Links Digest 2021
Thu, 24 Dec 2021 14:13:00 GMT
A short list of useful links.
Security
Blogs
- https://0x00sec.org/ - don't know yet but it looks interesting
- https://abiondo.me - ctf and other hacking things from a talanted hacker
- https://www.vulnano.com/ - small blog but cool nevertheless
- https://bugbountyforum.com/ - interesting info about bug bounties
- https://xz.aliyun.com/ - interesting blog full of exploits and stuff
- https://sites.google.com/securifyinc.com/secblogs/table-of-contents - very cool research
- https://spaceraccoon.dev/ - bug bounty stuff
- https://samcurry.net - bug bounty stuff
Zines
- https://www.alchemistowl.org/pocorgtfo/ - pocorgtfo
- https://secret.club - a zine but pretty compact and down to the point
- https://pagedout.institute/ - not sure yet
Reference
Random
Articles
- Notes on Security in 2019 - Andreessen Horowitz
- https://apenwarr.ca/log/20190207 - Quotes from 1992
Hardware
Software
- Universal Dynamic Virtual Channel connector for Remote Desktop Services
- Evilgnx2 Phishing framework
- Nmap Screenshots
- Active Directory Kill Chain Attack & Defense
- Scrape/Parse Pastebin using GO and expression grammar (PEG)
- Automatic Reconnaisance And Scanning In Penetration Testing
- SSL client fingerprints in an easy to produce and shareable way
- Security analysis toolkit for proprietary car protocols
- Golang Machine Learning, On The Wire
- Simple ICMP ping implementation in Go
- Powerful plugins and add-ons for hackers
- Kernel Mode WebAssembly Runtime for Linux
- Share a terminal session over WebRTC
Philosophy
Programming
Security
- Windows Privilege Escalation Guide
- Pwning with Responder – A Pentester’s Guide
- Targeted surveillance for the purpose of spying on members of civil society
- Extracting SSH Private Keys from Windows 10 ssh-agent
- A curated list of amazingly awesome OSINT
- PentestHardware
- Serverless Toolkit for Pentesters
- SSRF Tips
- Exploiting internal tomcat server with SSRF
- OAuth token theft using open redirect