Hacker News
- Stealing unencrypted SSH-agent keys from memory (2014) https://blog.netspi.com/stealing-unencrypted-ssh-agent-keys-from-memory/ 7 comments
- Decrypting WebLogic Passwords https://blog.netspi.com/decrypting-weblogic-passwords/ 6 comments
- CVE-2020-17049: Kerberos Bronze Bit Attack http://blog.netspi.com/cve-2020-17049-kerberos-bronze-bit-overview/ 3 comments netsec
- Four Ways to Bypass iOS SSL Verification and Certificate Pinning https://blog.netspi.com/four-ways-to-bypass-ios-ssl-verification-and-certificate-pinning/ 17 comments netsec
- Beyond LLMNR/NBNS Spoofing https://blog.netspi.com/exploiting-adidns/ 18 comments netsec
- Tokenvator - A Tool to Elevate Privilege using Windows Tokens (Article and Sources) https://blog.netspi.com/tokenvator-a-tool-to-elevate-privilege-using-windows-tokens/ 7 comments netsec
- Four Ways to Bypass Android SSL Verification and Certificate Pinning https://blog.netspi.com/four-ways-bypass-android-ssl-verification-certificate-pinning/ 29 comments netsec
- Playing with Content-Type – XXE on JSON Endpoints https://blog.netspi.com/playing-content-type-xxe-json-endpoints/ 3 comments netsec
- All You Need Is One – A ClickOnce Love Story https://blog.netspi.com/all-you-need-is-one-a-clickonce-love-story/ 3 comments netsec
- Dumping Git Data from Misconfigured Web Servers https://blog.netspi.com/dumping-git-data-from-misconfigured-web-servers/ 10 comments netsec
- Decrypting MSSQL Credential Passwords https://blog.netspi.com/decrypting-mssql-credential-passwords/ 5 comments netsec
- Hacking SQL Server Stored Procedures – Part 3: SQL Injection https://blog.netspi.com/hacking-sql-server-stored-procedures-part-3-sqli-and-user-impersonation/ 9 comments netsec
- iOS Tutorial – Dumping the Application Heap from Memory https://blog.netspi.com/ios-tutorial-dumping-the-application-heap-from-memory/ 3 comments netsec