so.cl

The Wiz Research Team detected an insecure default behavior in the Azure App Service that exposed the source code of customer applications written in PHP, Python, Ruby, or Node, that were deployed using “Local Git”. The vulnerability, which we dubbed as “NotLegit”, has existed since September 2017 and has probably been exploited in the wild.

Wiz reported this security flaw to Microsoft on October 7th, 2021, and by now it has been mitigated. Small groups of customers are still potentially exposed and should take certain user actions to protect their applications, as detailed in several email alerts Microsoft issued between the 7th - 15th of December, 2021.

Just tried to fix my old dell laptop. I opened it tried fiddling with the heat sink and stuff and then opened bios with the innards still exposed…and then it suddenly started playing what sounded like a dodo do dodo tune at a volume 10x louder than I thought the speakers could produce and then after that- started making an ominous urgent beeping noise but even louder. At that point I thought oh fuck it’s gonna explode or shock me I. I tried to pull out the battery and power cable and recoiled back in pursuit of cover but fell sideways my out of my rocking chair hitting my head on the doors beside me. What the FUCK happened?

4chan never ceases to amaze me.

The astute reader may have noticed that though the script started with the familiar #! (“Shebang”), it is missing an interpreter such as /bin/bash. However when launched, macOS seems to handle this without issue, and still executed the script.

Specifically, as shown below, in the output of a process monitor, when launched you can first see launchd exec’ing xpcproxy. This then executes /bin/sh, which in turn executes /bin/bash to execute the PoC (which has been translocated, as its from the Internet).

Earlier this month, I posted a link to an article I wrote, titled Burning Witches, on LinkedIn. When I checked to see if there were any comments, the post was gone. I was given no notification, and received no e-mails, indicating that the post had been removed. I’ve previously written about how Facebook is hostile to smaller platforms. It seems like LinkedIn is also participating in the new era of corporate censorship, but what makes their actions more sinister is that they do so without providing their users any notifications of post removal.

If you attempt to understand the “meaning of life”, you will always come to the conclusion that it is inherently meaningless.

There never was a free market, not in the middle ages and definitely not now. Back then you had guilds monopolizing jobs, now you have regulators rigging the market. The modern big tech companies learned painfully that you need to live with burning money on bribes and play the politics game as they struggled with it for quite a while trying to ignore it.

The warm glow of the phosphor burns your eyes, as the rhythmic echo of the keyboard rings in your ears. Day and night blend into one, and time stands still.

Let’s talk a bit about why we want to encrypt heap allocations. Something I’m not going to go into too deeply is the difference between the stack and the heap. The stack is locally scoped and usually falls out of scope when a function completes. This means items set on the stack during the run of a function fall off the stack when the function returns and completes; this obviously isn’t great for variables you’d like to keep long term in memory. This is where the heap comes in. The heap is meant to be more of a long-term memory storage solution. Allocations on the heap stay on the heap until your code manually frees them. This can also lead to memory leaks if you continually allocate data onto the heap without ever freeing anything.

MSRC was informed by Wiz.io, a cloud security vendor, under Coordinated Vulnerability Disclosure (CVD) of an issue where customers can unintentionally configure the .git folder to be created in the content root, which would put them at risk for information disclosure. This, when combined with an application configured to serve static content, makes it possible for others to download files not intended to be public. We have notified the limited subset of customers that we believe are at risk due to this and we will continue to work with our customers on securing their applications.

You almost certainly have Apache httpd in your network somewhere. Just like Log4j, httpd has a habit of getting itself quietly included into software projects, for example as part of an internal service that works so well that it rarely draws attention to itself, or as a component built unobtrusively into a product or service you sell that isn’t predominantly thought of as “containing a web server”.

For all the great riches and wonders in cities, there’s equal poverty and suffering.

objection is a runtime mobile exploration toolkit, powered by Frida, built to help you assess the security posture of your mobile applications, without needing a jailbreak.

• Supports both iOS and Android.
• Inspect and interact with container file systems.
• Bypass SSL pinning.
• Dump keychains.
• Perform memory related tasks, such as dumping & patching.
• Explore and manipulate objects on the heap.
• And much, much more …

How to install Windows 10 Home with a local account (not a Microsoft account): disable Internet connectivity.

Exploit to use in Metasploit, allows attackers to get Remote Code Execution through Microsoft Office Word by injecting malicious code in the file. CVE-2021-40444

YARA rule to detect the presence of Log4j:

↳ https://github.com/bi-zone/Log4j_Detector

How To Detect and Mitigate the Log4Shell Vulnerability (CVE-2021-44228):

↳ https://www.lunasec.io/docs/blog/log4j-zero-day-mitigation-guide/

Today is one of those days.

Sitting on a rooftop above a crowded city late at night watching millions of lives unfold in miniature beneath.

I finished the Terry Davis quotes page, if you’re interested check it out.

We are haunted by visions of the future that were created in the past.

Mankind has a tendency to not accept what it cannot control. Our politicians and virologists often said something along the lines: “we need to do X to keep control of the situation”. In the end we never were in control of the situation but people cannot accept that.

Most of the measures we took were nothing more than modern day rain dances. Feeble attempts by humans arrogant enough to think they could defeat or control a natural phenomenon that is well beyond ours to control.