Posts for year 2014
Also available in:
- mach_port_kobject() and the kernel address obfuscation
- iOS Kernel Exploitation Training (April 2015)
- Websecurity-Training February 2015
- SektionEins releases Suhosin 0.9.37
- Drupageddon vs. Suhosin
- Drupal 7.32 two weeks later - PoC
- Pangu jailbreak installs unlicensed code on millions of devices
- Drupal 7.31 pre Auth SQL Injection Vulnerability
- Advisory 01/2014: Drupal - pre Auth SQL Injection Vulnerability
- WebEdition 6.3.8-s1 SQL Injection Vulnerability
- WebEdition 6.3.8-s1 Captcha Remote Code Execution Vulnerability
- SPL ArrayObject/SPLObjectStorage Unserialization Type Confusion Vulnerabilities
- PHP Configuration Hardening
- iOS 7/8 Kernel Exploitation Training (November 2014)
- phpinfo() Type Confusion Infoleak Vulnerability and SSL Private Keys
- iOS 7.1.1 Jailbroken and iOS Kernel Exploitation Trainings
- Application Integration Security Checklist (VoIP Software)
- iOS Malware Campaign "Unflod Baby Panda"
- Apple OSX Mavericks 10.9.x SSL Key Exchange Verification Vulnerability (CVE-2014-1266)
- iOS 7/8 Kernel Exploitation Training (Juli 2014)