We suspected it before. But this seems to confirm the ITW exploit for CVE-2024-9680 was definitely inspired by CVE-2022-0609. Just look at the variable names and other choices - such as creating a Animation object via "animate" function instead of constructor

https://bird.makeup/@esetresearch/1861372500443013450

"Eclipse is a PoC that performs Activation Context hijack to load and run an arbitrary DLL in any desired process."

https://github.com/Kudaes/Eclipse

#frombsky

The evolution of #LEGO computer #UX design:

https://interactionmagic.com/UX-LEGO-Interfaces/

[RSS] Trying to Exploit My Old Android Device, take 1

https://pwner.gg/blog/Android%27s-CVE-2020-0238

[RSS] Introduction to Fuzzing Android Native Components

https://blog.convisoappsec.com/en/introduction-to-fuzzing-android-native-components/

[RSS] Micropatches for "LNK Stomping" Windows Mark of the Web Security Feature Bypass (CVE-2024-38217)

https://blog.0patch.com/2024/11/micropatches-for-lnk-stomping-windows.html

[RSS] Windows Server 2012 Mark of the Web Vulnerability (0day) - and Free Micropatches for it

https://blog.0patch.com/2024/11/windows-server-2012-mark-of-web.html

#CVE_2024_11667 #AUD_2981_97086

Invivo Fuzzing by Amplifying Actual Executions
https://mboehme.github.io/paper/ICSE25-invivo.pdf

#frombsky #fuzzing

Tabletop exercise, your major SaaS supplier got hit with ransomware 8 days ago and they're in the US, but you're in the UK, and you haven't had an update in 4 days, and they've gone on holiday as it's Thanksgiving. https://blueyonder.com/customer-update

Yes IBM, sure.

Bluesky Social Dataset (235M posts from 4M users)
Link: https://zenodo.org/records/11082879
Comments: https://news.ycombinator.com/item?id=42261804

Story-time: C++, bounds checking, performance, and compilers -Coding in Old Entish
https://chandlerc.blog/posts/2024/11/story-time-bounds-checking/

#frombsky

@swapgs @floyd You mean sudo vs. raw sockets?

"But average people like AI poetry better than real one"

(Original title: Saturday Morning Breakfast Cereal - Poetry)

https://www.smbc-comics.com/comic/poetry-2

@floyd Maybe sudo doesn't really grant you full rights to send raw packets?

@floyd Weird handling of half-open connections? Have you tried with -sT?

@0xabad1dea "If you think that part is self-explanatory, then document it thoroughly" sounds like a good rule of thumb for documentation in general.

GRUB LUKS Bypass and Dump

https://remyhax.xyz/posts/luks-vm-dump/

"if the system boots and automatically decrypts the LUKS partition, this blog is about that type of system"

Seems legit