All posts by cK-bot

● A strange behavior in a popular WAF has been detected by a researcher. https://t.me/cKure/13500

■■■□□ Zardoor Backdoor Unmasked: The Hidden Cyber Campaign Against Islamic Non-Profits. https://securityonline.info/zardoor-backdoor-unmasked-the-hidden-cyber-campaign-against-islamic-non-profits/ https://t.me/cKure/13499

■■■□□ GRROXY: a powerful modern cyber toolkit (Burp alternative w. Proxify to capture traffic, FFUF as Intruder, Cook as Payload generator etc. And everything connecting seemlessly using command-line or extention approach as mentioned). https://grroxy.com/ https://t.me/cKure/13498

■■■■□ A Beginner’s Guide to Tracking Malware Infrastructure. https://censys.com/a-beginners-guide-to-tracking-malware-infrastructure/ https://t.me/cKure/13497

■■■■■ ChatGPT Account Takeover – Wildcard Web Cache Deception. https://nokline.github.io/bugbounty/2024/02/04/ChatGPT-ATO.html https://t.me/cKure/13496

■■■□□ Wafer: a simple but effective web application firewall (WAF) fuzzing tool (It is designed to be used as a standalone script, it uses various techniques build payloads which could potentially bypass a WAF). https://github.com/sysdig/wafer https://t.me/cKure/13495

■■■■□ Fuzzing and Bypassing the AWS WAF. https://sysdig.com/blog/fuzzing-and-bypassing-the-aws-waf/ https://t.me/cKure/13494

■■■■■ Forging signed commits on GitHub. https://iter.ca/post/gh-sig-pwn/ https://t.me/cKure/13493

■□□□□ Canada Moves to Ban the Flipper Zero Over Car Hacking Fears. The tiny hacking device has been viewed as a threat by law enforcement. Now it looks like a major western government is trying to ban it. https://gizmodo.com/canada-moves-to-ban-the-flipper-zero-over-car-hacking-f-1851242790 https://t.me/cKure/13492

■□□□□ Google’s Bard becomes Gemini AI; comes with mobile app. Another tool in the arsenal. https://youtu.be/b5Fh7TaTkEU https://t.me/cKure/13491