Blog post:
Research Windows 0-day exploit CVE-2019-1458 used in Operation WizardOpium -
Reading: 3 min
Published: 12/10/2019

Blog post: Persistence – Office Application Startup -
Reading: 4 min
Published: 12/11/2019

Blog post: Updating adconnectdump - a journey into DPAPI -
Reading: 10 min
Published: 12/11/2019

Tools: SafetyDump - uses the Minidump Windows API to dump process memory before base64 encoding that dump and writing it to standard output. This allows the dump to be redirected to a file or straight back down C2 or through other tools -

Blog post by : Unveiling Octopus: The pre-operation C2 for Red Teamers -
Reading: 8 min
Published: 12/10/2019

Blog post by SANS Penetration Testing: Parsing Zeek JSON Logs with JQ -
Reading: 5 min
Published: 12/03/2019

Blog post: Azure Privilege Escalation via Cloud Shell -
Reading: 6 min
Published: 12/10/2019

Blog post: CVE-2019-19248: Local Privilege Escalation in EA’s Origin Client -
Reading: 4 min
Published: 12/10/2019

Tools: DroneSploit - CLI framework is based on sploitkit and is an attempt to gather hacking techniques and exploits especially focused on drone hacking. For the ease of use, the interface has a layout that looks like Metasploit -

Blog post by MDSec: MacOS Filename Homoglyphs Revisited -
Reading: 12 min
Published: 12/10/2019

Blog post by FireEye: Staying Hidden on the Endpoint: Evading Detection with Shellcode -
Reading: 9 min
Published: 10/10/2019

Tools: Apk-mitm - CLI application that automatically prepares Android APK files for HTTPS inspection -

Blog post: Breaking the chains on HTTP Request Smuggler -
Reading: 3 min
Published: 12/09/2019

Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.