Port 22

Uncovering CVE-2019-0232: A Remote Code Execution Vulnerability in Apache Tomcat

Trend MicroTrend Micro

Deobfuscating APT32 Flow Graphs with Cutter and Radare2

/u/MegabeetsReddit NetSec

Vulnerability in French Government Tchap Chat App

Bruce SchneierSchneier on Security

Good stuff for AFL fuzzer (intro guide)

/u/kerby_eReddit NetSec

The most common OAuth 2.0 Hacks

/u/atomlib_comReddit NetSec

A quick TLDR of the attacks mentioned in the infamous Mueller report

/u/kangsterizerReddit NetSec

'Karkoff' Is the New 'DNSpionage' With Selective Targeting Strategy

noreply@blogger.com (Swati Khandelwal)The Hackers News

carbanak source leaked and added to github

/u/d4nk1stReddit NetSec

GitHub Gist Recon - The art of finding information leaks in GitHub Gists and elsewhere

/u/_pdp_Reddit NetSec

WannaCryptor accidental hero pleads guilty to malware charges

Tom FoltnESET

Stuxnet Family Tree Grows

Kelly Jackson Higgins Executive Editor at Dark ReadingDark Reading - Threat Intelligence

Termshark - a terminal UI for tshark inspired by Wireshark

/u/DreamlessMojoReddit NetSec

Google File Cabinet Plays Host to Malware Payloads

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

CARBANAK Week Part Two: Continuing the CARBANAK Source Code Analysis

Michael Bailey (noemail@noemail.org)Fire Eye Threat Research

Vulnerability Management ZeroOne Release

/u/FiroSolutionsReddit NetSec

Getting access to Zendesks Google Cloud and Artifactory from GitHub dotfile repos

/u/MempodipperReddit NetSec

When Every Attack Is a Zero Day

Saumitra Das CTO and Co-Founder of Blue HexagonDark Reading - Threat Intelligence

G7 Comes Out in Favor of Encryption Backdoors

Bruce SchneierSchneier on Security

GitHub - Cuckoo Sandbox plugin for extracts configuration data of known malware

/u/oil_sardineReddit NetSec

Hackers Actively Exploiting Widely-Used Social Share Plugin for WordPress

noreply@blogger.com (Swati Khandelwal)The Hackers News

Analysis: Abuse of Custom Actions in Windows Installer MSI to Run Malicious JavaScript, VBScript, and PowerShell Scripts

Trend MicroTrend Micro

Fujifilm FCR Capsula X/Carbon X

Advisory DocumentICS-Cert Advisories

Rockwell Automation MicroLogix 1400 and CompactLogix 5370 Controllers

Advisory DocumentICS-Cert Advisories

Operation ShadowHammer: a high-profile supply chain attack

GReATSecure List

Analysis of false positive on beian.gov.cn requests in regards to Huawei P30 Pro traffic research

/u/pe3zxReddit NetSec

Ignoring Atlassian Confluence Security Advisories? A report...

/u/b4d17Reddit NetSec

How I found 5 ReDOS vulnerabilities in Mod Security CRS

/u/s0md3vReddit NetSec

1 in 4 Workers Are Aware Of Security Guidelines - but Ignore Them

Steve Zurier Freelance WriterDark Reading - Threat Intelligence

Behavioral Analysis of Obfuscated Code

/u/jeandrewReddit NetSec

Source Code for CARBANAK Banking Malware Found On VirusTotal

noreply@blogger.com (Wang Wei)The Hackers News

Whos Behind the RevCode WebMonitor RAT?

BrianKrebsKrebs on Security

How to obtain Office 365 credentials on Mac OS

/u/pentest4lifeReddit NetSec

WannaCry Hero Hutchins Pleads Guilty to Malware Charges

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

CARBANAK Week Part One: A Rare Occurrence

Michael Bailey (noemail@noemail.org)Fire Eye Threat Research

Shellcode for IoT: A Password-Protected Reverse Shell (Linux/ARM) - @syscall59

/u/h41zumReddit NetSec

Analyzing C/C++ Runtime Library Code Tampering in Software Supply Chain Attacks

Trend MicroTrend Micro

Simple Rules to Protect Against Spoofed & windows.net Phishing Attacks

/u/GelosSnakeReddit NetSec

Excellent Analysis of the Boeing 737 MAX Software Problems

Bruce SchneierSchneier on Security

0xACB/viewgen: Payload generator to achieve RCE on .NET servers through leaking the machineKey

/u/MempodipperReddit NetSec

Attacking Cloud Containers Using SSRF

/u/Plazmaz1Reddit NetSec

What goes wrong if I have your SNMP RW string for a Cisco Device?

/u/msarmadReddit NetSec

GitHub - tg12/OpenMailRelayFuzzer: Fuzzer for finding Open Mail Relays

/u/Quick_StickReddit NetSec

Modern Vulnerability Research Techniques on Embedded Systems

/u/ArriliusReddit NetSec

Week in security with Tony Anscombe

Tom FoltnESET

Banking-Grade Credential Stuffing: The Futility of Partial Password Validation

/u/civicodeReddit NetSec

pyEmbed - Small script for Embedding Malicious Python Code into Inconspicuous Python Code

/u/kindredsecReddit NetSec

Questionnaire about Information Security Awareness (Working adults +20)

/u/DrNixonReddit NetSec

pe3zx/huawei-block-list: Captured DNS requests from Huawei P30 Pro to a block list

/u/pe3zxReddit NetSec

WebRTC Adxploits Over DTLS-UDP: The Latest In A Series of Elegant Exploits

/u/DEVCON3PJSReddit NetSec

HackTheBox: Teacher write-up by Khaotic

/u/KhaoticdudeReddit NetSec

Writeup for Teacher machine on HackTheBox

/u/mzfr98Reddit NetSec

Inaugural issue of CyberBites Newsletter/ezine for InfoSec pros [PDF]

/u/IAintShootinMisterReddit NetSec

Hack The Box - Teacher Write-up by 0xRick

/u/Ahm3d_H3shamReddit NetSec

The Future of Vulnerabilities Equities Processes Around the World

/u/xaocucReddit NetSec

Marcus MalwareTech Hutchins Pleads Guilty to Writing, Selling Banking Malware

BrianKrebsKrebs on Security

miniprint - A medium interaction printer honeypot

/u/GoGoGadgetSalmonReddit NetSec

Friday Squid Blogging: New Squid Species off the New Zealand Coast

Bruce SchneierSchneier on Security

MalwareTech pleads guilty to two charges

/u/f00lReddit NetSec

A public database exposed medical records of 150k rehab patients

/u/xxdesmusReddit NetSec

Protected tweets leakage through URL detection #XSSearch #BugBounty

/u/terjanqReddit NetSec

Zero-day XML External Entity (XXE) Injection Vulnerability in Internet Explorer Can Let Attackers Steal Files, System Info

Trend MicroTrend Micro

Researchers Find Clues for Dramatically Reducing IDS Traffic Volume

Dark Reading StaffDark Reading - Threat Intelligence

Iranian Cyber-Espionage Tools Leaked Online

Bruce SchneierSchneier on Security

APT34 Toolset, Victim Data Leaked via Telegram

Dark Reading StaffDark Reading - Threat Intelligence

Free Princeton Application Provides IoT Traffic Insight

Dark Reading StaffDark Reading - Threat Intelligence

Port 22

~ 24 Apr 2019 ~

Uncovering CVE-2019-0232: A Remote Code Execution Vulnerability in Apache Tomcat

Deobfuscating APT32 Flow Graphs with Cutter and Radare2

Vulnerability in French Government Tchap Chat App

Good stuff for AFL fuzzer (intro guide)

The most common OAuth 2.0 Hacks

A quick TLDR of the attacks mentioned in the infamous Mueller report

'Karkoff' Is the New 'DNSpionage' With Selective Targeting Strategy

~ 23 Apr 2019 ~

carbanak source leaked and added to github

GitHub Gist Recon - The art of finding information leaks in GitHub Gists and elsewhere

WannaCryptor accidental hero pleads guilty to malware charges

Stuxnet Family Tree Grows

Termshark - a terminal UI for tshark inspired by Wireshark

Google File Cabinet Plays Host to Malware Payloads

CARBANAK Week Part Two: Continuing the CARBANAK Source Code Analysis

Vulnerability Management ZeroOne Release

Getting access to Zendesks Google Cloud and Artifactory from GitHub dotfile repos

When Every Attack Is a Zero Day

G7 Comes Out in Favor of Encryption Backdoors

GitHub - Cuckoo Sandbox plugin for extracts configuration data of known malware

Hackers Actively Exploiting Widely-Used Social Share Plugin for WordPress

Analysis: Abuse of Custom Actions in Windows Installer MSI to Run Malicious JavaScript, VBScript, and PowerShell Scripts

Fujifilm FCR Capsula X/Carbon X

Rockwell Automation MicroLogix 1400 and CompactLogix 5370 Controllers

Operation ShadowHammer: a high-profile supply chain attack

Analysis of false positive on beian.gov.cn requests in regards to Huawei P30 Pro traffic research

Ignoring Atlassian Confluence Security Advisories? A report...

How I found 5 ReDOS vulnerabilities in Mod Security CRS

1 in 4 Workers Are Aware Of Security Guidelines - but Ignore Them

Behavioral Analysis of Obfuscated Code

Source Code for CARBANAK Banking Malware Found On VirusTotal

~ 22 Apr 2019 ~

Whos Behind the RevCode WebMonitor RAT?

How to obtain Office 365 credentials on Mac OS

WannaCry Hero Hutchins Pleads Guilty to Malware Charges

CARBANAK Week Part One: A Rare Occurrence

Shellcode for IoT: A Password-Protected Reverse Shell (Linux/ARM) - @syscall59

Analyzing C/C++ Runtime Library Code Tampering in Software Supply Chain Attacks

Simple Rules to Protect Against Spoofed & windows.net Phishing Attacks

Excellent Analysis of the Boeing 737 MAX Software Problems

0xACB/viewgen: Payload generator to achieve RCE on .NET servers through leaking the machineKey

Attacking Cloud Containers Using SSRF

~ 21 Apr 2019 ~

What goes wrong if I have your SNMP RW string for a Cisco Device?

GitHub - tg12/OpenMailRelayFuzzer: Fuzzer for finding Open Mail Relays

Modern Vulnerability Research Techniques on Embedded Systems

Week in security with Tony Anscombe

Banking-Grade Credential Stuffing: The Futility of Partial Password Validation

pyEmbed - Small script for Embedding Malicious Python Code into Inconspicuous Python Code

Questionnaire about Information Security Awareness (Working adults +20)

pe3zx/huawei-block-list: Captured DNS requests from Huawei P30 Pro to a block list

WebRTC Adxploits Over DTLS-UDP: The Latest In A Series of Elegant Exploits

~ 20 Apr 2019 ~

HackTheBox: Teacher write-up by Khaotic

Writeup for Teacher machine on HackTheBox

Inaugural issue of CyberBites Newsletter/ezine for InfoSec pros [PDF]

Hack The Box - Teacher Write-up by 0xRick

The Future of Vulnerabilities Equities Processes Around the World

~ 19 Apr 2019 ~

Marcus MalwareTech Hutchins Pleads Guilty to Writing, Selling Banking Malware

miniprint - A medium interaction printer honeypot

Friday Squid Blogging: New Squid Species off the New Zealand Coast

MalwareTech pleads guilty to two charges

A public database exposed medical records of 150k rehab patients

Protected tweets leakage through URL detection #XSSearch #BugBounty

Zero-day XML External Entity (XXE) Injection Vulnerability in Internet Explorer Can Let Attackers Steal Files, System Info

Researchers Find Clues for Dramatically Reducing IDS Traffic Volume

Iranian Cyber-Espionage Tools Leaked Online

APT34 Toolset, Victim Data Leaked via Telegram

Free Princeton Application Provides IoT Traffic Insight