January 10, 2023
January 10, 2023
Exploit dev/bug hunting friends: what are your favourite vuln write-ups from the past few years? The more the merrier =) (Across any language)
— Sean Heelan (@seanhn) January 9, 2024
Discourse SNS webhook RCE :: 0day.click — misc stuff by @joernchen
I was staring at this part of the code for way too long already: module Jobs class ConfirmSnsSubscription < ::Jobs::Base sidekiq_options retry: false def execute(args) return unless raw = args[:raw].presence return unless json = args[:json].presence return unless subscribe_url = json["SubscribeURL"].presence require "aws-sdk-sns" return unless Aws::SNS::MessageVerifier.new.authentic?(raw) # confirm subscription by visiting the URL open(subscribe_url) end end end The above code...
Google’s Project Zero exploiting Broadcom’s WiFi firmware then the PCIe config registers to gain control of iOShttps://t.co/Q4dgxGWa1L
— psyv (@psyv282j9d) January 9, 2024
past years is quiet a stretch. most stuff already obsolete now but some stuff i enjoyed reading:
— Byte Swap (@byte_swap) January 9, 2024
- all from https://t.co/qENFkCLPTa
- all from https://t.co/r2ZdVFOVc7https://t.co/IHaZZ5kifE
This one is metalhttps://t.co/A5wg00sXPt
— ValdikSS (@ValdikSS) January 9, 2024
— David Moore (@grajagandev) January 9, 2024
"Bit-Banging" Bluetooth Low Energy - Dmitry.GR
Dmitry.GR: Creating BTLE-compliant advertisement packets, so that iOS and android devices can see and parse them.
Just added C++ exception support to Cosmopolitan. It's a true door opener, since not having it was one of the few things holding us back. Try our new 3.2.4 release! https://t.co/aLSx1X5ENW
— Justine Tunney (@JustineTunney) January 10, 2024
CVE-2024-21318 is post-auth RCE in Sharepoint. Please patch it if you are using it. It is found by our team member, @testanull
— starlabs (@starlabs_sg) January 9, 2024
Somehow the acknowledgment got mixed up again. 👀https://t.co/C5Oi5LYQto
A fun little canary for you all in cyber defence to help detect breaches/data theft.
— Ollie Whitehouse (@ollieatnowhere) January 9, 2024
QT & MP4 files can reference external urls via 'rdrf' sections. These can be URLs and thus you can get a DNS resolution and/or HTTP request on open.
Have an MP4 working example in VLC... pic.twitter.com/sFtgRRQkXo
"Zhao specifically provided information about a large-scale maritime training exercise in the Pacific and electrical diagrams and blueprints for a radar system located in Okinawa, Japan".
— Dr. Dan Lomas (@Sandbagger_01) January 9, 2024
https://t.co/U2MFqiePkz
WTF! Why is my LG Washing Machine using 3.6GB of data/day? pic.twitter.com/xQqQicTqxI
— Johnie (@Johnie) January 9, 2024
This wrench can get infected by ransomware. DRILLCRYPT, to be precise.
— LaurieWired (@lauriewired) January 9, 2024
Essential for precision manufacturing, the Bosch device can be exploited with no authentication, disrupting an entire factory floor.
Torque values can be subtly changed to cause chaos in an assembly line.… pic.twitter.com/eUiXMJkMAC
It's only been 1 day of CES 2024, and the tech developments have been incredible.
— Rowan Cheung (@rowancheung) January 9, 2024
The 10 most impressive reveals of CES 2024 so far:
1. The world's first transparent MICROLED screen by Samsung pic.twitter.com/mie01Hvw1a
We published our research to detect concept drift in malware classifiers at @IEEESSP 2022 (https://t.co/HBe6xECQWQ).
— Lorenzo Cavallaro (@lcavallaro) January 8, 2024
BUT.
We found a subtle bug in our implementation; we fixed it and thankfully results are still valid (https://t.co/AhX0luuVnm).
Here’s our lessons learned👇
people usually judge things from their own context, not our own https://t.co/3PZkTSyi9W pic.twitter.com/rNTN9CJVFv
— sean (@DilettanteryPod) January 8, 2024
Hunter gatherers would consider us gods, not humans pic.twitter.com/u94xW1hsCH
— spor is in spain (@sporadicalia) January 8, 2024
Jan 8: 🇨🇳 Beijing Municipal Bureau of Justice claims on its WeChat account 京司观澜 and also its website that 北京网神洞鉴司法鉴定所 — a BMBJ-endorsed forensics unit of cybersecurity company 🇨🇳 Qi An Xin (奇安信) (https://t.co/x2CFFo7YsJ) — has recently cracked an iPhone’s… pic.twitter.com/hd5tFu2CDI
— Byron Wan (@Byron_Wan) January 10, 2024
Here's a link to the original write-up from the Beijing Municipal Justice Bureau (SFJ):https://t.co/1tQHJdD7PB https://t.co/EHV0MwvMSB
— Silas Cutler // p1nk (@silascutler) January 10, 2024
Thread by @silascutler on Thread Reader App – Thread Reader App
@silascutler: Here's a link to the original write-up from the Beijing Municipal Justice Bureau (SFJ): sfj.beijing.gov.cn/sfj/sfdt/ywdt8… Based on the SFJ's description, sender information was recovered from a recipi...…
4n6 Ninja: (Air)Dropping some Knowledge: Using RLEAPP to Identify the Phone Number Used in an AirDrop Transfer
Summary: This post explains how to use RLEAPP to process sysdiagnose logs extracted from an iOS device to identify the phone number used in ...
"I would rank them [Cuban intelligence] as probably the most aggravating intelligence service I've ever worked against".https://t.co/kjwl6snFyG
— Dr. Dan Lomas (@Sandbagger_01) January 9, 2024
This whole "no smoking with kids in the vehicle" thing is ridiculous.. look at him he's just cold... pic.twitter.com/UOSumbKxa5
— theGhettoGoth 🖤 (@itsMook989) January 9, 2024
apple: special forces. citizens of fallujah call him "the reaper". has never been in love.
— jack (@jack24dd30) January 9, 2024
google: space force. slightly autistic. was caught jerking off in the barracks and hasn't recovered.
twitter: third generation marine. will eventually serve on the board of raytheon and… pic.twitter.com/h2wiMw1rdp