Binarywishes

Yamato Security's Ultimate Windows Event Log Configuration Guide For DFIR And Threat Hunting (especially for sigma users) github.com/Yamato-Securit… & github.com/Yamato-Securit…

We confirm that iOS 16 does communicate with Apple services outside an active VPN tunnel. Worse, it leaks DNS requests. #Apple services that escape the VPN connection include Health, Maps, Wallet. We used @ProtonVPN and #Wireshark. Details in the video: #CyberSecurity #Privacy

We are actively researching claims of 0-day vulnerabilities in Microsoft Exchange Server. There are currently two 0-Day Initiative allocations for related vulns, with no known associated CVEs. We are tracking based on indications in this original document www-gteltsc-vn.translate.goog/blog/canh-bao-…

🔥PRIVACY SCOOP: How ANYONE can track your car using only your license plate: a thread! 🧵👇 #osint #privacy (1/X)

CVE-2022-36804 PoC 🧐 anquanke.com/post/id/280193

Free Uber DFIR report courtesy of @hacker_

"uber hack v v ungood, securty impourtent. i need to all ur money"

Hi - vx-underground malware database is back online and functional - We have begun sharing daily samples with Bazaar - We are resuming paper translations Blah, blah, blah we are doing stuff and more stuff on top of stuff We are taking the weekend off. See you nerds on Monday

I’ve seen an increase in the New Hire SMS Phish attack method recently: - new hire starts at org, they or the org announce new role on LinkedIn - attacker looks up new hire’s phone number on data brokerage sites - sends SMS phish pretending to be Exec to new hire in first month

Search Engines for Pentesters #Pentesting #CyberSec #cyberawarness #cybersecuritytips #informationsecurity #infosec #ethicalhacking #bugbounty #bugbountytips #AWS #hacking

As a malware analyst I sometimes receive Microsoft files which have been manipulated. E.g. infected by a virus and cleaned afterwards. Here are some indicators to recognize PE file manipulation. 🧵

Do you like "Printables" to carry with you just in case you feel like doing party tricks? Here's a fun one I made from this paper on Hacking Cars. Enjoy! cs.tufts.edu/comp/116/archi…

Due to many people contacting me and asking about droneID removal. I just want to remind you that this exists: github.com/MAVProxyUser/C… It was tested on almost all DJI drones up to Mavic 3 fw300, which was the most recent version back then.

This'll make ya hoot 'n holler... @zyn3rgy and @0xthirteen will be at Deadwood 2022 talkin' 'bout "Less SmartScreen More Caffeine – ClickOnce (Ab)Use for Trusted Code Execution"! What're you waitin' for? Grab your tickets today! → wildwesthackinfest.com/deadwood/

@VetConActual What room are you all at?

You have 30 minutes to get your ass to #VETCON at Caesar's Forum or First Sergeant is going to put you on latrine duty for the next month! #DEFCON #DEFCON30 #Veterans

i started the @defcon #HackerTracker project 10 years ago, and it makes me so happy to see it continue to grow and be supported 💙 kudos to @sethlaw @_advice_dog @aNullValue @dcib 🌈

A thing of beauty.

3 years ago I was selling out of my backpack at @defcon. This year, OMG is on the front cover. 😎 I’ll be seeing you at the vendor area with @Hak5 Lots more to come, including what’s inside this catalog!

Researchers find that an Iranian #hacking group was behind a series of politically motivated disruptive cyberattacks against #Albanian government services in mid-July 2022. Read details: thehackernews.com/2022/08/irania… #infosec #cyberattack

Don't forget to pack your 80s themed attire for #VETCON next Saturday. There will be judged contests for both 80s culture and 80s military. Or...if you're in the Navy, just come in uniform... #defcon #DEFCON30 #Veterans