Claus Cramon Houmann
iam-py-test 
Cory Doctorow
Gérald DoussotGreat update on DNS rebinding attacks by my colleague @sanktjodel including a primer on Local Network Access, and how to bypass it on Chrome https://research.nccgroup.com/2023/04/27/state-of-dns-rebinding-in-2023/ #dnsrebinding
It seems that #Josephbeeton found a #RCE in Togglz exposed on localhost via in-browser executed JS. Now, I’m not even close to an expert, but some of this looks a bit like @taviso’s #dnsrebinding attack type? #hacklu2025
One of the long-standing issues with the "Block outside intrusion into LAN" list is that it can not protect against DNS rebinding attacks.
This new feature allows one to create a rule blocking connections to domains which resolve to localhost or IPs on your LAN. Classes A, B, and C are supported.
#10yrsago #Goths of #Kenya https://thinkafricapress.com/goth-nairobi/
#10yrsago 3-Bee printing: tricking bees into making wax sculptures https://www.itsnicethat.com/articles/film-80-000-bees-work-together-in-a-mould-to-make-a-3d-sculpture
#5yrsago Half a billion #IoT devices inside of businesses can be hacked through decade-old #DNSRebinding attacks https://www.armis.com/blog/dns-rebinding-exposes-half-a-billion-devices-in-the-enterprise/
#5yrsago Europe fines four electronics companies $130,000,000 for #PriceFixing https://www.cnbc.com/2018/07/24/europe-fines-asus-denon-marantz-philips-pioneer-for-fixing-prices.html
7/
A Day in the Life of a Kenyan Goth - Think Africa Press
All dressed in black and adorned with piercings, a small but growing community of goths is one manifestation of the new cultures and subcultures emerging in Kenya. By Rowan Emslie Nairobi, Kenya: David Lith is a tattoo artist working out of Nakuru, the third largest urban centre in Kenya. On weekends he embarks on a […] More
woFFFinally got some time to play around on h1... Had to refresh my notes around some of the testing tools / infra and bumped into https://github.com/brannondorsey/whonow . I always forget I have a domain + instance for it. IMHO it is absolutely great to quickly test against #dnsrebinding for #ssrf . #bugbountytips
GitHub - brannondorsey/whonow: A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)
A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53) - GitHub - brannondorsey/whonow: A "malicious" DNS server ...
Boing BoingHalf a billion IoT devices inside of businesses can be hacked through decade-old DNS rebinding attacks https://boingboing.net/2018/07/24/decade-old-vulns.html #internetofshit #dnsrebinding #scholarship #Business #security #infosec #Video #iot
heise online (inoffiziell)Im Blizzard Update Agent klaffte eine Sicherheitslücke, über die Angreifer Schadcode auf Computer hätten ausführen können. Eine abgesicherte Version ist erschienen. https://www.heise.de/security/meldung/500-Millionen-Spieler-von-Blizzard-Computerspielen-waren-ueber-Luecke-angreifbar-3948706.html #BlizzardUpdateAgent #DNSRebinding #Schwachstelle #Sicherheitslücke