Hack

Zero-Day Research: ehttp Use-after-Free (CVE-2023-52266) and Out-of-Bounds Read (CVE-2023-52267)

The ehttp library advertises itself as a ‘simple HTTP server based on epoll’. The primary goal of the library is to provide an easy-to-use HTTP microservice with JSON support. The library supports HTTP 1.0/1.1 with GET and POST request methods. When utilizing a new library, I always execute various fuzz tests against the library to […]

Zero-Day Research: ehttp Use-after-Free (CVE-2023-52266) and Out-of-Bounds Read (CVE-2023-52267) Read More »

Skinny Secure 002: Hackers vs Hackers, Airplanes vs Thumb-drives, & Students vs Teachers

Microsoft Hacked, Hackers Rejoice, Hackers Hacked Yesterday the Syrian Electronic Army (SEA) hacked several Microsoft Twitter accounts. The SEA is a contingent of hackers that are supportive of Syrian President Bashar al-Assad. After immediately taking credit for the attack and bragging all over the internet, they are today nursing a small wound of having their

Skinny Secure 002: Hackers vs Hackers, Airplanes vs Thumb-drives, & Students vs Teachers Read More »

Knock Knock

Skinny Secure 001: Monthly Technical Security Update

Every month I will be endeavoring to bring you little security snippets that may be of interest to all the techs out there. This last month has been an interesting one. Below you’ll find the Chinese agricultural espionage, billionaire security, systems, and a how to for getting the NSA’s undivided attention. General Interest -Most burglaries

Skinny Secure 001: Monthly Technical Security Update Read More »

Grad Students Find Undocumented Functions in SCADA Protocol

Industrial Control Systems (ICS) have been an area of security concern for the past decade and was dramatically highlighted in the media with the whole Iran nuclear enrichment fiasco. When someone screws with your computer or smart-phone with a virus, it’s quite an inconvenience, but when someone starts taking out your power or shutting down

Grad Students Find Undocumented Functions in SCADA Protocol Read More »

Scroll to Top