Last Week in Security (LWiS) - 2022-12-12 read file error: read notes: is a directory... 2022-12-13 12:59:0 | 阅读: 21 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com security windows bypass hooking cameras

Last Week in Security (LWiS) - 2022-12-05 ChatGPT (@OpenAI), Huawei hypervisor research (@lyte__ + @NeatMonster_), Tailscale DNS rebiding a... 2022-12-6 12:59:0 | 阅读: 38 | 收藏 | Bad Sector Labs Blog - blog.badsectorlabs.com cloud huawei cameras kubernetes hypervisor

Last Week in Security (LWiS) - 2022-11-28 AWS AppSync exploit (@Frichette_n), F5 unauth RCE, Meta's new VCS, Chrome exploitation (@jack_hal... 2022-11-29 12:59:0 | 阅读: 18 | 收藏 | blog.badsectorlabs.com security microsoft chrome firebase defender

Last Week in Security (LWiS) - 2022-11-14 ROADtools Token eXchange (@_dirkjan), Certified pre-owned followup (@harmj0y + @tifkin_), AAD Pri... 2022-11-15 12:59:0 | 阅读: 29 | 收藏 | blog.badsectorlabs.com security microsoft analysis limits

Last Week in Security (LWiS) - 2022-11-08 I'm a day late - sorry!Last Week in Security is a summary of the interesting cybersecurity ne... 2022-11-9 12:58:0 | 阅读: 22 | 收藏 | blog.badsectorlabs.com security adcs malicious hype libpeconv

Last Week in Security (LWiS) - 2022-10-31 2022-11-1 11:59:0 | 阅读: 33 | 收藏 | blog.badsectorlabs.com security exchange obfuscator analysis

Last Week in Security (LWiS) - 2022-10-24 Untangling Azure Permissions (@0xcsandker), V8 and JS internals of Chrome (@jack_halon), MS Offic... 2022-10-25 05:13:0 | 阅读: 31 | 收藏 | blog.badsectorlabs.com microsoft chrome memory php

Last Week in Security (LWiS) - 2022-10-17 Cobalt Strike RCE (@0x09AL + @FuzzySec), Docker Compose for red teams (@BuckinghamEzra), portable... 2022-10-18 10:20:0 | 阅读: 20 | 收藏 | blog.badsectorlabs.com security analysis windows attacker cobalt

Last Week in Security (LWiS) - 2022-10-10 Intel Alder Lake src leak (@vxunderground ), PHP payloads in PNGs (@ROLANDQuentin2), Zimbra RCE v... 2022-10-11 11:45:0 | 阅读: 25 | 收藏 | blog.badsectorlabs.com php timers bypass pngs windows

Last Week in Security (LWiS) - 2022-10-03 Kerberos downgrade attack (@tiraniddo), Havoc C2 (@C5pider), ASNmap (@pdiscoveryio), static vs be... 2022-10-4 11:52:0 | 阅读: 26 | 收藏 | blog.badsectorlabs.com c2 phishing security downgrade microsoft

Last Week in Security (LWiS) - 2022-09-26 AttachMe Oracle Cloud vuln (@eladgabay_), JuicyPotatoNG service to SYSTEM privesc (@decoder_it +... 2022-9-27 11:59:0 | 阅读: 34 | 收藏 | blog.badsectorlabs.com cloud gate cet phishing

Last Week in Security (LWiS) - 2022-09-19 CloudFox (@sethsec + @cvendramini2), MiraclePtr in Chrome, Jetty hacking (@m1ke_n1), ExternalC2 m... 2022-9-20 11:50:0 | 阅读: 21 | 收藏 | blog.badsectorlabs.com security windows memory attacker uber

Last Week in Security (LWiS) - 2022-09-12 Avoiding memory scanners (@kyleavery_), EvilnoVNC critiques (@TheXC3LL), Athena 0.2 (@checkymande... 2022-9-13 07:45:0 | 阅读: 23 | 收藏 | blog.badsectorlabs.com security memory windows malicious scanners

Last Week in Security (LWiS) - 2022-09-06 Nmap turns 25 (@nmap), PersistAssist (@Grimmie), SCM attack toolkit (@h4wkst3r), nf_tables prives... 2022-9-7 11:59:0 | 阅读: 32 | 收藏 | blog.badsectorlabs.com passwords nmap microsoft

Last Week in Security (LWiS) - 2022-08-30 AceLdr (@kyleavery_), DLL fun (@Wietze + @ConsciousHacker), CI/CD pwnage (@smarticu5), Kerberos L... 2022-8-31 10:21:0 | 阅读: 46 | 收藏 | blog.badsectorlabs.com windows security cobalt library

Last Week in Security (LWiS) - 2022-07-25 The end of PPLdump (@itm4n), beacon detection (@domchell), 30k Wordpress XXS+SQLi (@MrTuxracer),... 2022-7-26 11:59:0 | 阅读: 25 | 收藏 | blog.badsectorlabs.com c2 security wordpress ppldump

Last Week in Security (LWiS) - 2022-07-18 Oauth hijacks (@fransrosen), Macros are back, but also not (@serghei), AD magic (@_dirkjan), Alti... 2022-7-19 11:59:0 | 阅读: 40 | 收藏 | blog.badsectorlabs.com windows macros security microsoft flows

Last Week in Security (LWiS) - 2022-07-05 In the wild 0days (@maddiestone), new Win11 primitive (@yarden_shafir), Cloudflare ZeroTrust for... 2022-7-6 05:45:0 | 阅读: 58 | 收藏 | blog.badsectorlabs.com windows c2 remote sccm

Last Week in Security (LWiS) - 2022-06-27 Pre-auth RCE on Oracle Cloud (@peterjson + @testanull), Global Jacuzzi hack (@XeEaton), goodfaith... 2022-6-28 11:59:0 | 阅读: 37 | 收藏 | blog.badsectorlabs.com windows werfault security c2 ssh

Last Week in Security (LWiS) - 2022-06-20 2022-6-21 11:59:0 | 阅读: 27 | 收藏 | blog.badsectorlabs.com cloud c2 microsoft security