Practical bruteforce of military grade AES-1024 :: Remote Rhein Ruhr Stage :: pretalx
The DataVault solution is a stand-alone application used by default as an encryption solution for many Sony, SanDisk, and Lexar products and as well used by some libraries to offer data security.
https://pretalx.c3voc.de/rc3-2021-r3s/talk/QMYGR3/
pwn1sher/WMEye: WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement
WMEye is an experimental tool that was developed when exploring about Windows WMI. The tool is developed for performing Lateral Movement using WMI and remote MSBuild Execution.
https://github.com/pwn1sher/WMEye
Cloud Security Breaches and Vulnerabilities: 2021 in Review
Your applications accessing AWS services should ideally be running in AWS. When this is the case, use the native AWS constructs to give them an identity with the right permissions and temporary credentials: EC2 instance roles, Lambda execution roles, EKS IAM roles for service accounts.
https://blog.christophetd.fr/cloud-security-breaches-and-vulnerabilities-2021-in-review/
Welcome to IDA 7.7! – Hex Rays
Bugfixes: BUGFIX: 8051: it was not possible to select a different Intel 51 subtype after double-clicking one in the Load a new file dialog BUGFIX: ARM: fixed high memory consumption in regtracker for some files BUGFIX: ARM: some ARM files could cause IDA to consume too much memory during analysis BUGFIX: choosers/dirtrees with big selections could slow down IDA significantly after certain operations.
https://hex-rays.com/products/ida/news/7_7/
Knock Knock! Who's There?
> disassemble l0: ldb <- load byte from offset 14 into A. A = 0xE l1: jeq #0x45, l3, l2 <- check if it's 0x45 - IP packet, header length = 5, version 4 l2: ret #0 <- exit if not a IPv4 packet l3: ldh <- load IP packet total length into A: 0xA4 = 164 bytes.
https://reverse.put.as/2021/12/17/knock-knock-whos-there/
|