🐝 Hive Five 134: Smashing the State Machine

Hi friends,

Greetings from the hive!

Seeing everyone having a good time at Hacker Summer Camp definitely resulted in some FOMO. Though, knowing that you’re having a good time is good enough for me.

What was your favorite DEFCON 31 moment?

Let’s take this week by swarm!

🐝 The Bee’s Knees

1. Phishing the anti-phishers: Exploiting anti-phishing tools for internal access. Anti-phishing tools and products are used widely at various enterprises to prevent malicious emails from landing in employees’ inboxes. more

2. Recordings of Security BSides Las Vegas 2023 with talks by Leif Dreizler, Phyllip Wylie, Christina Liu, and many more. more

3. Black Hat USA 2023 slides, including STÖK’s Weaponizing Plain Text ANSI Escape Sequences as a Forensic Nightmare talk. more

4. Smashing the state machine: the true potential of web race conditions. For too long, web race condition attacks have focused on a tiny handful of scenarios. Their true potential has been masked thanks to tricky workflows, missing tooling, and simple network jitter hiding all but the most trivial, obvious examples. more

5. Cookieless DuoDrop: IIS Auth Bypass & App Pool Privesc in ASP.NET Framework (CVE-2023-36899). In modern web development, while cookies are the go-to method for transmitting session IDs, the .NET Framework also provides an alternative: encoding the session ID directly in the URL. more

Which Bee’s Knees was your favorite? Reply with the number (#1, #2, #3, #4, or #5)!

️💪 Sponsor

Sponsor the Hive Five and reach a highly engaged community of engineers, security researchers, and ethical hackers who are at the forefront of the industry.

🔥 Buzzworthy

✅ Changelog

1. Noir v0.3.0 is an attack surface detector form source code. more

2. Deadfinder v1.3.2 finds dead-links (broken links). more

3. TruffleHog announces a Terminal UI. more

🎉 Celebrate

1. Tuan’s first time coming to the US was a success. Congrats on everything! more

2. NahamSec et al bug bounty meet up was a great success. Awesome! more

3. Adam is at DEFCON, a dream he’s had since he was 16 (23 years ago). LFG! more

4. zseano’s mentee, Paul, earned a big bounty. Let’s go! more

5. New inductees to the HackerOne Elite. Amazing! more

💰 Career

1. The cheat code to master your craft — These are great! The last step, applying what you learn, is arguably the most important. more

2. From Unemployed To Incident Responder. Mina, a MDR Analyst at Rapid7, talks about how he got into cybersecurity and the daily life of incident response. more

⚡️ Community

1. Goons protect everyone equally: “If you fall, we pick you up. If you’re scared, we’ll secure you. Without question.” more

2. Renniepak is thinking about creating an eSports team for hacking. more

3. Nagli is killing it in the Vegas poker scene. more

📰 Read

1. Vulnerabilities in Sogou Keyboard encryption expose keypresses to network eavesdropping. more

2. Universal and Transferable Attacks on Aligned Language Models. Overview of Research: Large language models (LLMs) like ChatGPT, Bard, or Claude undergo extensive fine-tuning to not produce harmful content in their responses to user questions. more | paper | repo

3. VS Code’s Token Security: Keeping Your Secrets… Not So Secretly. This is the full story of the vulnerability within Visual Studio Code (VS Code) concerning the handling of secure token storage. more

4. Finding and Exploiting Citrix NetScaler Buffer Overflow (CVE-2023-3519) (Part 3). A lot has been written about the recent Citrix NetScaler buffer overflow. In the initial rush to get information and platform checks out to customers, some details may not have been fully explained. more

5. Downfall Attacks target a critical weakness found in billions of modern processors used in personal and cloud computers. This vulnerability, identified as CVE-2022-40982, enables a user to access and steal data from other users who share the same computer. more

🙏 Support

Enjoy reading the Hive Five? You can treat me to a coffee!

You can also share the newsletter with your friends.

💡 Tips

1. Gareth on hacking: “Don’t look for bugs, looks for differences. Use the differences to find bugs!” more

2. Sherrod shared a group dinner tip: one person pays with their card and the rest Venmo’s is back to the payer. more

3. Mustafa shares a WordPress plugins code review tip: “Always check the usage of esc_like and whereRaw for the SQL queries.” more

4. Ways to enumerate UUIDs for UUID-based IDORs. more

5. Justin shares routes to RCE, ranging from SSRF to Binary Exploitation. more

🍯 Follow

Awesome accounts to follow. Randomly selected from my curated Twitter lists.

1. @tarah | Tarah M. Wheeler | CEO @RedQueenDyn | Sr Flw @CFR_org | deviantollam | she/her.

2. @strandjs | strandjs | I will light the way by the bridges I burn.Retired Senior SANS InstructorIANS FacultyBlack Hills Information Security Active Countermeasures.

3. @alexjoverm | Alex Jover Morales | Nomad-soul human | Communication | Comedy DevRel @storyblok | @VueDose creator | @vuejs team | @vueday & @alicantefront co-org.

4. @Congon4tor | Congon4tor | In love with hacking.CTF creator and security researcher.

5. @gatebreachers | Gatebreachers | “Promoting Gender Inclusivity in Cyber Security.”

🚀 Productivity

1. Three questions determine 99% of the happiness in your life. Everything else is noise. more

2. Shaan’s New Year’s Resolutions framework — I’m going to try this one. more

3. Speed up your Obsidian workflow with these 3 shortcuts. more

4. People’s favorite methodologies for organizing digital life. more

5. The power of in-person Masterminds. Mastermind groups have been experiencing a growing popularity, particularly in the personal development and entrepreneurial communities. more

Get $200 to try DigitalOcean. Level up your bug bounty game with the ultimate VPS solution. It’s my go-to for all recon, automation, and even VPN needs. Get access to a comprehensive range of cloud resources, all at an affordable price.

🌐 Technology

1. A popular custom instruction for ChatGPT that makes it more accurate. more

2. AntonOsika/gpt-engineer allows you to specify what you want it to build, the AI asks for clarification, and then builds it. more

3. What helps people get comfortable on the command line: reducing risks, motivation, and resources. more

4. The rise of Product and Platform Engineers. The divide between frontend and backend engineers is increasingly less useful: Frontend developers are no longer just writing HTML, CSS, and JavaScript. more

5. OpenAI has published information about its new web crawler named GPTBot. more

🧠 Wisdom

1. Steph on feeling secure once she had complete confidence she could create things that people wanted. more

2. Nathaniel on breaking tasks down: “100 critical bugs is a million dollars.” more

💛 Cross-pollination

1. GuessMyMovie.com helps you find movies by leveraging OpenAI’s GPT. This is its superpower, and its weakness. It may on occasion, hallucinate scenes or characters that don’t exist. more

2. FanaHOVA/smol-podcaster can take care of most of your podcasting transcription work. more

3. Julia shares some awesome tactics for writing in public. more

4. Don’t delegate understanding. more

5. Strangers meet without seeing each other: Pure Impressions Episode 4. more

🐝 Fact

Important beekeeping inventions and new equipment in the later nineteenth century:

• JAN DZIERZON (Poland) 1848: Inventor of the first movable-frame side-opening hive.

• LORENZO L. LANGSTROTH (USA) 1852: Movable-frame hive with frames that didn’t touch each other, enabling the frames to be easily removed.

• JAN MEHRING (Holland) 1857: Manufacture of wax foundation (fitted to the removable frames inside a hive to encourage bees to build their honeycomb) by pressing pure beeswax between metal rollers.

• ABBE COLLIN (France) 1865: Perforated queen excluders that confined the queen to the brood chamber (lower hive box) and enabled the worker bees to enter the supers (upper hive boxes).

• FRANCESCA DE HRUSCHKA (Italy) 1865: Development of a tangential centrifugal honey extractor.

• A. GRIM (USA) 1870: Practice of large-scale transportation of queens from Europe to the USA.

• FREDERIC WEISS (USA) 1873: The roller foundation mill.

• T. W. COWAN (UK) 1875: Development of a self-reversing, radial centrifugal honey extractor.

• MOSES QUINBY (USA) 1875: Development of a smoker with improved bellows.

• E. C. PORTER (USA) 1891: Effective bee escape to enable bees to be cleared from honey supers (upper-hive boxes) before extraction.

• E. B. WEED (USA) 1892: Perfected production of beeswax sheets using long rollers.

This bee fact is brought to you by The Beekeeper’s Bible: Bees, Honey, Recipes & Other Home Uses.

Subscribe to the Hive Five to read the rest.