All posts in Uncategorized

■■□□□ Crowdfense, a cyber terrorist firm from UAE that acquires Zero-Day vulnerabilities from anyone (researchers) for using often to violate the privacy of people as part of the spyware. Their rate card: https://www.crowdfense.com/exploit-acquisition-program/ https://t.me/cKure/13795

■■■■■ HTTP/2 CONTINUATION. https://thehackernews.com/2024/04/new-http2-vulnerability-exposes-web.html https://t.me/cKure/13793

Iran Israel Cyber-War: Israel has jammed GPS at the highest levels on its territory for fear of Iranian missile strikes, though Iran is familiar with the use of Russian GLONASS. The attack anticipation is based on the intel by the United States’s CIA about an imminent attack on Israel in the upcoming 48 hours. It…

■■■■■ Check if you are affected by the XZ backdoor. https://xz.fail/ https://t.me/cKure/13788

■■□□□ Interesting thread! https://x.com/thebinarybot/status/1775506700910407931 https://t.me/cKure/13787

■■□□□ Struggling RCE on Jenkins Instance. https://medium.com/@imusabkhan/struggling-rce-on-jenkins-instance-8851af98b7e6 https://t.me/cKure/13786

■□□□□ Possible Iranian cyber activity against Israel in next 48 hours as a retaliation to the Israeli attack on their consulate in Syria https://t.me/cKure/13785

■■■■■ CVE-2024-29745 and CVE-2024-29748. Google fixes two Pixel zero-day flaws exploited by forensics firms. https://www.bleepingcomputer.com/news/security/google-fixes-two-pixel-zero-day-flaws-exploited-by-forensics-firms/ https://t.me/cKure/13784

■■■■□ Attacking an EDR. https://riccardoancarani.github.io/2023-08-03-attacking-an-edr-part-1/ https://riccardoancarani.github.io/2023-09-14-attacking-an-edr-part-2/ https://t.me/cKure/13783

Secator: The swiss army knife It is a task and workflow runner used for security assessments. It supports dozens of well-known security tools and is designed to improve productivity for pentesters and security researchers. https://docs.freelabz.com/ https://t.me/cKure/13781