Last Week in Security (LWiS) - 2024-02-26 ConnectWise Vulnerabilities, open buckets (@pfiatde), SCCM takeover (@garrfoster), cloud to on-pr... 2024-2-27 12:59:0 | 阅读: 24 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com security cloud windows connectwise

Last Week in Security (LWiS) - 2024-02-19 ESC13 (@Jonas_B_K), Sandboxing syscalls (@h0mbre_), Cross Window Forgery (@PaulosYibelo), new Win... 2024-2-20 12:59:0 | 阅读: 18 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com windows snap github attacker sandboxing

Last Week in Security (LWiS) - 2024-02-12 LDAP tradecraft (@domchell), CreateRemoteThread saftey (@m417z), Lab automation (@W9HAX), LoFP (@... 2024-2-13 12:59:0 | 阅读: 14 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com windows security tunneling expressvpn gat

Last Week in Security (LWiS) - 2024-02-07 All the Ivanti 0days, FTX SIM swap (@briankrebs), Unmanaged CLR patching (@kyleavery_), Midnight... 2024-2-8 12:59:0 | 阅读: 23 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com windows arachne security xmr ivanti

Last Week in Security (LWiS) - 2024-01-30 2024-1-31 12:59:0 | 阅读: 47 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com windows microsoft fronting bypass vectored

Last Week in Security (LWiS) - 2024-01-23 Microsoft hacked, GraphStrike (@Octoberfest73), GPO based LPEs (@decoder_it), AwaitFuscator (@was... 2024-1-24 12:59:0 | 阅读: 27 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com security microsoft ups remote proxy

Last Week in Security (LWiS) - 2024-01-15 SSPI in Python (@snovvcrash), executing shellcode from VBA (@TheXC3LL), Mirth Connect pre-auth RC... 2024-1-16 12:59:0 | 阅读: 44 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com airdrop bypass lpe 36003

Last Week in Security (LWiS) - 2024-01-10 QR phishing (@pfiatde), SOCKS as C2 via SSH on Windows (@n00py1), Google Account takeover with pe... 2024-1-11 04:35:0 | 阅读: 14 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com phishing bitwarden windows malicious

Last Week in Security (LWiS) - 2024-01-01 Ghidriff (@clearbluejar), Linux exploitation (@kevin_backhouse), win32 keylogger (@_ixty_), BLUFF... 2024-1-2 12:59:0 | 阅读: 18 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com windows memory proxies injection security

Last Week in Security (LWiS) - 2023-12-04 O365 Phishing infra (@pfiatde), EvilSlackbot (@infosec_drewze), Sonos jailbreak (@alexjplaskett),... 2023-12-5 12:59:0 | 阅读: 16 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com phishing rebinding stuxnet appdomain

Last Week in Security (LWiS) - 2023-11-29 2023-11-30 12:59:0 | 阅读: 21 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com bypass c2 okta memory ups

Last Week in Security (LWiS) - 2023-11-13 2023-11-14 12:59:0 | 阅读: 18 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com security bobber microsoft database

Last Week in Security (LWiS) - 2023-11-06 In-line PE runner (@s4ntiago_p), Citrix Bleed (@assetnote ), Cisco IOS XE PoC (@JamesHorseman2),... 2023-11-7 12:59:0 | 阅读: 16 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com windows har security porch client

Last Week in Security (LWiS) - 2023-10-24 Windows LPE (@chompie1337), TPM Bitlocker deepdive (@[email protected]), unhooking effects (... 2023-10-25 11:59:0 | 阅读: 19 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com windows okta falconhound security proxy

Last Week in Security (LWiS) - 2023-10-09 Looney Tunables Linux LPE (@qualys), Impending curl issue (@bagder), macOS gatekeeper bypass 0day... 2023-10-10 11:59:0 | 阅读: 30 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com unauth loader cloud ted unhooking

Last Week in Security (LWiS) - 2023-10-03 Nighthawk update (@MDSecLabs), Teams external splash bypass, MSI LPEs, and Zip+LNKs (@pfiatde), S... 2023-9-26 11:59:0 | 阅读: 17 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com c2 defenders sccm windows memory

Last Week in Security (LWiS) - 2023-09-19 Cobalt Strike 4.9, 38TB of internal MS data, a crazy phish, an Okta toolkit, macOS LPE, and more!... 2023-9-20 11:59:0 | 阅读: 33 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com cobalt windows firewalls phishing evilginx3

Last Week in Security (LWiS) - 2023-09-11 Zero-click iOS exploits (@citizenlab), in-the-wild Chrome 0day, physical/mobile RE writeup (@eltt... 2023-9-12 11:59:0 | 阅读: 28 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com security lpe missed windows sysinternal

Last Week in Security (LWiS) - 2023-08-29 DEF CON 31 tools and so much more!Last Week in Security is a summary of the interesting cyber... 2023-8-30 11:59:0 | 阅读: 30 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com windows sccm shellcode remote hunters

Last Week in Security (LWiS) - 2023-08-07 Epic rewards point hack (@samwcyo), blinding auditd (@qtc_de), attacking an EDR (@dottor_morte),... 2023-8-8 11:59:0 | 阅读: 19 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com auditd purple phishing memory rewards