memory_safety.pdf
4.8 MB
#Research
"Why is memory safety still a concern?", 2020.
// The evolution of memory corruption exploit techniques & mitigations
📰
📚
"Why is memory safety still a concern?", 2020.
// The evolution of memory corruption exploit techniques & mitigations
📰
📚
RECON_BRX_2018_Reverse_Engineering_Windows_Defender_s_JavaScript.pdf
9.2 MB
#RE #JavaScript
Reverse Engineering Windows Defender’s JavaScript Engine
Outline :
1. Introduction
2. Tooling & Process
3. Reverse Engineering
4. Vulnerability Discussion
5. Conclusion
📰
📚
Reverse Engineering Windows Defender’s JavaScript Engine
Outline :
1. Introduction
2. Tooling & Process
3. Reverse Engineering
4. Vulnerability Discussion
5. Conclusion
📰
📚
Snort Cheatsheet.pdf
599 KB
#Snort #Cheatsheet
Snort Cheatsheet
(FREE) Learn to use Snort to detect real-time threats & analyze recorded traffic files Learn through a web-based machine with all the tools you need to get started
📰
📚
Snort Cheatsheet
(FREE) Learn to use Snort to detect real-time threats & analyze recorded traffic files Learn through a web-based machine with all the tools you need to get started
📰
📚
How_to_tame_your_unicorn.pdf
1 MB
#Research
"How To Tame Your Unicorn: Exploring And Exploiting Zero-Click Remote Interfaces of Huawei Smartphones", 2021.
]-> Exploiting CSN.1 Bugs in MediaTek Basebands:
https://labs.taszk.io/articles/post/mtk_baseband_csn1_exploitation
📰
📚
"How To Tame Your Unicorn: Exploring And Exploiting Zero-Click Remote Interfaces of Huawei Smartphones", 2021.
]-> Exploiting CSN.1 Bugs in MediaTek Basebands:
https://labs.taszk.io/articles/post/mtk_baseband_csn1_exploitation
📰
📚
Compilers_Security_Frontier.pdf
1.1 MB
"Compilers: The Old New Security Frontier", 2022.
]-> Low-Level Software Security for Compiler Developers:
https://llsoftsec.github.io/llsoftsecbook
]-> Low-Level Software Security for Compiler Developers:
https://llsoftsec.github.io/llsoftsecbook
DeepSight.pdf
775.7 KB
#Research
"DeepSight: Mitigating Backdoor Attacks in Federated Learning Through Deep Model Inspection", NDSS 2022.
"DeepSight: Mitigating Backdoor Attacks in Federated Learning Through Deep Model Inspection", NDSS 2022.
DNNs.pdf
5.9 MB
#Research
"Robust Adversarial Attacks Against DNN Based Wireless Communication Systems", 2021.
"Robust Adversarial Attacks Against DNN Based Wireless Communication Systems", 2021.
RamBoAttack.pdf
15.7 MB
#Research
"RamBoAttack: A Robust and Query Efficient Deep Neural Network Decision Exploit", 2022.
"RamBoAttack: A Robust and Query Efficient Deep Neural Network Decision Exploit", 2022.
VMware_LPE.pdf
362.1 KB
#Whitepaper
"VMware Workstation/Player Host LPE Vulnerability", 2022.
"VMware Workstation/Player Host LPE Vulnerability", 2022.
TLStorm.pdf
18.2 MB
#SCADA_Security
"TLStorm: Critical vulnerabilities in a TLS library lead to complete pwnage of a popular Cloud-connected UPS", 2022.
"TLStorm: Critical vulnerabilities in a TLS library lead to complete pwnage of a popular Cloud-connected UPS", 2022.
bhi_spectre_bhb.pdf
1.6 MB
#Research
"Branch History Injection:
On the Effectiveness of Hardware Mitigations Against Cross-Privilege Spectre-v2 Attacks", USENIX 2022.
]-> https://www.vusec.net/projects/bhi-spectre-bhb
"Branch History Injection:
On the Effectiveness of Hardware Mitigations Against Cross-Privilege Spectre-v2 Attacks", USENIX 2022.
]-> https://www.vusec.net/projects/bhi-spectre-bhb
kwampirs_shamoon_report.pdf
19 MB
#Malware_analysis
"The link between Kwampirs (Orangeworm) and Shamoon APTs", 2022.
]-> https://resources.cylera.com/new-evidence-linking-kwampirs-malware-to-shamoon-apts
"The link between Kwampirs (Orangeworm) and Shamoon APTs", 2022.
]-> https://resources.cylera.com/new-evidence-linking-kwampirs-malware-to-shamoon-apts
INDICATORS OF ATTACK VERSUS INDICATORS OF COMPROMISE.pdf
920.4 KB
INDICATORS OF ATTACK VERSUS INDICATORS
OF COMPROMISE
OF COMPROMISE
junos_ddos_guide.pdf
1.8 MB
#hardening
#Whitepaper
"Junos OS Attack Detection and Prevention User Guide for Security Devices", 2021.
#Whitepaper
"Junos OS Attack Detection and Prevention User Guide for Security Devices", 2021.