Seclog - #48
Spotlight: DIALStranger, State of Cloud Security, Okta for Red Teamers, Burp Collab to Cloudflare Workers, Searching for Malicious HTTP Servers etc.
Without passion man is a mere latent force and possibility, like the flint which awaits the shock of the iron before it can give forth its spark. — Henri-Frédéric Amiel
secmisc
seclinks
Uncovering a crazy privilege escalation from Chrome extensions
All the Small Things: Azure CLI Leakage and Problematic Usage Patterns
The Spelling Police: Searching for Malicious HTTP Servers by Identifying Typos in HTTP Responses
Bypass Two-Factor Authentication of Facebook Accounts ($25,300)
Teams external participant splash screen bypass | BadOption.eu
Denial of Pleasure: Attacking Unusual BLE Targets with a Flipper Zero
sectweet
secgit
Thanks for reading,