Last Week in Security (LWiS) - 2020-10-19 Ryzen Driver LPE by @h0mbre_, Discord desktop RCE by @kinugawamasato, Azure Pipeline abuse by @Fl... 2020-10-20 12:40:00 | 阅读: 32 | 收藏 | blog.badsectorlabs.com security windows encryption microsoft finfisher

Last Week in Security (LWiS) - 2020-10-12 DLL Hijacking persistence by @duff22b, Unauth RCE against HP Device Manager from @nickstadb, Linu... 2020-10-13 12:20:00 | 阅读: 41 | 收藏 | blog.badsectorlabs.com windows hijacking security remotes

Last Week in Security (LWiS) - 2020-10-05 Sysmon exploit by @0x00dtm, physical smartcard/kerberos attack tools by @_EthicalChaos_, UACMe up... 2020-10-06 12:20:00 | 阅读: 42 | 收藏 | blog.badsectorlabs.com ransomware bypasses security uacme checksec

Last Week in Security (LWiS) - 2020-09-28 Malicious MSI transforms from @_EthicalChaos_, Group Policy caching LPE by @decoder_it, another C... 2020-09-29 12:59:00 | 阅读: 71 | 收藏 | blog.badsectorlabs.com zerologon windows client fortinetssl russia

Last Week in Security (LWiS) - 2020-09-21 Argument injection makes a comeback by @dozernz, persistence with the Dock in macOS by @_D00mfist... 2020-09-22 12:59:00 | 阅读: 35 | 收藏 | blog.badsectorlabs.com lateral injection cobalt windows dcom

Last Week in Security (LWiS) - 2020-09-14 The biggest bug since 2017 - Unauth DC RCE by @djrevmoon and team, OpenSSL hooks in Rust by @ales... 2020-09-15 09:45:00 | 阅读: 48 | 收藏 | blog.badsectorlabs.com windows microsoft github ghidra evilginx

Last Week in Security (LWiS) - 2020-09-07 Remote SAM dumping in .NET by @G0ldenGunSec, Using Yara offensively by @_batsec_, Custom DLL inje... 2020-09-09 11:15:00 | 阅读: 42 | 收藏 | blog.badsectorlabs.com chrome windows dumping injection injector

Last Week in Security (LWiS) - 2020-08-31 Prevent .NET exit in loaded code by @domchell, file delete to SYSTEM PoC by @404death, @Tesla is... 2020-09-01 11:45:00 | 阅读: 41 | 收藏 | blog.badsectorlabs.com tesla windows injection security analysis

Last Week in Security (LWiS) - 2020-08-24 Kerberoasting without SPNs by @_mohemiv, spoof any gmail/gsuite customer with a technique from @e... 2020-08-25 11:45:00 | 阅读: 30 | 收藏 | blog.badsectorlabs.com windows cloud memory spns dmarc

Last Week in Security (LWiS) - 2020-08-17 Azure AD to on-prem lateral movement by @_wald0, a new Windows un-hooking project from @peterwint... 2020-08-18 12:20:00 | 阅读: 43 | 收藏 | blog.badsectorlabs.com windows vmprotect payload osce security

Last Week in Security (LWiS) - 2020-08-10 A new telemetry inspection tool by @Jackson_T, macOS goodies from @_D00mfist and @patrickwardle,... 2020-08-11 12:30:00 | 阅读: 35 | 收藏 | blog.badsectorlabs.com windows memory security wonder telemetry

Last Week in Security (LWiS) - 2020-08-03 A ton of macOS exploits and techniques from @xorrior, @A2nkF_, @mattshockl, and @vladimir_metnew,... 2020-08-04 07:45:00 | 阅读: 34 | 收藏 | blog.badsectorlabs.com security windows grub attacker bypass

Last Week in Security (LWiS) - 2020-07-27 NTLM relaying via Citrix Workspace by @_EthicalChaos_, access the entire AD database via Exchange... 2020-07-27 19:20:00 | 阅读: 60 | 收藏 | blog.badsectorlabs.com exchange software windows blackbaud phishing

Last Week in Security (LWiS) - 2020-07-20 Sophos XG 0day discovery by @ramoliks and @niph_, a D/Invoke primer by @_RastaMouse, EDR bypass v... 2020-07-21 05:20:00 | 阅读: 62 | 收藏 | blog.badsectorlabs.com windows identify memory attackers facial

Last Week in Security (LWiS) - 2020-07-13 VBA macro static analysis defeats by @gabriele_pippi, anti-RE VBS tricks from @Laughing_Mantis, E... 2020-07-14 05:30:00 | 阅读: 29 | 收藏 | blog.badsectorlabs.com windows injection impair defenses security

Last Week in Security (LWiS) - 2020-07-06 A new DLL hijacking finder from @CTXIS, the dangers of window.opener.postMessage by @zoczus, Wind... 2020-07-07 06:10:00 | 阅读: 49 | 收藏 | blog.badsectorlabs.com windows sticky payload security malicious

Last Week in Security (LWiS) - 2020-06-29 1,566 hijackable DLLs in Windows 10 from @Wietze, a Bitdefender RCE from visiting a website by @W... 2020-06-30 02:20:00 | 阅读: 57 | 收藏 | blog.badsectorlabs.com windows bitdefender injection security network

Last Week in Security (LWiS) - 2020-06-22 Bypassing CSP with Google Analytics by @amirshaked, @itm4n drops yet another Windows LPE, @OptivS... 2020-06-22 23:10:00 | 阅读: 41 | 收藏 | blog.badsectorlabs.com windows security opsec library beacon

Last Week in Security (LWiS) - 2020-06-15 A new tunneling tool from @shantanukhande, new rootkit tradecraft and kernel mode payload from @z... 2020-06-17 05:50:00 | 阅读: 53 | 收藏 | blog.badsectorlabs.com windows airdrop network cloud colab

Last Week in Security (LWiS) - 2020-06-08 A new Windows C implant from @_batsec_, a tool to detect .NET in memory by @domchell, big updates... 2020-06-09 09:35:00 | 阅读: 37 | 收藏 | blog.badsectorlabs.com windows memory lpe injection talos