Hacking, AppSec, and Bug Bounty newsletter
2017-08-04 | SSRF to RCE, android_unpacker, and HTTPs hidden attack surface
Friday, August 4
Testing new features by @filedescriptor
Cracking the Lens: Targeting HTTP's Hidden Attack-Surface by James Kettle
Abusing GDI Objects for ring0 Primitives Revolution by @Saif_Sherei
TWEET OF THE DAY
Whether innocent or guilty, this sets back the trust that’s been built between security research community, government, media, and others. - @beauwoods
OTHER ARTICLES WE’RE READING
@malwaretech arrested by FBI in Las Vegas.
Wannacry banking errands (Bitcoin style)
ABOUT ZERO DAILY
Zero Daily is a daily newsletter that highlights application security, bug bounty, and hacker focused topics. The content is curated with love by @luketucker and brought to you by HackerOne.
Friends don’t keep good things to themselves - forward this to your homies and co-workers. BTW, want to see who runs bug bounties?
Have a news tip / story to highlight? We’d love to hear about it. Email: email@example.com
Get this email forwarded to you? Click here to subscribe to the Zero Daily
"This is the first case I know of where the government is prosecuting someone for creating or selling malware but not actually using it.”