🐝 Hive Five 43 – Magic

Hi friends,

Greetings from the hive!

I finished reading a man's search for meaning and found it to be enlightening. I also read a bit about Frankl's logotherapy. The other book that I'm still reading is Ikigai.

What are you reading?

Let's take this week by swarm!

🐝 The Bee's Knees

1. How do you tell if a problem is caused by DNS?: A lot of people have server issues (“my server is down! or it’s slow!“), but they can’t tell if the problem is caused by DNS or not.

2. Sitecore Experience Platform Pre-Auth RCE: One of the missions at Assetnote is to secure the attack surfaces of enterprises around the world. In order to achieve that goal, their security research team cannot solely rely on the public disclosure of vulnerabilities.

3. API Tokens - A Tedious Survey.

4. Anatomy of a Terminal Emulator: We’ll talk about the different parts of the terminal and how they interact, build a small program to read input from the shell and understand how it’s interpreted, discuss how to create a user interface in the terminal and finally see how we can use all of this to cause some mischief.

5. Introducing CookieMonster: a tool for breaking stateless authentication: When you log into a website, many web frameworks will issue you a cookie as proof that you have correctly authenticated. In the past, this token was just a random identifier that was assigned to the user in the application's database.

🙏🏻 Enjoy This Newsletter?

• Get $100 to try DigitalOcean. The go-to VPS for bug bounty hunters. I use it for all of my own recon and automation needs, plus it also doubles as a VPN. They have every cloud resource you need at an affordable price.

💌 Want to sponsor an issue?

🔥 Buzzworthy

✅ Changelog

1. Octavian refactored axiom: A nice update refactoring axiom-init, axiom-ssh, axiom-fleet, and axiom-power.

2. Cloudmapper 2.10.0 released: Mostly to update packages but a number of PRs have been merged. By updating botocore, ap-northeast-3 resources are now collected.

3. Semgrep 0.70+: Now supports scanning Terraform source files (HCL) for misconfigurations and security flaws.

4. PentesterLab released 5 new snippets: For the code review challenges golang_12, python_02, typescript_01, typescript_02, and typescript_03.

📅 Events

1. Truesec Cyber Security Summit: on November 9th.

2. Jetpack Acquires WordPress Vulnerability Database WPScan: WPScan is used across the WordPress ecosystem to learn about new vulnerabilities to WordPress core, themes, and plugins.

3. Pwn2Own Austin 2021 - Schedule and Live Results: This year’s consumer-focused event is their largest ever with 58 total entries from 22 different contestants.

4. Trick & Treat! Paying Leets and Sweets for Linux Kernel privescs and k8s escapes: For the next 3 months (until January 31 2022), we will pay 31,337 USD to security researchers that exploit privilege escalation in our lab environment with a patched vulnerability, and 50,337 USD to those that use a previously unpatched vulnerability, or a new exploit technique.

🎉 Celebrate

1. Ian Carroll was awarded a $75,000 bounty: Amazing!

2. Omar Espino is in the top of GoogleVRP 2021: Congrats!

3. iQimpz had their 1 year anniversary on Intigriti: Let's go!

4. samczsun reached 1st place on the Ethereum bounty leaderboard: Wow!

5. BSides Ahmedabad Dungeon CTF winners: Congrats all!

💰 Career Corner

1. Alissa Knight is hiring at Quontic: They're growing their red team and are looking for a threat hunter/penetration tester (ALL locations/remote work).

2. LilMzMuffinCup is looking for a cybersecurity role: She recently completed a cybersecurity education program and she acquired her CySA+.

3. Netflix Security Assurance & Metrics role: Netflix is looking to shape their metrics investment.

4. Assetnote is hiring a front-end engineer: Their team is made up of passionate hackers who are focused on building the best attack surface management platform.

5. Google is hiring a Security Technical Program Manager, Platforms & Ecosystems.

📰 Articles

1. BOF2shellcode: For the red teaming they often have a need to run offensive tools on a target machine without dropping the tool on disk.

2. Finding and Fixing DOM-based XSS with Static Analysis – Attack & Defense: Despite all the efforts of fixing Cross-Site Scripting (XSS) on the web, it continuously ranks as one of the most dangerous security issues in software.

3. How SSL certificates are leaking sensitive information: SSL certificates mark the first step in a commitment to user safety and security and HTTPS, SMTPS, IMAPS, POP3S have become the standard protocol for web traffic.

4. Honoring Elliot Harmon—EFF Activism Director, Poet, Friend—1981-2021.

5. Malicious code analysis - Abusing SAST (mis)configurations to hack CI systems: They recently found a new method that allows secure code analysis mechanisms to be bypassed and even worse — abused to execute malicious code on their host.

📚 Resources

1. Awesome Google VRP Writeups: New writeups from the GitHub repository "awesome-google-vrp-writeups".

2. ΜΔDΞRΔS's Basic Search Engine strategy.

3. Cobalt Strike Built-In Lateral Movement Capabilities Based On CONTI Leak Mind Map.

4. Statistics on Julien's best bug bounty month ever.

5. Fast Google Dorks Scan: The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widespread file types and path traversal. The 100% automated.

🎥 Videos

1. Can Hackers Get Into Every Device?: Have you ever heard the sentence that every device can be hacked?

2. Top 5 Cryptocurrency Security Tips from Coinbase: Learn how to keep your account secure from Trust and Safety experts at Coinbase.

3. How to run an XXE injection via an SVG Image Upload: Learn how you can run a successful XXE injection via an image upload functionality.

4. Women in OSINT | Rae Baker - Graphic Designer Turned Senior OSINT Analyst & Educator.

🎵 Audio

1. Automators - Automating with Ryan J A Murphy: He shares automation tips for Obsidian, augmented intelligence, and automated parenting.

2. Hidden Brain - Work 2.0, The Obstacles You Don't See: A new podcast I subscribed to. (Suggested by co-worker)

3. Former Developer Turned Security Advocate | A Conversation With Rey Bango | The Hacker Factory With Phillip Wylie: Rey Bango goes from a long-time developer to security advocate and freelance pentester.

4. MalwareTech Podcast - Facebook Outage & Whistleblower, Server Astrology, Twitch Breach: First in-person episode, featuring: shenetworks, Dr Tran, MalwareTech.

Get $100 to try DigitalOcean - The go-to VPS for bug bounty hunters. I use it for all of my own recon and automation needs, plus it also doubles as a VPN. They have every cloud resource you need at an affordable price.

Subscribe to Premium to read the rest.