Research Guides: Primary Sources: A Research Guide: Open Access
Research Guides: Primary Sources: A Research Guide: Open Access
Open link in next tab
Research Guides: Primary Sources: A Research Guide: Open Access
https://umb.libguides.com/PrimarySources/openaccess
including American Memory
Q2'23 ThinkstScapes Infosec research review
Open link in next tab
https://s3.eu-west-1.amazonaws.com/www.thinkst.com/thinkstscapes/ThinkstScapes-2023-Q2-lowres.pdf
RowPress: Amplifying Read Disturbance in Modern DRAM Chips
Open link in next tab
https://people.inf.ethz.ch/omutlu/pub/RowPress_isca23.pdf
WWDC23: Passkeys
Open link in next tab
WWDC23: Passkeys
https://blog.millerti.me/2023/06/10/wwdc23-passkeys/
All the passkeys news not fit to print or film or whatever
BChecks (SDL for defining custom scans) available in Burp 2023.6
Open link in next tab
BChecks worked examples
https://portswigger.net/burp/documentation/scanner/bchecks/worked-examples
BChecks are defined by importing .bcheck files into Burp Suite Professional. This section provides some example definitions that correspond to real-world ...
Every Signature is Broken: On the Insecurity of Microsoft Office’s OOXML Signatures
Every Signature is Broken: On the Insecurity of Microsoft Office’s OOXML Signatures
Open link in next tab
https://www.usenix.org/system/files/sec23summer_235-rohlmann-prepub.pdf
CS:GO: From Zero to 0-day
Open link in next tab
CS:GO: From Zero to 0-day
https://neodyme.io/blog/csgo_from_zero_to_0day/
We identified three independent remote code execution (RCE) vulnerabilities in the popular Counter-Strike: Global Offensive game. Each vulnerability can be triggered when the game client connects to our malicious python CS:GO server. This post details our journey through the CS:GO binary and conducts a technical deep dive into various identified bugs. We conclude by presenting a proof of concept (POC) exploit that leverages four different logic bugs into remote code execution in the game's client, triggered when a client connects to the server.
Side projects for May/June 2023 (🔒podcast)
Open link in next tab
Lockpodcast
https://video.infosec.exchange/w/aPvr3YJdzsyuPrUss8WQpk
Lockpodcast is a podcast made by @mj@treehouse.systems I wanted to play around with some video editing so I decided to try making some video with it. You can find it here. https://lockpodcast.com
What's your side project of a month?
If you're working on a research or side project, this is your platform to share your findings, roadblocks, breakthroughs, and more. Doesn't matter if it's still a work in progress or has been recently published - all stages of research are welcome.
Maybe you're not actively researching, but you're closely following an interesting development in the industry or a certain researcher's work - feel free to share that here too!
Or perhaps, you've got an idea for a project or research you wish to undertake, but need resources, collaborators, or simply some guidance - let the community know.
Here's a simple guideline to kickstart the conversation:
- What's the research about? (Give a brief overview of the project or topic)
- Current progress/Findings (If applicable)
- Challenges and roadblocks (What issues are you facing or expect to face?)
- Help needed (Are you looking for collaborators, resources, advice, etc.?)