touching.html | | | https://disloops.com/cloudfront-hijacking/ | | | http://bit.ly/2XIF4AQ + | | | http://blog.ptsecurity.com/2019/02/detecting-web-attacks-with-seq2seq.html | | | https://www.veracode.com/blog/research/exploiting-spring-boot-actuators | | | https://movaxbx.ru/2019/02/16/windows-process-injection-sharing-the-payload/ | | | https://blog.0day.rocks/hiding-through-a-maze-of-iot-devices-9db7f2067a80 | | | http://bit.ly/2HjDsaQ + | | | http://bit.ly/2TB245t + | | | http://blogs.360.cn/post/Binder Kernel Vul EN.html | | | https://js1k.com/2019-x/demos | | | https://blog.littlevgl.com/2019-02-02/use-ipod-nano6-lcd-for-littlevgl | | | https://hackerone.com/reports/411140 | | | https://hackerone.com/reports/398799 | | | https://medium.com/@rootxharsh 90844/vimeo-ssrf-with-code-execution-potential-68c774ba7c1e | | | https://pentest.blog/n-ways-to-unpack-mobile-malware/ | | | https://ijustwannared.team/2019/03/11/browser-pivot-for-chrome/ | | | https://hausec.com/2019/03/05/penetration-testing-active-directory-part-i/ | | | https://d4stiny.github.io/Reading-Physical-Memory-using-Carbon-Black/ | | | http://woshub.com/copying-large-files-using-bits-and-powershell/ | | | https://webrtchacks.com/fuzzing-janus/ | | | https://pulsesecurity.co.nz/articles/TPM-sniffing | | | https://www.stuffithoughtiknew.com/2019/02/detecting-bloodhound.html | | | http://bit.ly/2UGmozO + | | | https://licenciaparahackear.github.io/en/posts/bypassing-a-restrictive-js-sandbox/ | | | https://redtimmysec.wordpress.com/2019/03/07/flexpaper-remote-code-execution/ | | | http://bit.ly/2T4IBWA + | | | http://travisaltman.com/windows-privilege-escalation-via-weak-service-permissions/ | | | http://blogs.360.cn/post/RootCause CVE-2019-0808 EN.html | | | https://rhinosecuritylabs.com/application-security/exploiting-cve-2018-1335-apache-tika/ | | | https://archivebox.io/ | | | https://litherum.blogspot.com/2019/03/addition-font.html | | | https://hackerone.com/reports/470520 | | | http://bit.ly/2ulwA56 + | | | https://medium.com/@terjanq/cross-site-content-and-status-types-leakage-ef2dab0a492 | | | http://bit.ly/2Fo9zDP + | | | https://medium.com/@benoit.sevens/windows-10-emulation-with-qemu-f41870ed464d | | | https://medium.com/@0x0FFB347/writing-a-custom-shellcode-encoder-31816e767611 | | | https://polict.net/blog/CVE-2018-17057 | | | http://bit.ly/2HwT1wN + | | | https://blog.tint0.com/2019/03/a-saga-of-code-executions-on-zimbra.html | | | https://jarlob.github.io/en/blog/not-a-bug-sqli | | | https://liberty-shell.com/sec/2019/03/12/dll-hijacking/ | | | https://lgtm.com/blog/facebook fizz CVE-2019-3560 | | | http://offsec.provadys.com/intro-to-file-operation-abuse-on-Windows.html | | | https://medium.com/tenable-techblog/mikrotik-firewall-nat-bypass-b8d46398bf24 | | | http://bit.ly/2ULRPsg + | | | https://blog.assetnote.io/bug-bounty/2019/03/19/rce-on-mozilla-zero-day-webpagetest/ | | | https://proofofcalc.com/cve-2019-6453-mIRC/ | | | https://blog.regehr.org/archives/1653 | | | https://securitytxt.org/ | | | https://www.niceideas.ch/roller2/badtrash/entry/deciphering-the-bengladesh-bank-heist | | | https://hackerone.com/reports/297478 | | | http://bit.ly/2OqLKz2 + | | | https://medium.com/tenable-techblog/owning-the-network-with-badusb-72daa45d1b00 | | | https://mogwailabs.de/blog/2019/03/repacking-ios-applications/ | | | https://raw.githubusercontent.com/pedrib/PoC/master/advisories/nuuo-cms-ownage.txt | | | http://bit.ly/2YujGj1 + | | | http://bit.ly/2Ow20ij + | | | https://outflank.nl/blog/2018/10/06/old-school-evil-excel-4-0-macros-xlm/ | | | http://bit.ly/2JJXpdQ + | | | https://securelist.com/hacking-microcontroller-firmware-through-a-usb/89919/ | | | https://medium.com/0xcc/one-liner-safari-sandbox-escape-exploit-91082ddbe6ef | | | https://medium.com/@princechaddha/an-unusal-bug-on-braintree-paypal-b8d3ec662414 | | | https://blog.zecops.com/vulnerabilities/analysis-and-reproduction-of-cve-2019-7286/ | | | http://bit.ly/2UXZAM1 + | | | https://medium.com/@howard.poston/mapping-the-owasp-top-ten-to-blockchain-69c904394e69 | | | https://nullprogram.com/blog/2019/03/22/ | | | https://blog.jessfraz.com/post/digging-into-risc-v-and-how-i-learn-new-things/ | | | https://hackerone.com/reports/511044 | | | https://mahmoudsec.blogspot.com/2019/04/handlebars-template-injection-and-rce.html | | | https://blog.doyensec.com/2019/04/03/subverting-electron-apps-via-insecure-preload.html | | | http://bit.ly/2TVqqTJ + | | | https://masthoon.github.io/exploit/2019/03/29/cygeop.html | | | https://digi.ninja/blog/domain fronting.php | | | https://gkbrk.com/2019/01/reverse-engineering-the-godot-file-format/ | | | https://modexp.wordpress.com/2019/03/07/process-injection-print-spooler/ | | | https://cfreal.github.io/carpe-diem-cve-2019-0211-apache-local-root.html | | | https://www.drewgreen.net/vulnerabilities-in-tightrope-media-systems-carousel/ | | | https://snyk.io/blog/severe-security-vulnerability-in-bowers-zip-archive-extraction/ | | | https://www.secjuice.com/finding-real-ips-of-origin-servers-behind-cloudflare-or-tor/ | | | https://medium.com/tenable-techblog/filezilla-untrusted-search-path-bc3a7b3ae51e | | | http://bit.ly/2UzN9c0 + | | | http://bit.ly/2HXhjAb + | | | https://www.zoomeye.org/topic?id=ZoomEye-series-report-VE-en | | | https://hackerone.com/reports/381356 | | | https://medium.com/@d0nut/better-exfiltration-via-html-injection-31c72a2dae8b | | | http://bit.ly/2X5eTCX + | | | https://blog.zsec.uk/el-injection-rce/ | | | https://rastamouse.me/2019/01/gpo-abuse-part-1/ | | | http://bit.ly/2Ksl6HR + | | | http://tomasuh.github.io/2018/12/28/retefe-unpack.html | | | http://bit.ly/2Uvj2DH + | | | https://www.shielder.it/blog/nagios-xi-5-5-10-xss-to-root-rce/ | | | https://wpa3.mathyvanhoef.com/ | | | https://habr.com/en/post/446238/ | | | https://blog.exodusintel.com/2019/04/03/a-window-of-opportunity/ | | | https://www.notsosecure.com/exploiting-ssrf-in-aws-elastic-beanstalk/ | | | https://mp.weixin.qq.com/s/OissE9gAVkKmAXuiIUeOLA | | | http://cturt.github.io/pinball.html | | | http://www.righto.com/2019/04/iconic-consoles-of-ibm-system360.html | | | https://soroush.secproject.com/blog/2014/07/upload-a-web-config-file-for-fun-profit/ | | | http://ibrahimbalic.com/2014/sqlmap-ile-csrf-bypass/ | | | http://tomforb.es/exploiting-xpath-injection-vulnerabilities-with-xcat-1 | | | http://www.relentless-coding.org/projects/jsdetox/ | | | http://hive.ccs.neu.edu/ | | | https://lzo.securitymouse.com/lzo | | | http://blog.oddbit.com/2014/07/21/tracking-down-a-kernel-bug-wit/ | | | http://googleprojectzero.blogspot.pt/2014/07/pwn4fun-spring-2014-safari-part-i 24.html | | | http://atredispartners.blogspot.pt/2014/07/atredis-blackhat-2014-contest-after 24.html | | | http://diablohorn.wordpress.com/2014/07/26/writing-your-own-blind-sqli-script/ | | | http://blogs.mcafee.com/mcafee-labs/dropping-files-temp-folder-raises-security-concerns | | | http://slides.com/mscasharjaved/on-breaking-php-based-cross-site-scripting-protections-in-the-wild / | | | http://www.ghacks.net/2014/07/28/repair-extract-broken-rar-archives/ | | | http://gsmmap.org/ | | | https://blog.underdogsecurity.com/rce in origin client/ | | | https://hackerone.com/reports/369451 | | | http://bit.ly/2KMwUF1 + | | | https://gist.github.com/glenux/3e705387e30f229c242ea153de6e6a4d | | | http://bit.ly/2ItRHvg + | | | https://hackerone.com/reports/473888 | | | https://krbtgt.pw/dacl-permissions-overwrite-privilege-escalation-cve-2019-0841/ | | | https://www.shielder.it/blog/exploit-apache-solr-through-opencms/ | | | https://dejandayoff.com/the-danger-of-exposing-docker.sock/ | | | https://parzelsec.de/timing-attacks-with-machine-learning/ | | | http://bit.ly/2vgAlsN + | | | http://bit.ly/2Gydmz1 + | | | http://newosxbook.com/articles/OTA.html | | | https://hackerone.com/reports/110293 | | | https://www.labofapenetrationtester.com/2019/04/abusing-PAM.html | | | http://bit.ly/2Xk9t7l + | | | https://jerrington.me/posts/2019-01-29-self-hosted-ngrok.html | | | https://ysamm.com/?p=256 | | | https://scriptinjection.blogspot.com/2019/04/oe-classic-280-rce-via-stored-xss.html | | | https://hackerone.com/reports/422043 | | | http://bit.ly/2GBOOEW + | | | http://bit.ly/2GFK4PU + | | | https://medium.com/@terjanq/xss-auditor-the-protector-of-unprotected-f900a5e15b7b | | | http://bit.ly/2XLQOlb + | | | https://habr.com/en/post/449182/ | | | http://bit.ly/2W6YqOK + | | | https://blog.trailofbits.com/2019/01/22/fuzzing-an-api-with-deepstate-part-1/ | | | http://bit.ly/2L061xq + | | | https://consensys.github.io/smart-contract-best-practices/known attacks/ | | | https://blog.quarkslab.com/android-application-diffing-engine-overview.html | | | http://bit.ly/2UHi2Yp + | | | https://blog.doyensec.com/2019/04/24/rubyzip-bug.html | | | https://sensepost.com/blog/2019/understanding-peap-in-depth/ | | | https://www.linkedin.com/pulse/micro-patching-vulnerabilities-tutorial-0patch-t-k/ | | | https://http3-explained.haxx.se/en/ | | | https://wybiral.github.io/code-art/projects/tiny-mirror/ | | | https://hackerone.com/reports/210779 | | | http://bit.ly/2VE8WQE + | | | http://bit.ly/2Y1LhHa + | | | https://research.801labs.org/developing-a-dll-injector/ | | | http://bit.ly/2Jbahrp + | | | https://www.darkmatter.ae/blogs/security-flaws-uncovered-in-sony-smart-tvs/ | | | https://paper.seebug.org/910/ | | | http://eternalsakura13.com/2019/04/29/CVE-2016-5198/ | | | https://securityriskadvisors.com/blog/aws-iam-exploitation/ | | | https://capsule8.com/blog/exploiting-systemd-journald-part-1/ | | | https://edoverflow.com/2019/ci-knew-there-would-be-bugs-here/ | | | https://medium.com/tenable-techblog/eight-devices-one-exploit-f5fc28c70a7c | | | https://d4stiny.github.io/Remote-Code-Execution-on-most-Dell-computers/ | | | http://bit.ly/2GWPxAL + | | | http://www.tomanthony.co.uk/blog/xss-attacks-googlebot-index-manipulation/ | | | http://bit.ly/2IYijVt + | | | https://www.virtuesecurity.com/tale-of-a-wormable-twitter-xss/ | | | https://hackerone.com/reports/563870 | | | http://bit.ly/2H9qH0X + | | | http://bit.ly/2Lxly8o + | | | http://bit.ly/2LyXKks + | | | https://www.tarlogic.com/en/blog/attacking-selenium-grid/ | | | http://bit.ly/2LwQ1mK + | | | http://bit.ly/2Hbwowt + | | | http://bit.ly/2PUMZr3 + | | | https://hackerone.com/reports/509924 | | | http://blog.0x42424242.in/2019/03/vstarcam-investigational-security.html | | | http://bit.ly/2JaLkNv + | | | http://bit.ly/2Jbl0Da + | | | https://medium.com/0xcc/rootpipe-reborn-part-ii-e5a1ffff6afe | | | https://www.nc-lp.com/blog/reverse-engineering-games-for-fun-and-ssrf-part-1 | | | https://classic.minecraft.net | | | https://www.my-internet-explorer.com/ | | | https://hackerone.com/reports/419883 | | | https://hackerone.com/reports/450365 | | | https://zeropwn.github.io/2019-05-13-xss-to-rce/ | | | https://security.lauritz-holtmann.de/advisories/cve-2019-11832/ | | | https://gist.github.com/jupenur/e5d0c6f9b58aa81860bf74e010cf1685 | | | https://astr0baby.wordpress.com/2019/01/26/custom-meterpreter-loader-in-2019/ | | | https://mdsattacks.com/ | | | https://thewover.github.io/Introducing-Donut/ | | | https://zombieloadattack.com/ | | | https://wojciechregula.blog/post/stealing-bear-notes-with-url-schemes/ | | | http://bit.ly/2Ep1u23 + | | | https://modexp.wordpress.com/2019/05/10/dotnet-loader-shellcode/ | | | http://bit.ly/2WQBt2E + | | | https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html | | | http://bit.ly/2LY1qfw + | | | https://landgrey.me/richfaces-cve-2018-14667/ | | | https://gist.github.com/wybiral/c8f46fdf1fc558d631b55de3a0267771 | | | https://liveoverflow.com/the-origin-of-script-kiddie-hacker-etymology/ | | | https://www.wpadblock.com/ | | | https://hackerone.com/reports/341908 | | | http://bit.ly/2WjQywF + | | | https://medium.com/tenable-techblog/stealing-downloads-from-slack-users-be6829a55f63 | | | https://snikt.net/blog/2019/05/22/to-fuzz-a-websocket/ | | | https://medium.com/@ghostlulzhacks/wayback-machine-e678a3567ec | | | http://lordofpwn.kr/index.php/writeup/cve-2019-8506-javascriptcore-exploit/ | | | https://medium.com/@fs0c131y/how-to-brick-all-samsung-phones-6aae4389bea | | | https://www.tarlogic.com/en/blog/backdoors-modulos-apache/ | | | https://zeropwn.github.io/2019-05-22-fun-with-uri-handlers/ | | | https://hackerone.com/reports/505424 | | | https://www.darkmatter.ae/papers-articles/from-zero-to-tfp0-part-1-prologue/ | | | http://bit.ly/2JY17yV + | | | http://bit.ly/2EroJZ4 + | | | https://theevilbit.github.io/posts/vmware fusion 11 guest vm rce cve-2019-5514/ | | | https://web-in-security.blogspot.com/2019/02/how-to-spoof-pdf-signatures.html | | | https://shenaniganslabs.io/2019/05/21/LXD-LPE.html | | | https://keikai.io/blog/p/currency-exchange | | | http://bit.ly/2M6nDrV + | | | https://petergarner.net/notes/index.php?thisnote=20180202-Travels+with+a+Pi | | | https://ysamm.com/?p=272 | | | https://portswigger.net/blog/abusing-jquery-for-css-powered-timing-attacks | | | https://medium.com/@subTee/flying-toruk-makto-b1bff8f6603c | | | https://www.fcvl.net/vulnerabilities/macosx-gatekeeper-bypass | | | http://bit.ly/2wyCHUx + | | | http://bit.ly/2IcgEc2 + | | | https://habr.com/en/company/drweb/blog/452076/ | | | https://phoenhex.re/2019-05-15/non-jit-bug-jit-exploit | | | https://labs.spotify.com/2013/06/18/creative-usernames/ | | | https://blog.devsecurity.eu/en/blog/dnspy-deserialization-vulnerability | | | https://blog.devsecurity.eu/en/blog/joplin-electron-rce | | | https://whereisk0shl.top/post/2019-05-11 | | | https://bnbdr.github.io/posts/wd/ | | | http://standa-note.blogspot.com/2018/02/amsi-bypass-with-null-character.html | | | http://bit.ly/2EH1I4m + | | | https://techblog.mediaservice.net/2019/03/a-journey-into-iot-hardware-hacking-uart/ | | | https://www.magiclantern.fm/ | | | http://bit.ly/2Wr8O7v + | | | https://www.inputzero.io/2019/06/hacking-smart-tv.html | | | http://bit.ly/2I0PuWB + | | | http://bit.ly/31aZJz2 + | | | https://www.tarlogic.com/en/blog/how-to-attack-kerberos/ | | | http://bit.ly/2K3whps + | | | http://homepages.laas.fr/rcayre/mirage-documentation/index.html | | | https://orangewirelabs.wordpress.com/2019/05/30/hacking-ios-xamarin-apps-with-frida/ | | | http://bit.ly/2Ipk2Ab + | | | http://bit.ly/31fBbVN + | | | https://theevilbit.github.io/posts/getting root with benign appstore apps/ | | | http://www.catch22.net/tuts/undocumented-createprocess | | | http://bit.ly/2Z5lwGu + | | | https://0x41.cf/infosec/2019/05/28/skype-web-plugin-ez-rce.html | | | http://bit.ly/2WsWu7t + | | | https://leakfree.wordpress.com/2015/03/12/php-object-instantiation-cve-2015-1033/ | | | https://blog.duszynski.eu/domain-hijack-through-http-301-cache-poisoning/ | | | https://www.fireeye.com/blog/threat-research/2019/06/hunting-com-objects.html | | | https://medium.com/@lerner98/skiptracing-reversing-spotify-app-3a6df367287d | | | https://secretgeek.github.io/html wysiwyg/html.html | | | https://medium.com/@notdan/curl-slight-of-hand-exploit-hysteria-29a82e5851d | | | https://blog.ripstech.com/2019/mybb-stored-xss-to-rce/ | | | https://appio.dev/vulns/googleplex-com-blind-xss/ | | | https://rce.wtf/2019/06/10/w2k.html | | | https://rambleed.com/ | | | https://habr.com/ru/company/dsec/blog/454592/ | | | https://medium.com/@two06/fun-with-frida-5d0f55dd331a | | | https://www.sneakymonkey.net/2019/05/22/trickbot-analysis/ | | | http://bit.ly/2WiM2KD + | | | https://eybisi.run/Mobile-Malware-Analysis-Overlay-and-How-to-Counter-it/ | | | http://bit.ly/2ID9Y6Y + | | | https://payatu.com/microsoft-edge-extensions-host-permission-bypass-cve-2019-0678/ | | | https://howhttps.works/ | | | https://harrisonsand.com/imsi-catcher/ | | | https://wookey-project.github.io/ | | | https://medium.com/@mr hacker/a-5000-idor-f4268fffcd2e | | | http://bit.ly/2ZzYurC + | | | hhttps://www.jaiminton.com/cheatsheet/DFIR/ | | | http://bit.ly/2x8SGJe + | | | https://blog.redteam.pl/2019/04/dns-based-threat-hunting-and-doh.html | | | https://hackerone.com/reports/576504 | | | https://jaiverma.github.io/blog/ac-hack | | | https://theofficialflow.github.io/2019/06/18/trinity.html | | | https://blog.xpnsec.com/evading-sysmon-dns-monitoring/ | | | http://bit.ly/2ItogYP + | | | https://xor.cat/2019/06/19/fortinet-forticam-vulns/ | | | http://bit.ly/2x2tKmW + | | | https://www.twistlock.com/labs-blog/breaking-out-of-coresos-rkt-3-new-cves/ | | | https://habr.com/ru/company/pt/blog/448378/ | | | https://dmsec.io/hacking-thousands-of-websites-via-third-party-javascript-libraries/ | | | https://dassur.ma/things/c-to-webassembly/ | | | https://blog.benjojo.co.uk/post/dive-into-the-world-of-dos-viruses | | | http://m4x0n3.blogspot.pt/2014/07/password-reset-code-bruteforce-account.html | | | https://plus.google.com/+AlexisImperialLegrandGoogle/posts/f9gm2G2BH5g | | | http://habrahabr.ru/post/231369/ | | | http://www.matriux.com/index.php?page=home | | | http://lcamtuf.coredump.cx/p0f3/ | | | http://lcamtuf.blogspot.gr/2014/08/a-bit-more-about-american-fuzzy-lop.html | | | http://www.garage4hackers.com/entry.php?b=3072 | | | http://blog.ptsecurity.com/2014/08/cell-phone-tapping-how-it-is-done-and.html | | | http://blog.internot.info/2014/06/paypals-2-factor-authentication2fa-good.html | | | http://blog.dornea.nu/2014/08/05/android-dynamic-code-analysis-mastering-droidbox/ | | | http://www.dirk-loss.de/python-tools.htm | | | http://usbdescriptors.com/ | | | https://hackademic.co.in/youtube-bug/ | | | https://www.cyberark.com/threat-research-blog/outlook-for-android-xss/ | | | https://alephsecurity.com/2019/06/17/xnu-qemu-arm64-1/ | | | https://www.wzdftpd.net/blog/rust-fuzzers.html | | | https://labs.jumpsec.com/2019/06/20/bypassing-antivirus-with-golang-gopher-it/ | | | http://bit.ly/2XyprhR + | | | https://objective-see.com/blog/blog 0x43.html | | | https://www.gironsec.com/blog/2019/06/yet-another-botnet-writeup/ | | | https://ledger-donjon.github.io/Ellipal-Security/ | | | http://bit.ly/2LnK35Z + | | | https://exp101t.blogspot.com/2019/04/cve-2017-5121-escape-analysis.html | | | https://dolosgroup.io/blog/2019/6/20/pillaging-the-jenkins-treasure-chest | | | http://bit.ly/2NeWeVf + | | | https://blog.duszynski.eu/tor-ip-disclosure-through-http-301-cache-poisoning/ | | | https://blog.jessfraz.com/post/why-open-source-firmware-is-important-for-security/ | | | http://www.enforcementtracker.com/ | | | https://playclassic.games/ | | | https://hackerone.com/reports/562335 | | | https://shhnjk.blogspot.com/2019/07/intro-to-chromes-gold-features.html | | | https://ssl-config.mozilla.org/ | | | https://gitlab.com/kennbroorg/iKy | | | https://blog.ripstech.com/2019/magento-rce-via-xss/ | | | https://decoder.cloud/2019/07/04/creating-windows-access-tokens/ | | | https://nytrosecurity.com/2019/06/30/writing-shellcodes-for-windows-x64/ | | | https://kripken.github.io/blog/binaryen/2019/06/11/fuzz-reduce-productivity.html | | | https://medium.com/bugbountywriteup/knocking-the-idor-6f80e8126ee4 | | | https://ktln2.org/2019/04/30/from-zero-to-hero/ | | | http://bit.ly/2LxSeNn + | | | http://bit.ly/2Jnc235 + | | | http://bit.ly/2xyhr1G + | | | https://medium.com/@alex91ar/debugging-the-samsung-android-kernel-part-1-ab2a9b87c162 | | | https://vulnerablecontainers.org/ | | | https://www.youtube.com/watch?v=VwH6B7aJYDU | | | https://hackerone.com/reports/403417 | | | http://bit.ly/32mecsz + | | | https://blog.rakeshmane.com/2019/07/u-xss-in-operamini-for-ios-browser-0-day.html | | | https://chryzsh.github.io/exploiting-privexchange/ | | | https://www.cambus.net/fuzzing-dns-zone-parsers/ | | | http://lordofpwn.kr/index.php/writeup/cve-2019-5825-v8-exploit/ | | | https://withatwist.dev/strong-password-rubygem-hijacked.html | | | http://bit.ly/2KXINHu + | | | https://www.secjuice.com/abusing-php-query-string-parser-bypass-ids-ips-waf/ | | | https://enigma0x3.net/2019/07/05/cve-2019-13142-razer-surround-1-1-63-0-eop/ | | | https://medium.com/tenable-techblog/an-exploit-chain-against-citrix-sd-wan-709db08fb4ac | | | https://medium.com/tenable-techblog/an-analysis-of-arlo-6f1b691236b5 | | | https://staaldraad.github.io/post/2019-07-11-bypass-docker-plugin-with-containerd/ | | | https://ledger-donjon.github.io/Unfixable-Key-Extraction-Attack-on-Trezor/ | | | https://medium.com/netscape/hacking-it-out-when-cors-wont-let-you-be-great-35f6206cc646 | | | http://bit.ly/2XYhMdc + | | | https://www.bamsoftware.com/hacks/zipbomb/ | | | https://techblog.eyeson.team/post/memelearning/ | | | https://thezerohack.com/hack-any-instagram | | | https://medium.com/@ruvlol/rce-in-jira-cve-2019-11581-901b845f0f | | | http://bit.ly/2Lrs6o8 + | | | https://gist.github.com/realoriginal/3a00478efd67b554f09f739380e2c3ba | | | http://bit.ly/2JBDGuB + | | | http://bit.ly/2LtS6PJ + | | | https://www.corben.io/atlassian-crowd-rce/ | | | https://sysrant.com/500-bounty-man-in-the-middle-on-slack/ | | | https://medium.com/@sansyrox/hacking-tinders-premium-model-43f9f699d44 | | | https://phoenhex.re/2019-07-10/ten-months-old-bug | | | http://bit.ly/2Lz6lD1 + | | | https://staaldraad.github.io/post/2019-07-16-cve-2019-13139-docker-build/ | | | http://bit.ly/2XVf4B6 + | | | https://harry.garrood.me/blog/malicious-code-in-purescript-npm-installer/ | | | https://medium.com/@ScatteredSecrets/how-to-crack-billions-of-passwords-6773af298172 | | | http://bit.ly/2JN677F + | | | https://latacora.micro.blog/2019/07/16/the-pgp-problem.html | | | https://ardern.io/2019/06/20/payload-bxss/ | | | http://bit.ly/2GtDPyi + | | | https://blog.ropnop.com/docker-for-pentesters/ | | | http://bit.ly/2YiYOd9 + | | | http://bit.ly/2Ohxb4A + | | | https://paper.seebug.org/990/ | | | https://zero.lol/2019-07-21-axway-securetransport-xml-injection/ | | | https://blog.assetnote.io/bug-bounty/2019/07/17/rce-on-zoom/ | | | http://bit.ly/2GtMW1R + | | | https://trustfoundry.net/basic-rop-techniques-and-tricks/ | | | https://blog.doyensec.com/2019/07/22/jackson-gadgets.html | | | https://blog.trailofbits.com/2019/07/19/understanding-docker-container-escapes/ | | | https://mthbernardes.github.io/rce/2018/03/14/abusing-h2-database-alias.html | | | https://pentest.blog/android-malware-analysis-dissecting-hydra-dropper/ | | | http://orbis.stanford.edu/ | | | http://bit.ly/2Mdl3Pt + | | | http://bit.ly/2YIS8cQ + | | | http://bit.ly/2Mx0ygL + | | | http://bit.ly/2ypIexV + | | | https://raw-data.gitlab.io/post/autoit fud/ | | | https://86hh.github.io/cfg2.html | | | https://rhinosecuritylabs.com/aws/mfa-phishing-on-aws/ | | | https://akayn.github.io/2019/07/25/PwningWebkit.html | | | http://bit.ly/332Tnmm + | | | https://medium.com/0xcc/what-the-heck-is-tcp-port-18800-a16899f0f48f | | | http://bit.ly/2Yvu8FK + | | | http://bit.ly/2MvQhkY + | | | https://maxkersten.nl/binary-analysis-course/binary-types/browser-plug-in/ | | | https://d4stiny.github.io/Local-Privilege-Escalation-on-most-Dell-computers/ | | | http://bit.ly/2Oy9Rzu + | | | https://bo0om.ru/telegram-bugbounty-writeup | | | https://amonitoring.ru/article/steamclient-0day/ | | | http://bit.ly/2GWT1UK + | | | http://bit.ly/2ZJVcCs + | | | https://m0chan.github.io/2019/07/31/How-To-Attack-Kerberos-101.html | | | http://bit.ly/2YTEBuS + | | | https://tactifail.wordpress.com/2019/07/26/three-vulns-for-the-price-of-one/ | | | https://blog.flanker017.me/galaxy-leapfrogging-pwning-the-galaxy-s8/ | | | http://bit.ly/2YwaWMQ + | | | http://bit.ly/33kIexb + | | | https://icyphox.sh/blog/fb50/ | | | https://paper.seebug.org/993/ | | | https://gravitational.com/blog/how-saml-authentication-works/ | | | http://mahmoudsec.blogspot.com/2019/08/exploiting-out-of-band-xxe-using.html | | | http://blog.orange.tw/2019/07/attacking-ssl-vpn-part-1-preauth-rce-on-palo-alto.html | | | https://vimeo.com/341663153 | | | http://www.nothingsecurity.com/ | | | https://www.baseapp.com/iot/antenna-tuning-for-beginners/ | | | https://appio.dev/vulns/clickjacking-xss-on-google-org/ | | | https://medium.com/rangeforce/meteor-blind-nosql-injection-29211775cd01 | | | https://blog.jse.li/posts/chrome-76-incognito-filesystem-timing/ | | | https://go-re.tk | | | https://a13xp0p0v.github.io/2019/08/10/cfu.html | | | https://modexp.wordpress.com/2019/08/12/windows-process-injection-knowndlls/ | | | https://raesene.github.io/blog/2019/08/10/making-it-rain-shells-in-Kubernetes/ | | | https://siguza.github.io/APRR/ | | | http://bit.ly/2Hbr77Q + | | | https://medium.com/cruise/container-platform-security-7a3057a27663 | | | https://zero.lol/2019-08-11-the-year-of-linux-on-the-desktop/ | | | http://bit.ly/2YQMhTl + | | | http://www.peppermalware.com/2019/07/analysis-of-frenchy-shellcode.html | | | http://bit.ly/2KGOVBa + | | | https://research.checkpoint.com/select-code execution-from-using-sqlite/ | | | https://initblog.com/2019/switcheroo/ | | | https://www.janmeppe.com/blog/regex-for-noobs/ | | | https://salibra.com/p/buying-tea-with-wechat-pay-d3931febd2be | | | http://bit.ly/2KM6v8c + | | | https://hackerone.com/reports/637194 | | | https://secrary.com/Random/anti re simple/ | | | https://hausec.com/2019/08/12/offensive-lateral-movement/ | | | https://heapspray.io/automating-pentests-with-webdriver.html | | | https://blog.firosolutions.com/exploits/webmin/ | | | http://bit.ly/33VrwoL + | | | https://nullprogram.com/blog/2019/07/10/ | | | http://bit.ly/31PNCa6 + | | | https://knobattack.com | | | https://davejingtian.org/2019/07/17/usb-fuzzing-a-usb-perspective/ | | | http://bit.ly/2Zkb1Px + | | | https://wojciechregula.blog/post/dangerous-get-task-allow-entitlement/ | | | https://amonitoring.ru/article/onemore steam eop 0day/ | | | https://gts3.org/2019/cve-2019-0609.html | | | https://www.tarlogic.com/en/blog/vulnerabilities-in-ampache/ | | | https://blog.regehr.org/archives/1687 | | | https://jordanpotti.com/2019/08/26/phishing-with-saml-and-sso-providers/ | | | http://bit.ly/2ZyvrrT + | | | https://gist.github.com/nstarke/ed0aba2c882b8b3078747a567ee00520 | | | https://osandamalith.com/2019/08/27/running-shellcode-directly-in-c/ | | | http://bit.ly/2MJy1pg + | | | https://gist.github.com/TarlogicSecurity/2f221924fef8c14a1d8e29f3cb5c5c4a | | | http://bit.ly/2ZkSZkW + | | | http://bit.ly/2L3Sq69 + | | | http://bit.ly/2Ugodnw + | | | https://blog.semmle.com/uboot-rce-nfs-vulnerability/ | | | https://verifpal.com/ | | | https://labs.mwrinfosecurity.com/blog/autocad-designing-a-kill-chain/ | | | https://samczsun.com/the-0x-vulnerability-explained/ | | | https://blog.bi0s.in/2019/08/18/Pwn/Browser-Exploitation/cve-2019-11707-writeup/ | | | https://palant.de/2019/08/19/kaspersky-in-the-middle-what-could-possibly-go-wrong/ | | | https://medium.com/tenable-techblog/rooting-routeros-with-a-usb-drive-16d7b8665f90 | | | http://hatriot.github.io/blog/2019/08/22/exploiting-leaked-process-and-thread-handles/ | | | https://winworldpc.com/library/operating-systems | | | https://iximiuz.com/en/posts/from-docker-container-to-bootable-linux-disk-image/ | | | http://www.windytan.com/2019/08/capturing-pal-video-with-sdr-and-few.html | | | http://www.primalsecurity.net/python-tutorials/ | | | https://bitbucket.org/mattinfosec/wordhound/ | | | https://fuzion24.github.io/android/gradle/xposed/jar/java/build/sdk/2014/08/15/android-gradle-xposed/ | | | http://dustri.org/b/torbrowserbundleorg.html | | | http://www.room362.com/blog/2014/08/14/milkman-creating-processes-as-any-currently-logged-in-user/ | | | https://www.miknet.net/security/optimizing-birthday-attack/ | | | http://www.ioactive.com/pdfs/Remote Automotive Attack Surfaces.pdf | | | http://docs.cs.up.ac.za/programming/asm/derick tut/syscalls.html | | | https://isc.sans.edu/forums/diary/Web+Server+Attack+Investigation+-+Installing+a+Bot+and+Reverse+Shell+via+a+PHP+Vulnerability/18543 | | | http://jvns.ca/blog/2014/08/12/what-happens-if-you-write-a-tcp-stack-in-python/ | | | https://doegox.github.io/ElectronicColoringBook/ | | | https://hackerone.com/reports/498052 | | | https://ysamm.com/?p=280 | | | https://hackerone.com/reports/446593 | | | https://www.corben.io/jenkins-to-full-pwnage/ | | | https://www.contextis.com/en/blog/common-language-runtime-hook-for-persistence | | | https://mogwailabs.de/blog/2019/04/attacking-rmi-based-jmx-services/ | | | https://research.securitum.com/security-analysis-of-portal-element/ | | | https://blog.trailofbits.com/2019/09/02/rewriting-functions-in-compiled-binaries/ | | | http://bit.ly/2lGFkBx + | | | http://bit.ly/2k22O3H + | | | https://gist.github.com/roycewilliams/cf7fce5777d47a8b22265515dba8d004 | | | http://bit.ly/2k53EwL + | | | https://leveldown.de/blog/tensorflow-sidechannel-analysis/ | | | https://medium.com/@byte St0rm/adventures-in-the-wonderful-world-of-amsi-25d235eb749c | | | https://losttraindude.itch.io/zfrag | | | https://pfery.com/create-your-own-portable-rfid-pentest-kit/ | | | https://habr.com/en/post/466801/ | | | https://leucosite.com/Microsoft-Edge-uXSS/ | | | https://www.komodosec.com/post/an-accidental-ssrf-honeypot-in-google-calendar | | | https://incogbyte.github.io/pathtraversal/ | | | http://bit.ly/2kxhWGM + | | | http://bit.ly/2kGM0Q0 + | | | https://giuliocomi.blogspot.com/2019/08/insecure-secrets-encryption-at-rest.html | | | https://simjacker.com/ | | | http://bit.ly/2lSCoSp + | | | https://blog.openzeppelin.com/libra-vulnerability-summary/ | | | http://blogs.360.cn/post/When-GC-Triggers-Callback.html | | | https://blog.aquasec.com/dns-spoofing-kubernetes-clusters | | | https://blog.cystack.net/subdomain-takeover/ | | | https://xlab.tencent.com/en/2019/09/12/deep-analysis-of-cve-2019-8014/ | | | http://bit.ly/2meGnJr + | | | http://bit.ly/2mc1A6F + | | | https://www.vusec.net/projects/netcat/ | | | http://blog.lambdaconcept.com/doku.php?id=research:graywire | | | http://allenchou.net/2019/08/trigonometry-basics-sine-cosine/ | | | https://blog.ripstech.com/2019/bitbucket-path-traversal-to-rce/ | | | https://iwantmore.pizza/posts/cve-2019-10392.html | | | http://bit.ly/2lWASis + | | | https://0x00sec.org/t/reversing-hackex-an-android-game/16243 | | | https://teamrot.fi/2019/05/23/self-hosted-burp-collaborator-with-custom-domain | | | https://vavkamil.cz/2019/09/11/serverless-blind-xss-hunter-with-cloudflare-workers/ | | | http://bit.ly/2kI1fbK + | | | https://blog.semmle.com/android-deserialization-vulnerabilities/ | | | http://bit.ly/2kRpyUv + | | | https://carvesystems.com/news/command-injection-with-usb-peripherals/ | | | https://docs.google.com/document/d/1XWzlOOuoTE7DUK60qTk1Wz1VNhbPaHqKEzyxPfyW4GQ | | | https://dirkjanm.io/azure-ad-privilege-escalation-application-admin/ | | | https://research.securitum.com/server-side-template-injection-on-the-example-of-pebble/ | | | http://bit.ly/2lX3yI2 + | | | https://blog.openzeppelin.com/bypassing-smart-contract-timelocks/ | | | http://bit.ly/2lZczQP + | | | https://aem1k.com/oo/ | | | https://smallstep.com/blog/everything-pki/ | | | https://hackerone.com/reports/692603 | | | https://medium.com/@terjanq/dom-clobbering-techniques-8443547ebe94 | | | https://samcurry.net/analysis-of-cve-2019-14994/ | | | http://bit.ly/2kGLOjK + | | | https://blog.grimm-co.com/post/guided-fuzzing-with-driller/ | | | https://modexp.wordpress.com/2019/08/30/minidumpwritedump-via-com-services-dll/ | | | https://pentestlab.blog/2019/09/11/microsoft-exchange-mailbox-post-compromise/ | | | http://bit.ly/2mW6FjW + | | | https://interrupt.memfault.com/blog/ble-throughput-primer | | | https://alephsecurity.com/2019/09/02/Z3-for-webapp-security/ | | | https://ackcent.com/blog/in-depth-freemarker-template-injection/ | | | https://adapt-and-attack.com/2019/08/29/proxying-com-for-stable-hijacks/ | | | https://medium.com/@memn0ps/http-request-smuggling-cl-te-7c40e246021c | | | https://blog.xpnsec.com/bypassing-macos-privacy-controls/ | | | https://medium.com/@akshukatkar/rce-with-flask-jinja-template-injection-ea5d0201b870 | | | http://bit.ly/2lXfyJy + | | | https://medium.com/@vickieli/how-to-find-more-idors-ae2db67c9489 | | | http://bit.ly/2ltl8DK + | | | https://hsivonen.fi/string-length/ | | | https://nathandavison.com/blog/haproxy-http-request-smuggling | | | https://frederik-braun.com/firefox-ui-xss-leading-to-rce.html | | | http://bit.ly/2o9MCPZ + | | | https://frichetten.com/blog/bypass-guardduty-pentest-alerts | | | https://enciphers.github.io/Mobexler/ | | | https://pentestlab.blog/2017/06/07/uac-bypass-fodhelper/ | | | http://bit.ly/2nfcQ3d + | | | http://bit.ly/2pCAqHL + | | | http://bit.ly/2oN3uvR + | | | https://awakened1712.github.io/hacking/hacking-whatsapp-gif-rce/ | | | https://starlabs.sg/advisories/19-8038/ | | | http://bit.ly/2VaTQ2d + | | | https://sysenter-eip.github.io/VBParser | | | http://bit.ly/2pIHGCh + | | | https://thesw4rm.gitlab.io/nfqueue c2/2019/09/15/Command-and-Control-via-TCP-Handshake/ | | | https://medium.com/intigriti/gotcha-taking-phishing-to-a-whole-new-level-72eda9e30bef | | | https://eddiez.me/spotify-vacuum/ | | | http://rl337.org/2012/07/31/in-java-when-is-math-abs-negative/ | | | http://bit.ly/2oOXGSq + | | | https://hackerone.com/reports/631956 | | | https://5alt.me/2019/10/HackMD%20Stored%20XSS%20and%20HackMD%20Desktop%20RCE/ | | | https://medium.com/bugbountywriteup/sql-injection-to-lfi-to-rce-536bed29a862 | | | https://nightowl131.github.io/AAPG/ | | | https://theappanalyst.com/bird.html | | | http://bit.ly/33ljTql + | | | https://securing.github.io/SCSVS/ | | | https://alex.kaskaso.li/post/revisiting-email-spoofing | | | http://bit.ly/2B5NZSt + | | | http://bit.ly/2IEgpay + | | | https://medium.com/swlh/php-type-juggling-vulnerabilities-3e28c4ed5c09 | | | https://xerub.github.io/ios/iboot/2018/05/10/de-rebus-antiquis.html | | | https://x-c3ll.github.io//posts/CVE-2018-7081-RCE-ArubaOS/ | | | https://www.preempt.com/blog/drop-the-mic-2-active-directory-open-to-more-ntlm-attacks/ | | | https://collapseos.org/ | | | http://www.pouet.net/prod.php?which=83222 | | | http://bit.ly/2Mtnpbj + | | | http://bit.ly/2J0wSpP + | | | http://bit.ly/2IXw455 + | | | https://redteamzone.com/ThinVNC/ | | | https://iwantmore.pizza/posts/meterpreter-psattack.html | | | https://www.praetorian.com/blog/running-a-net-assembly-in-memory-with-meterpreter | | | https://medium.com/@netscylla/pentesters-guide-to-oracle-hacking-1dcf7068d573 | | | https://osandamalith.com/2019/10/12/bypassing-the-webarx-web-application-firewall-waf/ | | | http://bit.ly/2VQ3ac8 + | | | http://bit.ly/31oU5bi + | | | https://www.sudo.ws/alerts/minus 1 uid.html | | | http://bit.ly/32s7JMc + | | | https://dmaasland.github.io/posts/mcafee.html | | | https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/ | | | https://blog.paloaltonetworks.com/2019/10/cloud-kubernetes-vulnerabilities/ | | | https://dirkjanm.io/office-365-network-attacks-via-insecure-reply-url/ | | | http://bit.ly/2IF9X3f + | | | https://christopher-vella.com/2019/09/06/recent-edr-av-observations/ | | | http://bit.ly/33BSlx5 + | | | http://bit.ly/35KORdl + | | | https://jvns.ca/blog/2019/10/03/sql-queries-don-t-start-with-select/ | | | https://buer.haus/2019/10/18/a-tale-of-exploitation-in-spreadsheet-file-conversions/ | | | https://www.shielder.it/blog/exploiting-an-old-novnc-xss-cve-2017-18635-in-openstack/ | | | https://x-c3ll.github.io//posts/CSS-Injection-Primitives/ | | | http://bit.ly/2Jg9J2v + | | | https://cturt.github.io/ps2-yabasic.html | | | https://habr.com/en/company/dsec/blog/472762/ | | | http://bit.ly/2PhNa1k + | | | https://research.securitum.com/jwt-json-web-token-security/ | | | http://bit.ly/32Ja1XH + | | | http://bit.ly/2qJmUmx + | | | http://bit.ly/2BL3Ypn + | | | https://medium.com/@MalFuzzer/dissecting-ardamax-keylogger-f33f922d2576 | | | https://medium.com/@philiptsukerman/activation-contexts-a-love-story-5f57f82bccd | | | http://www.snaponair.com/ | | | https://binji.github.io/posts/raw-wasm-making-a-maze-race/ | | | http://bit.ly/34kr6aJ + | | | https://research.securitum.com/prototype-pollution-rce-kibana-cve-2019-7609/ | | | http://bit.ly/2BVSEqP + | | | https://lab.wallarm.com/race-condition-in-web-applications/ | | | http://bit.ly/365EwsH + | | | https://pulsesecurity.co.nz/advisories/untitled-goose-game-deserialization | | | http://www.hydrogen18.com/blog/reddit-android-app-leaks-images.html | | | https://medium.com/tenable-techblog/routeros-chain-to-root-f4e0b07c0b21 | | | http://bit.ly/2qchqQY + | |