December 20, 2022

POC for the new injection technique, abusing windows fork API to evade EDRs.

https://www.blackhat.com/eu-22/briefings/schedule/index.html#dirty-vanity-a-new-approach-to-code-injection--edr-bypass-28417

https://github.com/deepinstinct/Dirty-Vanity

https://infosec.exchange/@AstraKernel/109534451991446739

GreyNoise has released a "Year of Mass Exploits" retrospective report for 2022 highlighting four of the most significant vulnerabilities of the year.

The list includes the Log4Shell (CVE-2021-44228) vulnerability, targeted in nearly one million exploitation attempts within the first week after its discovery.

https://www.greynoise.io/blog/2022-a-look-back-on-a-year-of-mass-exploitation

https://mastodon.social/@serghei/109540859647672144

Cryogenic horror stories

https://bigthink.com/the-future/cryonics-horror-stories/

Wizards guide to debugging

https://wizardzines.com/zines/debugging-guide/

Reply

or to participate.