Exception Handling and Data Integrity in Salesforce.Public Report – Threshold ECDSA Cryptography Review.Understanding the Impact of Ransomware on Patient Outcomes – Do We Know Enough?.Updated: Technical Advisory and Proofs of Concept – Multiple Vulnerabilities in U-Boot (CVE-2022-30790, CVE-2022-30552).Technical Advisory – ExpressLRS vulnerabilities allow for hijack of control link.A deeper dive into CVE-2021-39137 – a Golang security bug that Rust would have prevented.Flubot: the evolution of a notorious Android Banking Malware.Whitepaper – Practical Attacks on Machine Learning Systems.Five Essential Machine Learning Security Papers.Climbing Mount Everest: Black-Byte Bytes Back?.NIST Selects Post-Quantum Algorithms for Standardization.Tool Release – insject: A Linux Namespace Injector.NCC Group Research at Black Hat USA 2022 and DEF CON 30. ![]() Top of the Pops: Three common ransomware entry techniques.Implementing the Castryck-Decru SIDH Key Recovery Attack in SageMath.Detecting DNS implants: Old kitten, new tricks – A Saitama Case Study.Wheel of Fortune Outcome Prediction – Taking the Luck out of Gambling.Back in Black: Unlocking a LockBit 3.0 Ransomware Attack.NCC Con Europe 2022 – Pwn2Own Austin Presentations.SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250).Conference Talks – September/October 2022.There’s Another Hole In Your SoC: Unisoc ROM Vulnerabilities.Constant-Time Data Processing At a Secret Offset, Privacy and QUIC.Public Report – Penumbra Labs Decaf377 Implementation and Poseidon Parameter Selection Review.A Guide to Improving Security Through Infrastructure-as-Code.Technical Advisory – Multiple Vulnerabilities in Juplink RX4-1800 WiFi Router (CVE-2022-37413, CVE-2022-37414).Tool Release – Project Kubescout: Adding Kubernetes Support to Scout Suite.Whitepaper – Project Triforce: Run AFL On Everything (2017).A glimpse into the shadowy realm of a Chinese APT: detailed analysis of a ShadowPad intrusion.Shining New Light on an Old ROM Vulnerability: Secure Boot Bypass via DCD and CSF Tampering on NXP i.MX Devices.Public Report – IOV Labs powHSM Security Assessment.Technical Advisory – OpenJDK – Weak Parsing Logic in and Related Classes.Toner Deaf – Printing your next persistence (Hexacon 2022).Check out our new Microcorruption challenges!.Tales of Windows detection opportunities for an implant framework.Tool Release – Web3 Decoder Burp Suite Extension.Technical Advisory – NXP i.MX SDP_READ_DISABLE Fuse Bypass (CVE-2022-45163).A jq255 Elliptic Curve Specification, and a Retrospective.Public Report – Confidential Space Security Review.Public Report – VPN by Google One Security Assessment.Machine Learning 101: The Integrity of Image (Mis)Classification?. ![]() ![]()
0 Comments
Leave a Reply. |