[ Android ]  [Blog] Remote Code Execution in the Baidu Browser for Android http://bit.ly/1oP2KRS #android #mobile #security

[ Fuzzing ]  [ReverseEngineering]Quick introduction into SAT/SMT solvers and symbolic execution http://yurichev.com/tmp/SAT_SMT_DRAFT.pdf

[ Fuzzing ]  Little HTML event attributes fuzzer - http://pastebin.com/AayLzNyB - #chrome and #firefox only

[ Mac OS X ]  Apple blacklisted their own enet driver in a silent security update, SIP prevents fixing: http://forums.macrumors.com/threads/software-update-031-51913-will-break-your-ethernet-driver.1958521/ https://t.co/i8YIfs6jhf

[ Malware ]  Coding python malware http://www.primalsecurity.net/0xc-python-tutorial-python-malware/

[ Network ]  Google Project Shield DoS Mitigation Service Is Free to News Sites http://mobile.eweek.com/security/google-project-shield-dos-mitigation-service-is-free-to-news-sites.html

[ Others ]  ASM.JS code Using Rust and Emscripten http://ashleysommer.com.au/how-to/articles/asm-js-code-using-rust-and-emscripten

[ Pentest ]  Getting Domain Admin with Kerberos Unconstrained Delegation http://www.labofapenetrationtester.com/2016/02/getting-domain-admin-with-kerberos-unconstrained-delegation.html

[ Popular Software ]  A Quite Rare MSSQL Injection http://c0rni3sm.blogspot.com/2016/02/a-quite-rare-mssql-injection.html #bugbounty

[ ThirdParty ]  OpenSSL CVE-2016-0799: heap corruption via BIO_printf https://guidovranken.wordpress.com/2016/02/27/openssl-cve-2016-0799-heap-corruption-via-bio_printf/ #exploitdev #hacking #infosec https://t.co/Qk1RDUnJaP

[ Virtualization ]  Xen XSA 155: Double fetches in paravirtualized devices https://www.insinuator.net/2015/12/xen-xsa-155-double-fetches-in-paravirtualized-devices/ < @ _fel1x to provide demo & PoC at @ SyScan & @ InfiltrateCon

[ Web Security ]  21 0day XSS on yahoo - https://blog.sergeybelove.ru/2016/02/21-0day-xss-on-yahoo-after-1-year/ (just want to write someting to my blog again, lol)