Podcast Detail

SQL Injection and Python; FortiSIEM RCE PoC; Bitlocker Ransomware; iconv (glibc) and MacOS PoC; @Horizon3ai @WangTielei

If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://chrt.fm/track/2748D7/https://traffic.libsyn.com/securitypodcast/9000.mp3

Podcast Logo
SANS Daily Network Security Podcast (Stormcast) for Wednesday, May 29th, 2024
00:00

My Next Class

… more classes

Interested in Internet Storm Center stickers? Check here if there are still some available for today.

Preventing SQL Injection with Python
https://www.youtube.com/watch?v=1cQy9N1Xndk

PoC Exploit for CVE-2024-23108 in Fortinet FortiSIEM
https://www.horizon3.ai/attack-research/cve-2024-23108-fortinet-fortisiem-2nd-order-command-injection-deep-dive/

ShrinkLocker: Turning BitLocker into ransomware
https://securelist.com/ransomware-abuses-bitlocker/112643/

iconv buffer overflow PoC 2024-2961
https://github.com/ambionics/cnext-exploits/

PoC for Apple Priv. Escalation bug CVE-2024-27842
https://github.com/wangtielei/POCs/tree/main/CVE-2024-27842
https://x.com/WangTielei