Preface

What is this and why does it exist?

All links, the content behind and the opinions there are not mine.
If you follow an external link, it is your problem, not mine if you do not like, what you find there.
Please be aware, that this is just a list of topics I find interesting.

All mentioned security tools can be found here: https://github.com/MrMarco74/security-geraffel



Tools

Exploits written by the Rhino Security Labs team
–> Security-Research - github <–

X41 Smartcard Fuzzer
–> x41-smartcard-fuzzing - github <–

CMS Detection And Exploitation Suite (Scan WordPress, Joomla, Drupal And 50 Other CMSs)
–> CMSeeK v1.0.7 - KitPloit <–

Bluetooth Low Energy Swiss-army knife
–> btlejack - github <–

A fast and powerfull dashboard (admin) finder
–> cangibrina - github <–

WhatsApp Protocol Decryption Burp Tool
–> BurpExtension-WhatsApp-Decryption-CheckPoint - github <–



Talks & Knowledge

2018_08_BlackHatUSA
–> 2018_08_BlackHatUSA - github <–

Process Doppelgänging meets Process Hollowing in Osiris dropper
–> Process Hollowing - Malwarebytes LABS <–

Incrementally better HTTP state management
–> http-state-tokens - github <–



Threats

Researchers Developed Artificial Intelligence-Powered Stealthy Malware
–> DeepLocker - The Hacker News <–

Hardware backdoors in some x86 CPUs
–> rosenbridge - github <–

New Man-in-the-Disk attack leaves millions of Android phones vulnerable
–> Man-in-the-Disk attack - The Hacker News <–

Sending Fax Back to the Dark Ages
–> Faxploit - Check Point Research <–

Even anonymous coders leave fingerprint
–> Identify coders by code - Wired <–