Native Lives
Sys-Admin & InfoSec Channel
13.8K subscribers
112 photos
2 videos
85 files
3K links
Posts from IT resources, news of information security, information technology, articles on the topic (data leaks, hacks, tools, trainings). Multilingual.
* Forum -
* Chat - @sysadm_in
* Job - @sysadm_in_job
* All questions - @sysadminkz
Download Telegram
to view and join the conversation
Native Lives
Алматы, 11 декабря, сбор на тему реверса/малвари/фаззинга/эсплоитов

И + любая бинарщина - будет на очередном, открытом митапе r0crewKZ, с бесплатным пивом (в разумных пределах) и конечно же докладами)

Глубокое погружение в темы:
• Мошенничество OLX: Итоги расследования (morty)
• Attacking Software Developers. Часть 1 (thatskriptkid)
• Почему вы этого не делаете? (novitoll)
• Attacking Software Developers. Часть 2 (thatskriptkid)
• Эксплоитить Линукс ядро стало сложнее, но нас не остановить (novitoll)
• ...тема уточняется...

• 11 декабря 2021г. в 18:00. Место: Lenore Pub, проспект Абая, 124,

Открытая встреча среди профессионалов и не только, отличная площадка для общения и потребления новых знаний ИМХО

P.S. Онлайн вещание пока под вопросом
We demonstrate that it is possible to trigger Rowhammer bit flips on all DRAM devices today despite deployed mitigations on commodity off-the-shelf systems with little effort.
3.3 MB
Website Fingerprinting:
Evaluating Website Fingerprinting Attacks on Tor in the Real World

Цифровой отпечаток в Тор.. Исследование.
Two technical analysis (pdf) - DNS poisoning and MiTM detecting

Catching Transparent Phish:
Analyzing and Detecting MITM Phishing Toolkits:

DNS Cache Poisoning Attack: Resurrections with Side Channels
Bunch of News

New ransomware actor uses password-protected archives to bypass encryption protection

Python Malware Imitates Signed PyPI Traffic in Novel Exfiltration Technique

An APT Group Exploiting a 0-day in FatPipe WARP, MPVPN, and IPVPN Software (FBI Warning)

The US Defense Department on Friday asked Amazon Web Services, Microsoft, Google and Oracle to submit bids for a new, multi-billion-dollar cloud contract
Bunch of News

Vulnerability Spotlight: Vulnerabilities in Lantronix PremierWave 2050 could lead to code execution, file deletion

Windows Security Updates for Hackers

Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Denial of Service Vulnerabilities

[Conti] Ransomware Group In-Depth Analysis

GoDaddy Announces Security Incident Affecting Managed WordPress Service

NGINX Unit is a polyglot app server, a reverse proxy, and a static file server, available for Unix-like systems. It was built by nginx team members from scratch to be highly efficient and fully configurable at runtime.

The latest version is 1.26.0, released on November 18, 2021.

APT Actors Exploiting Newly Identified Vulnerability in ManageEngine ADSelfService Plus

Microsoft Exchange Health Checker script

PoC of CVE-2021-42321: pop mspaint.exe..: