CyberWeekly 8' June | Issue #2

The only weekly newsletter you'll ever need for cybersecurity by hacklido.

Mentorship in CTF, Python for hackers - 10 projects, Android Binder CVE-2023-20938, Intel/AMD CPU internals, finding your purpose in cybersecurity, Windows 11 TotalRecall dump tool.

📑 Blog Reads

1. Unveiling Mobile App Security: A Comprehensive Guide

2. Python for Hackers: Learn by building Series

3. Advances In Cryptographic Algorithms

4. Web Recon Made Simple: Beginner's Handbook - reNgine, Pagodo, Recon FTW, GooFuzz & More

5. The Importance Of Finding Your Purpose In Cybersecurity

---

📹️ Videos

1. [RE]lax and Analyze some Linux Malware - Playlist By LaurieWired

2. Cybersecurity Certificate Tier List (2024) By Mad Hat

3. XXE Injection - Detailed Walkthrough - (TryHackMe!) By Tyler Ramsbey

4. Worlds Dumbest Darknet Admin Gets Busted By Mental Outlaw

5. Designing A Web Application for PWPT By The Cyber Mentor

---

📚 Recommended Reading

1. CVE-2024-4577 - Yet Another PHP RCE: Make PHP-CGI Argument Injection Great Again!

2. CVE-2024-27822: macOS PackageKit Privilege Escalation

3. SSD ADVISORY – LINUX KERNEL NFT_VALIDATE_REGISTER_STORE INTEGER OVERFLOW PRIVILEGE ESCALATION

4. Attacking Android Binder: Analysis and Exploitation of CVE-2023-20938

5. Intel / AMD CPU Internals

---

⚒️ Tools

1. TotalRecall: A 'privacy nightmare'? This tool extracts and displays data from the Recall feature in Windows 11, providing an easy way to access information about your PC's activity snapshots.

2. Entropy - Paranoid about having secrets leaked in your huge codebase? Entropy is here to help you find them! A CLI tool that will scan your codebase for high entropy lines, which are often secrets.

---

🏴 Upcoming CTF Events

1. Google Capture The Flag 2024 - [Export 📅]

   1. Fri, 21 June 2024, 18:00 UTC — Sun, 23 June 2024, 18:00 UTC

   2. On-line - Format: Jeopardy Jeopardy

   3. Official URL: https://g.co/ctf

2. Akasec CTF 2024 - [Export 📅]

   1. Fri, 07 June 2024, 13:37 UTC — Sun, 09 June 2024, 13:37 UTC

   2. On-line - Format: Jeopardy Jeopardy

   3. Official URL: https://ctf.akasec.club/

---

📰 News

1. Snowflake Breach Affects Ticketmaster, Santander

2. Entrust’s 2024 State of Zero Trust & Encryption Study

3. PoC for Check Point Vulnerability Released

4. Microsoft deprecates Windows NTLM authentication protocol

5. Kali Linux 2024.2 released with 18 new tools, Y2038 changes

---

🔬 Research

1. Position: How Regulation Will Change Software Security Research

2. Jailbreak Vision Language Models via Bi-Modal Adversarial Prompt

---

💼 Jobs

1. Information Security Engineer At deel

2. Azure Security Lead At dss+

---

Without the sponsors and partners, hacklido wouldn't be where it is now, So we would like to thank them.

Sponsors:

• Your web links goes here!

Community Partners:

• Cyber Security News

• Ethical Hacking Tutorials

• Sysxplore

If you wish to Sponsor / Partner with hacklido and get benefitted? Reach out to us via Twitter / Discord / Telegram and discuss with us!

---