[ Android ]  Hardening Measures in Android N Cripple System Utility and Security Applications https://code.google.com/p/android/issues/detail?id=205565

[ Attack ]  Opera server breach incident - Opera Security http://www.opera.com/blogs/security/2016/08/opera-server-breach-incident/

[ Browser ]  #HITBGSEC D2 - Moritz Jodeit -Look Mom I Don't Use Shellcode - http://gsec.hitb.org/materials/sg2016/D2%20-%20Moritz%20Jodeit%20-Look%20Mom%20I%20Don't%20Use%20Shellcode.pdf

[ Crypto ]  Congratulations to the OpenSSL team on releasing 1.1.0, a huge milestone. https://www.openssl.org/news/openssl-1.1.0-notes.html

[ Detect ]  An Analysis on the Impact and Detection of Kernel Stack Infoleaks https://www.researchgate.net/profile/Salva_Peiro/publication/298313650_An_Analysis_on_the_Impact_and_Detection_of_Kernel_Stack_Infoleaks/links/56e7e5d208aea51e7f3aece7.pdf

[ Detect ]  COFI Break - breaking exploits with practical control flow integrity - http://gsec.hitb.org/materials/sg2016/D2%20-%20Shlomi%20Oberman%20and%20Ron%20Shina%20-%20Breaking%20Exploits%20with%20Practical%20Control%20Flow%20Integrity.pdf wp http://gsec.hitb.org/materials/sg2016/whitepapers/Breaking%20Exploits%20with%20Practical%20Control%20Flow%20Integrity%20-%20Shlomi%20Oberman%20and%20Ron%20Shina.pdf

[ Hardware ]  Demonstrations of Attacks Against Implanted Cardiac Devices http://d.muddywatersresearch.com/wp-content/uploads/2016/08/MW_STJ_08252016.pdf

[ iOS ]  Slides from my @ HITBGSEC talk are online: "iOS 10 Kernel Heap Revisted" http://gsec.hitb.org/materials/sg2016/D2%20-%20Stefan%20Esser%20-%20iOS%2010%20Kernel%20Heap%20Revisited.pdf

[ iOS ]  SandBlaster: reverse/decompile Apple sandbox profiles to original human readable SandBox Profile Language format. https://arxiv.org/pdf/1608.04303v1.pdf

[ iOS ]  Pegasus - analysis of APT attack iOS devices https://translate.google.com/translate?hl=en&sl=zh-CN&tl=en&u=http%3A%2F%2Fblog.pangu.io%2Fpegasus-apt%2F

[ Linux ]  Linux kernel mbcache lock contention denial of service. http://www.openwall.com/lists/oss-security/2016/08/25/4 #infosec #vulnerability #linux #kernel

[ Linux ]  Privilege Escalation on Linux with Live examples. http://resources.infosecinstitute.com/privilege-escalation-linux-live-examples/ #infosec via @ InfosecEdu

[ Malware ]  Malware Hides in Installer to Avoid Detection https://blogs.mcafee.com/mcafee-labs/malware-hides-in-installer-to-avoid-detection/

[ MalwareAnalysis ]  Aleph - OpenSource Malware Analysis System https://n0where.net/aleph-opensource-malware-analysis-system/ #InfoSec #CyberSecurity

[ Others ]  Attacking NVIDIA's Tegra Platform http://gsec.hitb.org/materials/sg2016/D1%20-%20Peter%20Pi%20-%20Attacking%20NVIDIA's%20Tegra%20Platform.pdf

[ Others ]  Intel Processor Trace for UEFI Debug - http://blog.asset-intertech.com/test_data_out/2016/06/intel-processor-trace-for-uefi-debug.html

[ Others ]  Bypassing User-Mode hooks the sneaky way. https://scorchsecurity.wordpress.com/2016/08/26/bypassing-user-mode-the-sneaky-way/

[ Pentest ]  Burp Repeater https://blog.secureideas.com/2016/08/burp-repeater.html

[ Popular Software ]  Nginx resolver vulnerabilities allow cache poisoning attack http://blog.zorinaq.com/nginx-resolver-vulns/

[ SecurityProduct ]  Authenticated Remote Code Execution in F-Secure Policy Manager https://remoteawesomethoughts.blogspot.fr/2016/08/f-secure-policy-manager-120067239.html

[ Virtualization ]  Another great presentation at #xen summit http://www.slideshare.net/xen_com_mgr/xpds16-hypervisor-enforced-data-loss-prevention-neil-sikka-a1logic #cybersecurity stop #DataBreach

[ Web Security ]  New blog post: Floating Domains – Taking Over 20K DigitalOcean Domains via a Lax Domain Import System https://thehackerblog.com/floating-domains-taking-over-20k-digitalocean-domains-via-a-lax-domain-import-system/index.html

[ Windows ]  FUZZING THE WINDOWS KERNEL - http://gsec.hitb.org/materials/sg2016/D2%20-%20Koh%20Yong%20Chuan%20-%20Fuzzing%20the%20Windows%20Kernel.pdf nice slides from @ yongchuank