2024-03-13 // Today, iOS security and various vulnerabilities such as debugserver access, memory dumping, insufficient input sanitization, and improper handling of sensitive data. The mitigation strategies involve enforcing safe coding practices and proper encryption. Eclipse has emerged as an AI tool helping to detect sensitive information in documents to enhance privacy, though with limitations and specific system requirements. On a parallel note, Nebula is an AI ethical hacking assistant designed to identify and exploit vulnerabilities by translating natural language into commands, assisting both novices and experienced ethical hackers with features like autonomous exploitation and command suggestions. Meanwhile, Alessandro Bresciani offers insights into port scanning via his blog, particularly using Golang and gopacket, and compares different scanner types while explaining banner grabbing. Tackling advanced cyber threats on operational technology (OT), another piece details measures to secure industrial systems like HMIs, EWS, and PLCs from cyber attacks by suggesting defenses such as leveraging the MITRE ATTACK framework and implementing CIP Security. [more...]

2024-03-12 // Researchers at Horizon3.ai have disclosed a critical vulnerability (CVE-2024-1403) in Progress Software OpenEdge, advising users to upgrade to secure versions. Minder by Stacklok offers an open source software supply chain security platform with free services for open source repositories. Cloudtopolis facilitates password cracking for free using Google Cloud services. A technical guide on malware development for macOS is provided, delving into the Mach API and various attack techniques. The Frida toolkit helps identify DLL sideloading exploits in Windows, while the Windows Feature Hunter tool automates this. A GitHub repository, "process-injection," presents a proof-of-concept for process injection in Windows. The article discusses Android app vulnerabilities related to deep links and WebViews while proposing mitigation approaches. SharpCovertTube enables remote command execution on Windows via YouTube video QR codes. The repository WinHotchkiss/Hotchkiss_OSINT compiles various OSINT resources, while EmploLeaks is an OSINT tool focusing on employee credential leaks. "EliteServices" by ‘sethycake’ provides Python tools for network stress testing and information. The Human Intelligence Narrowing Tool Set (HINTS) aids in organizing OSINT research, and Bigbro is an OSINT utility designed to locate individuals through a clicked link. HackingEnVivo’s Doxing script streamlines the doxxing process, and H4X-Tools offers a toolkit for web scraping and OSINT activities. The OSINT resource compilation lists various tools for cybersecurity information gathering, including specialized software. "The_spy_job" by XDeadHackerX is yet another OSINT collection tool, and finally, Bython introduces a Python preprocessor enabling brace-based syntax. [more...]

2024-03-11 // Today, SiCat functions as a detailed exploit search tool that aggregates data from numerous sources like Exploit-DB, Packetstorm Security, Exploit Alert, NVD Database, and Metasploit Modules, aiding cybersecurity experts in pinpointing vulnerabilities. An article introduces a method to boost security for JSON Web Tokens by masking the "userid" payload through XOR encryption with a symmetric key to avert simple decoding of confidential data. Furthermore, CVE-2023-22527 is a vulnerability in Confluence that permits code execution through memory sans file system usage, overcoming OGNL expression limits, with indicators of compromise available for detection. [more...]

2024-03-10 // The SSH-Private-Key-Looting-Wordlists aids in brute-forcing SSH configurations, while the Appsanity box exploitation uses JWT and SSRF for elevated access on HackTheBox. Puncia is an AI tool for subdomain hunting, Nomore403 automates bypassing HTTP 403 errors, and Invoke-ADEnum collects Active Directory data. APKDeepLens reviews Android APKs for vulnerabilities. Importance of input validation in security is underscored by experts like Dan Kaminsky. Tools like VK Paranoid provide anonymous tracking, and EML Analyzer handles email security. Halberd tests cloud service security, with FreeViewer managing email files. Strategies for cybersecurity emphasize penetration testing and XSS defenses for web application security. [more...]

2024-03-09 // Bishop Fox has decrypted the obfuscated FortiOS root filesystem highlighting Fortinet’s encryption enhancements and offered a decryption script for vulnerability research. Thomas Jeunet conducted an analysis of Arlo cameras, uncovering memory dumping, and gained access to firmware encryption keys, providing a repository for ongoing research. Java application vulnerabilities were examined, suggesting critical mitigations such as input validation and secure coding to counter unsafe deserialization and command injection risks. The sspsec/Scan-Spring-GO repository introduces a penetration tool for Spring Framework to detect and exploit vulnerabilities, integrating batch scanning. Daniel Underhay showcased password spraying attacks via GitHub Actions with IP rotation, potentially circumventing IP-based security but risking GitHub account closure. The Parasite-Invoke tool conceals P/Invoke signatures inside signed .NET assemblies for stealthy code execution. Lastly, SessionProbe is a tool for penetration testing that discovers authorization issues in web applications by probing session tokens on different URLs. [more...]