[ Attack ]  Uh-oh Lenovo. PC maker pushes out malicious Angler exploit kit https://www.grahamcluley.com/2016/03/lenovo-angler-exploit-kit/

[ Exploit ]  ropasaurusrex : a primer on return-oriented programming : https://blog.skullsecurity.org/2013/ropasaurusrex-a-primer-on-return-oriented-programming#

[ Hardware ]  TSATool : 3D printed TSA keys in a pocketable "Swiss Army" style tool : http://tsatool.com/ cc: @ darksim905 https://t.co/AkJxxp21LL

[ iOS ]  [Blog] Objective-C Instrumentation with Frida - https://rotlogix.com/2016/03/20/objective-c-instrumentation-with-frida/ /cc @ fridadotre

[ Linux ]  x86_64 related clock sources : Timers & time management in Linux kernel(Part 6) : https://github.com/0xAX/linux-insides/blob/master/Timers/timers-6.md cc: @ 0xAX //linux-inside cont'd

[ Network ]  Analyzing HTTPS Encrypted Traffic to Identify User Operating System, Browser and Application http://arxiv.org/abs/1603.04865

[ Network ]  New IETF draft: SMTP Strict Transport Security https://tools.ietf.org/html/draft-margolis-smtp-sts-00

[ NetworkDevice ]  FortiOS (Fortinet) - Open Redirect and Cross Site Scripting http://goo.gl/fb/wIeNu6 #FullDisclosure

[ NetworkDevice ]  Netgear DGNv2200 multiple vulnerabilities (Bezeq firmware) http://goo.gl/fb/cDjuFt #FullDisclosure

[ Others ]  Markov Chains Explained Visually : http://setosa.io/ev/markov-chains/

[ Pentest ]  Chuckle - An Automated SMB Relay Script http://goo.gl/MhMVuX #Chuckle #Linux #MSFconsole https://t.co/6d7RQNZ1wx

[ Pentest ]  Great Intro to SQLMAP for those beginners worth the read ~ by Holly Graceful https://www.gracefulsecurity.com/introduction-to-sqlmap/

[ Pentest ]  Basic Networking PowerShell cmdlets cheatsheet to replace netsh, ipconfig, nslookup and more from @ thomasmaurer http://buff.ly/1PfRRgR

[ Pentest ]  What to do after successfully breaking into a system? http://pwnwiki.io/#!index.md @ mubix @ WebBreacher @ tekwizz123 @ jakx_ @ TheColonial @ Wireghoul

[ Sandbox ]  Had an awesome time at #TR16, thanks to everyone involved. For those asking here's my slide deck http://www.slideshare.net/JamesForshaw1/the-joy-of-sandbox-mitigations

[ SecurityProduct ]  Vulnerable #cybersecurity products are old news. The Witty Worm spread by exploiting ISS firewall products 12yrs ago http://www.caida.org/research/security/witty/

[ ThirdParty ]  AsusTEK asio.sys unsafe operation http://goo.gl/fb/IagPJL #FullDisclosure

[ Tools ]  transfer.sh : Easy file sharing from the command line : https://transfer.sh/ https://t.co/GQLNTv0PdF

[ Tools ]  PFP - A Python Interpreter for 010 Templates: http://d0cs4vage.blogspot.fr/2015/08/pfp-python-interpreter-for-010-templates.html?m=1

[ Tools ]  Conpot is a low interactive server side Industrial Control Systems honeypot https://www.honeynet.org/node/1276

[ Web Security ]  i made a thing that helps people practice exploiting LFI, RFI and CMD injection vulns in web apps https://github.com/paralax/lfi-labs

[ Web Security ]  XSS hijack browser HTTP request: https://github.com/jackmasa/captureXHR/

[ Windows ]  A novel persistent injection to Windows machines http://goo.gl/fb/J43Cpt #FullDisclosure

[ Windows ]  The Anatomy and (In)Security of Microsoft SQL Server Transparent Data Encryption (TDE), or How to Break TDE : http://simonmcauliffe.com/technology/tde/