现已上线!2025 年 Telegram 研究 — 年度关键洞察 
Source Byte
前往频道在 Telegram
هشیار کسی باید کز عشق بپرهیزد وین طبع که من دارم با عقل نیامیزد Saadi Shirazi 187
显示更多7 849
订阅者
-524 小时
+437 天
+17230 天
帖子存档
7 848
Repost from BlankRoom
Telegram RCE
🆘🆘🆘ATTENTION 🆘🆘🆘
URGENTLY DISABLE AUTOLOADING MEDIA ON ALL DEVICES WHERE THE TELEGRAM DESKTOP IS INSTALLED
🆘🆘NOT A TRAINING ALARM 🆘🆘
Settings - Advanced settings - In personal chats, groups, channels, DISABLE ALL CHECKS IN ALL AUTOLOAD MEDIA ITEMS
Found rce is played through the video player in Telegram. Therefore, the safest solution is to disable auto-downloading of files.
Information about the exploit itself is currently known only in narrow circles
https://vimeo.com/932147196
@Bl4nk_Room
7 848
Repost from GhostSec
👻🍉
The Israel breach has arrived and this is just the first of the many attacks and breaches we have in place for Israel, This time the breach contains Data from 3 different targets we have hacked in Israel!
-Tel-Aviv BCAEIROSPACE (Air force)
- Real estate corp in Israel
- and AEPI.org.il the union of planners in Israel who have a heavy influence in gov!
For the next attacks against Israel we have a very exciting mix of networks and targets we've breached affecting the Oppressing state of Israel. Besides the breaches we also are quite excited to present our next Industrial system attacks heavily affecting Israel ;)
For a free Palestine 🇵🇸🍉
We Run Shit Cause We Can
~👻
7 848
Repost from کانال بایت امن
#Tutorial
Real-world Android Malware Analysis
Part1 - Part2 - Part3 - Part4
تو این آموزش 4 قسمتی، نحوه تحلیل بدافزارهای اندروید رو با نمونه های واقعی یاد میگیرید
🦅 کانال بایت امن | گروه بایت امن
_
7 848
Urgent Security Alert! Hackers Hijacked Notepad++ Plugin
https://gbhackers.com/hackers-hijacked-notepad-plugin-to-execute-malicious-code/
7 848
" Security is a process, not a product. Nor a language "
Rust can help make software secure – but it's no cure-all
Memory-safety flaws represent the majority of high-severity problems for Google and Microsoft, but they're not necessarily associated with the majority of vulnerabilities that actually get exploited. So while coding with Rust can help reduce memory safety vulnerabilities, it won't fix everything.https://www.theregister.com/2024/02/08/rust_software_memory_safety/
7 848
Repost from CyberSecurityTechnologies
#Malware_analysis
"Exploring Infostealer Malware Techniques on Automotive Head Units", 2024.
7 848
Repost from vx-underground
Security researcher Jonas Lyk has found a DoS vulnerability in Discord.
If you try to paste the string "http://./\<#0>: ://./<#0>" into Discord it will crash
¯\_(ツ)_/¯
7 848
DLL Proxying using forwards with absolute paths
https://github.com/mrexodia/perfect-dll-proxy
7 848
Tons of trainings out there for implant dev now as of just last year even.
- Pavel has his own
https://training.trainsec.net/malware-analysis-and-development-workshop
- there’s Maldev Academy which is great
- there’s ODT from a Microsoft dude
https://courses.ask-academy.live/courses/offensive-development-and-tradecraft
- SANS has an implant dev course
https://www.sans.org/cyber-security-courses/red-team-operations-developing-custom-tools-windows/
- CodeMachine had some but I don’t think they are public offerings anymore
- Paranoid Ninja BRC4 author had some
#malware_dev
7 848
Repost from Go Casts 🚀
یه مقاله درجه یک درباره container networking
How Container Networking Works: a Docker Bridge Network From Scratch
https://labs.iximiuz.com/tutorials/container-networking-from-scratch
@gocasts
7 848
" The architecture of SAST tools: An explainer for developers "
More developers will have to fix security issues in the age of shifting left. Here, we break down how SAST tools can help them find and address vulnerabilities.
+Automate source code scanning. +Expand vulnerability detection. +Assist with manual code reviews. +Software composition analysis (SCA) +Dynamic application security testing (DAST) +Interactive application security testing (IAST)https://github.blog/2024-02-12-the-architecture-of-sast-tools-an-explainer-for-developers/ #devops ——— @islemolecule_source
7 848
" The architecture of SAST tools: An explainer for developers "
More developers will have to fix security issues in the age of shifting left. Here, we break down how SAST tools can help them find and address vulnerabilities.
+Automate source code scanning. +Expand vulnerability detection. +Assist with manual code reviews. +Software composition analysis (SCA) +Dynamic application security testing (DAST) +Interactive application security testing (IAST)#devops ——— @islemolecule_source
