Busy week, some really interesting read this week!!
🔍 Reverse Engineering iOS 18 Inactivity Reboot
A lot of people have been talking about iOS 18 Inactivity Reboot, but only a few take the time to actually look at it in depth: Reverse Engineering iOS 18 Inactivity Reboot.
🔒 Exploring the DOMPurify library: Bypasses and Fixes (1/2)
Deep-dive into DOMPurify security with this article: Exploring the DOMPurify Library: Bypasses and Fixes. We can't wait for the second part!
🐪 Local Privilege Escalations in needrestart
The Qualys team is back with some cool bugs in needrestart. Who doesn't like some old-school Perl vulnerabilities...
🪲 Relaying Kerberos over SMB using krbrelayx
Another great article from the Synacktiv team, this time on Kerberos relaying.
🪲 Spelunking in Comments and Documentation for Security Footguns
An excellent article from Include Security. A few tricks worth reading: Spelunking in Comments and Documentation for Security Footguns.
📚 Paged Out #5
Paged Out is here with its latest edition. Check out Paged Out #5.
📚 AppSec eZine #562
AppSec eZine returns with its latest edition. Check out issue #562.
