Login
FreshRSS
Login
About FreshRSS
Main stream
Favourites (0)
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
http://blog.trendmicro.com/feed
ICS-CERT Alert Feed
Infosec Island Latest Articles
InfoSec Resources
Krebs on Security
McAfee Blogs
Naked Security
News โ Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security โ Cisco Blog
SecurityFocus News
The first stop for security news | Threatpost
The Hacker News
The Register - Security
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WeLiveSecurity
WIRED
ZDNet | security RSS
Tools
Security Tool Files โ Packet Storm
ToolsWatch.org โ The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files โ Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
/r/netsec - Information Security News & Discussion
/r/netsec - Information Security News & Discussion
Open Source drop - Evil OIDC Server for SSRF testing from Doyensec. Helpful for testers and bug bounty.
October 20
th
2022 at 15:18ย
Open Source drop - Evil OIDC Server for SSRF testing from Doyensec. Helpful for testers and bug bounty.
By
/u/ds_at
submitted by
/u/ds_at
[link]
[comments]
Related tags
โ
r/netsec
October 20
th
2022 at 15:18
/r/netsec - Information Security News & Discussion
Reverse Engineering the Apple MultiPeer Connectivity Framework
October 20
th
2022 at 14:47ย
Reverse Engineering the Apple MultiPeer Connectivity Framework
By
/u/juken
submitted by
/u/juken
[link]
[comments]
Related tags
โ
r/netsec
October 20
th
2022 at 14:47
/r/netsec - Information Security News & Discussion
Untangling Azure Active Directory Principals & Access Permissions
October 20
th
2022 at 06:40ย
Untangling Azure Active Directory Principals & Access Permissions
By
/u/0xcsandker
submitted by
/u/0xcsandker
[link]
[comments]
Related tags
โ
r/netsec
October 20
th
2022 at 06:40
/r/netsec - Information Security News & Discussion
Fantastic Rootkits: And Where to Find Them (Part 1)
October 20
th
2022 at 01:00ย
Fantastic Rootkits: And Where to Find Them (Part 1)
By
/u/jat0369
submitted by
/u/jat0369
[link]
[comments]
Related tags
โ
r/netsec
October 20
th
2022 at 01:00
/r/netsec - Information Security News & Discussion
Telerik Revist - New Exploit Tool
October 19
th
2022 at 18:22ย
Telerik Revist - New Exploit Tool
By
/u/aconite33
submitted by
/u/aconite33
[link]
[comments]
Related tags
โ
r/netsec
October 19
th
2022 at 18:22
/r/netsec - Information Security News & Discussion
HTTP/3 connection contamination: an upcoming threat
October 19
th
2022 at 13:31ย
HTTP/3 connection contamination: an upcoming threat
By
/u/albinowax
submitted by
/u/albinowax
[link]
[comments]
Related tags
โ
r/netsec
October 19
th
2022 at 13:31
/r/netsec - Information Security News & Discussion
Wireless Penetration Testing complete Repo
October 19
th
2022 at 13:28ย
Wireless Penetration Testing complete Repo
By
/u/lutzenfried
submitted by
/u/lutzenfried
[link]
[comments]
Related tags
โ
r/netsec
October 19
th
2022 at 13:28
/r/netsec - Information Security News & Discussion
Detecting and mitigating CVE-2022-42889 a.k.a. Text4shell
October 19
th
2022 at 13:18ย
Detecting and mitigating CVE-2022-42889 a.k.a. Text4shell
By
/u/MiguelHzBz
submitted by
/u/MiguelHzBz
[link]
[comments]
Related tags
โ
r/netsec
October 19
th
2022 at 13:18
/r/netsec - Information Security News & Discussion
Hara-Kirin: Dissecting the Privileged Components of Huawei Mobile Devices (Hexacon 2022)
October 19
th
2022 at 11:24ย
Hara-Kirin: Dissecting the Privileged Components of Huawei Mobile Devices (Hexacon 2022)
By
/u/M0t0k0Kus4n4g1
submitted by
/u/M0t0k0Kus4n4g1
[link]
[comments]
Related tags
โ
r/netsec
October 19
th
2022 at 11:24
/r/netsec - Information Security News & Discussion
Microsoft Office Online Server Remote Code Execution
October 19
th
2022 at 09:11ย
Microsoft Office Online Server Remote Code Execution
By
/u/gid0rah
submitted by
/u/gid0rah
[link]
[comments]
Related tags
โ
r/netsec
October 19
th
2022 at 09:11
/r/netsec - Information Security News & Discussion
The Danger of Falling to System Role in AWS SDK Client
October 19
th
2022 at 09:07ย
The Danger of Falling to System Role in AWS SDK Client
By
/u/nibblesec
submitted by
/u/nibblesec
[link]
[comments]
Related tags
โ
r/netsec
October 19
th
2022 at 09:07
/r/netsec - Information Security News & Discussion
CVE-2022-42889: Apache Commons Text prior to 1.10.0 allows RCE (CVSS9.8), aka "Text4Shell"
October 19
th
2022 at 08:47ย
CVE-2022-42889: Apache Commons Text prior to 1.10.0 allows RCE (CVSS9.8), aka "Text4Shell"
By
/u/qwerty0x41
submitted by
/u/qwerty0x41
[link]
[comments]
Related tags
โ
r/netsec
October 19
th
2022 at 08:47
/r/netsec - Information Security News & Discussion
Azure function to insert MISP data into Azure Sentinel
October 19
th
2022 at 08:30ย
Azure function to insert MISP data into Azure Sentinel
By
/u/wez32
submitted by
/u/wez32
[link]
[comments]
Related tags
โ
r/netsec
October 19
th
2022 at 08:30
/r/netsec - Information Security News & Discussion
A New Attack Surface on MS Exchange Part 4 - ProxyRelay
October 19
th
2022 at 06:07ย
A New Attack Surface on MS Exchange Part 4 - ProxyRelay
By
/u/CyberMasterV
submitted by
/u/CyberMasterV
[link]
[comments]
Related tags
โ
r/netsec
October 19
th
2022 at 06:07
/r/netsec - Information Security News & Discussion
PHP filters chain: What is it and how to use it - convert almost any file inclusion to RCE
October 19
th
2022 at 00:57ย
PHP filters chain: What is it and how to use it - convert almost any file inclusion to RCE
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
โ
r/netsec
October 19
th
2022 at 00:57
/r/netsec - Information Security News & Discussion
Jetstack Paranoia: A New Open Source Tool for Container Image Security
October 18
th
2022 at 21:30ย
Jetstack Paranoia: A New Open Source Tool for Container Image Security
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
โ
r/netsec
October 18
th
2022 at 21:30
/r/netsec - Information Security News & Discussion
Enrich Splunk events with Steampipe
October 18
th
2022 at 19:50ย
Enrich Splunk events with Steampipe
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
โ
r/netsec
October 18
th
2022 at 19:50
/r/netsec - Information Security News & Discussion
Our new scanner for Text4Shell
October 18
th
2022 at 19:31ย
Our new scanner for Text4Shell
By
/u/dn3t
submitted by
/u/dn3t
[link]
[comments]
Related tags
โ
r/netsec
October 18
th
2022 at 19:31
/r/netsec - Information Security News & Discussion
Introducing fine-grained personal access tokens for GitHub
October 18
th
2022 at 19:29ย
Introducing fine-grained personal access tokens for GitHub
By
/u/0x414141
submitted by
/u/0x414141
[link]
[comments]
Related tags
โ
r/netsec
October 18
th
2022 at 19:29
/r/netsec - Information Security News & Discussion
Defenders beware: A case for post-ransomware investigations
October 18
th
2022 at 19:19ย
Defenders beware: A case for post-ransomware investigations
By
/u/SCI_Rusher
submitted by
/u/SCI_Rusher
[link]
[comments]
Related tags
โ
r/netsec
October 18
th
2022 at 19:19
/r/netsec - Information Security News & Discussion
Opening the doors and windows 0-click RCE on the Tesla Model3
October 18
th
2022 at 18:20ย
Opening the doors and windows 0-click RCE on the Tesla Model3
By
/u/jeandrew
submitted by
/u/jeandrew
[link]
[comments]
Related tags
โ
r/netsec
October 18
th
2022 at 18:20
/r/netsec - Information Security News & Discussion
CVE-2022-42889 (Text4Shell) OSS detector - Finds possibly vulnerable JAR files
October 18
th
2022 at 15:49ย
CVE-2022-42889 (Text4Shell) OSS detector - Finds possibly vulnerable JAR files
By
/u/SRMish3
submitted by
/u/SRMish3
[link]
[comments]
Related tags
โ
r/netsec
October 18
th
2022 at 15:49
/r/netsec - Information Security News & Discussion
A Detailed Analysis of the Gafgyt Malware Targeting IoT Devices [PDF]
October 18
th
2022 at 14:24ย
A Detailed Analysis of the Gafgyt Malware Targeting IoT Devices [PDF]
By
/u/CyberMasterV
submitted by
/u/CyberMasterV
[link]
[comments]
Related tags
โ
r/netsec
October 18
th
2022 at 14:24
/r/netsec - Information Security News & Discussion
Recovering Web Tokens From Office
October 18
th
2022 at 07:19ย
Recovering Web Tokens From Office
By
/u/gid0rah
submitted by
/u/gid0rah
[link]
[comments]
Related tags
โ
r/netsec
October 18
th
2022 at 07:19
/r/netsec - Information Security News & Discussion
A journey of fuzzing Nvidia graphic driver leading to LPE exploitation
October 17
th
2022 at 13:38ย
A journey of fuzzing Nvidia graphic driver leading to LPE exploitation
By
/u/jeandrew
submitted by
/u/jeandrew
[link]
[comments]
Related tags
โ
r/netsec
October 17
th
2022 at 13:38
/r/netsec - Information Security News & Discussion
Toner Deaf โ Printing your next persistence (Hexacon 2022)
October 17
th
2022 at 09:27ย
Toner Deaf โ Printing your next persistence (Hexacon 2022)
By
/u/digicat
submitted by
/u/digicat
[link]
[comments]
Related tags
โ
r/netsec
October 17
th
2022 at 09:27
/r/netsec - Information Security News & Discussion
How a Microsoft blunder opened millions of PCs to potent malware attacks
October 15
th
2022 at 09:52ย
How a Microsoft blunder opened millions of PCs to potent malware attacks
By
/u/0xdea
submitted by
/u/0xdea
[link]
[comments]
Related tags
โ
r/netsec
October 15
th
2022 at 09:52
/r/netsec - Information Security News & Discussion
FortiOS, FortiProxy, and FortiSwitchManager Authentication Bypass Technical Deep Dive (CVE-2022-40684) + PoC
October 14
th
2022 at 05:48ย
FortiOS, FortiProxy, and FortiSwitchManager Authentication Bypass Technical Deep Dive (CVE-2022-40684) + PoC
By
/u/mrkoot
submitted by
/u/mrkoot
[link]
[comments]
Related tags
โ
r/netsec
October 14
th
2022 at 05:48
/r/netsec - Information Security News & Discussion
Regulator: A unique method of subdomain enumeration
October 16
th
2022 at 17:41ย
Regulator: A unique method of subdomain enumeration
By
/u/Quick-Ingenuity-7024
submitted by
/u/Quick-Ingenuity-7024
[link]
[comments]
Related tags
โ
r/netsec
October 16
th
2022 at 17:41
/r/netsec - Information Security News & Discussion
[PDF] Security Deep-Dive Into The Internals Of NetBackup - AirbusSecLab@Hexacon
October 14
th
2022 at 17:40ย
[PDF] Security Deep-Dive Into The Internals Of NetBackup - AirbusSecLab@Hexacon
By
/u/alain_proviste
submitted by
/u/alain_proviste
[link]
[comments]
Related tags
โ
r/netsec
October 14
th
2022 at 17:40
/r/netsec - Information Security News & Discussion
Microsoft Office 365 Message Encryption Insecure Mode of Operation
October 14
th
2022 at 10:09ย
Microsoft Office 365 Message Encryption Insecure Mode of Operation
By
/u/kekw32
submitted by
/u/kekw32
[link]
[comments]
Related tags
โ
r/netsec
October 14
th
2022 at 10:09
/r/netsec - Information Security News & Discussion
Exploiting predictable UUID/GUID values
October 14
th
2022 at 08:39ย
Exploiting predictable UUID/GUID values
By
/u/dcthatch
submitted by
/u/dcthatch
[link]
[comments]
Related tags
โ
r/netsec
October 14
th
2022 at 08:39
/r/netsec - Information Security News & Discussion
Adobe Reader - XFA - ANSI-Unicode Confusion Information Leak
October 14
th
2022 at 06:50ย
Adobe Reader - XFA - ANSI-Unicode Confusion Information Leak
By
/u/hacksysteam
submitted by
/u/hacksysteam
[link]
[comments]
Related tags
โ
r/netsec
October 14
th
2022 at 06:50
/r/netsec - Information Security News & Discussion
PiRogue Tool Suite Mobile forensic & network analysis on a Raspberry Pie
October 13
th
2022 at 18:59ย
PiRogue Tool Suite Mobile forensic & network analysis on a Raspberry Pie
By
/u/ResponsibleCat
submitted by
/u/ResponsibleCat
[link]
[comments]
Related tags
โ
r/netsec
October 13
th
2022 at 18:59
/r/netsec - Information Security News & Discussion
How to Investigate Insider Threats (Forensic Methodology)
October 13
th
2022 at 14:43ย
How to Investigate Insider Threats (Forensic Methodology)
By
/u/CyberMasterV
submitted by
/u/CyberMasterV
[link]
[comments]
Related tags
โ
r/netsec
October 13
th
2022 at 14:43
/r/netsec - Information Security News & Discussion
RPC Toolkit - security research oriented resources on MS-RPC (articles, PoCs, vulnerability write-ups, tools, etc.)
October 13
th
2022 at 09:35ย
RPC Toolkit - security research oriented resources on MS-RPC (articles, PoCs, vulnerability write-ups, tools, etc.)
By
/u/ophirharpaz
submitted by
/u/ophirharpaz
[link]
[comments]
Related tags
โ
r/netsec
October 13
th
2022 at 09:35
/r/netsec - Information Security News & Discussion
SafeSetID - a Linux Security Modules (LSM) you should know about
October 13
th
2022 at 07:07ย
SafeSetID - a Linux Security Modules (LSM) you should know about
By
/u/boutnaru
submitted by
/u/boutnaru
[link]
[comments]
Related tags
โ
r/netsec
October 13
th
2022 at 07:07
/r/netsec - Information Security News & Discussion
Private npm Packages Disclosed via Timing Attacks
October 13
th
2022 at 07:07ย
Private npm Packages Disclosed via Timing Attacks
By
/u/mkatch
submitted by
/u/mkatch
[link]
[comments]
Related tags
โ
r/netsec
October 13
th
2022 at 07:07
/r/netsec - Information Security News & Discussion
Bringing passkeys to Android & Chrome
October 13
th
2022 at 01:59ย
Bringing passkeys to Android & Chrome
By
/u/Khryse
submitted by
/u/Khryse
[link]
[comments]
Related tags
โ
r/netsec
October 13
th
2022 at 01:59
/r/netsec - Information Security News & Discussion
Subdomain Enumeration Tool Face-off 2022
October 12
th
2022 at 15:32ย
Subdomain Enumeration Tool Face-off 2022
By
/u/the-techromancer
submitted by
/u/the-techromancer
[link]
[comments]
Related tags
โ
r/netsec
October 12
th
2022 at 15:32
/r/netsec - Information Security News & Discussion
A deep dive into CVE-2021โ42847 - arbitrary file write and XXE in ManageEngine ADAudit Plus before 7006
October 12
th
2022 at 14:11ย
A deep dive into CVE-2021โ42847 - arbitrary file write and XXE in ManageEngine ADAudit Plus before 7006
By
/u/kalibabka
submitted by
/u/kalibabka
[link]
[comments]
Related tags
โ
r/netsec
October 12
th
2022 at 14:11
/r/netsec - Information Security News & Discussion
Cerberus Stress Testing Tool
October 12
th
2022 at 13:26ย
Cerberus Stress Testing Tool
By
/u/fficarola
submitted by
/u/fficarola
[link]
[comments]
Related tags
โ
r/netsec
October 12
th
2022 at 13:26
/r/netsec - Information Security News & Discussion
Kubernetes CRD validation with CEL and kubebuilder marker comments
October 12
th
2022 at 11:49ย
Kubernetes CRD validation with CEL and kubebuilder marker comments
By
/u/Rewanth_Tammana
submitted by
/u/Rewanth_Tammana
[link]
[comments]
Related tags
โ
r/netsec
October 12
th
2022 at 11:49
/r/netsec - Information Security News & Discussion
Userland Execution of Binaries Directly from Python
October 12
th
2022 at 06:32ย
Userland Execution of Binaries Directly from Python
By
/u/anvilventures
submitted by
/u/anvilventures
[link]
[comments]
Related tags
โ
r/netsec
October 12
th
2022 at 06:32
/r/netsec - Information Security News & Discussion
postMessage Braindump - a brief postMessage testing methodology
October 12
th
2022 at 03:53ย
postMessage Braindump - a brief postMessage testing methodology
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
โ
r/netsec
October 12
th
2022 at 03:53
/r/netsec - Information Security News & Discussion
On Bypassing eBPF Security Monitoring
October 11
th
2022 at 21:25ย
On Bypassing eBPF Security Monitoring
By
/u/nibblesec
submitted by
/u/nibblesec
[link]
[comments]
Related tags
โ
r/netsec
October 11
th
2022 at 21:25
/r/netsec - Information Security News & Discussion
The Fresh Phish Market: Behind the Scenes of the Caffeine Phishing-as-a-Service Platform
October 11
th
2022 at 19:13ย
The Fresh Phish Market: Behind the Scenes of the Caffeine Phishing-as-a-Service Platform
By
/u/CyberMasterV
submitted by
/u/CyberMasterV
[link]
[comments]
Related tags
โ
r/netsec
October 11
th
2022 at 19:13
/r/netsec - Information Security News & Discussion
Uncovering Siemens SIMATIC S7-1200/1500 Hardcoded Cryptographic Keys in PLCs
October 11
th
2022 at 13:50ย
Uncovering Siemens SIMATIC S7-1200/1500 Hardcoded Cryptographic Keys in PLCs
By
/u/derp6996
submitted by
/u/derp6996
[link]
[comments]
Related tags
โ
r/netsec
October 11
th
2022 at 13:50
/r/netsec - Information Security News & Discussion
Linux Security โ LSM (Linux Security Modules)
October 7
th
2022 at 19:35ย
Linux Security โ LSM (Linux Security Modules)
By
/u/boutnaru
submitted by
/u/boutnaru
[link]
[comments]
Related tags
โ
r/netsec
October 7
th
2022 at 19:35
/r/netsec - Information Security News & Discussion
Persistent PHP payloads in PNGs: How to inject PHP code in an image and keep it there!
October 10
th
2022 at 16:47ย
Persistent PHP payloads in PNGs: How to inject PHP code in an image and keep it there!
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
โ
r/netsec
October 10
th
2022 at 16:47
/r/netsec - Information Security News & Discussion
The Google plasma globe affair of 2012
October 10
th
2022 at 15:26ย
The Google plasma globe affair of 2012
By
/u/nf--
submitted by
/u/nf--
[link]
[comments]
Related tags
โ
r/netsec
October 10
th
2022 at 15:26
/r/netsec - Information Security News & Discussion
GitLab: RCE via github import
October 10
th
2022 at 11:45ย
GitLab: RCE via github import
By
/u/jeandrew
submitted by
/u/jeandrew
[link]
[comments]
Related tags
โ
r/netsec
October 10
th
2022 at 11:45
/r/netsec - Information Security News & Discussion
A simple shell script (almost) POSIX for mail security checks
October 10
th
2022 at 08:07ย
A simple shell script (almost) POSIX for mail security checks
By
/u/ljulolsen
submitted by
/u/ljulolsen
[link]
[comments]
Related tags
โ
r/netsec
October 10
th
2022 at 08:07
/r/netsec - Information Security News & Discussion
Getting served a malicious update - interesting techniques, my slip up, and lessons learned: a short blog post
October 9
th
2022 at 14:55ย
Getting served a malicious update - interesting techniques, my slip up, and lessons learned: a short blog post
By
/u/CuckooExe
submitted by
/u/CuckooExe
[link]
[comments]
Related tags
โ
r/netsec
October 9
th
2022 at 14:55
/r/netsec - Information Security News & Discussion
What can we learn from leaked Insyde's BIOS for Intel Alder Lake
October 8
th
2022 at 15:00ย
What can we learn from leaked Insyde's BIOS for Intel Alder Lake
By
/u/hardenedvault
submitted by
/u/hardenedvault
[link]
[comments]
Related tags
โ
r/netsec
October 8
th
2022 at 15:00
/r/netsec - Information Security News & Discussion
Disclosure time for Zoneminder findings
October 7
th
2022 at 15:01ย
Disclosure time for Zoneminder findings
By
/u/trenchesofit
submitted by
/u/trenchesofit
[link]
[comments]
Related tags
โ
r/netsec
October 7
th
2022 at 15:01
/r/netsec - Information Security News & Discussion
Unpatched vulnerability on Zimbra (again!) - symlink abuse in cpio
October 6
th
2022 at 21:01ย
Unpatched vulnerability on Zimbra (again!) - symlink abuse in cpio
By
/u/iagox86
submitted by
/u/iagox86
[link]
[comments]
Related tags
โ
r/netsec
October 6
th
2022 at 21:01
/r/netsec - Information Security News & Discussion
Uncovering a Fake Recruiter Scam with OSINT techniques
October 6
th
2022 at 19:43ย
Uncovering a Fake Recruiter Scam with OSINT techniques
By
/u/smicallef
submitted by
/u/smicallef
[link]
[comments]
Related tags
โ
r/netsec
October 6
th
2022 at 19:43
/r/netsec - Information Security News & Discussion
Fully loaded: testing vulnerable PyYAML versions
October 6
th
2022 at 18:11ย
Fully loaded: testing vulnerable PyYAML versions
By
/u/iterablewords
submitted by
/u/iterablewords
[link]
[comments]
Related tags
โ
r/netsec
October 6
th
2022 at 18:11
/r/netsec - Information Security News & Discussion
CVE-2022โ36635 โ A SQL Injection in ZKSecurityBio to RCE
October 6
th
2022 at 13:46ย
CVE-2022โ36635 โ A SQL Injection in ZKSecurityBio to RCE
By
/u/sp1d3rr
submitted by
/u/sp1d3rr
[link]
[comments]
Related tags
โ
r/netsec
October 6
th
2022 at 13:46
Load more articles