Seclog - #40Spotlight: The bogus CVE problem, DevTunnels for C2, Finding things in JavaScript, web.Monitor, WS_RaceCondition_PoC, Linux Kernel a Process etc.Rosecurify·Sep 16, 2023·1 min readPhoto by Haryad Ali on Unsplashseclinks How does the Linux Kernel start a Process The bogus CVE problem HTTP Request Splitting vulnerabilities exploitation Finding things in JavaScript: Where are we today? Orbeon Forms: The Final Form? On A Journey To RCE DevTunnels for C2 Bypass Cloudtrail Detection using AWS Appstream - Cloud Security! An Overview of Software Supply Chain Security curl | Report #2072338 - CVE-2023-38039: HTTP header allocation DOS Analyzing Security Vulnerabilities in XWiki: In-Depth Examination (Research) Exploiting HTTP Parsers Inconsistencies CVE-2023-38146: Arbitrary Code Execution via Windows Themes secgits krol3/container-security-checklist e1abrador/web.Monitor: CyberCX-STA/PurpleOps MrTiz/CVE-2023-35671 NSEcho/furlzz redrays-io/WS_RaceCondition_PoC secvideo Windows Security Research: A Practical Guide for Beginners to find 0 days Securityseclog Share this