All posts in Uncategorized

■■■■□ The Dark Side of EDR: Repurpose EDR as an Offensive Tool. https://www.safebreach.com/blog/dark-side-of-edr-offensive-tool/ https://t.me/cKure/14183

■■■■□ Kaspersky releases free tool that scans Linux for known threats. https://www.bleepingcomputer.com/news/software/kaspersky-releases-free-tool-that-scans-linux-for-known-threats/ https://t.me/cKure/14182

■■□□□ Data-Leak at Santander apparently due to Snowflake’s products. https://www.santander.com/en/stories/statement https://therecord.media/snowflake-response-reported-breach-santander-ticketmaster https://t.me/cKure/14181

■■■■■ MindShaRE: Decapping Chips for Electromagnetic Fault Injection (EMFI). https://www.zerodayinitiative.com/blog/2024/5/23/mindshare-decapping-chips-for-electromagnetic-fault-injection-emfi https://t.me/cKure/14180

■■■■■ Common ADCS Vulnerabilities: Logging, Exploitation, and Investigation Part 1: https://labs.lares.com/adcs-exploits-investigations-pt1/ Part 2: https://labs.lares.com/adcs-exploits-investigations-pt2/ https://t.me/cKure/14179

■■■■■ Hunting bugs in Nginx JavaScript engine (njs). https://0xbigshaq.github.io/2024/05/24/njs-vr-bugs/ https://t.me/cKure/14178

■■■■■ Exploiting n-day in Home Security Camera. https://0xbigshaq.github.io/2024/01/05/tp-link-tapo-c100/ https://t.me/cKure/14177

■■■■■ Abusing Active Directory Certificate Services. Part 1: Abusing Active Directory Certificate Services – Part One Part 2: Abusing Active Directory Certificate Services – Part 2 Part 3: Abusing Active Directory Certificate Services (Part 3) Part 4: https://www.blackhillsinfosec.com/abusing-active-directory-certificate-services-part-4/ https://t.me/cKure/14176

■■■■□ Python for Dark Web OSINT : Automate Threat Monitoring. https://medium.com/@ervin.zubic/python-for-dark-web-osint-automate-threat-monitoring-5994b63c4d4a https://t.me/cKure/14175

● Yet another website pub.expmon.com (File Sandbox) https://t.me/cKure/14174