#security (2022-10)

Archive: https://archive.sweetops.com/security/

2022-10-19

venkata.mutyala avatar
venkata.mutyala
03:47:26 PM

I haven’t tested this yet but looks like a quick way to pen test your AWS accounts: https://github.com/BishopFox/cloudfox

BishopFox/cloudfox

Automating situational awareness for cloud penetration tests.

Allan Swanepoel avatar
Allan Swanepoel
06:26:21 PM

We’ve run some early experiments with it

Allan Swanepoel avatar
Allan Swanepoel
06:26:43 PM

combining it with Ghidra

Soren Jensen avatar
Soren Jensen
07:01:47 PM

Any write up on how you did it and what the results were?

2022-10-28

Allan Swanepoel avatar
Allan Swanepoel
06:25:28 PM

https://security.humanativaspa.it/automating-binary-vulnerability-discovery-with-ghidra-and-semgrep/

@Soren Jensen - this is as close to what I can share at the minute - working with our team on a broader writeup

Automating binary vulnerability discovery with Ghidra and Semgrep - hn securityattachment image

“Some details are more important than […]

Soren Jensen avatar
Soren Jensen
05:01:25 PM

Thanks, much appreciated

Automating binary vulnerability discovery with Ghidra and Semgrep - hn securityattachment image

“Some details are more important than […]

2022-10-29

    keyboard_arrow_up