Hello Hacking8!

Python is a valuable programming language, but using it without proper security best practices puts applications at risk of an attack.
The post Six Python security best practices for developers appeared first on Software Integrity Blog.

There’s a new paper from Mark Thompson and Hassan Takabi of the University of North Texas. The title captures the question: Effectiveness Of Using Card Games To Teach Threat Modeling For Secure Web Application Developments Gamification of classroom assignments and online tools has grown significantly in recent years. There have been a number of card…

This quote from Bob Iger, head of Disney, is quite interesting for his perspective as a leader of a big company: There is a human side to it that I try to apply and consider. [But] the harder thing is to balance with the reality that not everything is perfect. In the normal course of…

[Dec 20 update: The first draft of this post ended up with both consumer and enterprise advice, which made it complex. The enterprise half is now on the IANS blog: Never Waste a Good Crisis: Yahoo Edition.] Yesterday, Yahoo disclosed that attackers broke into Yahoo in 2013 and stole details on a billion accounts. Brian…

Image credit: Bill Anders, Apollo 8, launched this day, Dec 21, 1968.

Someone once asked me why I like Star Wars more than Star Trek. I was a bit taken aback, and he assumed that since I use it so much, I obviously prefer it. The real reason I use Star Wars is not that it’s better, but that there’s a small canon, and I don’t have…

There’s some really interesting leaked photos and analysis by Charles Goodman. “Leaked photos from the Rogue One sequel (Mainly Speculation – Possible Spoilers).”

Malicious admin users get added to vulnerable WordPress sites often. This can happen in a variety of different ways, and sometimes the malware that creates these malicious users can hide in plain sight. Injecting a malicious admin user into a WordPress site can allow attackers easy access back into a victims’ website after it has been cleaned.
Symptoms of Infection
Recently, one of our clients requested our assistance with their website because it had been added to Google’s Blocklist.
Continue reading WordPress Admin Creator – A Simple, But Effective Attack at Sucuri Blog.
The post WordPress Admin Creator – A Simple, But Effective Attack appeared first on Security Boulevard.

(You can read this article in English too.) 免責事項 Denoを開発しているDeno Land Inc.は、脆弱性報奨金制度等を実施しておらず、脆弱性の診断行為に関する明示的な許可を出していません。 本記事は、公開されている情報を元に脆弱性の

(この記事は日本語でも読むことが出来ます。) Disclaimer Deno Land Inc., which develops Deno, isn’t running bug bounty programs, so they don’t explicitly allow vulnerability assessments. This article describes the vulnerabilities that were reported as potential vulnerabilities, using publicly available information. This was done without actually exploiting/demonstrating the vulnerabilities and it’s not intended to encourage you to perform an unauthorized vulnerability assessment. If you find any vulnerabilities in Deno-related services/products, please report them to engineering@deno.com.1 Also, the information contained in this article may be inaccurate

List of all top-level domains in all data formats.

漏洞类型:Payment tampering, Memory corruption 作者:Marx Chryz

漏洞类型:Information disclosure, GraphQL bug 赏金:$2,500 作者:Night Hawk

程序:Chrome 漏洞类型:Browser bug 作者:Alesandro Ortiz (@AlesandroOrtizR)

漏洞类型:Supply chain attack, WordPress plugin confusion, WordPress theme confusion 作者:Kamil Vavra (@vavkamil) & Gal Nagli (@naglinagli)

程序:RocketChat 漏洞类型:Authorization flaw 赏金:N/A (VDP) 作者:Rojan Rijal (@uraniumhacker)

程序:Atlassian 漏洞类型:XSS 赏金:$600 作者:Thedarkwayg (@shadow_CLAY)

程序:Fastmail 漏洞类型:Account takeover, Password reset flaw 赏金:$0 (Informative) 作者:0xGodson (@0xGodson_)

程序:Moodle 漏洞类型:SQL injection 赏金:N/A (VDP) 作者:rekter0 (@rekter0)

漏洞类型:Payment tampering 赏金:$600 作者:Deep Patidar (@itsdeepceh)

程序:Microsoft 漏洞类型:Local Privilege Escalation 作者:Romain Carnus, Maxime Nadeau, Julien Pineault & Mathieu Novis

Google Chrome Blink setBaseAndExtent use after free vulnerability

VMware vCenter 7.0.2.00100 版本任意文件读、SSRF、XSS 漏洞

UAF漏洞全称是use after free，free是指函数是在堆上动态分配空间后不再使用该数据从而被回收。但是由于程序员的一些不适当的操作，会导致攻击者能够操控已经被释放的区域，从而执行一些byte codes。

During the summer of 2021, Horizen Labs engaged NCC Group to conduct a cryptography review of Zendoo protocol’s proof verifier. This system generates and verifies modified Marlin proofs with a polynomial commitment scheme based on the hardness of the discrete logarithm problem in prime-order groups. The system also provides optimized batch verification of accumulated proofs. … Continue reading Public Report – Zendoo Proof Verifier Cryptography Review →

timwhitez starred arsium/HookLib
Nov 30, 2021
arsium/HookLib
A library to hook functions !
C#
11 Updated Dec 2

timwhitez starred API-Security/APISandbox
Nov 30, 2021
API-Security/APISandbox
Pre-Built Vulnerable Multiple API Scenarios Environments Based on Docker-Compose.
FreeMarker
87 Updated Nov 26

timwhitez starred klinix5/InstallerFileTakeOverPatch
Nov 30, 2021
klinix5/InstallerFileTakeOverPatch
C++
20 Updated Nov 30

timwhitez starred mgeeky/ElusiveMice
Nov 30, 2021
mgeeky/ElusiveMice
Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind
C
173 Updated Oct 24

timwhitez starred EspressoCake/Self_Deletion_BOF
Dec 2, 2021
EspressoCake/Self_Deletion_BOF
BOF implementation of the research by @jonaslyk and the drafted PoC from @LloydLabs
C
102 Updated Oct 3

This month, members of NCC Group will be presenting their work at the following conferences: Matt Lewis (NCC Group) & Mark McFadden, “Show me the numbers: Workshop on Analyzing IETF Data (AID)”, to be presented at the IETF Internet Architecture Board Workshop on Analyzing IETF Data 2021 (November 29 – December 1 2021) Michael Gough, … Continue reading Conference Talks – December 2021 →

一、情报背景 2021年11月10日，ESET安全公司在twitter发布了推文称发现被捆绑后门的IDA Pr
Read More

EZ_TP www.zip源码泄漏，在控制器下可以看到hello控制器有一个可以利用变量覆盖触发Phar反序列化的地方： public function hello() { highlight_file(__FILE__); $hello = base64_encode('Welcome to D0

使用launchctl注册喝水任务

在代码审计的过程中，梳理了一个某系统的漏洞，自己实现了一个大致的漏洞环境，记录一下过程。

Date: 2021-11-29 22:02 UTC
OS: Alpine linux
PHP Version: 8.0.13
Package: JIT
Title: Tracing JIT causing various errors (trait related?)

Description
Continue reading on InfoSec Write-ups »

Cybereason and SiS International Limited, a leading IT distributor in Hong Kong, are partnering to protect enterprises in Hong Kong from today’s sophisticated cyberattacks.
The post Cybereason Partners with SiS International to Protect Joint Customers in Hong Kong appeared first on Security Boulevard.

Panasonic disclosed a security breach after threat actors gained access to its servers storing potentially sensitive information. Japanese electronics giant Panasonic disclosed a security breach after threat actors gained access to some servers of the company containing sensitive data. The company discovered the intrusion on November 11 and immediately launched an investigation, which is still […]
The post Panasonic confirmed that its network was illegally accessed by attackers appeared first on Security Affairs.

The importance of Zero Trust is derived from how it functions. Instead of focusing on protecting a physical network, a Zero Trust network works by focusing on securing the resources that reside on or have access to the network such as data, identities, and services.

はじめに この記事はCTF Advent Calendar 2021の1日目の記事です。明日は...誰もいません！誰かなんか投稿してくれ〜。 →ふぁぼんさんがTSG LIVE! 7 ライブCTF参加記を投稿してくれました。TSG LIVE楽しかったですね。 *1 2年前pwnを始めた時にC++のpwnがよぐ分がんなかったので、当時の自分に向けてなるべく詳しく説明します。*2 当時C++のpwnが難しいと感じた主な原因は、std::stringやstd::vectorなどの「よく分からん型」と、テンプレートとか仮想メソッドとかの「よく分からん挙動」の存在だと思います。 C++のrevが苦手なのも…

Seyi Akiwowo’s reputation precedes her. Akiwowo is the founder of Glitch, an organization that seeks to end online abuse. We spoke with Seyi over video chat to learn about what drives her, why she does what she does and what she’d be doing if not battling trolls online for a living.
The post Hacks Decoded: Seyi Akiwowo, Founder of Glitch appeared first on Mozilla Hacks - the Web developer blog.

Hardware hacking technique gets points for innovation, although some degree of social engineering is required

Reports suggest that intrusion may have persisted for months

New web targets for the discerning hacker

360-CERT每日安全简报

After showing interceptor’s options, it’s time to continue coding! On the menu are registry callbacks, doubly linked lists and a struggle with I/O in native C. 1. Interceptor 2.0 Until now, I relied on the Evil driver to patch kernel callbacks while I attempted to tackle $vendor2, however the Evil driver only implements patching for … Continue reading Kernel Karnage – Part 5 (I/O & Callbacks) →

Background
On October 27, 2021, our Botmon system ided an attacker attacking Edgewater Networks' devices via CVE-2017-6079 with a relatively unique mount file system command in its payload, which had our attention, and after analysis, we confirmed that this was a brand new botnet, and based on it's targeting of

漏洞报告
【VK.com】XSS
https://hackerone.com/reports/1115763
【 VK.com】#1343280 Получаем название и аватарку (50x50) частной группы.
https://hackerone.com/reports/1343280
【 VK.com】#1253124 XSS в выборе товара.
https://hackerone.com/reports/1253124
【 VK.com】#1268115 Просмотр аватарки замороженной страницы/частной группы.
https://hackerone.com/reports/1268115
【Azbuka Vkusa】相册组件中的反射型XSS
https://hackerone.com/reports/988271
【Mail.ru】存储型XSS
https://hackerone.com/reports/755322
【asecamp】越权导致任意用户发表评论
https://hackerone.com/reports/1307943
挖洞技巧
构建完美的赏金漏洞自动化
https://labs.detectify.com/2021/11/30/hakluke-creating-the-perfect-bug-bounty-automation/
CVE-2021-21234 Spring Boot 目录遍历（复现）
https://pyn3rd.github.io/2021/10/25/CVE-2021-21234-Spring-Boot-Actuator-Logview-Directory-Traversal/
挖洞工具
自动化网络侦察工具
https://github.com/xerohackcom/webrecon

Twitter 12月1日宣布将允许私人请求删除以他们为主角的图片或视频，目的是防止骚扰或侵犯隐私。

本文主要从应急响应的流程，划分，应急响应各个阶段，人员划分，准备阶段及碰到应急响应的时候，如何将风险降低。还有对数据保护的一些方式。

#A.B.U #RedTips 改进的DLL Hollowing技术变体：无需LoadLibrar...

全球动态1.美国和加拿大关键基础设施被新型勒索软件Sabbath盯上新型勒索软件Sabbath（又名 UNC2190）自 2021 年 6 ...