Binni Shah

@[email protected]
5.2K Followers
0 Following
293 Posts
Linux Evangelist, Malwares, Kernel dev, Security Enthusiast , Sarcasm , Rebel , Reformist , Philanthropist , Jain , Meditation .
binitamshah at protonmail com
Twitterhttps://twitter.com/binitamshah
Binni ShahApr 12, 2023
CAN Injection : keyless car theft : https://kentindell.github.io/2023/04/03/can-injection/ credits @kentindell @mintynet
CAN Injection: keyless car theft

This is a detective story about how a car was stolen - and how it uncovered an epidemic of high-tech car theft. It begins with a tweet. In April 2022, my friend Ian Tabor tweeted that vandals had been at his car, pulling apart the headlight and unplugging the cables.

Ken Tindell’s blog
Binni ShahApr 12, 2023
Grounded-Segment-Anything : Marrying Grounding DINO with Segment Anything & Stable Diffusion & BLIP & Whisper - Automatically Detect , Segment and Generate Anything with Image, Text, and Speech Inputs : https://github.com/IDEA-Research/Grounded-Segment-Anything
GitHub - IDEA-Research/Grounded-Segment-Anything: Grounded SAM: Marrying Grounding DINO with Segment Anything & Stable Diffusion & Recognize Anything - Automatically Detect , Segment and Generate Anything

Grounded SAM: Marrying Grounding DINO with Segment Anything & Stable Diffusion & Recognize Anything - Automatically Detect , Segment and Generate Anything - IDEA-Research/Grounded-Segment-A...

GitHub
Binni ShahApr 12, 2023
Pwning Pixel 6 with a leftover patch : https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/
Pwning Pixel 6 with a leftover patch | The GitHub Blog

In this post, I’ll look at a security-related change in version r40p0 of the Arm Mali driver that was AWOL in the January update of the Pixel bulletin, where other patches from r40p0 was applied, and how these two lines of changes can be exploited to gain arbitrary kernel code execution and root from a malicious app. This highlights how treacherous it can be when backporting security changes.

The GitHub Blog
Binni ShahApr 12, 2023
A simple IPTV player in bash with M3U playlists support (with fuzzy finding, right in your terminal) : https://github.com/shahin8r/iptv
GitHub - shahin8r/iptv: A simple CLI IPTV player for M3U playlists with fuzzy finding in the terminal.

A simple CLI IPTV player for M3U playlists with fuzzy finding in the terminal. - GitHub - shahin8r/iptv: A simple CLI IPTV player for M3U playlists with fuzzy finding in the terminal.

GitHub
Binni ShahApr 12, 2023
Reverse-engineering the division microcode in the Intel 8086 processor : http://www.righto.com/2023/04/reverse-engineering-8086-divide-microcode.html credits @kenshirriff
Reverse-engineering the division microcode in the Intel 8086 processor

While programmers today take division for granted, most microprocessors in the 1970s could only add and subtract — division required a sl...

Binni ShahApr 12, 2023

Hijacking Arch Linux Packages by Repo Jacking GitHub Repositories : https://blog.nietaanraken.nl/posts/aur-packages-github-repo-jacking/

Ref : Hijacking GitHub Repositories by Deleting and Restoring Them : https://blog.nietaanraken.nl/posts/gitub-popular-repository-namespace-retirement-bypass/

Hijacking Arch Linux Packages by Repo Jacking GitHub Repositories

Last year, we published a blog post discussing an attack where a malicious actor hijacks Arch User Repository (AUR) vulnerable packages by registering expired domains.

Blog by Joren Vrancken
Binni ShahApr 12, 2023
64 Methods For Executing Mimikatz : https://redteamrecipe.com/64-Methods-For-Execute-Mimikatz/ credits @Hadess_security (twitter)
64 Methods For Execute Mimikatz(RTC0003)

64 Methods for Execute Mimikatz

RedTeamRecipe
Binni ShahApr 12, 2023

Hacking Ham Radio: WinAPRS – Part 1 : https://www.coalfire.com/the-coalfire-blog/hacking-ham-radio-winaprs-part1

Part 2 : https://www.coalfire.com/the-coalfire-blog/hacking-ham-radio-winaprs-part-2

Part 3 : https://www.coalfire.com/the-coalfire-blog/hacking-ham-radio-winaprs-part-3

Part 4 : https://www.coalfire.com/the-coalfire-blog/hacking-ham-radio-winaprs-part-4

Hacking Ham Radio: WinAPRS – Part 1

One of the oldest network protocols - amateur or

Coalfire.com
Binni ShahApr 12, 2023
Rilide: A New Malicious Browser Extension for Stealing Cryptocurrencies : https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/rilide-a-new-malicious-browser-extension-for-stealing-cryptocurrencies/
Rilide: A New Malicious Browser Extension for Stealing Cryptocurrencies

Trustwave SpiderLabs uncovered a new strain of malware that it dubbed Rilide, which targets Chromium-based browsers such as Google Chrome, Microsoft Edge, Brave, and Opera.

Trustwave
Binni ShahApr 12, 2023
Scilla : Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration : https://github.com/edoardottt/scilla credits @edoardottt2 (twiiter)