As promised, I just dropped a dozen new sandbox escape vulnerabilities at #POC2024
If you missed the talk, here is the blog post:https://t.co/zTcENNrZun

Slides:https://t.co/sWztf0ygM4

Enjoy and find your own bugs 😎 https://t.co/7U2ipGIccf

— Mickey Jin (@patch1t) November 7, 2024

Quick PSA: Someone is attacking Tor right now and has been for a few weeks.

The attacker is spoofing the IPs of Tor Exit and Directory nodes, and blasting TCP SYN packets indiscriminately on 22/TCP- spurring a large amount of abuse complaints to hosting providers, which are…

— Andrew Morris (@Andrew___Morris) November 6, 2024

Happy to see more offsec dev entrepreneurs entering the field!

For example: https://t.co/mv9LpIYBUM, https://t.co/MvXL8aLVwn and https://t.co/LPhMpaSQ8x.

Although only smaller tools and not big tool sets as @OutflankNL Security Tooling, I still welcome this new competition!

— Marc Smeets 🌻 (@MarcOverIP) November 6, 2024

KrakenMask is back with more opsechttps://t.co/SAMA6O5M8S pic.twitter.com/wlE0BmSylv

— Rtl Dallas (@RtlDallas) November 6, 2024

Today 1Win was hacked - big gambling network - that operates mostly in CIS. Many top affiliates are 1Win themselves or their media buyers. Important traffic sources - Twitch & YT streamers.
Another example of biz where ukrainians and russians still work together. pic.twitter.com/rIa0OWdgGq

— B r a t v a (@BratvaCorp) November 6, 2024

This is why, after toying around with a few libraries and learning the LLM software ecosystem, my next self-assigned task was to build a benchmark to evaluate models for my domain specific use. That later turned into an agent and distributed system to manage data & work queues. https://t.co/sjq1gfxcX5

— Richard Johnson (@richinseattle) November 7, 2024

1/ It’s been widely reported that one whale, allegedly a French man named Theo, controlled 4 @Polymarket accounts and had significant positions betting on a Trump win. We estimate he profited ~$78.7M. pic.twitter.com/laW9Y4zNXj

— Chainalysis (@chainalysis) November 6, 2024

Use adiskreader-secretsdump over Pythonhttps://t.co/HUbl6apxzL https://t.co/8CtOo0gfkd

— SkelSec (@SkelSec) November 6, 2024

Use Volumiser for this over C# and C2 https://t.co/Uhr97Swptg

— Vincent Yiu - SYON (@vysecurity) November 6, 2024

Did you know that 7z can browse .VHD and .VMDK files? You can open them right up, and even directly browse ntfs filesystems.

On a pentest and find a bunch of disk images? Copy the SAM/SECURITY/SYSTEM hives directly from the images, no mounting, copying, or fussing around. pic.twitter.com/GpWN7MkPN8

— nyxgeek (@nyxgeek) November 5, 2024

Our slides about WASM bugs in browsers are now available.
Thanks to everyone who helped with the talk.🫡
Hope we can do better next time.
1. BH USA 2024: https://t.co/jy6Qua2Hfo
2. GeekCon Shanghai 2024: https://t.co/DGvkSwiIIK
cc my partners (@p1umer @xmzyshypnc1 @q1iqF) https://t.co/WCypqdGhbp

— P4nda (@P4nda20371774) November 5, 2024

Canada has ordered 🇨🇳 TikTok's business in the country to be dissolved, citing national-security risks, but added the government was not blocking Canadians’ access to the short-video app or their ability to create content.

"The government is taking action to address the specific… pic.twitter.com/jSDavoKf1B

— Byron Wan (@Byron_Wan) November 7, 2024

In our search for new forensic artifacts at @ExaTrack, we sometimes deep dive into Windows Internals.
This one is about COM and interacting with remote objects using a custom python LRPC Client.

STUBborn: Activate and call DCOM objects without proxy: https://t.co/FKPocJRN2Z

— Clement Rouault (@hakril) November 5, 2024

https://t.co/tl2HrRvKg9 rootkit (aka Pygmy Goat https://t.co/n5wMzeC7Kc) now on VT. Last observed on an device in May 2022. If anyone uncovers any other activity, we'd love to collaborate. Happy hunting! https://t.co/VPLlxmal04 https://t.co/D14bBHxyiZ

— Ross Mc (@RossMcKerchar) November 5, 2024

Interesting talk about ITW exploit chains caught by Google TAGhttps://t.co/jiuGEPEjQc

No surprise, they use Google's internal resources and Chrome crash dumps to catch exploits

— matteyeux (@matteyeux) November 7, 2024

👀The godap project from @MacmodSec is 🤌!
"A complete TUI for LDAP."https://t.co/YEMRODplYI

— Sam Erde (@SamErde) November 6, 2024