[ Android ]  [CVE-2016-2443] Qualcomm MSM debug fs kernel arbitrary write - https://marcograss.github.io/security/android/cve/2016/05/03/cve-2016-2443-msm-kernel-arbitrary-write.html

[ Android ]  Linux IPC router binding any port as a control port (CVE-2016-2059) https://www.codeaurora.org/linux-ipc-router-binding-any-port-control-port-cve-2016-2059

[ Browser ]  Finally finished my master's thesis on "Attacking Browser Extensions" → http://nicolas.golubovic.net/thesis/master.pdf repository with test suite follows shortly

[ Exploit ]  [Blog] ARM Exploit Exercises - https://rotlogix.com/2016/05/03/arm-exploit-exercises/

[ Linux ]  linux-injector : Utility for injecting executable code into a running process on x86/x64 Linux : https://github.com/dismantl/linux-injector

[ Linux ]  Linux kernel BPF JIT spray PoC (requires insecure ko load), update of 2012 PoC for start page address randomisation. https://github.com/01org/jit-spray-poc-for-ksp

[ Malware ]  Threat Spotlight: Spin to Win...Malware http://blog.talosintel.com/2016/05/spin-to-win-malware.html

[ Malware ]  New post: Lost Door RAT: Accessible, Customizable Attack Tool http://bit.ly/1pYvYxj @ TrendMicro

[ MalwareAnalysis ]  Fast DGA generation with Miasm sandbox https://www.lexsi.com/securityhub/gfast-dga-generation-with-miasm/?lang=en [4 methods; Locky ransomware; see also https://twitter.com/daniel_bilar/status/720354658120650752 ]

[ OpenSourceProject ]  CVE-2016-3627 CVE-2016-3705: libxml2: stack overflow in xml validator (parser) http://seclists.org/fulldisclosure/2016/May/10

[ OpenSourceProject ]  . #OpenSSL patches padding oracle attack bug. https://threatpost.com/openssl-patches-two-high-severity-vulnerabilities/117792/ via @ threatpost

[ Others ]  RAP won't protect against. Incorrect code emission bugs in JITs in some situations. Page 14 https://github.com/struct/research/blob/master/Attacking_Clientside_JIT_Compilers_Paper.pdf

[ Others ]  Heres a look at the future of JIT attacks (as my 2011 mind saw it) http://blogs.technet.com/b/srd/archive/2011/06/14/ms11-044-jit-compiler-issue-in-net-framework.aspx and http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=7056380

[ Others ]  Crafting your way through JSON Web Tokens https://www.notsosecure.com/crafting-way-json-web-tokens/

[ Others ]  Google has flipped the switch on default HTTPS support for Blogspot sites -http://ow.ly/4nocWQ

[ Others ]  我发布了新文章：《wafCheck.py DEMO - Hook urllib2 / requests》 http://www.n0tr00t.com/2016/05/03/wafCheck_demo.html

[ Others ]  GitLab CVE-2016-4340. Privilege escalation via "impersonate" feature https://about.gitlab.com/2016/05/02/cve-2016-4340-patches/

[ Pentest ]  New BlackArch Linux ISOs (2016.04.28) and Installer released http://goo.gl/fb/q7Xozv #FullDisclosure

[ Popular Software ]  @ natashenka I used to debug Flash exploit by inserting "trace" line by line, it's a fun at that time! ref: https://sites.google.com/site/zerodayresearch/smashing_the_heap_with_vector_Li.pdf.

[ Popular Software ]  Acunetix WVS 10 Remote Command Execution https://packetstormsecurity.com/files/136886/acunetixwvs10-exec.txt

[ Popular Software ]  CVE-2016–3714 - remote code execution in ImageMagick https://medium.com/@ rhuber/imagemagick-is-on-fire-cve-2016-3714-379faf762247#.hwa5glazr

[ ReverseEngineering ]  Deobfuscating #Python Bytecode http://bddy.me/1W4vV0K #malware https://t.co/kckZpgyWM8

[ Tools ]  New version of IDA IPython is out https://github.com/james91b/ida_ipython/releases/tag/0.5 Still looking for help porting to Linux and OSX.

[ Tools ]  SysPersist - a SYSTEM persistence service for Win32 https://github.com/mdsecresearch/Publications/raw/master/tools/SysPersist.zip via @ MDSecLabs

[ Windows ]  Windows 10 Anniversary Update is beginning of the end for SHA-1 on Microsoft platforms. https://threatpost.com/microsoft-sha-1-deprecation-final-countdown-begins/117783/