bytebutcher

Presentation slides on exploiting Linux kernel with CVE-2023-3390 by Dongok Kim (@c0m0r1) & SeungHyun Lee (@0x10n) & Insu Yun (@insu_yun) "One shot, Triple kill" kaist-hacking.github.io/pubs/2023/kim:… #Linux #infosec

netfetch is a tool designed to scan Kubernetes namespaces for network policies and check whether a network policy targets your workloads ➜ github.com/deggja/netfetch

A lot of people liked PayloadsAllTheThingsWeb, it is now out of beta and live on the main repository. Every changes will now be reflected in 5 minutes instead of a cron scheduled every 6 hours🥳 swisskyrepo.github.io/PayloadsAllThe…

I didn’t know llama 3 was chill like that. Mad respect Zuck 🫡

The @offensive_con talk "How to Fuzz Your Way to Android Universal Root: Attacking Android Binder" from Google folks featured Pwndbg's functionalities to inspect kernel allocator and Android binder's state (github.com/pwndbg/pwndbg/…) :) #pwndbg #offensivecon #pwning

An (almost) full VM escape with a single bit clear. Wow (Almost because ASLR & CFG bypass here is incompete so it can only pop calc without arbitrary code execution) This piece of code in VirtualBox is well known and has been audited down and through, meaning that it took Cody a lot of hard manual work to find the bug. My HVR training alone has 2-3 exercises on this code, plus tons of stuff on device IO, VMMDevice, PDM, racing samples...

Cloud Egress Costs Compared getdeploying.com/reference/data…

Tired of copying & pasting multiple shell scripts across servers? 😩 Meet bundler.sh - Bundle all your scripts into ONE with a simple CLI! Get bundler.sh: github.com/bytebutcher/bu… #Bash #Pentesting #Productivity

Check it out, it's tmp.0ut Volume 3! tmpout.sh/3/

This article discusses Kubernetes security fundamentals and provides five practical steps to bolster security: ➀ Proper configuration ➁ Image scanning ➂ Network security ➃ Controlling running applications ➄ Auditing and logging events ➜ blog.palark.com/kubernetes-sec…

eBPF kernel 'backdoor' to snoop on ALL ssh/sudo/su/login/passwd sessions. github.com/hackerschoice/…

I'm sharing my content from 30+ conferences with community to learn 🙏 ✅Talks & Slides ✅Presentations & Videos ✅Workshops & Trainings ✅Books & Documentation Please Share & RT madhuakula.com/content/ #InfoSec #Security #DevSecOps #Pentesting #DevOps #CloudNative #OpenSource