ROSECURIFY

Seclog - #106

Scraping By: My YouTube Data Adventure Exploring insights and lessons from a detailed journey into YouTube data scraping.
Read More

Announcing CodeQL Community Packs A deep dive into the new CodeQL Community Packs and their implications for vulnerability research.
Read More

Portspoof: Fighting Back Scanners Discover a new approach to thwart port and service scanners with Portspoof.
Read More

RCE via Prompt Injection How a terminal prompt injection vulnerability opens doors for RCE in Cursor.
Read More

Breaking Popular WAFs: Project NZT-48 An investigation into bypassing the most common Web Application Firewalls.
Read More

Databricks JDBC Attack via JAAS Analyzing the methods and impacts of a Databricks JDBC attack leveraging JAAS.
Read More

🐦 SecX #

Kevin Mitnick's Remote Attack (1994) Did Kevin Mitnick actually execute a remote attack using address spoofing and TCP sequence prediction?
Read More

First SQL Injection Demonstration (1998) Learn how rain.forest.puppy revealed the first SQL injection vulnerability in Phrack issue 54.
Read More

RCE Attempts Targeting TP-Link Routers A report on Mirai botnet attacks exploiting TP-Link Archer routers (#CVE-2023-1389).
Read More

🎥 SecVideo #

The Pager Plot; The Iron River; Joy to the World A comprehensive episode featuring riveting stories, including security-related narratives.
Watch Here

💻 SecGit #

Tomcat CVE-2024-50379 PoC A proof of concept for RCE via a race condition in Apache Tomcat.
Explore Here

Polyglot Files: HTML/ZIP/PNG Learn how to create polyglot files combining HTML, ZIP, and PNG formats.
Explore Here

Subscribe to Seclog

Weekly security analysis direct to your inbox.

Share
← All Seclogs

Press / to search, Esc to close