[ Android ]  Android++ (native development and debugging for Visual Studio) is now open-source https://github.com/webbju/android-plus-plus

[ Attrack ]  First known hacker-caused power outage signals troubling escalation http://ow.ly/39IsX9

[ Detect ]  Applying machine learning to malware analysis slowly being demystified, see clustering 101: http://blog.deepviz.com/2016/01/04/the-basics-of-clustering-behind-deepviz-part-2/ http://blog.deepviz.com/2015/12/23/the-basics-of-clustering-behind-deepviz-part-1/

[ Fuzzing ]  FuzTip: Always enable Special Pool when fuzzing Windows Fonts/Kernel: "verifier.exe /flags 0x1 /driver Win32k.sys" (& atmfd.dll). Saves time

[ Malware ]  DLL loading technique in #ZeroAccess and #Sirefef : http://goo.gl/lTrXc4 cc: @ hFireF0X @ TheEnergyStory

[ Network ]  Debugging With Wireshark: TLS http://lukasa.co.uk/2016/01/Debugging_With_Wireshark_TLS/ via @ lukasaoz

[ Others ]  @MalwareMustDie More on PHP/MySQL web shell injection: Malicious DLL Dropper & Binary Injection Shell by PRC crooks https://t.co/TRHT3oRlhP

[ Others ]  Adobe added isolated heap to Flash. This month we pay $100K (with sandbox) and $65K (without sandbox) per #exploit bypassing this mitigation

[ Others ]  10 Cloud Security Predictions for 2016 http://buff.ly/1OKs7PT

[ Others ]  PoC code published for Cisco Jabber client STARTTLS downgrade attack: https://threatpost.com/cisco-jabber-client-vulnerable-to-man-in-the-middle-attack/115769/ via @ threatpost

[ Others ]  My presentation about '(Un)Trusted Execution Environments' @ noconname 2015: [PDF] https://docs.google.com/uc?id=0B1vYN8cImxr9d180UkEySDFLcDg&export=download video: https://vimeo.com/150787883

[ Pentest ]  (Cobalt Strike's) Interoperability with the Metasploit Framework http://blog.cobaltstrike.com/2016/01/05/interoperability-with-the-metasploit-framework/

[ Popular Software ]  Atlassian Confluence XSS / Insecure Direct Object Reference https://cxsecurity.com/issue/WLB-2016010018

[ Popular Software ]  Apache LDAP / Directory Studio Command Injection https://cxsecurity.com/issue/WLB-2016010020

[ Tools ]  Just published a bunch of cool Sysinternals updates: Sysmon, Sigcheck, Procexp, AccessChk, Autoruns http://blogs.technet.com/b/sysinternals/archive/2016/01/05/update-sigcheck-v2-4-sysmon-v3-2-process-explorer-v16-1-autoruns-v13-51-accesschk-v6-01.aspx

[ Tools ]  MyRop - Rop tool for ARM. Based on Capstone. https://github.com/hitmoon/MyRop

[ Vulnerability ]  NCC Group Blog: Remote Exploitation of Microsoft Office DLL Hijacking (MS15-132) via Browsers - https://www.nccgroup.trust/uk/about-us/newsroom-and-events/blogs/2016/january/remote-exploitation-of-microsoft-office-dll-hijacking-ms15-132-via-browsers/ by @ buffaloverflow

[ Web Security ]  HTML5 Security Cheat Sheet http://feedproxy.google.com/~r/HelpNetSecurity/~3/uFVYxF2LLRA/secworld.php

[ Windows ]  Very useful: "Windows Process Memory Usage Demystified" http://blogs.microsoft.co.il/sasha/2016/01/05/windows-process-memory-usage-demystified/ https://t.co/hSP32XRBRY