[ Android ]  HackingTeam's Android implant analysis: http://rednaga.io/2016/11/14/hackingteam_back_for_your_androids/ by @ RedNagaSec

[ Android ]  December Android Security Bulletin: https://source.android.com/security/bulletin/2016-12-01.html. It's also the stable release of 7.1.1, which is the first Nexus 7.1.x release.

[ Browser ]  Multiple Universal XSS fixed in latest Chrome 55 : https://googlechromereleases.blogspot.in/2016/12/stable-channel-update-for-desktop.html

[ Firmware ]  iPhone secure boot firmware component could be dumped. http://ramtin-amin.fr/#nvmedma https://t.co/ORUrGbTRtF

[ Fuzzing ]  An introduction of Use-After-Free detection in binary code by #static analysis - http://blog.amossys.fr/intro-to-use-after-free-detection.html #uaf

[ Linux ]  [1day] [PoC with $rip] Deterministic Linux heap grooming with huge allocations http://scarybeastsecurity.blogspot.com/2016/12/1day-poc-with-rip-deterministic-linux.html

[ MalwareAnalysis ]  Cerber 5.0.1 Arrives with New Multithreading Method http://blog.fortinet.com/2016/12/02/cerber-5-0-1-arrives-with-new-multithreading-method

[ Others ]  Data breach at the Japanese Shiseido, 420,000 users’ records exposed http://securityaffairs.co/wordpress/54075/data-breach/shiseido-data-breach.html

[ Others ]  New Blog Post - Evidence of Attackers’ Development Environment Left in Shortcut Files ^ST http://blog.jpcert.or.jp/2016/12/evidence-of-att-3388.html

[ Pentest ]  PentestBox : An Opensource PreConfigured Portable Pen Testing Environment for the Windows : https://pentestbox.org/#download cc @ exploitprotocol

[ Pentest ]  Backslash Powered Scanning: Hunting Unknown Vulnerability Classes http://blog.portswigger.net/2016/11/backslash-powered-scanning-hunting.html

[ Protocol ]  HTTP/2 Push : The details : http://calendar.perfplanet.com/2016/http2-push-the-details/ https://t.co/HHJDW5HqPe

[ Tools ]  Results from the 2016 Volatility Plugin Contest are in! https://volatility-labs.blogspot.ru/2016/12/results-from-2016-volatility-plugin.html

[ Tools ]  PowerForensics All in one platform for live disk #forensic analysis in #PowerShell Author: @jaredcatkinson https://t.co/tDJKScn0O0

[ Vulnerability ]  [local] - Apache CouchDB 2.0.0 - Local Privilege Escalation https://www.exploit-db.com/exploits/40865/

[ Web Security ]  CVE-2016-8740, Server memory can be exhausted and service denied when HTTP… https://goo.gl/fb/medG1g #FullDisclosure

[ Windows ]  Microsoft MSINFO32.EXE ".NFO" Files XML External Entity https://goo.gl/fb/LzXWvW #FullDisclosure

[ Windows ]  Microsoft Event Viewer v1.0 XML External Entity https://goo.gl/fb/Cwqc7N #FullDisclosure

[ WirelessSecurity ]  Reversing Mobile Traffic Lights: https://www.bastibl.net/traffic-lights/ https://www.bastibl.net/traffic-lights-2/ #sdr #wireless #security