Скачать или смотреть 071 - Speculation in Predictive Store Forwarding, Broken Fixes, and Owning Rocket.Chat

071 - Speculation in Predictive Store Forwarding, Broken Fixes, and Owning Rocket.Chat

Скачать 071 - Speculation in Predictive Store Forwarding, Broken Fixes, and Owning Rocket.Chat бесплатно в качестве 4к (2к / 1080p)

У нас вы можете скачать бесплатно 071 - Speculation in Predictive Store Forwarding, Broken Fixes, and Owning Rocket.Chat или посмотреть видео с ютуба в максимальном доступном качестве.

Для скачивания выберите вариант из формы ниже:

Информация по загрузке:

Cкачать музыку 071 - Speculation in Predictive Store Forwarding, Broken Fixes, and Owning Rocket.Chat бесплатно в формате MP3:

Если иконки загрузки не отобразились, ПОЖАЛУЙСТА, НАЖМИТЕ ЗДЕСЬ или обновите страницу
Если у вас возникли трудности с загрузкой, пожалуйста, свяжитесь с нами по контактам, указанным в нижней части страницы.
Спасибо за использование сервиса video2dn.com

Описание к видео 071 - Speculation in Predictive Store Forwarding, Broken Fixes, and Owning Rocket.Chat

One episode and several failed attempts to fix vulnerabilities, an interesting Rocket.Chat XSS and an exploitable TXT file abusing some weird features.

The DAY[0] podcast is streamed live on Twitch every Monday afternoon at 3:pm EST -- / dayzerosec

The audio-only version of the podcast is available on:
-- Spotify: https://open.spotify.com/show/4NKCxk8...
-- Apple Podcasts: https://podcasts.apple.com/us/podcast...
-- Google Podcasts: https://www.google.com/podcasts?feed=...
-- Other audio platforms can be found at https://anchor.fm/dayzerosec

You can also join our discord: / discord
Or follow us on Twitter (@dayzerosec) to know when new releases are coming.

[00:00:00] Introduction
[00:00:46] nOtWASP bottom 10: vulnerabilities that make you cry
https://portswigger.net/research/notw...
[00:07:28] Click here for free TV! - Chaining bugs to takeover Wind Vision accounts
https://labs.f-secure.com/blog/wind-v...
[00:15:28] Elevate Yourself to Admin in Umbraco CMS 8.9.0 (CVE-2020-29454)
https://www.trustwave.com/en-us/resou...
[00:23:19] "netmask" npm package vulnerable to octal input data [CVE-2021-28918]
https://sick.codes/universal-netmask-...
[00:28:38] [HackerOne] Jira integration plugin Leaked JWT
https://hackerone.com/reports/1103582
[00:33:20] [Kaspersky] A vulnerability in KAVKIS 2020 products family allows full disabling of protection
https://hackerone.com/reports/870615
[00:38:06] [Rocket.Chat] Account takeover via XSS
https://hackerone.com/reports/735638
[00:43:18] This man thought opening a TXT file is fine, he thought wrong. macOS [CVE-2019-8761]
https://www.paulosyibelo.com/2021/04/...
[00:52:41] Who Contains the Containers?
https://googleprojectzero.blogspot.co...
[01:06:11] Getting Code Execution on Apache Druid [CVE-2021-25646]
https://www.thezdi.com/blog/2021/3/25...
[01:12:59] Security Analysis of AMD Predictive Store Forwarding
https://www.amd.com/system/files/docu...
[01:19:58] Pluralsight free for April
https://www.pluralsight.com/
[01:21:54] Pwn2Own 2021
https://www.zerodayinitiative.com/blo...

Комментарии

Информация по комментариям в разработке