Seclog - #110

RosecurifyRosecurify
2 min read

๐Ÿ“š SecMisc

  • SlowMist Hacked - SlowMist Zone - Explore the latest hacks and security incidents reported by SlowMist. Read More

  • Supply Chain Attacks: A New Era - A deep dive into the evolving landscape of supply chain attacks and their implications. Read More

  • Denuvo Analysis - A technical breakdown of Denuvo's anti-tamper technology and its vulnerabilities. Read More

  • Fun with Timing Attacks - Exploring the intricacies of timing attacks and their exploitation. Read More

  • OSV-SCALIBR: A library for Software Composition Analysis - Google's new library for analyzing software composition vulnerabilities. Read More

  • System Prompt Storytelling: A Tale of AI Jailbreaking - A fascinating look into AI jailbreaking through system prompts. Read More

  • Hacking Subaru: Tracking and Controlling Cars via the STARLINK Admin Panel - A detailed account of hacking Subaru's STARLINK system. Read More

  • Reverse Engineering Call Of Duty Anti-Cheat - A reverse engineering journey into Call of Duty's anti-cheat system. Read More

  • Next.js, cache, and chains: the stale elixir - An exploration of caching vulnerabilities in Next.js applications. Read More

  • almost_pwned.md - A collection of near-miss security incidents and lessons learned. Read More

  • Client Side Path Traversal (CSPT) Bug Bounty Reports and Techniques - Techniques and reports on CSPT vulnerabilities. Read More

  • Backdooring Your Backdoors - Another $20 Domain, More Governments - A look into backdoor vulnerabilities in government systems. Read More

  • A closer look at the Mercedes-Benz infotainment system security - Research into the security of Mercedes-Benz's infotainment system. Read More

๐Ÿฆ SecX

  • Disable Bluetooth in Public Places? - A discussion on the practicality of disabling Bluetooth in public spaces. Read More

  • Security Notice about ChatGPT Operator - A warning about credential storage in ChatGPT Operator. Read More

๐ŸŽฅ SecVideo

  • Analysis of CVE-2023-37474 in CopyParty - A detailed analysis of the CVE-2023-37474 vulnerability in CopyParty. Watch Here

๐Ÿ’ป SecGit

  • opengrep/opengrep - A static code analysis engine for finding security issues in code. Explore on GitHub

  • semgr8ns/semgr8s - A Semgrep-based Policy Controller for Kubernetes. Explore on GitHub

  • TURROKS/CVE_Prioritizer - A tool to streamline vulnerability patching using CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Explore on GitHub

For suggestions and any feedback, please contact: securify@rosecurify.com

0
Subscribe to my newsletter

Read articles from Rosecurify directly inside your inbox. Subscribe to the newsletter, and don't miss out.

seclogSecurity

Written by

Rosecurify
Rosecurify