the grugq's newsletter

Subscribe
Archives
February 21, 2023

February 21, 2023

Twitter avatar for @DrWhax
šŸ“ Jurre van Bergen @DrWhax
Together with @FbdnStories we obtained a brochure from the Guacamaya leak of the Columbian army where s2t's OSINT tool was pitched. The tool can be used for more than just OSINT research, phishing, social engineering and geolocation is just one of them.
forbiddenstories.orgWhen your ā€œfriendsā€ spy on you: The firm pitching Orwellian social media surveillance to militaries
12:42 PM āˆ™ Feb 20, 2023
41Likes26Retweets

-

Twitter avatar for @KimZetter
Kim Zetter @KimZetter
This would seem to imply that there is some lasting impact from these whack-a-mole takedowns
Twitter avatar for @TheRecord_Media
The Record From Recorded Future News @TheRecord_Media
Revenues earned by darknet markets fell from $2.6 billion in 2021 to $1.3 billion in 2022, Chainalysis says. The decrease is attributable mostly to takedown efforts from law enforcement (@jgreigj) https://t.co/GltRHQJTOe
4:36 AM āˆ™ Feb 20, 2023
37Likes7Retweets

-

Twitter avatar for @TalBeerySec
Tal Be'ery @TalBeerySec
Isn't it ironic: 100 crypto researchers are locked out of the conference @BIUCrypto room because of a lost key
Image
12:18 PM āˆ™ Feb 20, 2023
155Likes42Retweets

-

The Info Op is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

-

Twitter avatar for @LloydLabs
Lloyd Davies @LloydLabs
New Research šŸ‘‰ Process Injection via NtQueueApcThreadEx with NTDLL ROP Gadget 1. Pick random pop r32; ret gadget within NTDLL 2. The NtQueueApcThreadEx call will force the IP to ntdll.dll!<gadget> 3. Return into SystemArgument1 (our shellcode) šŸ”— - github.com/LloydLabs/ntqu…
github.comGitHub - LloydLabs/ntqueueapcthreadex-ntdll-gadget-injection: This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and Syst…This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret gadget can be used for stealthy code injection. - GitHub - ...
1:00 PM āˆ™ Feb 20, 2023
283Likes100Retweets

-

Twitter avatar for @binitamshah
Binni Shah @binitamshah
Hardware 1101 : Intel SPI Analysis : p.ost2.fyi/courses/course… Architecture 4001: x86-64 Intel Firmware Attack & Defense : p.ost2.fyi/courses/course… Architecture 2001: x86-64 OS Internals : p.ost2.fyi/courses/course… Architecture 1001: x86-64 Assembly :
p.ost2.fyiCourse | Arch1001 | OpenSecurityTraining2
1:56 PM āˆ™ Feb 20, 2023
126Likes36Retweets

-

Twitter avatar for @neorsd
NE Ohio Regional Sewer District @neorsd
in honor of Presidents Day, here is the complete list of US presidents who died from waterborne diseases. 1/
4:34 PM āˆ™ Feb 20, 2023
7,622Likes1,411Retweets

-

Twitter avatar for @pourmecoffee
pourmecoffee @pourmecoffee
Genuinely excited to find out how this will go horribly wrong. "AI-powered talking Copernicus robot unveiled in Warsaw on astronomer’s 550th birthday" notesfrompoland.com/2023/02/19/ai-…
Image
2:14 AM āˆ™ Feb 21, 2023
52Likes15Retweets

-

Twitter avatar for @UncleDuke1969
Uncle Duke @UncleDuke1969
car not found
Image
1:54 AM āˆ™ Sep 7, 2021
2,930Likes460Retweets

-

Twitter avatar for @ShackletonCI
Craig Shackleton (he/him) @ShackletonCI
If you aren't in the SF/F industry this tweet might not look like a big deal. This is a crisis. Clarkesworld is the fastest/most efficient publisher for responding to story submissions (also one of the best-paying). They have been overwhelmed by AI-generated spam.
Twitter avatar for @clarkesworld
clarkesworld @clarkesworld
Submissions are currently closed. It shouldn't be hard to guess why.
6:02 PM āˆ™ Feb 20, 2023
30,361Likes6,976Retweets

-

Infiltration

Zine on accessing off limits areas.

http://infiltration.org/

-

Low-Level Software Security for Compiler Developers

https://llsoftsec.github.io/llsoftsecbook/#introduction

-

Twitter avatar for @cza_li
charlotte @cza_li
linux tip: "/bin" is the recycling bin and you should regularly delete everything in there to free up space
5:18 PM āˆ™ Feb 18, 2023
1,941Likes287Retweets

-

Twitter avatar for @SaeedDiCaprio
Hurt CoPain @SaeedDiCaprio
someone hacked into my netflix account last month and watched every episode of cocomelon and then left me a note
Image
Image
6:53 PM āˆ™ Feb 20, 2023
305,571Likes21,311Retweets
Twitter avatar for @SaeedDiCaprio
Hurt CoPain @SaeedDiCaprio
I didn’t change my password because I’m not a fed
6:57 PM āˆ™ Feb 20, 2023
28,939Likes158Retweets

-

Twitter avatar for @hurlarious
dave šŸŽ¤šŸ¦† @hurlarious
excessive force ones
Image
11:12 PM āˆ™ Feb 19, 2023
30,963Likes3,120Retweets

-

Twitter avatar for @JanLemnitzer
Jan Lemnitzer @JanLemnitzer
So similar things to what happened in Norway now observed in the Netherlands. Germany should also keep a close watch on its one new LNG terminal...
Twitter avatar for @moltke
Henrik Moltke @moltke
"Russia is secretly charting this infrastructure and is undertaking activities which indicate preparations for disruption and sabotage" says Dutch Intelligence https://t.co/CquivUuSBj
9:05 AM āˆ™ Feb 21, 2023
13Likes8Retweets

-

Don't miss what's next. Subscribe to the grugq's newsletter:
X