Posts


Mar. 1, 2018

PS4-4.55-Kernel-Exploit: A fully implemented kernel exploit for the PS4 on 4.55FW

PS4-4.55-Kernel-Exploit: A fully implemented kernel exploit for the PS4 on 4.55FW

In this project you will find a full implementation of the “bpf” kernel exploit for the PlayStation 4 on 4.55. It will allow you to run arbitrary code as kernel, to allow jailbreaking and kernel-level modifications to the system. This release however, does not contain any code related to defeating anti-piracy mechanisms or running homebrew.

This exploit does include a loader that listens for payloads on port 9020 and will execute them upon receival.

Mar. 1, 2018

Privilege Escalation in 2.3M WooCommerce Shops

Privilege Escalation in 2.3M WooCommerce Shops

The WordPress plugin WooCommerce runs on approximately 2,300,000 live websites1 and is currently the most prominent eCommerce platform used on the Web. During our research we discovered a PHP object injection vulnerability in WooCommerce that allows to escalate privileges. The vulnerability was responsibly disclosed to the Automattic security team and was fixed last year with the release of version 3.2.4.

In this blog post we investigate how recent changes in the WordPress core database driver opened the doors for this vulnerability. Furthermore, we describe how the circumstances could be exploited with a unique and interesting injection technique.

Mar. 1, 2018

Honeytrap: Advanced Honeypot framework.

Honeytrap: Advanced Honeypot framework.

Honeytrap is an extensible and opensource system for running, monitoring and managing honeypots.

Source: github.com

May. 12, 2017

Welcome to Indigo Defense!

[et_pb_section bb_built=”1″ admin_label=”section”][et_pb_row admin_label=”row” background_position=”top_left” background_repeat=”repeat” background_size=”initial”][et_pb_column type=”4_4″][et_pb_text background_layout=”light” text_orientation=”left” border_style=”solid” background_position=”top_left” background_repeat=”repeat” background_size=”initial” _builder_version=”3.0.69″]We are a London and New York based business focusing on proactive and reactive Cyber security, welcome to our website! On this website you’ll find cyber security related content, including our collection of Threat Actors which is a database about the top hacker groups around the world, hacking tools for education purposes and always the latest cyber security news from all around the world via our Twitter channel @IndigoDefense, but you can also follow us on Facebook. You’ll also find articles published by us in our blog section.

Jan. 1, 0001

About

The best cyber security and hacking news.