My Crap – Page 51 – Random Ramblings About Random Crap

2018-12-12 News Feed

Hacker Shit, News Feed Stuff, Random Musings, Security Stuff, Stuff To Learn2018-12-12

Adobe’s Year-End Update Patches 87 Flaws in Acrobat Software
https://thehackernews.com/2018/12/adobe-acrobat-update.html
#hackerstuff #HackThePlanet

Microsoft Issues Patch for Windows Zero-Day Flaw Under Active Attack
https://thehackernews.com/2018/12/microsoft-patch-updates.html
#hackerstuff #HackThePlanet

From blind XXE to root-level file read access

From blind XXE to root-level file read access

#hackerstuff #HackThePlanet

2018-12-11 News Feed

Hacker Shit, News Feed Stuff, Random Musings, Security Stuff, Stuff To Learn2018-12-11

Toyota’s PASTA- A car hacking tool to enhance automobile cybersecurity

Toyota’s PASTA- A car hacking tool to enhance automobile cybersecurity

#hackerstuff #HackThePlanet

Study finds five in 17 Certificate Authorities vulnerable to IP fragmentation attack
https://portswigger.net/daily-swig/cas-exposed-as-a-weak-point-in-web-crypto
#hackerstuff #HackThePlanet

phpMyAdmin Releases Critical Software Update — Patch Your Sites Now!
https://thehackernews.com/2018/12/phpmyadmin-security-update.html
#hackerstuff #HackThePlanet

PlayStation Classic hacked to become platform-free console

PlayStation Classic hacked to become platform-free console

#hackerstuff #HackThePlanet

Introducing ee-outliers: open-source framework to detect outliers in Elasticsearch events
Announcement: open-sourcing ee-outliers
#hackerstuff #HackThePlanet

Knowledge Is Power: Exploring Over 1,800 Calibre E-Book Servers.
https://blog.chrisbonk.ca/2018/12/knowledge-is-power-exploring-over-1800.html
#hackerstuff #HackThePlanet

Logically Bypassing Browser Security Boundaries

#hackerstuff #HackThePlanet

hashmaster – A python3 module for cracking hashes.
https://github.com/TheDarkHorseUprising/hashmaster
#hackerstuff #HackThePlanet

Trespass – PHP backdoor with py3 client
https://github.com/TheDarkHorseUprising/Trespass
#hackerstuff #HackThePlanet

Powersistance – A powershell script for persistance!
https://github.com/TheDarkHorseUprising/Powersistance
#hackerstuff #HackThePlanet

Burp Suite vs Fiddler
https://medium.com/salt-security/what-moving-to-the-bay-area-taught-me-about-loving-my-pentesting-tools-97ddc78f8acf
#hackerstuff #HackThePlanet

2018-12-10 News Feed

Hacker Shit, News Feed Stuff, Random Musings, Security Stuff, Stuff To Learn2018-12-10

DuckDuckGo study claims Google Incognito searches are not private

DuckDuckGo study claims Google Incognito searches are not private

#hackerstuff #HackThePlanet

Hackers conducting botnet attacks through 20k hacked WordPress sites

Hackers conducting botnet attacks through 20k hacked WordPress sites

#hackerstuff #HackThePlanet

Another MongoDB database exposes personal data of 66M users \

Another MongoDB database exposes personal data of 66M users

#hackerstuff #HackThePlanet

Code execution through crafted URLs
https://jenkins.io/security/advisory/2018-12-05/
#hackerstuff #HackThePlanet

FreeRTOS TCP/IP Stack Vulnerabilities – The Details

FreeRTOS TCP/IP Stack Vulnerabilities – The Details

#hackerstuff #HackThePlanet

Demystifying Kubernetes CVE-2018-1002105 (and a dead simple exploit)

Demystifying Kubernetes CVE-2018-1002105 (and a dead simple exploit)

#hackerstuff #HackThePlanet

Bypassing Authentication Using Javascript Debugger
Bypassing Authentication Using Javascript Debugger.
#hackerstuff #HackThePlanet

igg (the IP geolocation groper) – a command line utility for geolocating IP addresses and host names.
https://gitlab.com/nxl4/igg
#hackerstuff #HackThePlanet

2018-12-07 News Feed

Hacker Shit, News Feed Stuff, Random Musings, Security Stuff, Stuff To Learn2018-12-07

Australia Passes Anti-Encryption Bill—Here’s Everything You Need To Know
https://thehackernews.com/2018/12/australia-anti-encryption-bill.html
#hackerstuff #HackThePlanet

New AI tool aims to make CAPTCHA a thing of the past

New AI tool aims to make CAPTCHA a thing of the past

#hackerstuff #HackThePlanet

2018-12-06 News Feed

Hacker Shit, News Feed Stuff, Random Musings, Security Stuff, Stuff To Learn2018-12-06

Fucking Homepage Words of Wisdom of the Fucking Day
Being Offended Doesn’t Mean You’re Right.

https://fuckinghomepage.com/post/180853653365/december-6-2018

New Adobe Flash Zero-Day Exploit Found Hidden Inside MS Office Docs
https://thehackernews.com/2018/12/flash-player-vulnerability.html
#hackerstuff #HackThePlanet

Now you, too, can snoop on mobe users from 3G to 5G with a Raspberry Pi and €1,100 of gizmos
https://www.theregister.co.uk/2018/12/05/mobile_users_can_be_tracked_with_cheap_kit_aka_protocol/
#hackerstuff #HackThePlanet

GitHub Desktop RCE (OSX)
https://pwning.re/2018/12/04/github-desktop-rce/
#hackerstuff #HackThePlanet

Uberducky – a wireless USB Rubber Ducky triggered via BLE
https://blog.ice9.us/2018/12/uberducky-ble-wireless-usb-rubber-ducky.html
#hackerstuff #HackThePlanet

linikatz – a tool to attack AD on UNIX
https://github.com/portcullislabs/linikatz
#hackerstuff #HackThePlanet

Billion Laugh Attack in https://sites.google.com
https://blog.intothesymmetry.com/2018/12/billion-laugh-attack-in.html
#hackerstuff #HackThePlanet

The Billion Laugh Attack
XML Security: A Billion Laughs
#hackerstuff #HackThePlanet