Blasting_Event_Driven_Cornucopia.pdf
4.7 MB
#tools
BlackHat USA 2022:
"Blasting Event-Driven Cornucopia: WMI-based User-Space Attacks Blind SIEMs and EDRs"
]-> MemoryRanger protects kernel data and code by running drivers and hosting data in isolated kernel enclaves using VT-x/EPT features:
https://github.com/IgorKorkin/MemoryRanger
📰
📚
BlackHat USA 2022:
"Blasting Event-Driven Cornucopia: WMI-based User-Space Attacks Blind SIEMs and EDRs"
]-> MemoryRanger protects kernel data and code by running drivers and hosting data in isolated kernel enclaves using VT-x/EPT features:
https://github.com/IgorKorkin/MemoryRanger
📰
📚
New_Memory_Forensics_Techniques.pdf
3.1 MB
#Blue_Team
BlackHat USA 2022:
"New Memory Forensics Techniques to Defeat Device Monitoring Malware"
📰
📚
BlackHat USA 2022:
"New Memory Forensics Techniques to Defeat Device Monitoring Malware"
📰
📚
PISE.pdf
160.3 KB
#Research
BlackHat USA 2022:
"PISE: Protocol Inference using Symbolic Execution and Automata Learning"
]-> Tool: https://github.com/ron4548/PISEServer
📰
📚
BlackHat USA 2022:
"PISE: Protocol Inference using Symbolic Execution and Automata Learning"
]-> Tool: https://github.com/ron4548/PISEServer
📰
📚
Glitched_on_Earth.pdf
13.6 MB
#reversing
#Hardware_Security
BlackHat USA 2022:
"Glitched on Earth by Humans: A Black-Box Security Evaluation of the SpaceX Starlink User Terminal"
📰
📚
#Hardware_Security
BlackHat USA 2022:
"Glitched on Earth by Humans: A Black-Box Security Evaluation of the SpaceX Starlink User Terminal"
📰
📚
Browser_Powered_Desync_Attacks.pdf
1.2 MB
#Offensive_security
BlackHat USA 2022:
"Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling"
]-> Tool: https://github.com/portswigger/http-request-smuggler
📰
📚
BlackHat USA 2022:
"Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling"
]-> Tool: https://github.com/portswigger/http-request-smuggler
📰
📚
LibAFL.pdf
1.3 MB
#Research
"LibAFL: A Framework to Build Modular and Reusable Fuzzers", 2022.
]-> https://github.com/AFLplusplus/libafl_paper_artifacts
📰
📚
"LibAFL: A Framework to Build Modular and Reusable Fuzzers", 2022.
]-> https://github.com/AFLplusplus/libafl_paper_artifacts
📰
📚
OCSF.pdf
206.9 KB
#Infosec_Standards
Open Cybersecurity Schema Framework
https://schema.ocsf.io
]-> https://github.com/ocsf/ocsf-schema
📰
📚
Open Cybersecurity Schema Framework
https://schema.ocsf.io
]-> https://github.com/ocsf/ocsf-schema
📰
📚
sec22_arp.pdf
716.7 KB
#Research
"Dos and Don'ts of Machine Learning in Computer Security", 2022.
]-> https://dodo-mlsec.org
📰
📚
"Dos and Don'ts of Machine Learning in Computer Security", 2022.
]-> https://dodo-mlsec.org
📰
📚
Vulnerabilities_Live_in_Code.pdf
6.9 MB
#Threat_Research
"How Long Do Vulnerabilities Live in the Code? A Large-Scale Empirical Measurement Study on FOSS Vulnerability Lifetimes", 2022.
📰
📚
"How Long Do Vulnerabilities Live in the Code? A Large-Scale Empirical Measurement Study on FOSS Vulnerability Lifetimes", 2022.
📰
📚
aepic_leak.pdf
263.9 KB
#Research
"ÆPIC Leak: Architecturally Leaking Uninitialized Data from the Microarchitecture", 2022.
]-> https://aepicleak.com
📰
📚
"ÆPIC Leak: Architecturally Leaking Uninitialized Data from the Microarchitecture", 2022.
]-> https://aepicleak.com
📰
📚
P1OVD.pdf
387.4 KB
#Research
"P1OVD: Patch-Based 1-Day Out-of-Bounds Vulnerabilities Detection Tool for Downstream Binaries", 2022.
📰
📚
"P1OVD: Patch-Based 1-Day Out-of-Bounds Vulnerabilities Detection Tool for Downstream Binaries", 2022.
📰
📚