September 3, 2024
September 3, 2024
Presentation slides from #HITB2024BKK are available for download here: https://t.co/CExLbj9CBZ
— HITBSecConf (@HITBSecConf) September 3, 2024
Critical Roundcube XSS technical details: Desanitization, unsafe Content-Types, CSS exfiltration, and a Service Worker come together to persistently leak emails from a victim's browser.
— Sonar Research (@Sonar_Research) August 27, 2024
Read about it here:https://t.co/fOa2l0ujwV
(CVE-2024-42008, CVE-2024-42009, CVE-2024-42010) pic.twitter.com/fVurDab5Cm
The full story of the Navajo-chip connection is fascinating. It involves an armed takeover of a semiconductor plant! I couldn't hope to summarize it here.https://t.co/EpKNt4QtEu
— Daniel Feldman (@d_feldman) September 2, 2024
life hack: if you do not have an API key for a service or you cannot afford to run it simply type the name of the service with "api_key" after it and copilot will provide you one free of charge pic.twitter.com/8ZOhCTg3X1
— Daniel (@growing_daniel) September 2, 2024
On this day 21 years ago, @TheWeebl published the original Badger Badger Badger video. pic.twitter.com/q7pcw0hbnN
— Know Your Meme (@knowyourmeme) September 2, 2024
My @offbyoneconf keynote on “Breaking into Vulnerability Research” https://t.co/l4BbW3lJX5
— Silvio Cesare (@silviocesare) September 2, 2024
Your regular reminder that users could be much safer online. More fuzzing and mitigations will not make the jits more secure. Our research into the topic has continued to be validated over the years https://t.co/70y6GopSSI https://t.co/d6NRIGfKhj
— Johnathan Norman (@spoofyroot) September 3, 2024
https://t.co/M1Y8Jn2ltc pic.twitter.com/ygu9QWccxR
— beanie baby biologist 🇵🇸 (@genderfuneral) September 2, 2024
No cURL⁉️ No wget⁉️🙈🙉🙊 Use THC's OpenSSL, Perl, Python or BASH one-liners (surl, lurl, purl or burl) to download your warez. 🍴
— The Hacker's Choice (@thc@infosec.exchange) (@hackerschoice) September 1, 2024
👉More tips at https://t.co/zVCLwmbXv2 🧠 pic.twitter.com/j37mTYCFPW
EDR Telemetry Blocker via Person-in-the-Middle Network Filtering Attacks https://t.co/TbePZO6vWx
— Nicolas Krassas (@Dinosn) September 2, 2024
✍️ Reverse Engineering a Restaurant Pager system by Paul Tagliamontehttps://t.co/zOQ15xrBUV pic.twitter.com/AfayAVeSVJ
— Alex Plaskett (@alexjplaskett) September 2, 2024
✍️ There will be Bugs: Exploiting Basebands in Radio Layer Two by @kutyacicahttps://t.co/jqocVxZnVg pic.twitter.com/iof7dTJYzk
— Alex Plaskett (@alexjplaskett) September 2, 2024
SUDO_KILLER: identify and exploit sudo rules’ misconfigurations and vulnerabilities within sudo https://t.co/OqpDFVcxQa
— Nicolas Krassas (@Dinosn) September 2, 2024
Korean-speaking threat actors are on fire!🔥 Their adoption of 0-days proves once again just how resourceful, skilled, and surprisingly agile they are these days.
— Seongsu Park (@unpacker) September 2, 2024
🕵️♂️ Group: APT-C-60
🏠 Origin: Known as 🇰🇷
💥 0-day: CVE-2024-7262 and CVE-2024-7263
🔗 Ref: https://t.co/ac3BglWvPf…
5 years ago I tweeted about backslash being the new hacking trend what I meant was JSON injections where " is blocked but \ is not which allows us to inject objects when we have two input points.
— Renwa (@RenwaX23) September 1, 2024
It's almost 2025 and @fransrosen explains it very well https://t.co/B1jRJeZwxU https://t.co/iGMz0mTwJT
@offbyoneconf 2024 Day 2 - Presentation videos are now available on our official YouTube Channel! Subscribe, like 👍 and comment!https://t.co/0IWS4YFX75 pic.twitter.com/GLIV1avljF
— Off-By-One Conference (@offbyoneconf) September 2, 2024
Building an App for Flipper Zero, Part 1: Getting Started Tutorial
— bugcrowd (@Bugcrowd) September 2, 2024
🐞 Setting Up the environment
🪲 Basics of C
🐛 Creating a Skeleton App
🐜 Integrating with Visual Studio Code
Create your first Flipper Zero app today!👇https://t.co/CH2U105DfU
Last week, our project Docker-OSX's Docker Hub account received a DMCA takedown notice from Apple to remove our Docker images from Docker Hub. The images have over 750k pulls. The GitHub page has 40k GitHub stars. It is a security research project that is geared towards Linux…
— Sick.Codes (@sickcodes) September 2, 2024
Found this tracking device literally in the middle of the road. Housing was a bit beaten up, circuitry looks fine. SIM installed, UART at the bottom, USB test points on the left, 2x microphone, BT, WiFi, and GSM antennas. Yes, I've disconnected the battery (it was dead). pic.twitter.com/5IEXU8muEX
— Joe Grand (@joegrand) February 28, 2022
can you reattach that to your car please? It’d save me a flight.
— Charlie Miller (@0xcharlie) February 28, 2022
lol
