Videos

Published on May 28th, 2019 📆 | 8218 Views ⚑

0

DAY[0] Episode #11 – Offsec's OSWE/AWAE, Massive Security failures, and a handful of cool attacks


https://www.ispeech.org


Unfortunately, this will be our last podcast for a few months while zi is away on a long distance backpacking trip.

When we are back in the fall you can catch up on Twitch at https://twitch.tv/dayzerosec or on anchor https://anchor.fm/day0





[00:00:50] This will be our last episode until the fall.
[00:02:50] Thoughts on the Advanced Web Attacks and Exploitation (AWAE) Course, and the Offensive Security Web Expert (OSWE) certification - https://www.offensive-security.com/information-security-training/advanced-web-attack-and-exploitation/
[00:32:05] r/AskNetsec - New windows LPE from non-admin 🙂 - From SandboxEscaper - https://www.reddit.com/r/AskNetsec/comments/brcr4n/new_windows_lpe_from_nonadmin/
[00:45:20] First American Financial Corp. compromise - https://krebsonsecurity.com/2019/05/first-american-financial-corp-leaked-hundreds-of-millions-of-title-insurance-records/
[00:53:48] Google admits storing G Suite user passwords in plain text for 14 years - https://techerati.com/news-hub/google-admits-storing-g-suite-user-passwords-in-plain-text-for-14-years/
[01:02:27] Safety vs. Security: Attacking Avionic Systems with Humans in the Loop - https://arxiv.org/abs/1905.08039
[01:17:30] Malware Guard Extension: Using SGX to Conceal Cache Attacks - https://arxiv.org/abs/1702.08719
[01:25:04] Biometric Backdoors: A Poisoning Attack Against Unsupervised Template Updates - https://arxiv.org/abs/1905.09162
[01:36:45] MemoryRanger Prevents Hijacking FILE_OBJECT Structures in Windows - https://arxiv.org/abs/1905.09543
[01:46:59] Hey Google, What Exactly Do Your Security Patches Tell Us?A Large-Scale Empirical Study on Android Patched Vulnerabilities - https://arxiv.org/pdf/1905.09352.pdf
[02:03:35] MAC OSX Gatekeeper Bypass - https://www.fcvl.net/vulnerabilities/macosx-gatekeeper-bypass
[02:10:47] RCE Without Native Code: Exploitation of a Write-What-Where in Internet Explorer - https://www.thezdi.com/blog/2019/5/21/rce-without-native-code-exploitation-of-a-write-what-where-in-internet-explorer


2019-05-27 22:08:10

source

Tagged with:



Comments are closed.






© Torchsec  Privacy Policy Disclaimer  T&C



Back to Top ↑