[ Browser ]  IE11 and the attack of the zombies. https://www.brokenbrowser.com/zombie-alert/ Persistent script that runs *even* after the user lef… https://twitter.com/i/web/status/833691414185771011

[ Conference ]  Looking for the slides to our talks at #RSAC2017 in the IoT Sandbox? Look no further, they are all linked here!… https://t.co/kzZuzgBVgp

[ Detect ]  Defeating Dynamic Data Kernel Rootkit Attacks via VMM-based Guest-Transparent Monitoring : https://www.csc2.ncsu.edu/faculty/xjiang4/pubs/ARES09.pdf (pdf)

[ Linux ]  Web Server Exploitation with SSH Log Poisoning through LFI http://www.hackingarticles.in/web-server-exploitation-ssh-log-poisoning-lfi/

[ Others ]  Pretty good write up describing AV detection and bypass techniques. http://ow.ly/sC7P3099pDx

[ Others ]  Posh-Sysmon Module for Creating Sysmon Configuration Files http://www.darkoperator.com/blog/2017/2/17/posh-sysmon-powershell-module-for-creating-sysmon-configuration-files

[ Others ]  Post on bypassing application whitelisting and Powershell Constrained Language Mode remotely by chaining bypasses https://improsec.com/blog//babushka-dolls-or-how-to-bypass-application-whitelisting-and-constrained-powershell

[ Popular Software ]  NCC Group Advisory: Shell Injection in MacVim mvim URI handler - https://www.nccgroup.trust/us/about-us/newsroom-and-events/blog/2017/february/technical-advisory-shell-injection-in-macvim-mvim-uri-handler/?Year=2017&Month=2 by @ dan_crowley

[ Popular Software ]  NCC Group Advisory: Shell Injection in SourceTree - https://www.nccgroup.trust/us/about-us/newsroom-and-events/blog/2017/february/technical-advisoryshell-injection-in-sourcetree/?Year=2017&Month=2 by @ dan_crowley

[ Programming ]  I published the EBook "The Ultimate Question of Programming, Refactoring, and Everything" at Intel: https://t.co/CWyRHwyvUI Please retweet.

[ SecurityProduct ]  Java/Python FTP Injections Allow for Firewall Bypass : http://blog.blindspotsecurity.com/2017/02/advisory-javapython-ftp-injections.html cc @ ecbftw

[ Tools ]  GitLeaks - Search Engine for exposed secrets on the web https://gitleaks.com/

[ Tools ]  Tool for easily generating sketches for Arduinos to deliver HID attacks via keyboard emulation https://github.com/RedLectroid/OverThruster

[ Web Security ]  MySQL Out-of-Band Hacking : https://osandamalith.com/2017/02/03/mysql-out-of-band-hacking/ , Pdf : https://www.exploit-db.com/docs/41273.pdf cc @ OsandaMalith https://t.co/YKoCiY8uz7

[ Web Security ]  SQL injection in an UPDATE query - a bug bounty story! http://zombiehelp54.blogspot.ro/2017/02/sql-injection-in-update-query-bug.html

[ Windows ]  Windows 10 Lock Screen: Abusing the Network UI for Backdoors (and how to disable it) http://www.mathyvanhoef.com/2017/02/windows-10-lock-screen-abusing-network.html

[ WirelessSecurity ]  Flipping Bits and Opening Doors reverse engineering a wireless security device by @ sirus https://duo.com/blog/flipping-bits-and-opening-doors-reverse-engineering-the-linear-wireless-security-dx-protocol