[ Android ]  How to test your script/binary in the same security context as a regular third party app (UID/GID/SELinux-domain): http://jeffvanderstoep.blogspot.com/2016/01/android-how-to-run-executable-from-adb.html

[ Android ]  Now blog post on the better ways to pentest Android apps (filesystem, dynamic, static ...) http://buff.ly/1WONaSR

[ Attack ]  . #Stuxnet 2010 bugs among most targeted flaws identified in @ Microsoft #SIR https://threatpost.com/old-exploits-die-hard-says-microsoft-report/117918/

[ Attack ]  IT threat evolution in Q1 2016 - Securelist http://ow.ly/4ntXd2

[ Backdoor ]  I've made a Github repo with a collection of #PHP backdoors. For educational/testing purposes only. Includes tools. https://github.com/bartblaze/PHP-backdoors

[ Browser ]  @ oldfresher 's exploit for CVE-2015-6764 is awesome, I added some comments to help newbies to understand it.https://github.com/4B5F5F4B/Exploits/tree/master/CVE-2015-6764

[ Browser ]  Slowly, but surely reducing Chromium attack surface: https://groups.google.com/a/chromium.org/forum/#!topic/blink-dev/lyuWXZ_1kXo. Thanks @ meacer!

[ Conference ]  The slides for xKungFoo 2016 https://drive.google.com/folderview?id=0B_thUFNIy8TdZjhNczBxNEl3MkU&usp=sharing

[ Conference ]  The slides for 0Con 2016 https://drive.google.com/folderview?id=0B_thUFNIy8TdcnhrMVJmREowU3M&usp=sharing

[ Conference ]  The slides for 2016京·聚沙龙 is out. https://drive.google.com/folderview?id=0B_thUFNIy8TdX3F6NUFCYnlZbU0&usp=sharing

[ iOS ]  iOS HTTP cache analysis for abusing APIs and forensics https://blog.silentsignal.eu/2016/05/06/ios-http-cache-analysis-for-abusing-apis-and-forensics/

[ IoTDevice ]  Slides from my @ thotcon talk on @ esp8266 psionics / embedded exploitation are up at https://speakerdeck.com/jsandin/the-complete-esp8266-psionics-handbook thanks to folks who attended!!

[ Malware ]  My new post for @ Malwarebytes - about evolution of #7ev3n #ransomware : https://blog.malwarebytes.org/threat-analysis/2016/05/7ev3n-ransomware/

[ Malware ]  Dridex Botnet Hacked for the Third Time in Three Months http://ow.ly/4nu8Oj

[ Malware ]  New #Fareit Variant Analysis http://blog.fortinet.com/post/new-fareit-variant-analysis

[ Network ]  Surprisingly easy-to-read white paper from @ ptsecurity on the number of ways you can be spied on by hacking SS7. http://www.ptsecurity.com/upload/ptcom/SS7_WP_A4.ENG.0036.01.DEC.28.2014.pdf

[ OpenSourceProject ]  Heads up: I'm implementing context aware auto-escaping in Angular 2 to protect your apps from XSS bugs. See https://github.com/angular/angular/issues/8511

[ Others ]  Return of the Rhino: a new Java Deserialization Gadget https://codewhitesec.blogspot.com/2016/05/return-of-rhino-old-gadget-revisited.html

[ Others ]  Security & Pentesting Resources http://in-addr.nl/security-links.php

[ Others ]  Inside Dropbox’ Magic Pocket https://blogs.dropbox.com/tech/2016/05/inside-the-magic-pocket/

[ Others ]  Phrack is back! http://phrack.org/issues/69/1.html

[ Popular Software ]  Burn your Lenovo spyware; burn it all https://twitter.com/ProfWoodward/status/728619985275392000

[ Programming ]  If you write embedded C code and aren't familiar with how or why to use "volatile," here is a great read: http://www.barrgroup.com/Embedded-Systems/How-To/C-Volatile-Keyword

[ Tools ]  Fierce - A Python rewrite of the classic DNS reconnaissance tool. http://ow.ly/KOHc3000W7Q

[ Tools ]  Btw, we (ppl at CENSUS) are working on supporting latest Android's jemalloc in shadow (https://github.com/CENSUS/shadow).

[ Windows ]  Cool API! :) https://twitter.com/JohnLaTwC/status/728617071328645120