New Study Uncovers Text-to-SQL Model Vulnerabilities Allowing Data Theft and DoS Attacks https://thehackernews.com/2023/01/new-study-uncovers-text-to-sql-model.html
#segurtasuna

Auth0 fixes RCE flaw in JsonWebToken library used by 22,000 projects https://www.bleepingcomputer.com/news/security/auth0-fixes-rce-flaw-in-jsonwebtoken-library-used-by-22-000-projects/ #segurtasuna

Hackers use CAPTCHA bypass to make 20K GitHub accounts in a month
https://www.bleepingcomputer.com/news/security/hackers-use-captcha-bypass-to-make-20k-github-accounts-in-a-month/
#segurtasuna

$ ssh whoami.filippo.io

https://words.filippo.io/dispatches/whoami-updated/

#segurtasuna

I scanned every package on PyPi and found 57 live AWS keys
https://tomforb.es/i-scanned-every-package-on-pypi-and-found-57-live-aws-keys/
#segurtasuna

11 Problems ChatGPT Can Solve For Reverse Engineers and Malware Analysts
https://www.sentinelone.com/labs/11-problems-chatgpt-can-solve-for-reverse-engineers-and-malware-analysts/
#segurtasuna

Reverse Engineering For Everyone!
https://0xinfection.github.io/reversing/
#GitBook #Segurtasuna

Reverse Engineering For Everyone!
https://github.com/mytechnotalent/Reverse-Engineering
#segurtasuna

Stack-Based Buffer Overflows on Linux x86
https://academy.hackthebox.com/module/details/31
#segurtasuna

This short book is written for people who want to understand the internals of 'heap memory', particularly the implementation of glibc's 'malloc' and 'free' procedures, and also for security researchers who want to get started in the field of heap exploitation.
https://heap-exploitation.dhavalkapil.com/
#segurtasuna

A Reverse Engineering Education Needs Analysis Survey
https://arxiv.org/pdf/2212.07531.pdf
#segurtasuna

Reverse Engineering Lectures

https://nsa-codebreaker.org/resources

#segurtasuna

NSA Publishes 2022 Cybersecurity Year in Review
https://www.nsa.gov/Press-Room/News-Highlights/Article/Article/3247606/nsa-publishes-2022-cybersecurity-year-in-review/
#segurtasuna

Gaining root access in Linux using the CVE-2021-26708 vulnerability

http://hdl.handle.net/10810/53355
Azpeitia Loiti, Markel

(Bachelor's Degree Final Project)

#segurtasuna

I like the new Bluetooth-based authentication method offered by Google

#segurtasuna

Web browser forensics for Google Chrome/Chromium
https://github.com/obsidianforensics/hindsight
#segurtasuna

Google releases vulnerability scanner for open-source software, backed by community-editable database

https://venturebeat.com/security/google-releases-vulnerability-scanner-for-open-source-software-backed-by-community-editable-database/

#segurtasuna

Docker-ekin lehenengo urratsak ematen ari bazara, hemen argitaratu dugun dokumentazioa interesgarria aurkituko duzulakoan nago
=
Hemos publicado el guión seguido en el taller de Introducción a Docker

https://github.com/acpmialj/introdocker

#AulaZIUR #segurtasuna @ZiurFundazioa @txiomatika

I've been collecting Writeups for the past HackTheBox University CTF 2022 Supernatural Hacks.

Here my full list:

https://gist.github.com/juananpe/97b41f3752ea6946d67ed31e14861b05

ping me / reply to this toot if you find new ones

#segurtasuna

I've been collecting Writeups for the past HackTheBox University CTF 2022 Supernatural Hacks.

Here my full list:

https://gist.github.com/juananpe/97b41f3752ea6946d67ed31e14861b05

ping me / answer this toot if you find new ones

#segurtasuna