Skip to content

Commit 386f86a

Browse files
chore: update feed state [2026-04-19]
1 parent 320cb98 commit 386f86a

4 files changed

Lines changed: 30 additions & 2 deletions

File tree

logs/urls.txt

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -148,3 +148,5 @@
148148
[2026-04-18] https://www.wiz.io/blog/wiz-iac-inventory
149149
[2026-04-18] https://www.datadoghq.com/blog/governance-console/
150150
[2026-04-18] https://falconforce.nl/northsec-may-2026/
151+
[2026-04-19] https://avi.im/blag/2026/etilqs/
152+
[2026-04-19] https://0xdf.gitlab.io/2026/04/18/htb-airtouch.html
Lines changed: 12 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,12 @@
1+
---
2+
layout: post
3+
title: "HTB: AirTouch"
4+
date: 2026-04-19 03:12:15 +0300
5+
categories: [RSS]
6+
tags: [ctf, wifi, snmp, rce, evil-twin]
7+
toc: true
8+
---
9+
10+
This Hack The Box write-up chains multiple wireless and web weaknesses in a simulated enterprise environment, starting with an SNMP-exposed default consultant password that grants SSH access to a containerized workstation. From there, the attacker captures and cracks a WPA2-PSK handshake, uses the recovered key to decrypt packet captures in Wireshark, and extracts session cookies for a router management interface where a client-side role cookie unlocks an admin upload feature. The web foothold becomes RCE by bypassing a PHP extension filter with a `.phtml` upload, and hardcoded credentials in source code provide the next local pivot. The final stage abuses leaked CA/server certs to run an evil twin AP with eaphammer, capture a PEAP-MSCHAPv2 challenge, crack a user password, and then recover an admin credential from `hostapd`'s `eap_user` file to reach root on the corporate wireless segment.
11+
12+
[Read original article](https://0xdf.gitlab.io/2026/04/18/htb-airtouch.html){: .btn .btn-primary }
Lines changed: 12 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,12 @@
1+
---
2+
layout: post
3+
title: "SQLite prefixes its temp files with `etilqs_`"
4+
date: 2026-04-19 03:12:14 +0300
5+
categories: [RSS]
6+
tags: [sqlite, internals, temp-files, vacuum]
7+
toc: true
8+
---
9+
10+
This post documents a small but concrete SQLite implementation detail: temporary files created during operations like `VACUUM` are prefixed with `etilqs_`, which is simply `sqlite_` spelled backwards. `VACUUM` rebuilds the database into a fresh temporary file to reclaim free space and defragment pages, so the prefix appears in SQLite's temp-file creation path rather than in user-visible database names. The article cites the upstream `src/os.h` comment explaining that SQLite changed the default prefix in 2006 after McAfee-created temp files with `sqlite` in the name caused Windows users to misattribute those files to SQLite and contact the developers. It is mainly useful as implementation and debugging context for anyone studying SQLite-compatible engines or filesystem artifacts produced during database maintenance.
11+
12+
[Read original article](https://avi.im/blag/2026/etilqs/){: .btn .btn-primary }

state/processed_urls.json

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1347,7 +1347,9 @@
13471347
"https://www.sentinelone.com/blog/the-good-the-bad-and-the-ugly-in-cybersecurity-week-16-7/": "2026-04-18",
13481348
"https://www.wiz.io/blog/wiz-iac-inventory": "2026-04-18",
13491349
"https://www.datadoghq.com/blog/governance-console/": "2026-04-18",
1350-
"https://falconforce.nl/northsec-may-2026/": "2026-04-18"
1350+
"https://falconforce.nl/northsec-may-2026/": "2026-04-18",
1351+
"https://avi.im/blag/2026/etilqs/": "2026-04-19",
1352+
"https://0xdf.gitlab.io/2026/04/18/htb-airtouch.html": "2026-04-19"
13511353
},
1352-
"last_updated": "2026-04-18T03:10:53.358550+00:00"
1354+
"last_updated": "2026-04-19T03:12:15.092038+00:00"
13531355
}

0 commit comments

Comments
 (0)