─────────────────────────────────────────────────────────────────────────────── ─▄█ ─███ ────────────────────────────────────────────────────────────────███ ▄██ ███ ██ ████ ████ ▄██ ███ ▄██▀███ ███▄█▄ ▄██ ██▄ ██▄ ██▄ █████ ▄██ ███ ██████ ███ ███ ████ ████ ▄███ ███ ▄███ ▀█ ███ ▀ ▄███ ███▄ ██▄ ██▄ ███ ▄███ ███ ███ ███ ███ ████ ████ ████ ███ ████ ▄ ███ ████ ████ ██▄ ██▄ ▀ ▀███ ███ ███ ███ ███ ▀██ ██▀ ▀██ ███ ▀██▄▄█▀ ███ ▀██ ██▀ ██ ███ ▀██ ███ ─────────────────────────▄ ███ ───────────────────────────────────────────── ───────────────────────────────────────────────────────────────────▀█▀▄█▀ 20190924 ──news ───────────────────────────────────────────────────────────────────────────────- Crown Sterling demos 256-bit RSA key-cracking at private event - GitHub is now a CVE Numbering Authority - Data of 24.3 million Lumin PDF users shared on hacking forum - 125 New Flaws Found in Routers and NAS Devices from Popular Brands - Teen music hacker arrested in UK for stealing bands unreleased music - AMD ATI Radeon ATIDXX64.DLL shader functionality RCE vulnerability - The Air Force Will Let Hackers Try to Hijack an Orbiting Satellite - Company That Provides Tech to ICE Not Renewing Contract After Code-Deletion Protest - Tibetan Groups Targeted with 1-Click Mobile Exploits ───────────────────────────────────────────────────────────────────────────────good reads ───────────────────────────────────────────────────────────────────────────────- Revealed: catastrophic effects of working as a Facebook moderator - Recent EDR & AV Observations - How to Win the Battle Over Data - /e/ - Apple and Google Free Smartphone - Documents reveal how Russia taps phone companies for surveillance - Russian state hackers rarely share code with one another ───────────────────────────────────────────────────────────────────────────────useful/projects ───────────────────────────────────────────────────────────────────────────────- evilsocket/pwnagotchi - A cute, ML powered Wifi pwner - Bellingcat's Online Investigation Toolkit - RiotGames/key-conjurer - Temporary Credential Service - Low Privilege Active Directory Enumeration from a non-Domain Joined Host - guitmz/virii - Collection of ancient computer virus source codes. - TinyGo - マイコンやWebAssemblyが作れる軽量なGo言語 - OP25 ON RASPBERRY PI PART 1 - RUB-SysSec/redqueen - x86 Fuzzer - .url persistence detection yara rules - Dragon CTF 2019 Teaser ───────────────────────────────────────────────────────────────────────────────cheat codes ───────────────────────────────────────────────────────────────────────────────- Fast Sleep by netspooky - shellcode shitpost - CVE-2019-16518 - BLE Vape Voltage Modification Vuln - nccgroup/thetick - A simple embedded Linux backdoor. - AppArmor bypassed via a malicious image that specifies a volume at /proc - PoC Tweet - CVE-2019-14835: QEMU-KVM Guest to Host Kernel Escape Vuln - vhost/vhost_net kernel buffer overflow - vBulletin 5.x 0day pre-auth RCE exploit - Find GitHub secrets in real time right from your browser ───────────────────────────────────────────────────────────────────────────────safari zone ────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────── [aneilan] - Some more Phishing Pages[evildaemond] - Fancy Samsung Fridge Taken By thu.gg[hermit] - Colorado Higher Education Open Redirect to a porn site's S3 Bucket - A dork for said porn site's S3 bucket "site:s3.amazonaws.com/porn-video"[yuu] - Drum and Bass generator - Blank Thread on ThreadReaderApp[x0] - Nanny Cam on ShodanWeekly Mix by @0Katz