[ Attack ]  Shocking, a German nuclear plant suffered a disruptive cyber attack http://securityaffairs.co/wordpress/52116/security/nuclear-plant-attack.html

[ Browser ]  #DailyBug #Firefox NULL pointer Repro: <track xmlns="..."><feImage xmlns="..." xmlns:xlink="..." xlink:href='?'>… https://twitter.com/i/web/status/785412860222603265

[ Conference ]  #PacSec 2016 Tokyo Oct26-27 13 talks announced http://pacsec.jp/speakers.html 2days:CAD$650 1day:CAD$400 until Oct20 http://pacsec.jp/register.html

[ Conference ]  Black Hat USA 2016 videos - https://www.youtube.com/playlist?list=PLbHqJuIbKd_6jPpl9pnXGUmUj8gtlWony

[ Fuzzing ]  Test suite for fuzzers: https://github.com/google/fuzzer-test-suite.

[ Linux ]  Linux Kernel 3.13.1 Recvmmsg Privilege Escalation https://cxsecurity.com/issue/WLB-2016100094

[ Linux ]  [local] - Linux kernel 4.6.2 - IP6T_SO_SET_REPLACE Privilege Escalation https://www.exploit-db.com/exploits/40489/

[ Malware ]  #VB2016 the slides of our talk on VB2016 is now open: https://www.virusbulletin.com/uploads/pdf/conference_slides/2016/Liu_Wang-vb-2016-TheElknotDDoSBotnetsWeWatched.pdf

[ MalwareAnalysis ]  Remsec driver analysis (Part 2) : https://artemonsecurity.blogspot.in/2016/10/remsec-driver-analysis-part-2.html , Part 1 : https://artemonsecurity.blogspot.in/2016/10/remsec-driver-analysis.html

[ NetworkDevice ]  The Network Capture Playbook ( Part 1 – Ethernet Basics) : https://blog.packet-foo.com/2016/10/the-network-capture-playbook-part-1-ethernet-basics/ cc @ PacketJay https://t.co/RFhGJ5IeUn

[ OpenSourceProject ]  Noto : Google Releases An Open Source Font That Supports 800 Languages : https://opensource.googleblog.com/2016/10/an-open-source-font-system-for-everyone.html , Download Noto : https://www.google.com/get/noto/

[ Others ]  mitmproxy – Intercepting HTTP Proxy Tool aka MITM http://www.darknet.org.uk/2016/10/mitmproxy-intercepting-http-proxy-tool-aka-mitm/

[ Others ]  DMA attacking over USB-C and Thunderbolt 3 : http://blog.frizk.net/2016/10/dma-attacking-over-usb-c-and.html cc @ UlfFrisk

[ Popular Software ]  Apache Tomcat (RedHat-Based Distros Pkgs) - Root Privilege Escalation Exploit (CVE-2016-5425) http://legalhackers.com/advisories/Tomcat-RedHat-Pkgs-Root-PrivEsc-Exploit-CVE-2016-5425.html

[ Rootkit ]  HorsePill: a New Type of Linux Rootkit : https://github.com/r00tkillah/HORSEPILL

[ Tools ]  tmux - A terminal multiplexer : https://tmux.github.io/ https://t.co/d0b6kca8lY

[ Tools ]  4nonimizer - A bash script for anonymizing the public IP managing the connection to TOR and different VPNs providers http://www.kitploit.com/2016/10/4nonimizer-bash-script-for-anonymizing_10.html

[ Tools ]  #FreeBSD 11.0-RELEASE Now Available: https://lists.freebsd.org/pipermail/freebsd-announce/2016-October/001760.html

[ Virtualization ]  Added significantly enhanced Xen hypercall fuzzer https://github.com/chipsec/chipsec/blob/master/source/tool/chipsec/modules/tools/vmm/xen/hypercallfuzz.py

[ Windows ]  you can use wnf kernel data to find hidden processes: http://redplait.blogspot.ru/2016/10/another-cross-process-scan.html

[ Windows ]  Keep Windows 10 secure - https://github.com/Microsoft/windows-itpro-docs/blob/master/windows/keep-secure/TOC.md - Interesting documentation from Microsoft

[ WirelessSecurity ]  Going Deeper Into GNURadio Companion http://www.hak5.org/episodes/hak5-1601 Decoding Digital Subcarriers with a $20 SDR http://www.hak5.org/episodes/hak5-1602 #SDR

[ WirelessSecurity ]  Hacking the Drones ( GPS Spoofing over DJI Phantom ) [PDF] https://www.owasp.org/images/5/5e/OWASP201604_Drones.pdf

[ WirelessSecurity ]  Drones Hijacking multi - dimensional attack vectors and countermeasure https://media.defcon.org/DEF%20CON%2024/DEF%20CON%2024%20presentations/DEFCON-24-Aaron-Luo-Drones-Hijacking-Multi-Dimensional-Attack-Vectors-And-Countermeasures-UPDATED.pdf https://www.youtube.com/watch?v=bahJxY3fEI4