Exfiltrate sensitive user data from apps on Android 12 and 13 using CVE-2024-0044 vulnerability #AndroidHacking #CVE20240044 #DataExfiltration #MobileHacker #Vulnerability https://www.mobile-hacker.com/2024/06/17/exfiltrate-sensitive-user-data-from-apps-on-android-12-and-13-using-cve-2024-0044-vulnerability/

How IDA 7.2's installer password was found

https://seri.tools/blog/ida-72-password/

*старая статья

The GhostWrite vulnerability affects the T-Head XuanTie C910 RISC-V CPU. This vulnerability allows unprivileged attackers, even those with limited access, to read and write any part of the computer’s memory and to control peripheral devices like network cards. GhostWrite renders the CPU’s security features ineffective and cannot be fixed without disabling around half of the CPU’s functionality.

https://ghostwriteattack.com/

Writing a PE Loader for the Xbox in 2024

https://landaire.net/reflective-pe-loader-for-xbox/

QiAnXin Cyber Threat Report H1 2024 is released

https://ti.qianxin.com/uploads/2024/08/19/2274f632f6a1d8acd2f1801c24887edb.pdf

==Phrack Inc.== Volume 0x10, Issue 0x47

https://phrack.org/issues/71/1.html

current mood: Воскресное байтоёбство

Две вещи я люблю в жизни: дебаггер и музыку Костяна

https://youtu.be/aHJDTq_KTSo?si=1A2ZyNirCAcIe78n

hyperv-1dayclass_CVE-2024-38080

https://hackyboiz.github.io/2024/09/01/pwndorei/hyperv-1dayclass_CVE-2024-38080/

TRACE is a digital forensic tool I developed as my final year project. It provides an intuitive interface for analyzing disk images and includes a range of functionalities to assist forensic examiners in extracting and viewing the contents of various image file formats.

https://github.com/Gadzhovski/TRACE-Forensic-Toolkit

Презентации с HITBSecConf

https://conference.hitb.org/hitbsecconf2024bkk/materials/

Пополнение в списке тулз для анализа вредоносных PDF! Давно ничего нового небыло

https://github.com/seekbytes/IPA/

Using Symbolic Execution to Devirtualise a Virtualised Binary

https://blog.deobfuscate.io/using-symbolic-execution-for-devirtualisation

Advanced Cyberchef Techniques - Defeating Nanocore Obfuscation With Math and Flow Control

https://www.embeeresearch.io/advanced-cyberchef-techniques-defeating-nanocore-obfuscation-with-math-and-flow-control/

A Comprehensive Survey on Advanced Persistent Threat (APT) Detection Techniques

https://cdn.techscience.cn/files/cmc/2024/TSP_CMC-80-2/TSP_CMC_52447/TSP_CMC_52447.pdf