NetAtlas C2 Server Search: detect Command and Control (C2) servers https://securityonline.info/netatlas-c2-server-search-detect-command-and-control-c2-servers/

GitLab vulnerability leveraged in LABRAT cryptojacking, proxyjacking operation https://www.scmagazine.com/brief/gitlab-vulnerability-leveraged-in-labrat-cryptjacking-proxyjacking-operation

Band-aid on a… corpse: Microsoft patches IE — again https://www.kaspersky.com/blog/microsoft-patch-tuesday-july-2023/48606/

The art of fuzzing: Windows Binaries https://bushido-sec.com/index.php/2023/06/25/the-art-of-fuzzing-windows-binaries/

V8 CreateLiteral type confusion when processing ..spread leads to RCE https://bugs.chromium.org/p/chromium/issues/detail?id=1260129

libslub is a python library to examine the SLUB managements structures and object allocations (the Linux kernel heap implementation) https://github.com/nccgroup/libslub

Lookout Attributes Advanced Android Surveillanceware to Chinese Espionage Group APT41 https://www.lookout.com/threat-intelligence/article/wyrmspy-dragonegg-surveillanceware-apt41

Tick3tDump - dump Kerberos tickets using Powershell https://github.com/MzHmO/PowershellKerberos/blob/main/dumper.ps1

US Senator Wyden Accuses Microsoft of ‘Cybersecurity Negligence’ https://www.securityweek.com/us-senator-wyden-accuses-microsoft-of-cybersecurity-negligence/

Exclusive: North Korean hackers breached top Russian missile maker https://www.reuters.com/technology/north-korean-hackers-breached-top-russian-missile-maker-2023-08-07/?taid=64d16bc12669aa000106af05&utm_campaign=trueAnthem:+Trending+Content&utm_medium=trueAnthem&utm

Introducing Google’s Secure AI Framework https://blog.google/technology/safety-security/introducing-googles-secure-ai-framework/

Nickelodeon investigates breach after leak of 'decades old’ data https://www.bleepingcomputer.com/news/security/nickelodeon-investigates-breach-after-leak-of-decades-old-data/

Badsecrets - A Library For Detecting Known Secrets Across Many Web Frameworks https://www.kitploit.com/2023/07/badsecrets-library-for-detecting-known.html?m=1

TunnelCrack is a combination of two widespread security vulnerabilities in VPNs https://tunnelcrack.mathyvanhoef.com/

Learn to code for free https://github.com/freecodecamp/freecodecamp

Android Universal Root - Exploiting GPU / Command Queue Drivers https://youtu.be/kEl5qbLZVeY

FIN8 Group Using Modified Sardonic Backdoor for BlackCat Ransomware Attacks https://thehackernews.com/2023/07/fin8-group-using-modified-sardonic.html?m=1

NixImports: .NET malware loader, using API-Hashing and dynamic invoking to evade static analysis https://github.com/dr4k0nia/NixImports#how-to-use

Bad.Build Flaw in Google Cloud Build Raises Concerns of Privilege Escalation https://thehackernews.com/2023/07/badbuild-flaw-in-google-cloud-build.html?m=1

US Military Personnel Targeted by Unsolicited Smartwatches Linked to Data Breaches https://www.hackread.com/us-military-unsolicited-smartwatches-data-breach/