30 - A Dark White-Hat hacker? and various vulns ft. Cisco, Periscope, NordVPN and Tesla/EyeQ

25 February 2020

Show Notes

30 - A Dark White-Hat hacker? and various vulns ft. Cisco, Periscope, NordVPN and Tesla/EyeQ

Humble Book Bundle: Cybersecurity 2020 by Wiley

Google Summer of Code 2020

Additional Links: https://radare.org/gsoc/2020/

Critical Issue In ThemeGrill Demo Importer

Cisco Security Advisory: Cisco Smart Software Manager On-Prem Static Default Credential Vulnerability

nordvpn Linux Desktop executable application does not use pie / no ASLR

Race condition (TOCTOU) in NordVPN can result in local privilege escalation

Periscope android app deeplink leads to CSRF in follow action

I hacked SlickWraps. This is how. - Lynx0x00 - Medium

Additional Links: https://files.catbox.moe/fxn9r2.pdf

Model Hacking ADAS to Pave Safer Roads for Autonomous Vehicles

Edge CVE-2020-0767 RCE POC

GadgetProbe: Exploiting Deserialization to Brute-Force the Remote Classpath

CopyCat: Controlled Instruction-Level Attacks on Enclaves for Maximal Key Extraction

MEUZZ: Smart Seed Scheduling for Hybrid Fuzzing

pwn.college BETA

Microcontroller Readback Protection: Bypasses and Defenses

Libxml2 Tutorial | AFLplusplus

Booting iOS on QEMU Research Slides

Additional Links: https://github.com/alephsecurity/confs/blob/master/OFFENSIVE20/offensive-20-ios-qemu.pdf https://github.com/alephsecurity/xnu-qemu-arm64