### Month: February | Year: 2022 | Release Date: 18/02/2022 | Edition: #1 ###
Must See Something that’s really worth your time!
Description: What Bypassing Razer’s DOM-based XSS Patch Can Teach Us.
Description: Cross-origin request forgery against Grafana (CVE-2022-21703).
‘ ╦ ╦┌─┐┌─┐┬┌─
‘ ╠═╣├─┤│ ├┴┐
‘ ╩ ╩┴ ┴└─┘┴ ┴
‘ Some Kung Fu Techniques.
Description: Fake Protocol Server.
Description: Fileshare auditing tool.
Description: Cover your tracks during Linux Exploitation.
Description: Community edition nuclei templates organizer.
Description: Windows Drivers Reverse Engineering Methodology.
Description: Find known defensive products such as AV’s, EDR’s and logging tools.
Description: Emerging Threat of Containerized Malware – MOTW (Mark of the Web) Bypass.
Description: CLI that generates randomized C2 malleable profiles for use in Cobalt Strike.
Description: Capturing sensitive data using real-time stack scanning against a remote process.
‘ ╔═╗┌─┐┌─┐┬ ┬┬─┐┬┌┬┐┬ ┬
‘ ╚═╗├┤ │ │ │├┬┘│ │ └┬┘
‘ ╚═╝└─┘└─┘└─┘┴└─┴ ┴ ┴
‘ All about security issues.
Description: SIM Hijacking.
URL: https://bit.ly/3LpO4Ud (+)
Description: Hunting for Persistence in Linux – Series.
Description: How to audit Solana smart contracts – Series.
Description: CoronaCheck App TLS certificate vulnerabilities.
Description: Running malicious code in your CI, without access to your CI.
Description: Abusing Reverse Proxies.
URL: https://bit.ly/3oHzuOe (+)
Description: Code Execution on Apache via an Integer Underflow (CVE-2021-44790).
Description: Invisible Sandbox Evasion.
Description: A technique to semi-automatically find vulnerabilities in WordPress plugins.
‘ ╔═╗┬ ┬┌┐┌
‘ ╠╣ │ ││││
‘ ╚ └─┘┘└┘
‘ Spare time?
Description: Sha256 Algorithm Explained.
Description: Ten years of ThinkPadding.
Description: How does UTF-8 turn “😂” into “F09F9882”?