[ Android ]  OWAS Hacking Playground - Android application with common vulnerabilities - https://github.com/OWASP/OMTG-Hacking-Playground

[ Attack ]  The RC6 implementation from Shadowbrokers leak is the trademark of the Equation group. Our analysis: https://securelist.com/blog/research/75812/the-equation-giveaway/

[ Attack ]  The Equation Group Cisco ASA exploit works, turns off password requirement for SSH: https://xorcatt.wordpress.com/2016/08/16/equationgroup-tool-leak-extrabacon-demo/

[ Browser ]  A new blog post on Google Chrome, Firefox Address Bar Spoofing Vulnerability (CVE-2016-5267): http://www.rafayhackingarticles.net/2016/08/google-chrome-firefox-address-bar.html #infosec #security

[ iOS ]  POC for Secure Enclave based crypto on iOS9 https://github.com/crazyquark/KeySafe

[ Malware ]  $2.5 Million-a-Year Ransomware-as-a-Service Ring Uncovered: https://threatpost.com/2-5-million-a-year-ransomware-as-a-service-ring-uncovered/119902/ via @ threatpost

[ Malware ]  Great find by our @ McAfee_Labs team: utilities repackaged to include browser hijacking malware. Details here: http://intel.ly/2biMbLY

[ Others ]  VxWorks Packet Execution (!) http://goo.gl/AMmrxD

[ Others ]  [webapps] - GitLab - "impersonate" Feature Privilege Escalation: GitLab - "impersonate" Feature Privilege Escalation http://bit.ly/2btHkVE

[ Tools ]  Hackable HTTP proxy: Toxy https://n0where.net/hackable-http-proxy-toxy/ #InfoSec #CyberSecurity

[ Windows ]  Quick blogspot on #fuzzing #ioctls with #angr, following my talk at the #LSEWeek '16! http://thunderco.re/project/security/2016/07/18/fuzzing-ioctls/

[ Windows ]  Project Zero blog: A Shadow of our Former Self by @ tiraniddo - https://goo.gl/nygHKZ