Login
FreshRSS
Login
About FreshRSS
Main stream
Favourites (0)
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
http://blog.trendmicro.com/feed
ICS-CERT Alert Feed
Infosec Island Latest Articles
InfoSec Resources
Krebs on Security
McAfee Blogs
Naked Security
News β Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security β Cisco Blog
SecurityFocus News
The first stop for security news | Threatpost
The Hacker News
The Register - Security
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WeLiveSecurity
WIRED
ZDNet | security RSS
Tools
Security Tool Files β Packet Storm
ToolsWatch.org β The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files β Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
/r/netsec - Information Security News & Discussion
/r/netsec - Information Security News & Discussion
Shielder - How to Decrypt Manage Engine PMP Passwords for Fun and Domain Admin - a Red Teaming Tale
September 5
th
2022 at 14:47Β
Shielder - How to Decrypt Manage Engine PMP Passwords for Fun and Domain Admin - a Red Teaming Tale
By
/u/smaury
submitted by
/u/smaury
[link]
[comments]
Related tags
β
r/netsec
September 5
th
2022 at 14:47
/r/netsec - Information Security News & Discussion
Simple IBM i (AS/400) hacking
September 5
th
2022 at 12:06Β
Simple IBM i (AS/400) hacking
By
/u/buherator
submitted by
/u/buherator
[link]
[comments]
Related tags
β
r/netsec
September 5
th
2022 at 12:06
/r/netsec - Information Security News & Discussion
Hacking my Helium Crypto Miner
September 5
th
2022 at 10:53Β
Hacking my Helium Crypto Miner
By
/u/wez32
submitted by
/u/wez32
[link]
[comments]
Related tags
β
r/netsec
September 5
th
2022 at 10:53
/r/netsec - Information Security News & Discussion
Walkthrough of an unauthenticated RCE affecting pfBlockerNG <= 2.1.4_26 (CVE-2022-31814)
September 5
th
2022 at 08:40Β
Walkthrough of an unauthenticated RCE affecting pfBlockerNG <= 2.1.4_26 (CVE-2022-31814)
By
/u/IHTeam
submitted by
/u/IHTeam
[link]
[comments]
Related tags
β
r/netsec
September 5
th
2022 at 08:40
/r/netsec - Information Security News & Discussion
CVE-2022-30190, AKA Follina, Uses Macro-less Word Docs to Drop RCE Files
September 5
th
2022 at 08:13Β
CVE-2022-30190, AKA Follina, Uses Macro-less Word Docs to Drop RCE Files
By
/u/anyore909
submitted by
/u/anyore909
[link]
[comments]
Related tags
β
r/netsec
September 5
th
2022 at 08:13
/r/netsec - Information Security News & Discussion
PoC: resolving dynamically System Service Numbers (SSN) for syscalling in VBA (x64) using FreshyCalls technique
September 5
th
2022 at 08:00Β
PoC: resolving dynamically System Service Numbers (SSN) for syscalling in VBA (x64) using FreshyCalls technique
By
/u/gid0rah
submitted by
/u/gid0rah
[link]
[comments]
Related tags
β
r/netsec
September 5
th
2022 at 08:00
/r/netsec - Information Security News & Discussion
WPHash - Fingerprinting WordPress Plugins, now in public beta and open to feedback and collaboration
September 4
th
2022 at 18:44Β
WPHash - Fingerprinting WordPress Plugins, now in public beta and open to feedback and collaboration
By
/u/_cydave
submitted by
/u/_cydave
[link]
[comments]
Related tags
β
r/netsec
September 4
th
2022 at 18:44
/r/netsec - Information Security News & Discussion
Arti 1.0.0: Rust Tor implementation is ready for production use
September 3
rd
2022 at 18:37Β
Arti 1.0.0: Rust Tor implementation is ready for production use
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
September 3
rd
2022 at 18:37
/r/netsec - Information Security News & Discussion
Fun with Windows Containers - Popping Calc
September 3
rd
2022 at 18:28Β
Fun with Windows Containers - Popping Calc
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
September 3
rd
2022 at 18:28
/r/netsec - Information Security News & Discussion
Chromeloader browser hijacker
September 3
rd
2022 at 17:46Β
Chromeloader browser hijacker
By
/u/CyberMasterV
submitted by
/u/CyberMasterV
[link]
[comments]
Related tags
β
r/netsec
September 3
rd
2022 at 17:46
/r/netsec - Information Security News & Discussion
Practical guide for Golden SAML
September 3
rd
2022 at 04:19Β
Practical guide for Golden SAML
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
September 3
rd
2022 at 04:19
/r/netsec - Information Security News & Discussion
Reviewing macOS Unified Logs
September 3
rd
2022 at 04:17Β
Reviewing macOS Unified Logs
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
September 3
rd
2022 at 04:17
/r/netsec - Information Security News & Discussion
Thereβs Another Hole In Your SoC: Unisoc ROM Vulnerabilities as used in the Motorola Moto E40 / Teclast T40 5G etc. - disclosure timeline is a thing of wonder
September 2
nd
2022 at 18:46Β
Thereβs Another Hole In Your SoC: Unisoc ROM Vulnerabilities as used in the Motorola Moto E40 / Teclast T40 5G etc. - disclosure timeline is a thing of wonder
By
/u/digicat
submitted by
/u/digicat
[link]
[comments]
Related tags
β
r/netsec
September 2
nd
2022 at 18:46
/r/netsec - Information Security News & Discussion
Windows Firmware Attack Surface Reduction (FASR)
September 2
nd
2022 at 18:03Β
Windows Firmware Attack Surface Reduction (FASR)
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
September 2
nd
2022 at 18:03
/r/netsec - Information Security News & Discussion
curlβs TLS fingerprint
September 2
nd
2022 at 17:46Β
curlβs TLS fingerprint
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
September 2
nd
2022 at 17:46
/r/netsec - Information Security News & Discussion
iPhone 11 w/ iBoot & iOS16 emulated on QEMU
September 2
nd
2022 at 16:54Β
iPhone 11 w/ iBoot & iOS16 emulated on QEMU
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
September 2
nd
2022 at 16:54
/r/netsec - Information Security News & Discussion
GraphQL Batching Attacks: Turbo Intruder
September 2
nd
2022 at 11:45Β
GraphQL Batching Attacks: Turbo Intruder
By
/u/_rs
submitted by
/u/_rs
[link]
[comments]
Related tags
β
r/netsec
September 2
nd
2022 at 11:45
/r/netsec - Information Security News & Discussion
CVE-2021-38406 or CISA KEV Catalog Lacks Accountability
September 2
nd
2022 at 10:52Β
CVE-2021-38406 or CISA KEV Catalog Lacks Accountability
By
/u/chicksdigthelongrun
submitted by
/u/chicksdigthelongrun
[link]
[comments]
Related tags
β
r/netsec
September 2
nd
2022 at 10:52
/r/netsec - Information Security News & Discussion
So You Wanna Pwn The Kernel?
September 2
nd
2022 at 10:12Β
So You Wanna Pwn The Kernel?
By
/u/_rs
submitted by
/u/_rs
[link]
[comments]
Related tags
β
r/netsec
September 2
nd
2022 at 10:12
/r/netsec - Information Security News & Discussion
Source Code Management Attack Toolkit - Supports GitHub Enterprise, GitLab Enterprise, & Bitbucket Server
September 2
nd
2022 at 04:20Β
Source Code Management Attack Toolkit - Supports GitHub Enterprise, GitLab Enterprise, & Bitbucket Server
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
September 2
nd
2022 at 04:20
/r/netsec - Information Security News & Discussion
More SRE Lessons for SOC: Release Engineering Ideas
September 2
nd
2022 at 04:11Β
More SRE Lessons for SOC: Release Engineering Ideas
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
September 2
nd
2022 at 04:11
/r/netsec - Information Security News & Discussion
GitHub - RossGeerlings/tio-ad-sync: Group Syncing between Active Directory and Tenable.io, and Automated Access Control
September 1
st
2022 at 14:36Β
GitHub - RossGeerlings/tio-ad-sync: Group Syncing between Active Directory and Tenable.io, and Automated Access Control
By
/u/RossGeerlings
submitted by
/u/RossGeerlings
[link]
[comments]
Related tags
β
r/netsec
September 1
st
2022 at 14:36
/r/netsec - Information Security News & Discussion
SETTLERS OF NETLINK: Exploiting a limited Use After Free in nf_tables (CVE-2022-32250) against the latest Ubuntu (22.04) and Linux kernel 5.15 -
September 1
st
2022 at 09:08Β
SETTLERS OF NETLINK: Exploiting a limited Use After Free in nf_tables (CVE-2022-32250) against the latest Ubuntu (22.04) and Linux kernel 5.15 -
By
/u/digicat
submitted by
/u/digicat
[link]
[comments]
Related tags
β
r/netsec
September 1
st
2022 at 09:08
/r/netsec - Information Security News & Discussion
How I Met Your Beacon: Detection Strategies
September 1
st
2022 at 00:23Β
How I Met Your Beacon: Detection Strategies
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
September 1
st
2022 at 00:23
/r/netsec - Information Security News & Discussion
Linux Audit comes at a cost, is that where BPF steps in?
August 31
st
2022 at 17:40Β
Linux Audit comes at a cost, is that where BPF steps in?
By
/u/Blakebvhjjdd
submitted by
/u/Blakebvhjjdd
[link]
[comments]
Related tags
β
r/netsec
August 31
st
2022 at 17:40
/r/netsec - Information Security News & Discussion
MemLabs: Learn Memory Forensics through CTF-styled labs
August 31
st
2022 at 17:32Β
MemLabs: Learn Memory Forensics through CTF-styled labs
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
August 31
st
2022 at 17:32
/r/netsec - Information Security News & Discussion
Vulnerability in TikTok Android app could lead to one-click account hijacking
August 31
st
2022 at 17:30Β
Vulnerability in TikTok Android app could lead to one-click account hijacking
By
/u/CyberMasterV
submitted by
/u/CyberMasterV
[link]
[comments]
Related tags
β
r/netsec
August 31
st
2022 at 17:30
/r/netsec - Information Security News & Discussion
Open source automated AWS CIS v1.5 benchmark assessment just released by Steampipe.io
August 31
st
2022 at 14:07Β
Open source automated AWS CIS v1.5 benchmark assessment just released by Steampipe.io
By
/u/bobtbot
submitted by
/u/bobtbot
[link]
[comments]
Related tags
β
r/netsec
August 31
st
2022 at 14:07
/r/netsec - Information Security News & Discussion
Announcing the Open Sourcing of Paranoid's Library - Detect well-known weaknesses in large amounts of crypto artifacts, like public keys and digital signatures
August 31
st
2022 at 12:31Β
Announcing the Open Sourcing of Paranoid's Library - Detect well-known weaknesses in large amounts of crypto artifacts, like public keys and digital signatures
By
/u/_rs
submitted by
/u/_rs
[link]
[comments]
Related tags
β
r/netsec
August 31
st
2022 at 12:31
/r/netsec - Information Security News & Discussion
Restricting Libraries in JVM Compute Platforms - Security challenges with Scala and Java libraries
August 31
st
2022 at 12:29Β
Restricting Libraries in JVM Compute Platforms - Security challenges with Scala and Java libraries
By
/u/_rs
submitted by
/u/_rs
[link]
[comments]
Related tags
β
r/netsec
August 31
st
2022 at 12:29
/r/netsec - Information Security News & Discussion
From Onboarding to Offboarding - Securing GitHub Apps Integration
August 31
st
2022 at 11:16Β
From Onboarding to Offboarding - Securing GitHub Apps Integration
By
/u/Hefty_Knowledge_7449
submitted by
/u/Hefty_Knowledge_7449
[link]
[comments]
Related tags
β
r/netsec
August 31
st
2022 at 11:16
/r/netsec - Information Security News & Discussion
CVE-2021-38297 - Technical analysis of a Go WebAssembly vulnerability
August 31
st
2022 at 07:30Β
CVE-2021-38297 - Technical analysis of a Go WebAssembly vulnerability
By
/u/SRMish3
submitted by
/u/SRMish3
[link]
[comments]
Related tags
β
r/netsec
August 31
st
2022 at 07:30
/r/netsec - Information Security News & Discussion
Digging into an NTLM Downgrade Attack
August 31
st
2022 at 05:06Β
Digging into an NTLM Downgrade Attack
By
/u/0xdea
submitted by
/u/0xdea
[link]
[comments]
Related tags
β
r/netsec
August 31
st
2022 at 05:06
/r/netsec - Information Security News & Discussion
MATE: Interactive Program Analysis with Code Property Graphs
August 31
st
2022 at 00:05Β
MATE: Interactive Program Analysis with Code Property Graphs
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
August 31
st
2022 at 00:05
/r/netsec - Information Security News & Discussion
Microsoft ports Windows SymCrypt to Linux, bringing a FIPS certified drop-in module to OpenSSL
August 30
th
2022 at 23:55Β
Microsoft ports Windows SymCrypt to Linux, bringing a FIPS certified drop-in module to OpenSSL
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
August 30
th
2022 at 23:55
/r/netsec - Information Security News & Discussion
Announcing Googleβs Open Source Software Vulnerability Rewards Program
August 30
th
2022 at 23:43Β
Announcing Googleβs Open Source Software Vulnerability Rewards Program
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
August 30
th
2022 at 23:43
/r/netsec - Information Security News & Discussion
Snakes on a Domain: An Analysis of a Python Malware Loader
August 30
th
2022 at 23:29Β
Snakes on a Domain: An Analysis of a Python Malware Loader
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
August 30
th
2022 at 23:29
/r/netsec - Information Security News & Discussion
reinschauer - A PoC to remotely control Windows machines over Websockets.
August 30
th
2022 at 23:00Β
reinschauer - A PoC to remotely control Windows machines over Websockets.
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
August 30
th
2022 at 23:00
/r/netsec - Information Security News & Discussion
Going Atomic: The Strengths and Weaknesses of a Technique-centric Purple Teaming Approach
August 30
th
2022 at 22:50Β
Going Atomic: The Strengths and Weaknesses of a Technique-centric Purple Teaming Approach
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
August 30
th
2022 at 22:50
/r/netsec - Information Security News & Discussion
Bootkitting Windows Sandbox
August 30
th
2022 at 18:44Β
Bootkitting Windows Sandbox
By
/u/mrexodia
submitted by
/u/mrexodia
[link]
[comments]
Related tags
β
r/netsec
August 30
th
2022 at 18:44
/r/netsec - Information Security News & Discussion
hashcathelper: Convenience tool for hashcat - crack NT hashes by taking LM hashes into account; generate analytics for cracked passwords; visualize "SamePassword" clusters in Bloodhound
August 30
th
2022 at 18:15Β
hashcathelper: Convenience tool for hashcat - crack NT hashes by taking LM hashes into account; generate analytics for cracked passwords; visualize "SamePassword" clusters in Bloodhound
By
/u/0xfffffg
submitted by
/u/0xfffffg
[link]
[comments]
Related tags
β
r/netsec
August 30
th
2022 at 18:15
/r/netsec - Information Security News & Discussion
CVE-2022-26113: FortiClient Arbitrary File Write As SYSTEM
August 30
th
2022 at 16:00Β
CVE-2022-26113: FortiClient Arbitrary File Write As SYSTEM
By
/u/hackers_and_builders
submitted by
/u/hackers_and_builders
[link]
[comments]
Related tags
β
r/netsec
August 30
th
2022 at 16:00
/r/netsec - Information Security News & Discussion
Write-up of N-day exploit for CVE-2022-2586: Linux kernel nft_object UAF
August 30
th
2022 at 08:21Β
Write-up of N-day exploit for CVE-2022-2586: Linux kernel nft_object UAF
By
/u/gid0rah
submitted by
/u/gid0rah
[link]
[comments]
Related tags
β
r/netsec
August 30
th
2022 at 08:21
/r/netsec - Information Security News & Discussion
Truth Behind the Celer Network cBridge cross-chain bridge incident: BGP hijacking
August 30
th
2022 at 05:48Β
Truth Behind the Celer Network cBridge cross-chain bridge incident: BGP hijacking
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
August 30
th
2022 at 05:48
/r/netsec - Information Security News & Discussion
Tetsuji: Remote Code Execution on a GameBoy Colour 22 Years Later
August 30
th
2022 at 05:46Β
Tetsuji: Remote Code Execution on a GameBoy Colour 22 Years Later
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
August 30
th
2022 at 05:46
/r/netsec - Information Security News & Discussion
Incident Response in AWS
August 30
th
2022 at 05:41Β
Incident Response in AWS
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
August 30
th
2022 at 05:41
/r/netsec - Information Security News & Discussion
Ethernaut CTF walkthrough with Brownie framework
August 29
th
2022 at 23:02Β
Ethernaut CTF walkthrough with Brownie framework
By
/u/Glittering_Audience8
submitted by
/u/Glittering_Audience8
[link]
[comments]
Related tags
β
r/netsec
August 29
th
2022 at 23:02
/r/netsec - Information Security News & Discussion
jscythe: Abuse the node.js inspector mechanism to force any node.js/electron/v8 based process to execute arbitrary javascript code.
August 29
th
2022 at 19:37Β
jscythe: Abuse the node.js inspector mechanism to force any node.js/electron/v8 based process to execute arbitrary javascript code.
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
August 29
th
2022 at 19:37
/r/netsec - Information Security News & Discussion
Part 1 β SingPass RASP Analysis
August 29
th
2022 at 16:20Β
Part 1 β SingPass RASP Analysis
By
/u/jeandrew
submitted by
/u/jeandrew
[link]
[comments]
Related tags
β
r/netsec
August 29
th
2022 at 16:20
/r/netsec - Information Security News & Discussion
Blind exploits to rule WatchGuard firewalls: pre-auth RCE as root on WG appliances
August 29
th
2022 at 14:22Β
Blind exploits to rule WatchGuard firewalls: pre-auth RCE as root on WG appliances
By
/u/cfambionics
submitted by
/u/cfambionics
[link]
[comments]
Related tags
β
r/netsec
August 29
th
2022 at 14:22
/r/netsec - Information Security News & Discussion
A technical analysis of Pegasus for Android β Part 1
August 29
th
2022 at 13:03Β
A technical analysis of Pegasus for Android β Part 1
By
/u/CyberMasterV
submitted by
/u/CyberMasterV
[link]
[comments]
Related tags
β
r/netsec
August 29
th
2022 at 13:03
/r/netsec - Information Security News & Discussion
Vision2 this script analyses the Nmap XML scanning results parses each CPE context and correlates to search CVE on NIST. You can use that to find public vulnerabilities in services.
August 29
th
2022 at 02:53Β
Vision2 this script analyses the Nmap XML scanning results parses each CPE context and correlates to search CVE on NIST. You can use that to find public vulnerabilities in services.
By
/u/CoolerVoid
submitted by
/u/CoolerVoid
[link]
[comments]
Related tags
β
r/netsec
August 29
th
2022 at 02:53
/r/netsec - Information Security News & Discussion
On Cryptocurrency Wallet Design β defines access control taxonomy, can be reused e.g. for MFA factors
August 28
th
2022 at 07:28Β
On Cryptocurrency Wallet Design β defines access control taxonomy, can be reused e.g. for MFA factors
By
/u/D4r1
submitted by
/u/D4r1
[link]
[comments]
Related tags
β
r/netsec
August 28
th
2022 at 07:28
/r/netsec - Information Security News & Discussion
SATisfying our way into remote code execution in the OPC UA industrial stack
August 28
th
2022 at 06:36Β
SATisfying our way into remote code execution in the OPC UA industrial stack
By
/u/SRMish3
submitted by
/u/SRMish3
[link]
[comments]
Related tags
β
r/netsec
August 28
th
2022 at 06:36
/r/netsec - Information Security News & Discussion
Command Injection in the GitHub Pages Build Pipeline
August 27
th
2022 at 15:48Β
Command Injection in the GitHub Pages Build Pipeline
By
/u/whisperingmime
submitted by
/u/whisperingmime
[link]
[comments]
Related tags
β
r/netsec
August 27
th
2022 at 15:48
/r/netsec - Information Security News & Discussion
The Elastic Container Project for Security Research
August 27
th
2022 at 00:43Β
The Elastic Container Project for Security Research
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
August 27
th
2022 at 00:43
/r/netsec - Information Security News & Discussion
Microsoft: New UEFI CA memory mitigation requirements for signing
August 27
th
2022 at 00:43Β
Microsoft: New UEFI CA memory mitigation requirements for signing
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
August 27
th
2022 at 00:43
/r/netsec - Information Security News & Discussion
Matano - An open source serverless security lake platform for AWS using Rust + Apache Iceberg
August 26
th
2022 at 22:20Β
Matano - An open source serverless security lake platform for AWS using Rust + Apache Iceberg
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
β
r/netsec
August 26
th
2022 at 22:20
/r/netsec - Information Security News & Discussion
Tool Release β JWT-Reauth - a plugin aims to provide a painless solution to this issue. JWT-Reauth provides Burp with a way to authenticate with a given endpoint, parse out the provided token and then attach it as a header on requests going to a given s
August 26
th
2022 at 12:40Β
Tool Release β JWT-Reauth - a plugin aims to provide a painless solution to this issue. JWT-Reauth provides Burp with a way to authenticate with a given endpoint, parse out the provided token and then attach it as a header on requests going to a given s
By
/u/digicat
submitted by
/u/digicat
[link]
[comments]
Related tags
β
r/netsec
August 26
th
2022 at 12:40
/r/netsec - Information Security News & Discussion
Security in Advanced Analytics and Machine Learning Environments
August 26
th
2022 at 07:07Β
Security in Advanced Analytics and Machine Learning Environments
By
/u/Preatoria
submitted by
/u/Preatoria
[link]
[comments]
Related tags
β
r/netsec
August 26
th
2022 at 07:07
Load more articles