[ Attack ]  I updated by targeted threats tracker, with latest reports and indicators of compromise https://github.com/botherder/targetedthreats

[ Browser ]  Fingerprinting Firefox users with cached intermediate CA certificates. #fiprinca https://shiftordie.de/blog/2017/02/21/fingerprinting-firefox-users-with-cached-intermediate-ca-certificates-fiprinca/ https://t.co/LfRKAu3tbI

[ Browser ]  BeEF now supports persistent hooking in IE 11 using an invisible HTMLFile ActiveX object https://github.com/beefproject/beef/pull/1364 @ beefproject @ MagicMac2000

[ Conference ]  RSA 2017 Videos Playlist https://www.youtube.com/playlist?list=PLeUGLKUYzh_j1Q75yeae8upX-T1FLmZWf

[ Defend ]  Hardware Supported Process Isolation – An introduction - http://www.kerneldrivers.com/hardware-supported-process-isolation-introduction/

[ IoTDevice ]  Reversing Internet of Things from Mobile applications （PDF） http://area41.io/downloads/slides/area41_16_apvrille_mobileiot.pdf

[ Malware ]  PlugX + Poison Ivy = PlugIvy? ― PlugX Integrating Poison Ivy’s Code http://blog.jpcert.or.jp/2017/02/plugx-poison-iv-919a.html by @ jpcert_en

[ Network ]  snuck.me : a service detecting SSL man-in-the-middle : https://jlospinoso.github.io/node/javascript/security/cryptography/privacy/2017/02/20/snuckme-cert-query.html https://t.co/7pbbqvO6aj

[ Tools ]  Puppy RAT a Python cross platform RAT https://github.com/n1nj4sec/pupy

[ Tools ]  Another option for file sharing https://security.googleblog.com/2017/02/another-option-for-file-sharing.html

[ Tools ]  Offline Digital Forensics Tool for Binary Files: ByteForce https://n0where.net/offline-digital-forensics-tool-byteforce/ #InfoSec #CyberSecurity

[ Tools ]  iOSkextdump is a new tool to dump kernel extension information from iOS kernel cache. #CapstoneInside https://t.co/PUHDj2Qba3

[ Tools ]  Lighthouse (https://github.com/gaasedelen/lighthouse) pulling input from DynamoRio's code coverage tool into IDA Pro. Clean UI, clean code. Nice work.

[ Web Security ]  Same-Origin Policy, CSRF and Cross-Origin Resource Sharing (CORS) https://mo.github.io/2017/02/20/cross-origin-resource-sharing.html

[ Web Security ]  Privilege Escalation in Amazon Web Services. https://blog.cloudsploit.com/privilege-escalation-in-amazon-web-services-cb4837365958#.6y1uzyxlq

[ Windows ]  @ _samdb_ code is all at https://github.com/sam-b/windows_kernel_address_leaks

[ Windows ]  Did a blag - 'Revisiting Windows Security Hardening Through Kernel Address Protection' https://samdb.xyz/revisiting-windows-security-hardening-through-kernel-address-protection/

[ Windows ]  Windows driver signature bypass by derusbi - http://www.sekoia.fr/blog/windows-driver-signing-bypass-by-derusbi/ Driver Signature Enforcement (by @ j00ru) - http://j00ru.vexillium.org/?p=377

[ WirelessSecurity ]  Hacking exposed wireless：Wireless security secrets & solution second edition （PDF） http://dl.finebook.ir/book/4b/14104.pdf https://t.co/uYkbSoQRrx