After two weeks of reversing and frida back and forth - I finally able to unpin the app from the SSL
A combination of a custom function that doesn’t use normal Android TLS functionality with CSharp assemblies and namespace usage created what seemed to be an impossible task
But I managed! HTTP Toolkit now sees all the traffic that was previously hidden
Looks like Santa just left New Zealand, heading for Australia now.
You can track him live at https://www.flightradar24.com/R3DN053/2ea2ef9b.
Merry Christmas everyone!
Indeed, validate_domain's parsing is very different from what libcurl is doing!
As a result, the request can be sent to unintended hosts with payloads like
https://internal.service:@very-sensitive-internal.service/.
Check out the detailed solution here:
https://www.sonarsource.com/knowledge/code-challenges/advent-calendar-2022/?day=23&solution
BREAKING - an apparently credible threat actor is claiming they have the data of 400,000,000 Twitter users and attempting to sell it
The database is private according to them, and contains devastating amounts of information including emails and phone numbers to high profile users.
The threat actor provided a sample of 1,000 notable accounts and included the private information of - AOC, Brian Krebs, Vitalik Buterin, Kevin O'Leary, Donald Trump JR, and many more.
They claim this data was obtained in early 2022 due to an exploit in Twitter and in their post they talk directly to Elon Musk asking him to buy the data to avoid GDPR lawsuits.
Please note - At this stage it is not possible to fully verify that there are indeed 400,000,000 users in the database, or that it indeed came directly from Twitter. In an independent verification the data itself appears to be legitimate and I will follow up on any developments.
A New PyRDP Release: The Rudolph Desktop Protocol! - GoSecure
https://www.gosecure.net/blog/2022/12/23/a-new-pyrdp-release-the-rudolph-desktop-protocol/
Isn’t there a better moment than the Holiday season to release a major update of our RDP Attack and Eavesdropping tool PyRDP? That’s right, pour yourself a little glass of eggnog, sit in a comfortable chair, put on some Christmas music and read about the PyRDP updates by the fire.
Checkout new #casr 2.3.0 release!!!
https://github.com/ispras/casr
- rust panic support in casr-san/casr-gdb
- c++ exceptions support in casr-san/casr-gdb
- casr-python for creating CASR reports from python crashes🔥
P. S. Merry Christmas! ❄️❄️❄️
#fuzzing #afl #aflplusplus #python
Gynvael Coldwind 🐈
Michael Pollmeier
Sonar Research
Alon Gal (UndertheBreach)
inf0junki3
Andrey Fedotov
L0pht Heavy Industries
Dave Aitel
nt