Weekly Cybersecurity news, techniques, exploits, and tools every Monday at blog.badsectorlabs.com

Joined November 2011
Censorship or restrictive networks blocking your browsing or C2 traffic? Try domain hiding! Available as a replacement for crypto/tls in Go or as a standalone proxy, you can try it today. You can hide behind any Cloudflare DNS hosted domain (26MM+). invidious.snopyta.org/TDg092qe50g
2
34
62
Show this thread
This was patched on Tuesday (2021-01-12, Defender engine version 1.1.17700.4), but you should double check that your systems got the patch. How many different ways could you get defender to scan a file? Email, web download, on a share, etc....
I have just exploited CVE-2021-1647 Windows defender 0day vulnerability #0day #exploit #microsoft #windows #security invidious.snopyta.org/watch?v=FlaYEnck…
1
1
3
You can check the Defender engine version in Settings -> Windows Security -> About (gear icon)
1
0
2
This is great side-channel hardware hacking. 6,000 observations to leak the private key from a Google Titan hardware security key 🔑
Our last research work has just been released online: "A Side Journey to Titan" - Side-Channel Attack on the Google Titan Security Key
0
0
1
SMB in webassembly. Watering hole and malvertising attacks just got a lot more interesting. Requires a local proxy for now but this could be scary. Click a link, eternalblue gets sprayed across your local network?
I waited 2 years for this, rewrote impacket for this, asked cryptographers to remake algos in python for this, spent enormous time of my life to make this happen. and it's finally here this finally works and I can't find the words to express my satisfaction.
Show this thread
1
1
5
It was @codinghorror who said, "any application that can be written in JavaScript, will eventually be written in JavaScript," which seems to be holding true today. Also reminds me of this great talk by @garybernhardt: destroyallsoftware.com/talks…
0
0
2
Missed this one on the weekly wrap up 🤦‍♂️. If you do anything with direct syscalls you’ll want to check it out!
Introducing SysWhispers2! It no longer relies on pre-computed syscall tables, and uses @modexpblog's address sorting implementation instead. Check out @ElephantSe4l's write-up for how the technique works. - github.com/jthuraisamy/SysWh… - crummie5.club/freshycalls
0
0
4