■■■■□ Automatic SSTI detection tool with interactive interface. https://github.com/vladko312/SSTImap https://t.me/cKure/14937
All posts in Uncategorized
November 24, 2024 at 01:33AM
■■■■□ AWS penetration testing: a step-by-step guide. https://www.hackthebox.com/blog/aws-pentesting-guide https://t.me/cKure/14936
November 23, 2024 at 07:53PM
■■■■■ The SCADA Hack: From Exploits to Forensics: Deciphering the Unitronics Incident. A hack of a nation state by another nation state amid ongoing genocide by Jews ✡️ of native indigenous population of Palestine 🇵🇸 . https://claroty.com/team82/research/from-exploits-to-forensics-unraveling-the-unitronics-attack https://t.me/cKure/14933 https://t.me/ckuRED/524
November 23, 2024 at 07:47PM
■■■■■ Chaining Three Bugs to Access All Your ServiceNow Data. https://www.assetnote.io/resources/research/chaining-three-bugs-to-access-all-your-servicenow-data https://t.me/cKure/14932
November 21, 2024 at 12:25PM
■■■■□ The Indonesian hacker group “INDOHAXSEC TEAM” has created a web-based version of WannaCry ransomware called “WannaCry 2.0,” imitating North Korea’s Lazarus group. They have hacked multiple websites, encrypting them and demanding Bitcoin as ransom. https://t.me/cKure/14927
November 20, 2024 at 10:55PM
■■■□□ Zero-Day: D-Link says replace vulnerable routers or risk pwnage. https://www.theregister.com/2024/11/20/dlink_rip_replace_router/ https://t.me/cKure/14926
November 20, 2024 at 08:44PM
(unconfirmed) Iran’s Handala hacking group has hacked Israel’s highly secure SSV blockchain network, used by Mossad to manage payments to foreign operatives. Despite blockchain’s reputation for being unhackable, Mossad’s $1 million bug bounty challenge was bypassed. 8 TB of sensitive data being stolen, including personal details of their operatives. https://t.me/cKure/14925
November 20, 2024 at 03:53PM
Reverse Engineering a trojan Telegram Clone. https://dozheiny.net/2024/11/15/Reverse-Engineering-Trojan-Telegram-clone.html https://t.me/cKure/14923
November 19, 2024 at 01:30PM
■■■□□ A Firefox Web Extension to improve the discovery of DOM XSS. https://github.com/swoops/eval_villain https://t.me/cKure/14922
November 19, 2024 at 09:45AM
■■■□□ New PXA Stealer targets government and education sectors for sensitive information. https://blog.talosintelligence.com/new-pxa-stealer/ https://t.me/cKure/14921