XSS Vulnerability in Froala WYSIWYG HTML Editor Recently, I had a brief look at the Froala WYSIWYG HTML Editor (v3.2.0) as there w... 2020-11-18 23:33:42 | 阅读: 291 | 收藏 | insinuator.net froala deadline moreover payload

Microsoft Office Telemetry: Report Release The German Federal Office for Information Security (orig., ger., Bundesamt für Sic... 2020-11-17 21:58:32 | 阅读: 323 | 收藏 | insinuator.net telemetry windows diagnostic produced microsoft

Forklift <=3.3.9 and <=3.4 Local Privilege Escalations on macOS (CVE-2020-15349/CVE-2020-27192) I have started to have a look at my local installed helpers on macOS. These helper... 2020-11-13 22:41:15 | 阅读: 285 | 收藏 | insinuator.net nsstring forklift library arg1 xpc

Reversing C++ Without Getting a Heart Attack – DEvirtualize VIrtual Calls With Devi TLDR: This blogpost presents devi, a tool that can help you devirtualize virtual c... 2020-11-12 22:12:29 | 阅读: 511 | 收藏 | insinuator.net devi ghidra traces python interceptor

Apps on Prescription?! – Perspectives on Digital Health Applications (DiGA) Some time ago, we carried out an evaluation of the Digital Health Applications Ord... 2020-11-05 17:47:54 | 阅读: 236 | 收藏 | insinuator.net security digav processes bfarm

OpenSIS Vulnerabilities OpenSIS is an open source student information system. Recently, it was affected by... 2020-10-15 17:32:43 | 阅读: 248 | 收藏 | insinuator.net vals maintainer php cryptor corresponds

Vulnerabilities in GNU Readline Fixed Recently I discovered some vulnerabilities in GNU Readline. These bugs have been f... 2020-10-07 17:26:05 | 阅读: 204 | 收藏 | insinuator.net library readline libcrypto lib64 libssl

Doing it Server-Side with CypherDog 4.0 Arrroooo… Bloodhound Crew!! Heard the news? CypherDog 4.0 is out and it’s full of... 2020-09-18 06:11:59 | 阅读: 212 | 收藏 | insinuator.net cypher cypherdog retrieving cmdlet bloodhound

ERNW White Paper 69 – Safety Impact of Vulnerabilities in Insulin Pumps With this blog post I am pleased to announce the publication of a new ERNW White P... 2020-09-11 18:39:20 | 阅读: 215 | 收藏 | insinuator.net pump insulin attacker security

How can data from fitness trackers be obtained and analyzed with a forensic approach? The use of Internet of Things devices is continuously increasing: People buy devic... 2020-09-10 16:24:19 | 阅读: 196 | 收藏 | insinuator.net fitness trackers analysis fitbit

Puppet Assessment Techniques Hardening guides for different systems that can be managed by Puppet are easy to f... 2020-09-09 22:16:55 | 阅读: 213 | 收藏 | insinuator.net puppet client 8140 puppetlabs

Java Buffer Overflow with ByteBuffer (CVE-2020-2803) and Mutable MethodType (CVE-2020-2805) Sandbox Escapes Years ago, Java could be used on websites trough applets. To make these applets se... 2020-09-02 16:54:25 | 阅读: 214 | 收藏 | insinuator.net methodtype bytebuffer confusion

Security Advisories for Nagios XI read file error: read notes: is a directory... 2020-07-30 20:57:20 | 阅读: 176 | 收藏 | insinuator.net nagios xi 15902 15903

ACM WiSec 2020 Last week I attended ACM WiSec. Of course, only virtually. The first virtual confe... 2020-07-27 03:08:09 | 阅读: 188 | 收藏 | insinuator.net speakers acoustic zigbee preamble baseband

QEMU, Unicorn, Zelos, and AFL I should start by telling you that this post does not contain anything fundamental... 2020-07-15 21:46:26 | 阅读: 221 | 收藏 | insinuator.net unicorn memory emulated machine hardware

Security Advisories for Ivanti DSM Suite From the end of 2019 on, we reported two critical vulnerabilities in the Ivanti DS... 2020-06-23 17:24:13 | 阅读: 203 | 收藏 | insinuator.net deadline ivanti dsm 13793