Some experiments with Process Hollowing https://insinuator.net/2022/09/some-experiments-with-process-hollowing/
Cybersecurity researchers spotted a new malware-as-a-service (MaaS) called BunnyLoader that’s appeared in the threat landscape. https://securityaffairs.com/151869/malware/bunnyloader-maas.html?amp=1
Introducing Python in Excel: The Best of Both Worlds for Data Analysis and Visualization https://techcommunity.microsoft.com/t5/microsoft-365-blog/introducing-python-in-excel-the-best-of-both-worlds-for-data/ba-p/3905482
SandBlaster: Reversing the Apple sandbox from Cellubrite Labs https://github.com/cellebrite-labs/sandblaster
How Microsoft Had Signing Key Compromised - Results of Major Technical Investigations for Storm-0558 Key Acquisition https://msrc.microsoft.com/blog/2023/09/results-of-major-technical-investigations-for-storm-0558-key-acquisition/
EchoDrv: Tool permitting to abuse Kernel read/write vulnerability in ECHOAC anti-cheat driver echo_driver.sys https://github.com/YOLOP0wn/EchoDrv
Active exploitation of Cisco IOS XE Software Web Management User Interface vulnerability https://blog.talosintelligence.com/active-exploitation-of-cisco-ios-xe-software/
“MrTonyScam” — Botnet of Facebook Users Launch High-Intent Messenger Phishing Attack on Business Accounts https://labs.guard.io/mrtonyscam-botnet-of-facebook-users-launch-high-intent-messenger-phishing-attack-on-business-3182cfb12f4d
Fully Integrated Adversarial Operations Toolkit (C2, stagers, agents, ephemeral infrastructure, phishing engine, and automation) https://github.com/malcomvetter/Periscope
macOS App Management vulnerability illustrated https://lapcatsoftware.com/articles/2023/8/3.html
DNSWatch - DNS Traffic Sniffer and Analyzer https://www.kitploit.com/2023/08/dnswatch-dns-traffic-sniffer-and.html?m=1
Hackers Stole Access Tokens from Okta’s Support Unit https://krebsonsecurity.com/2023/10/hackers-stole-access-tokens-from-oktas-support-unit/
Security Vulnerabilities in CasaOS https://www.sonarsource.com/blog/security-vulnerabilities-in-casaos/
Cheat sheet that contains common enumeration and attack methods for Windows Active Directory. https://github.com/S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet
A new method for container escape using file-based DirtyCred https://starlabs.sg/blog/2023/07-a-new-method-for-container-escape-using-file-based-dirtycred/
Zero-days for hacking WhatsApp are now worth millions of dollars https://techcrunch.com/2023/10/05/zero-days-for-hacking-whatsapp-are-now-worth-millions-of-dollars/?guccounter=1&guce_referrer=aHR0cHM6Ly90LmNvLw&guce_referrer_sig=AQAAAKdeU5wm3OO2aerJISEVsN0GtLjIZD2h
Azure Threat Research Matrix https://microsoft.github.io/Azure-Threat-Research-Matrix/
Active exploitation of Cisco IOS XE Software Web Management User Interface vulnerability https://blog.talosintelligence.com/active-exploitation-of-cisco-ios-xe-software/
Azure Threat Research Matrix https://microsoft.github.io/Azure-Threat-Research-Matrix/
0-days exploited by commercial surveillance vendor in Egypt https://blog.google/threat-analysis-group/0-days-exploited-by-commercial-surveillance-vendor-in-egypt/