LightNews LightNews
norbemi.bsky.social
@norbemi.bsky.social
86 followers 660 following 0 posts
SecureFlag | GTFOBins | Weevely | Former Red Teamer
Posts Replies Media Videos
Reposted
alp1n3.dev
Hijacking NodeJS’ Jenkins Agents For Code Execution and More www.praetorian.com/blog/agent-o...
April 30, 2025 at 9:07 PM
Reposted
theonion.com
Please Like Me
Please Like Me
It can be strange, sometimes, to be me. I’m the wealthiest man on the planet, for starters. Leaders across America, and indeed the world, look to me as a visionary driving technological progress in ar...
theonion.com
March 17, 2025 at 3:52 PM
Reposted
xkcd.com
Scream Cipher xkcd.com/3054
February 21, 2025 at 5:43 PM
Reposted
josephcox.bsky.social
New from 404 Media: anyone can push updates to the Doge.gov site. Two sources independently found the issue, one made their own decision to deface the site. "THESE 'EXPERTS' LEFT THEIR DATABASE OPEN."

www.404media.co/anyone-can-p...
February 14, 2025 at 7:06 AM
Reposted
lcamtuf.coredump.cx
I keep coming across all these "pseudocode" examples on Wikipedia and in academic papers, and what I don't understand is why the authors can't just learn a real programming language
February 6, 2025 at 7:49 PM
Reposted
ading.dev
I got Linux running in a PDF file using a RISC-V emulator.

PDFs support Javascript, so Emscripten is used to compile the TinyEMU emulator to asm.js, which runs in the PDF. It boots in about 30 seconds and emulates a riscv32 buildroot system.

linux.doompdf.dev/linux.pdf
github.com/ading2210/li...
January 31, 2025 at 8:02 PM
Reposted
molleindustria.org
Vox Regis by @sheepolution.bsky.social - play as a King and control rebellious factions through strategic scapegoating.
Great first-person interface.

Web | Free | 10 min
sheepolution.itch.io/vox-regis
January 20, 2025 at 4:11 PM
Reposted
moyix.net
Duck typing? You're thinking too small. With AI, we can finally take Guido van Rossum's dream to its logical conclusion
Screenshot of Python code from the iPython interpreter: class Person: name: str age: int def __init__(self, name, age): self.name = name self.age = age def __str__(self): return f"Person(name='{self.name}', age={self.age})" def __eq__(self, other): prompt = f"Is:\n\n{self}\n\nbasically equal to:\n\n{other}\n\n?\n\nJust answer 'Yes' or 'No'" response = client.messages.create( model='claude-3-5-sonnet-latest', messages=[{'role': 'user', 'content': prompt}], max_tokens=16 ) return 'yes' in response.content[0].text.lower() >>> Person('Brendan D-G', 41) == "Brendan Dolan-Gavitt, who is 41 years old" True >>> Person('Brendan D-G', 41) == "John Smith, a 25 year-old" False
January 6, 2025 at 9:16 PM
Reposted
forrestbrazeal.bsky.social
good morning and welcome to 2025
This is a humorous diagram depicting common elements of cloud architecture, drawn in a casual sketch style. It's organized into several sections: At the top: "Global Assumptions" contains various services connected through a "Frickin' Slick Reverse Proxy" with "CIDR Shenanigans" and a "VPN of Sadness." Middle section: Features "CONTAINERS!!!" with stylized container icons and includes: "Cool Databases" "Event Bus" flowing directly into someone's "RÉSUMÉ" "Real Database" with "Midnight Heroics" and a complex pipeline labeled "The Data Engineers Got Very Excited Here" Bottom section: "Blame Radius" showing different service categories: "Services that Start Stuff" "Services that Stop Stuff" "Services that Like to Watch" "One Tiny Cron Job that Keeps Everything from Failing Apart" Ends with "Data Lake" flowing into "Data Swamp" The image is credited to @forrestbrazeal and uses a light-hearted tone to poke fun at typical cloud architecture complexities.
January 6, 2025 at 4:20 PM
Reposted
dinosn.bsky.social
AWS introduced same RCE vulnerability three times in four years www.reddit.com/r/netsec/com...
AWS introduced same RCE vulnerability three times in four years
www.reddit.com
January 5, 2025 at 5:52 AM
Reposted
steven.srcincite.io
These are some really nice blog posts regarding algo confusion bugs in JWT by @pentesterlab.com pentesterlab.com/blog/jwt-alg... & pentesterlab.com/blog/another... nice one @snyff.pentesterlab.com!
PentesterLab Blog: Another JWT Algorithm Confusion Vulnerability: CVE-2024-54150
Discover how a code review uncovered a JWT algorithm confusion vulnerability (CVE-2024-54150). Learn key insights to enhance your security skills and spot vulnerabilities effectively.
pentesterlab.com
December 22, 2024 at 7:06 PM
Reposted
xbow.com
While developing XBOW over the past three months, we played around with using it for bug bounties and ended up at #11 in the US on HackerOne:
Screenshot of the HackerOne US leaderboard for Q4 2024, showing XBOW at #11.
December 17, 2024 at 4:17 PM
Reposted
campuscodi.risky.biz
A PoC for that Cleo zero-day is now live: labs.watchtowr.com/cleo-cve-202...
Cleo Harmony, VLTrader, and LexiCom - RCE via Arbitrary File Write (CVE-2024-50623)
Note: this is a rapidly-drafted post on an evolving topic - we'll update the post with more details as we discover more about the situation. Hit that F5 key regularly for updates! We were having a ...
labs.watchtowr.com
December 12, 2024 at 12:04 AM
Reposted
nastystereo.com
My latest blog post is live! Check your Ruby on Rails applications for the use of params[:_json]

nastystereo.com/security/rai...
December 10, 2024 at 8:30 AM
Reposted
timb-machine.infosec.exchange.ap.brid.gy
Interesting Git repos of the week:

Detection:

* https://github.com/exein-io/pulsar - IoT security framework powered by eBPF

Exploitation:

* https://github.com/danielmiessler/SecLists - lists for fuzzing
* https://github.com/swisskyrepo/PayloadsAllTheThings - more payloads for apps
* […]
Original post on infosec.exchange
infosec.exchange
December 7, 2024 at 11:55 PM
Reposted
steven.srcincite.io
Here is a great follow up blog post to my blog Remote Code Execution with Spring properties written by Elliot Ward: snyk.io/articles/rem...
Remote Code Execution with Spring Boot 3.4.0 Properties | Snyk
this article introduces two methods for leveraging Logback configuration to achieve Remote Code Execution (RCE) in Spring Boot applications. These techniques are effective on the latest version of Spr...
snyk.io
December 6, 2024 at 9:46 PM
Reposted
jorianwoltjer.com
Apparently, navigating to a javascript: URL returning a string will write it as HTML to the DOM. This allows for an interesting XSS payload:
x.com/icesfont2/st...
December 5, 2024 at 11:52 AM
Reposted
zakfedotkin.bsky.social
I really liked how this research turned out. I hope you did too.
December 4, 2024 at 3:24 PM
Reposted
smaury.bsky.social
0xbro.red/writeups/web...
Pentesting Salesforce Communities
This blog post shows a recent penetration test I performed for some customers’ Salesforce applications (also called Salesforce Communities), in which I exploited some common and other lesser-known fla...
0xbro.red
December 2, 2024 at 10:17 PM
Reposted
jezko.bsky.social
Fellas, I don’t post here a lot but you should absolutely know this // help me spread the word!

Violent crackdowns are happening in Tbilisi, Georgia. We are fighting for our lives here.

Please, please, please help us spread the word.
November 30, 2024 at 5:39 AM
Reposted
steven.srcincite.io
I just wrote a new blog post! This is how I (ab)used a jailed file write bug in Tomcat/Spring. Enjoy!

Remote Code Execution with Spring Properties :: srcincite.io/blog/2024/11...
Remote Code Execution with Spring Properties
Recently a past student came to me with a very interesting unauthenticated vulnerability in a Spring application that they were having a hard time exploiting...
srcincite.io
November 26, 2024 at 11:57 PM
Reposted
owasp.org
OWASP Members Benefit: OWASP-reserved instance on the @SecureFlag secure coding training platform & the AI-powered threat modeling tool ThreatCanvas: www.secureflag.com/o...

Join the #OWASP community today & start building secure software! #securecodingtraining #threatmodeling
SecureFlag x OWASP
SecureFlag and OWASP have partnered to offer OWASP members access to a reserved instance of the SecureFlag platform.
www.secureflag.com
November 20, 2024 at 8:57 PM
Reposted
timb-machine.infosec.exchange.ap.brid.gy
Interesting Git repos of the week:

Exploitation:

* https://github.com/BishopFox/BrokenHill - a productionized greedy coordinate gradient (GCG) attack tool for large language models (LLMs)
* https://github.com/DaddyBigFish/enumx - the tool enumx is a framework built for Kali Linux that uses a […]
GitHub - BishopFox/BrokenHill: A productionized greedy coordinate gradient (GCG) attack tool for large language models (LLMs)
A productionized greedy coordinate gradient (GCG) attack tool for large language models (LLMs) - BishopFox/BrokenHill
github.com
November 30, 2024 at 10:32 AM
Reposted
smaury.bsky.social
If you are interested in client-side hacking and browser quirks I strongly recommend going through this writeup by @maitai.bsky.social!
It was also cool to collab w/ him on the second chall 🤜🏿🤛🏻
blig.one/2024/11/29/f...
Flatt Security XSS Challenge - Writeup | maitai's blog
blig.one
November 30, 2024 at 6:20 AM
Reposted
jameskettle.com
Got a CSRF attack being blocked by Content-Type validation? You might be able to bypass it with this quality technique.
nastystereo.com Luke Jahnke @nastystereo.com · Nov 27
My latest blog post is live! nastystereo.com/security/cro...

Read how to send a cross-site POST without including a Content-Type header (without CORS). It even works with navigator.sendBeacon
November 27, 2024 at 1:28 PM