Category: Hacker Shit

Today’s Principle to Follow:
Principle #1: Don’t make assumptions
   To see things as they are, avoid assuming that you know what someone is thinking, or that you know their motivations. You may have clues or ideas, but you should avoid making assumptions until you have enough information to be sure you know what is really happening. Assumptions will make you feel like a fool when you are wrong. They will also be a waste of precious brain power, as you will often analyze something that is based on a faulty assumption. If you do that, you will waste more time and resources. Focus your attention elsewhere and you will be more productive. If something is important, be direct and find out what you need to know, rather than assuming.

---

---

Twitter Discloses Suspected State-Sponsored Attack After Minor Data Breach
https://thehackernews.com/2018/12/twitter-data-breach.html
#hackerstuff #HackThePlanet

---

New Malware Takes Commands From Memes Posted On Twitter
https://thehackernews.com/2018/12/malware-twitter-meme.html
#hackerstuff #HackThePlanet

---

Everything you should know about certificates and PKI but are too afraid to ask
https://smallstep.com/blog/everything-pki.html
#hackerstuff #HackThePlanet

---

Hidden directories and files as a source of sensitive information about web application
https://medium.com/@_bl4de/hidden-directories-and-files-as-a-source-of-sensitive-information-about-web-application-84e5c534e5ad
#hackerstuff #HackThePlanet

---

Reading ASP secrets for $17,000

Reading ASP secrets for $17,000

#hackerstuff #HackThePlanet

---

Interactive Beginner’s Guide to ROP
https://bordplate.no/blog/en/post/interactive-rop-tutorial/
#hackerstuff #HackThePlanet

---

How to Make a Captive Portal of Death
https://trevphil.com/posts/captive-portal
#hackerstuff #HackThePlanet

---

Gerix WiFi Cracker – Wireless 802.11 Hacking Tool With GUI

Gerix WiFi Cracker – Wireless 802.11 Hacking Tool With GUI

#hackerstuff #HackThePlanet

---

Acoustic Audio Patterns Could Be Giving Away Your Passwords, Learned by Neural Nets

Why Neural Networks Mean That Your Password is Worthless

#hackerstuff #HackThePlanet

---

Pass-the-Cache to Domain Compromise
https://medium.com/@jamie.shaw/pass-the-cache-to-domain-compromise-320b6e2ff7da
#hackerstuff #HackThePlanet

---

Wicked scammers steal $1 million from Save the Children charity

Wicked scammers steal $1 million from Save the Children charity

#hackerstuff #HackThePlanet

---

The Practical Guide to Hacking Bluetooth Low Energy
https://blog.attify.com/the-practical-guide-to-hacking-bluetooth-low-energy/
#hackerstuff #HackThePlanet

---

Hack The Box – Waldo write-up by 0xRick
https://0xrick.github.io/HackTheBox-Waldo/
#hackerstuff #HackThePlanet

---

Tutorial: Build a lane detector
https://towardsdatascience.com/tutorial-build-a-lane-detector-679fd8953132
#hackerstuff #HackThePlanet

---

DEF CON 27 Theme!
https://defcon.org/html/links/dc-news.html#dc27theme
#hackerstuff #HackThePlanet #DEFCON27

---

How I got a $3k bug bounty from Twitter

$3k Bug Bounty – Twitter’s OAuth Mistakes

#hackerstuff #HackThePlanet

---

Exploiting XXE with local DTD files
https://mohemiv.com/all/exploiting-xxe-with-local-dtd-files/
#hackerstuff #HackThePlanet

---

Binder Transactions in the Bowels of the Linux Kernel
https://www.synacktiv.com/posts/systems/binder-transactions-in-the-bowels-of-the-linux-kernel.html
#hackerstuff #HackThePlanet

---

Hackers are Modern Witches
(Very odd analogy, but interesting read)

Hackers are Modern Witches

#hackerstuff #HackThePlanet

---

Adobe’s Year-End Update Patches 87 Flaws in Acrobat Software
https://thehackernews.com/2018/12/adobe-acrobat-update.html
#hackerstuff #HackThePlanet

---

Microsoft Issues Patch for Windows Zero-Day Flaw Under Active Attack
https://thehackernews.com/2018/12/microsoft-patch-updates.html
#hackerstuff #HackThePlanet

---

From blind XXE to root-level file read access

From blind XXE to root-level file read access

#hackerstuff #HackThePlanet

---

Toyota’s PASTA- A car hacking tool to enhance automobile cybersecurity

Toyota’s PASTA- A car hacking tool to enhance automobile cybersecurity

#hackerstuff #HackThePlanet

---

Study finds five in 17 Certificate Authorities vulnerable to IP fragmentation attack
https://portswigger.net/daily-swig/cas-exposed-as-a-weak-point-in-web-crypto
#hackerstuff #HackThePlanet

---

phpMyAdmin Releases Critical Software Update — Patch Your Sites Now!
https://thehackernews.com/2018/12/phpmyadmin-security-update.html
#hackerstuff #HackThePlanet

---

PlayStation Classic hacked to become platform-free console

PlayStation Classic hacked to become platform-free console

#hackerstuff #HackThePlanet

---

Introducing ee-outliers: open-source framework to detect outliers in Elasticsearch events
Announcement: open-sourcing ee-outliers
#hackerstuff #HackThePlanet

---

Knowledge Is Power: Exploring Over 1,800 Calibre E-Book Servers.
https://blog.chrisbonk.ca/2018/12/knowledge-is-power-exploring-over-1800.html
#hackerstuff #HackThePlanet

---

Logically Bypassing Browser Security Boundaries

#hackerstuff #HackThePlanet

---

hashmaster – A python3 module for cracking hashes.
https://github.com/TheDarkHorseUprising/hashmaster
#hackerstuff #HackThePlanet

---

Trespass – PHP backdoor with py3 client
https://github.com/TheDarkHorseUprising/Trespass
#hackerstuff #HackThePlanet

---

Powersistance – A powershell script for persistance!
https://github.com/TheDarkHorseUprising/Powersistance
#hackerstuff #HackThePlanet

---

Burp Suite vs Fiddler
https://medium.com/salt-security/what-moving-to-the-bay-area-taught-me-about-loving-my-pentesting-tools-97ddc78f8acf
#hackerstuff #HackThePlanet

---