|
Binni Shah
@
binitamshah
0's & 1's of capacitor
|
|
Linux Evangelist. Malwares. Kernel Dev. Security Enthusiast. Coffee, Jain, reformist & Philanthropist. binitamshah at protonmail dot com
|
|
|
29.654
Tweetovi
|
223
Pratim
|
77.907
Osobe koje vas prate
|
| Tweetovi |
|
Binni Shah
@binitamshah
|
4 h |
|
Turning a hotel key card into a stolen credit card : youtube.com/watch?v=ZDstCH… cc @modernrogueshow
|
||
|
|
||
|
Binni Shah
@binitamshah
|
5 h |
|
Lost in my own world 🙈 pic.twitter.com/9DxPsVzzHd
|
||
|
|
||
| Binni Shah proslijedio/la je tweet | ||
|
Ronen Shustin
@ronenshh
|
30. sij |
|
|
||
|
Binni Shah
@binitamshah
|
1. velj |
|
Reversing XignCode3 Driver – Registering Notify & Callback Routines: niemand.com.ar/2020/01/31/rev…
3)Analyzing dispatch functions: niemand.com.ar/2020/01/24/rev…
2)Analyzing init functions: niemand.com.ar/2020/01/16/rev…
1)Identifying the Driver Entry Pt: niemand.com.ar/2020/01/08/rev… cc @niemand_sec
|
||
|
|
||
|
Binni Shah
@binitamshah
|
1. velj |
|
Hardware Debugging for Reverse Engineers (Part 1) : SWD, OpenOCD and Xbox One Controllers : wrongbaud.github.io/stm-xbox-jtag/ cc @wrongbaud pic.twitter.com/mrMwe3U2xW
|
||
|
|
||
|
Binni Shah
@binitamshah
|
1. velj |
|
Abusing DLL Misconfigurations : fireeye.com/blog/threat-re… cc @h4wkst3r || @evan_pena2003 || @FuzzySec
|
||
|
|
||
|
Binni Shah
@binitamshah
|
1. velj |
|
Bypass SameSite Cookies Default to Lax and get CSRF : medium.com/@renwa/bypass-… cc @RenwaX23 pic.twitter.com/PKtlZPLhGh
|
||
|
|
||
| Binni Shah proslijedio/la je tweet | ||
|
FD
@filedescriptor
|
31. sij |
|
@ngalongc, @EdOverflow, and I are starting a new security blog.
In our first write-up, we will discuss the impact of "SameSite by default" and how it affects web app sec. Feel free to request future topics you would like us to cover.
blog.reconless.com/samesite-by-de… pic.twitter.com/5R23YmpksT
|
||
|
|
||
|
Binni Shah
@binitamshah
|
1. velj |
|
Cost of a thread in C++ under Linux : lemire.me/blog/2020/01/3… cc @lemire
|
||
|
|
||
|
Binni Shah
@binitamshah
|
1. velj |
|
OK Google - Bypass the authentication! (How a chain of vulnerabilities lead to special world working as a passpartout for a Google Assistant application) : techblog.mediaservice.net/2020/01/ok-goo… cc @s0wdust pic.twitter.com/wDKlZ1ClWu
|
||
|
|
||
|
Binni Shah
@binitamshah
|
1. velj |
|
Regex cheatsheet for the haters : github.com/geongeorge/i-h… cc @geongeorgek pic.twitter.com/YO6GwTEHk2
|
||
|
|
||
|
Binni Shah
@binitamshah
|
1. velj |
|
Critical Flaw in Trezor Hardware Wallets (attack relies on voltage glitching to extract an encrypted seed ,crack the encrypted seed which is protected by a 1-9 digit PIN) : blog.kraken.com/post/3662/krak…
wallet.fail: youtube.com/watch?v=Y1OBIG…
Demo: youtu.be/6pKuHYwrGkU
|
||
|
|
||
| Binni Shah proslijedio/la je tweet | ||
|
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ
@Pat_Ventuzelo
|
30. sij |
|
🎉 New #fuzzing blogpost :)
Quick blogpost about how I found a OOM/DoS bug in a famous @npmjs/@nodejs package using coverage-guided #javascript fuzzer.
➡️ Fuzzer: Jsfuzz by @fuzzitdev
➡️ Target: wasm-parser
➡️ Bug: DoS/OOM
webassembly-security.com/fuzzing-npm-no…
#WeAssembly #js #wasm #NodeJS
|
||
|
|
||
|
Binni Shah
@binitamshah
|
31. sij |
|
Here's a new way to deploy and update Sysmon on your Windows endpoints : github.com/jokezone/Updat…
|
||
|
|
||
|
Binni Shah
@binitamshah
|
31. sij |
|
How to build a Search-Engine with Common Unix-Tools : iaria.org/conferences201… (pdf)
|
||
|
|
||
|
Binni Shah
@binitamshah
|
31. sij |
|
PHP 0day : PHP 7.0-7.4 disable_functions bypass : github.com/mm0r1/exploits…
Some more Exploits : github.com/mm0r1/exploits
|
||
|
|
||
|
Binni Shah
@binitamshah
|
31. sij |
|
NSA Codebreaker 2019 Writeup : armerj.github.io/CodeBreaker-20… cc @justadrawer2
|
||
|
|
||
|
Binni Shah
@binitamshah
|
30. sij |
|
TCP/IP Connection Primer : levelup.gitconnected.com/linux-kernel-t… pic.twitter.com/6vbxuS66C2
|
||
|
|
||
|
Binni Shah
@binitamshah
|
30. sij |
|
PlaystoreDownloader : A command line tool to download Android applications directly from the Google Play Store : github.com/ClaudiuGeorgiu… (not affiliated with Google in any way) pic.twitter.com/h2WfXYe3bH
|
||
|
|
||
|
Binni Shah
@binitamshah
|
30. sij |
|
Obfuscapk : A black-box obfuscation tool for Android apps : github.com/ClaudiuGeorgiu… pic.twitter.com/1dDLMU0uyX
|
||
|
|
||