Excited to finally participate in #caturday! He likes to hang out like this.
home > posts
PSA: Some of the "JA" series of fingerprints (HASSH, JARM, etc) are patented by Salesforce. The new JA4 methods are patent-pending by FoxIO. The JA4+ license is commercial ($ for OEM). Nothing wrong with charging for your work, but OSS projects should be careful about adoption.
Happy Monday! Looks like libwebp vulnerabilities expose a massive portion of daily productivity tools to RCE (via Chrome embedding and Electron):
https://arstechnica.com/security/2023/09/incomplete-disclosures-by-apple-and-google-create-huge-blindspot-for-0-day-hunters/ via @dangoodin
quote of the day: "anything is a server rack if you are brave enough"
This is the article to send to your IT team when they refuse to enforce boot-time PINs for BitLocker:
Bypassing Bitlocker using a cheap logic analyzer on a Lenovo laptop: https://www.errno.fr/BypassingBitlocker.html by Guillaume Quéré
Unix time stamps in OpenSSL handshakes are borking Windows clock settings https://arstechnica.com/security/2023/08/windows-feature-that-resets-system-clocks-based-on-random-data-is-wreaking-havoc/ by @dangoodin
The idea that random outbound TLS connections to untrusted third parties can reset the OS clock is wild. Possibly exploitable through SSRF vectors?
I love that NiNi Chen's (https://blog.terrynini.tw/) Mikrotik RADVD exploitation involves old-school fun like delay slots, encoding RISC instructions into IP addresses, and flushing the i-cache/d-cache: https://forum.defcon.org/node/245713 (live stream @ https://m.twitch.tv/defcon_dctv_one)
A few of the talks I am looking forward to at #Defcon 31 this weekend:
* "Terminally Owned": https://forum.defcon.org/node/245741
* "Fantastic Ethertypes and Where to Find Them": https://forum.defcon.org/node/245756
* "A Comprehensive Review on the Less-Traveled Road: 9 Years of Overlooked MikroTik Pre-Auth RCE": https://forum.defcon.org/node/245713
* "Mass Owning of Seedboxes - A Live Hacking Exhibition": https://forum.defcon.org/node/245760
if anyone had told 18-yo me that I would be traveling to the same city at the same time for the next 20+ years...
This walkthrough of reverse engineering and then exploiting a RIGOL scope by @krive@fosstodon.org is beautiful, thanks for sharing! https://tortel.li/post/insecure-scope/