Login
FreshRSS
Login
About FreshRSS
Main stream
Favourites (0)
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
http://blog.trendmicro.com/feed
ICS-CERT Alert Feed
Infosec Island Latest Articles
InfoSec Resources
Krebs on Security
McAfee Blogs
Naked Security
News โ Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security โ Cisco Blog
SecurityFocus News
The first stop for security news | Threatpost
The Hacker News
The Register - Security
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WeLiveSecurity
WIRED
ZDNet | security RSS
Tools
Security Tool Files โ Packet Storm
ToolsWatch.org โ The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files โ Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
/r/netsec - Information Security News & Discussion
/r/netsec - Information Security News & Discussion
Reverse Branch Target Buffer Poisoning - new ASLR bypass technique using CPU vulnerabilities [PDF]
November 4
th
2022 at 07:41ย
Reverse Branch Target Buffer Poisoning - new ASLR bypass technique using CPU vulnerabilities [PDF]
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
โ
r/netsec
November 4
th
2022 at 07:41
/r/netsec - Information Security News & Discussion
MI-X - Determine whether your compute is truly vulnerable to a specific vulnerability
November 4
th
2022 at 06:54ย
MI-X - Determine whether your compute is truly vulnerable to a specific vulnerability
By
/u/boutnaru
submitted by
/u/boutnaru
[link]
[comments]
Related tags
โ
r/netsec
November 4
th
2022 at 06:54
/r/netsec - Information Security News & Discussion
CVE-2022-33679 Windows Kerberos Elevation of Privilege
November 4
th
2022 at 05:26ย
CVE-2022-33679 Windows Kerberos Elevation of Privilege
By
/u/smokiesmk
submitted by
/u/smokiesmk
[link]
[comments]
Related tags
โ
r/netsec
November 4
th
2022 at 05:26
/r/netsec - Information Security News & Discussion
Release Ghidra 10.2 ยท NationalSecurityAgency/ghidra
November 3
rd
2022 at 22:52ย
Release Ghidra 10.2 ยท NationalSecurityAgency/ghidra
By
/u/mumbel
submitted by
/u/mumbel
[link]
[comments]
Related tags
โ
r/netsec
November 3
rd
2022 at 22:52
/r/netsec - Information Security News & Discussion
Why Did the OpenSSL Punycode Vulnerability Happen
November 3
rd
2022 at 22:26ย
Why Did the OpenSSL Punycode Vulnerability Happen
By
/u/ScottContini
submitted by
/u/ScottContini
[link]
[comments]
Related tags
โ
r/netsec
November 3
rd
2022 at 22:26
/r/netsec - Information Security News & Discussion
Threat Model Examples
November 3
rd
2022 at 16:56ย
Threat Model Examples
By
/u/hipver
submitted by
/u/hipver
[link]
[comments]
Related tags
โ
r/netsec
November 3
rd
2022 at 16:56
/r/netsec - Information Security News & Discussion
The below-OS for supply chain of critical infrastructure protection
November 3
rd
2022 at 14:47ย
The below-OS for supply chain of critical infrastructure protection
By
/u/hardenedvault
submitted by
/u/hardenedvault
[link]
[comments]
Related tags
โ
r/netsec
November 3
rd
2022 at 14:47
/r/netsec - Information Security News & Discussion
CVE-2022-3602 & CVE-2022-3786 - OSS tools to detect susceptibility to the recent OpenSSL issues
November 3
rd
2022 at 11:08ย
CVE-2022-3602 & CVE-2022-3786 - OSS tools to detect susceptibility to the recent OpenSSL issues
By
/u/SRMish3
submitted by
/u/SRMish3
[link]
[comments]
Related tags
โ
r/netsec
November 3
rd
2022 at 11:08
/r/netsec - Information Security News & Discussion
Checkmk: Remote Code Execution by Chaining Multiple Bugs (1/3)
November 2
nd
2022 at 22:50ย
Checkmk: Remote Code Execution by Chaining Multiple Bugs (1/3)
By
/u/monoimpact
submitted by
/u/monoimpact
[link]
[comments]
Related tags
โ
r/netsec
November 2
nd
2022 at 22:50
/r/netsec - Information Security News & Discussion
Gregor Samsa: Exploiting Java's XML Signature Verification
November 2
nd
2022 at 19:26ย
Gregor Samsa: Exploiting Java's XML Signature Verification
By
/u/jp_bennett
submitted by
/u/jp_bennett
[link]
[comments]
Related tags
โ
r/netsec
November 2
nd
2022 at 19:26
/r/netsec - Information Security News & Discussion
urlscan.io's SOAR spot: Chatty security tools leaking private data
November 2
nd
2022 at 12:58ย
urlscan.io's SOAR spot: Chatty security tools leaking private data
By
/u/mckirk_
submitted by
/u/mckirk_
[link]
[comments]
Related tags
โ
r/netsec
November 2
nd
2022 at 12:58
/r/netsec - Information Security News & Discussion
Symbolic Triage: Making the Best of a Good Situation โ Atredis Partners
November 2
nd
2022 at 05:55ย
Symbolic Triage: Making the Best of a Good Situation โ Atredis Partners
By
/u/jeandrew
submitted by
/u/jeandrew
[link]
[comments]
Related tags
โ
r/netsec
November 2
nd
2022 at 05:55
/r/netsec - Information Security News & Discussion
Awesome Security Newsletters
November 1
st
2022 at 23:00ย
Awesome Security Newsletters
By
/u/mymalema
submitted by
/u/mymalema
[link]
[comments]
Related tags
โ
r/netsec
November 1
st
2022 at 23:00
/r/netsec - Information Security News & Discussion
Dozens More PyPI Packages Attempting to Deliver W4SP Stealer in Ongoing Supply-Chain Attack
November 1
st
2022 at 21:20ย
Dozens More PyPI Packages Attempting to Deliver W4SP Stealer in Ongoing Supply-Chain Attack
By
/u/louis11
submitted by
/u/louis11
[link]
[comments]
Related tags
โ
r/netsec
November 1
st
2022 at 21:20
/r/netsec - Information Security News & Discussion
The OpenSSL punycode vulnerability (CVE-2022-3602): Overview, detection, exploitation, and remediation | Datadog Security Labs
November 1
st
2022 at 16:57ย
The OpenSSL punycode vulnerability (CVE-2022-3602): Overview, detection, exploitation, and remediation | Datadog Security Labs
By
/u/RedTermSession
submitted by
/u/RedTermSession
[link]
[comments]
Related tags
โ
r/netsec
November 1
st
2022 at 16:57
/r/netsec - Information Security News & Discussion
OpenSSL Blog Post with FAQs - CVE-2022-3786 and CVE-2022-3602: X.509 Email Address Buffer Overflows
November 1
st
2022 at 16:11ย
OpenSSL Blog Post with FAQs - CVE-2022-3786 and CVE-2022-3602: X.509 Email Address Buffer Overflows
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
โ
r/netsec
November 1
st
2022 at 16:11
/r/netsec - Information Security News & Discussion
OpenSSL version 3.0.7 published - Fixed two buffer overflows in punycode decoding functions
November 1
st
2022 at 15:50ย
OpenSSL version 3.0.7 published - Fixed two buffer overflows in punycode decoding functions
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
โ
r/netsec
November 1
st
2022 at 15:50
/r/netsec - Information Security News & Discussion
List of (un)affected software OpenSSL vulnerability (still being updated)
November 1
st
2022 at 12:01ย
List of (un)affected software OpenSSL vulnerability (still being updated)
By
/u/Triyujin
submitted by
/u/Triyujin
[link]
[comments]
Related tags
โ
r/netsec
November 1
st
2022 at 12:01
/r/netsec - Information Security News & Discussion
Exploiting Static Site Generators: When Static Is Not Actually Static
November 1
st
2022 at 07:13ย
Exploiting Static Site Generators: When Static Is Not Actually Static
By
/u/Mempodipper
submitted by
/u/Mempodipper
[link]
[comments]
Related tags
โ
r/netsec
November 1
st
2022 at 07:13
/r/netsec - Information Security News & Discussion
No Hat 2022 Conference Recordings
October 31
st
2022 at 22:15ย
No Hat 2022 Conference Recordings
By
/u/Khryse
submitted by
/u/Khryse
[link]
[comments]
Related tags
โ
r/netsec
October 31
st
2022 at 22:15
/r/netsec - Information Security News & Discussion
Fugu15 - a semi-untethered permasigned jailbreak for iOS 15
October 31
st
2022 at 20:09ย
Fugu15 - a semi-untethered permasigned jailbreak for iOS 15
By
/u/_rs
submitted by
/u/_rs
[link]
[comments]
Related tags
โ
r/netsec
October 31
st
2022 at 20:09
/r/netsec - Information Security News & Discussion
A tale of a simple Apple kernel bug
October 31
st
2022 at 19:15ย
A tale of a simple Apple kernel bug
By
/u/JordyZomer
submitted by
/u/JordyZomer
[link]
[comments]
Related tags
โ
r/netsec
October 31
st
2022 at 19:15
/r/netsec - Information Security News & Discussion
Abusing windowsโ tokens to compromise active directory without touching lsass
October 31
st
2022 at 17:52ย
Abusing windowsโ tokens to compromise active directory without touching lsass
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
โ
r/netsec
October 31
st
2022 at 17:52
/r/netsec - Information Security News & Discussion
New Microcorruption Challenges - Embedded Hardware Security CTF
October 31
st
2022 at 17:47ย
New Microcorruption Challenges - Embedded Hardware Security CTF
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
โ
r/netsec
October 31
st
2022 at 17:47
/r/netsec - Information Security News & Discussion
What I learnt from reading 217 subdomain takeover bug reports.
October 31
st
2022 at 14:04ย
What I learnt from reading 217 subdomain takeover bug reports.
By
/u/_nynan
submitted by
/u/_nynan
[link]
[comments]
Related tags
โ
r/netsec
October 31
st
2022 at 14:04
/r/netsec - Information Security News & Discussion
A technical analysis of Pegasus for Android โ Part 3
October 31
st
2022 at 14:02ย
A technical analysis of Pegasus for Android โ Part 3
By
/u/CyberMasterV
submitted by
/u/CyberMasterV
[link]
[comments]
Related tags
โ
r/netsec
October 31
st
2022 at 14:02
/r/netsec - Information Security News & Discussion
Vulnerability and Exploit feeds
October 31
st
2022 at 08:03ย
Vulnerability and Exploit feeds
By
/u/AnyYak5018
submitted by
/u/AnyYak5018
[link]
[comments]
Related tags
โ
r/netsec
October 31
st
2022 at 08:03
/r/netsec - Information Security News & Discussion
Baby steps into MITRE Stix/Taxii, Pandas, Graphs & Jupyter notebooks
October 31
st
2022 at 07:44ย
Baby steps into MITRE Stix/Taxii, Pandas, Graphs & Jupyter notebooks
By
/u/DiabloHorn
submitted by
/u/DiabloHorn
[link]
[comments]
Related tags
โ
r/netsec
October 31
st
2022 at 07:44
/r/netsec - Information Security News & Discussion
Part 3 of Lord Of The Ring0 - Sailing to the land of the user (and debugging the ship)
October 30
th
2022 at 12:09ย
Part 3 of Lord Of The Ring0 - Sailing to the land of the user (and debugging the ship)
By
/u/Idov31
submitted by
/u/Idov31
[link]
[comments]
Related tags
โ
r/netsec
October 30
th
2022 at 12:09
/r/netsec - Information Security News & Discussion
The Automated Penetration Testing Reporting System (APTRS). Pentester can easily maintain projects, customers, and vulnerabilities, and create PDF reports without needing to use traditional DOC files. The tool allows you to maintain a vulnerability databa
October 30
th
2022 at 07:29ย
The Automated Penetration Testing Reporting System (APTRS). Pentester can easily maintain projects, customers, and vulnerabilities, and create PDF reports without needing to use traditional DOC files. The tool allows you to maintain a vulnerability databa
By
/u/Ano_F
submitted by
/u/Ano_F
[link]
[comments]
Related tags
โ
r/netsec
October 30
th
2022 at 07:29
/r/netsec - Information Security News & Discussion
Urgent: Patch OpenSSL on November 1 to avoid โCriticalโ Security Vulnerability - GlobalSign
October 29
th
2022 at 22:37ย
Urgent: Patch OpenSSL on November 1 to avoid โCriticalโ Security Vulnerability - GlobalSign
By
/u/c0r0n3r
submitted by
/u/c0r0n3r
[link]
[comments]
Related tags
โ
r/netsec
October 29
th
2022 at 22:37
/r/netsec - Information Security News & Discussion
GitHub - Legit-Labs/legitify: Detect and remediate misconfigurations and security risks across all your GitHub assets
October 29
th
2022 at 20:00ย
GitHub - Legit-Labs/legitify: Detect and remediate misconfigurations and security risks across all your GitHub assets
By
/u/roy_6472
submitted by
/u/roy_6472
[link]
[comments]
Related tags
โ
r/netsec
October 29
th
2022 at 20:00
/r/netsec - Information Security News & Discussion
mitmproxy 9: WireGuard Mode and Raw UDP Support
October 29
th
2022 at 12:49ย
mitmproxy 9: WireGuard Mode and Raw UDP Support
By
/u/mhils
submitted by
/u/mhils
[link]
[comments]
Related tags
โ
r/netsec
October 29
th
2022 at 12:49
/r/netsec - Information Security News & Discussion
RC4 Is Still Considered Harmful
October 28
th
2022 at 22:13ย
RC4 Is Still Considered Harmful
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
โ
r/netsec
October 28
th
2022 at 22:13
/r/netsec - Information Security News & Discussion
Passkeys as a tool for user retention
October 28
th
2022 at 19:52ย
Passkeys as a tool for user retention
By
/u/Khryse
submitted by
/u/Khryse
[link]
[comments]
Related tags
โ
r/netsec
October 28
th
2022 at 19:52
/r/netsec - Information Security News & Discussion
CVE-2022-22241: Juniper SSLVPN / JunOS RCE and Multiple Vulnerabilities โ Blog
October 28
th
2022 at 17:28ย
CVE-2022-22241: Juniper SSLVPN / JunOS RCE and Multiple Vulnerabilities โ Blog
By
/u/spacedust65
submitted by
/u/spacedust65
[link]
[comments]
Related tags
โ
r/netsec
October 28
th
2022 at 17:28
/r/netsec - Information Security News & Discussion
TCP/IP Vulnerability CVE-2022โ34718 PoC Restoration and Analysis
October 28
th
2022 at 03:34ย
TCP/IP Vulnerability CVE-2022โ34718 PoC Restoration and Analysis
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
โ
r/netsec
October 28
th
2022 at 03:34
/r/netsec - Information Security News & Discussion
Towards the next generation of XNU memory safety: kalloc_type
October 27
th
2022 at 20:59ย
Towards the next generation of XNU memory safety: kalloc_type
By
/u/sanitybit
submitted by
/u/sanitybit
[link]
[comments]
Related tags
โ
r/netsec
October 27
th
2022 at 20:59
/r/netsec - Information Security News & Discussion
GitHub - karimhabush/cis-vsphere: A tool to assess the compliance of a VMware vSphere environment against the CIS Benchmark.
October 27
th
2022 at 19:13ย
GitHub - karimhabush/cis-vsphere: A tool to assess the compliance of a VMware vSphere environment against the CIS Benchmark.
By
/u/karimhabush
submitted by
/u/karimhabush
[link]
[comments]
Related tags
โ
r/netsec
October 27
th
2022 at 19:13
/r/netsec - Information Security News & Discussion
One-Time Programs
October 27
th
2022 at 18:47ย
One-Time Programs
By
/u/feross
submitted by
/u/feross
[link]
[comments]
Related tags
โ
r/netsec
October 27
th
2022 at 18:47
/r/netsec - Information Security News & Discussion
control flow unflattening of an android rasp sdk
October 27
th
2022 at 17:00ย
control flow unflattening of an android rasp sdk
By
/u/eybisi_
submitted by
/u/eybisi_
[link]
[comments]
Related tags
โ
r/netsec
October 27
th
2022 at 17:00
/r/netsec - Information Security News & Discussion
Open source automated Tailscale security best practices benchmark assessment just released by Steampipe.io
October 27
th
2022 at 14:31ย
Open source automated Tailscale security best practices benchmark assessment just released by Steampipe.io
By
/u/stevecio
submitted by
/u/stevecio
[link]
[comments]
Related tags
โ
r/netsec
October 27
th
2022 at 14:31
/r/netsec - Information Security News & Discussion
Visual Studio Code Jupyter Notebook RCE (CVE-2021-26437)
October 27
th
2022 at 12:45ย
Visual Studio Code Jupyter Notebook RCE (CVE-2021-26437)
By
/u/nibblesec
submitted by
/u/nibblesec
[link]
[comments]
Related tags
โ
r/netsec
October 27
th
2022 at 12:45
/r/netsec - Information Security News & Discussion
Hexacon conference videos
October 27
th
2022 at 12:15ย
Hexacon conference videos
By
/u/gquere
submitted by
/u/gquere
[link]
[comments]
Related tags
โ
r/netsec
October 27
th
2022 at 12:15
/r/netsec - Information Security News & Discussion
Divin'n'phishin with executable filetypes on Windows
October 27
th
2022 at 10:06ย
Divin'n'phishin with executable filetypes on Windows
By
/u/ljulolsen
submitted by
/u/ljulolsen
[link]
[comments]
Related tags
โ
r/netsec
October 27
th
2022 at 10:06
/r/netsec - Information Security News & Discussion
Building a multifunctional red team dropbox for USB and Ethernet attacks
October 27
th
2022 at 09:20ย
Building a multifunctional red team dropbox for USB and Ethernet attacks
By
/u/RoganDawes
submitted by
/u/RoganDawes
[link]
[comments]
Related tags
โ
r/netsec
October 27
th
2022 at 09:20
/r/netsec - Information Security News & Discussion
Ethernet ghosting & NAC bypass - A practical overview
October 27
th
2022 at 03:48ย
Ethernet ghosting & NAC bypass - A practical overview
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
โ
r/netsec
October 27
th
2022 at 03:48
/r/netsec - Information Security News & Discussion
Hijacking AUR Packages by Searching for Expired Domains
October 26
th
2022 at 17:24ย
Hijacking AUR Packages by Searching for Expired Domains
By
/u/whisperingmime
submitted by
/u/whisperingmime
[link]
[comments]
Related tags
โ
r/netsec
October 26
th
2022 at 17:24
/r/netsec - Information Security News & Discussion
Ring0VBA - Getting Ring0 Using a Goddamn Word Document
October 26
th
2022 at 14:05ย
Ring0VBA - Getting Ring0 Using a Goddamn Word Document
By
/u/CyberMasterV
submitted by
/u/CyberMasterV
[link]
[comments]
Related tags
โ
r/netsec
October 26
th
2022 at 14:05
/r/netsec - Information Security News & Discussion
OpenSSL: CRITICAL vulnerability will be fixed in upcoming release
October 26
th
2022 at 11:27ย
OpenSSL: CRITICAL vulnerability will be fixed in upcoming release
By
/u/josephnoir
submitted by
/u/josephnoir
[link]
[comments]
Related tags
โ
r/netsec
October 26
th
2022 at 11:27
/r/netsec - Information Security News & Discussion
Token handles abuse: One shell to HANDLE them all
October 26
th
2022 at 11:28ย
Token handles abuse: One shell to HANDLE them all
By
/u/gid0rah
submitted by
/u/gid0rah
[link]
[comments]
Related tags
โ
r/netsec
October 26
th
2022 at 11:28
/r/netsec - Information Security News & Discussion
Lateral Movement via AutodialDLL registry key abuse
October 26
th
2022 at 10:38ย
Lateral Movement via AutodialDLL registry key abuse
By
/u/gid0rah
submitted by
/u/gid0rah
[link]
[comments]
Related tags
โ
r/netsec
October 26
th
2022 at 10:38
/r/netsec - Information Security News & Discussion
topmostp: A simple CLI tool to retrieve the N top most used ports
October 26
th
2022 at 07:51ย
topmostp: A simple CLI tool to retrieve the N top most used ports
By
/u/deleee
submitted by
/u/deleee
[link]
[comments]
Related tags
โ
r/netsec
October 26
th
2022 at 07:51
/r/netsec - Information Security News & Discussion
GitHub Actions are being abused to run mining operations
October 25
th
2022 at 16:04ย
GitHub Actions are being abused to run mining operations
By
/u/MiguelHzBz
submitted by
/u/MiguelHzBz
[link]
[comments]
Related tags
โ
r/netsec
October 25
th
2022 at 16:04
/r/netsec - Information Security News & Discussion
Stranger Strings: An exploitable flaw in SQLite
October 25
th
2022 at 11:52ย
Stranger Strings: An exploitable flaw in SQLite
By
/u/jeandrew
submitted by
/u/jeandrew
[link]
[comments]
Related tags
โ
r/netsec
October 25
th
2022 at 11:52
/r/netsec - Information Security News & Discussion
The Logging Dead: Two Event Log Vulnerabilities Haunting Windows
October 25
th
2022 at 10:46ย
The Logging Dead: Two Event Log Vulnerabilities Haunting Windows
By
/u/lohacker0
submitted by
/u/lohacker0
[link]
[comments]
Related tags
โ
r/netsec
October 25
th
2022 at 10:46
/r/netsec - Information Security News & Discussion
Firefox and Chromium | Madaidan's Insecurities
October 25
th
2022 at 09:23ย
Firefox and Chromium | Madaidan's Insecurities
By
/u/gquere
submitted by
/u/gquere
[link]
[comments]
Related tags
โ
r/netsec
October 25
th
2022 at 09:23
/r/netsec - Information Security News & Discussion
Chapter 1 โ From Gozi to ISFB: The history of a mythical malware family
October 25
th
2022 at 06:27ย
Chapter 1 โ From Gozi to ISFB: The history of a mythical malware family
By
/u/CyberMasterV
submitted by
/u/CyberMasterV
[link]
[comments]
Related tags
โ
r/netsec
October 25
th
2022 at 06:27
/r/netsec - Information Security News & Discussion
Racing Cats to the Exit: A Boring Linux Kernel Use-After-Free
October 24
th
2022 at 22:42ย
Racing Cats to the Exit: A Boring Linux Kernel Use-After-Free
By
/u/0x414141
submitted by
/u/0x414141
[link]
[comments]
Related tags
โ
r/netsec
October 24
th
2022 at 22:42
/r/netsec - Information Security News & Discussion
Exploit archaeology: A forensic history of in-the-wild NSO Group exploits
October 24
th
2022 at 21:45ย
Exploit archaeology: A forensic history of in-the-wild NSO Group exploits
By
/u/DonnchaOC
submitted by
/u/DonnchaOC
[link]
[comments]
Related tags
โ
r/netsec
October 24
th
2022 at 21:45
Load more articles