Login
FreshRSS
Login
About FreshRSS
Main stream
Favourites (0)
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
http://blog.trendmicro.com/feed
ICS-CERT Alert Feed
Infosec Island Latest Articles
InfoSec Resources
Krebs on Security
McAfee Blogs
Naked Security
News โ Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security โ Cisco Blog
SecurityFocus News
The first stop for security news | Threatpost
The Hacker News
The Register - Security
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WeLiveSecurity
WIRED
ZDNet | security RSS
Tools
Security Tool Files โ Packet Storm
ToolsWatch.org โ The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files โ Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
/r/netsec - Information Security News & Discussion
/r/netsec - Information Security News & Discussion
Reverse SSH - A Fast, Stable Reverse Shell Handler
March 3
rd
2023 at 00:40ย
Reverse SSH - A Fast, Stable Reverse Shell Handler
By
/u/Acceptable-Doubt-878
submitted by
/u/Acceptable-Doubt-878
[link]
[comments]
Related tags
โ
r/netsec
March 3
rd
2023 at 00:40
/r/netsec - Information Security News & Discussion
Nosey Parker, a fast secrets detector, now enumerates GitHub repos, writes SARIF output, and has 90 default rules
March 3
rd
2023 at 00:01ย
Nosey Parker, a fast secrets detector, now enumerates GitHub repos, writes SARIF output, and has 90 default rules
By
/u/exploding_nun
submitted by
/u/exploding_nun
[link]
[comments]
Related tags
โ
r/netsec
March 3
rd
2023 at 00:01
/r/netsec - Information Security News & Discussion
Backups of ALL customer vault data, including encrypted passwords and decrypted authenticator seeds, exfiltrated in 2022 LastPass breach, You will need to regenerate OTP KEYS for all services and if you have a weak master password or low iteration count,
March 2
nd
2023 at 22:27ย
Backups of ALL customer vault data, including encrypted passwords and decrypted authenticator seeds, exfiltrated in 2022 LastPass breach, You will need to regenerate OTP KEYS for all services and if you have a weak master password or low iteration count,
By
/u/alexanderpas
submitted by
/u/alexanderpas
[link]
[comments]
Related tags
โ
r/netsec
March 2
nd
2023 at 22:27
/r/netsec - Information Security News & Discussion
Lesser Known Persistence Techniques of WinXP are still effective on Win 10 and 11.
March 2
nd
2023 at 19:37ย
Lesser Known Persistence Techniques of WinXP are still effective on Win 10 and 11.
By
/u/jat0369
submitted by
/u/jat0369
[link]
[comments]
Related tags
โ
r/netsec
March 2
nd
2023 at 19:37
/r/netsec - Information Security News & Discussion
Taking over booking.com accounts by abusing OAuth 2.0
March 2
nd
2023 at 13:20ย
Taking over booking.com accounts by abusing OAuth 2.0
By
/u/ynvb
submitted by
/u/ynvb
[link]
[comments]
Related tags
โ
r/netsec
March 2
nd
2023 at 13:20
/r/netsec - Information Security News & Discussion
BlackLotus UEFI bootkit: Myth confirmed
March 2
nd
2023 at 08:41ย
BlackLotus UEFI bootkit: Myth confirmed
By
/u/hardenedvault
submitted by
/u/hardenedvault
[link]
[comments]
Related tags
โ
r/netsec
March 2
nd
2023 at 08:41
/r/netsec - Information Security News & Discussion
SSH PKI on top of Web PKI
March 2
nd
2023 at 08:10ย
SSH PKI on top of Web PKI
By
/u/ptman
submitted by
/u/ptman
[link]
[comments]
Related tags
โ
r/netsec
March 2
nd
2023 at 08:10
/r/netsec - Information Security News & Discussion
Gitpod remote code execution 0-day vulnerability via WebSockets
March 1
st
2023 at 23:25ย
Gitpod remote code execution 0-day vulnerability via WebSockets
By
/u/lirantal
submitted by
/u/lirantal
[link]
[comments]
Related tags
โ
r/netsec
March 1
st
2023 at 23:25
/r/netsec - Information Security News & Discussion
Incident Response in Google Cloud: Forensic Artifacts
March 1
st
2023 at 22:32ย
Incident Response in Google Cloud: Forensic Artifacts
By
/u/MiguelHzBz
submitted by
/u/MiguelHzBz
[link]
[comments]
Related tags
โ
r/netsec
March 1
st
2023 at 22:32
/r/netsec - Information Security News & Discussion
Making New Connections โ Leveraging Cisco AnyConnect Client to Drop and Run Payloads
March 1
st
2023 at 16:30ย
Making New Connections โ Leveraging Cisco AnyConnect Client to Drop and Run Payloads
By
/u/0xdea
submitted by
/u/0xdea
[link]
[comments]
Related tags
โ
r/netsec
March 1
st
2023 at 16:30
/r/netsec - Information Security News & Discussion
CI/CD secrets extraction, tips and tricks
March 1
st
2023 at 15:31ย
CI/CD secrets extraction, tips and tricks
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
โ
r/netsec
March 1
st
2023 at 15:31
/r/netsec - Information Security News & Discussion
Indirect Prompt Injection on Bing Chat
March 1
st
2023 at 10:19ย
Indirect Prompt Injection on Bing Chat
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
โ
r/netsec
March 1
st
2023 at 10:19
/r/netsec - Information Security News & Discussion
Using JFrog Artifactory? Make sure it doesn't mistakenly expose your secrets, apparently it's not uncommon
March 1
st
2023 at 09:47ย
Using JFrog Artifactory? Make sure it doesn't mistakenly expose your secrets, apparently it's not uncommon
By
/u/roy_6472
submitted by
/u/roy_6472
[link]
[comments]
Related tags
โ
r/netsec
March 1
st
2023 at 09:47
/r/netsec - Information Security News & Discussion
First steps in CHERIoT Security Research | MSRC Blog
February 28
th
2023 at 17:49ย
First steps in CHERIoT Security Research | MSRC Blog
By
/u/unaligned_access
submitted by
/u/unaligned_access
[link]
[comments]
Related tags
โ
r/netsec
February 28
th
2023 at 17:49
/r/netsec - Information Security News & Discussion
SCARLETEEL: Operation leveraging Terraform, Kubernetes, and AWS for data theft
February 28
th
2023 at 17:34ย
SCARLETEEL: Operation leveraging Terraform, Kubernetes, and AWS for data theft
By
/u/MiguelHzBz
submitted by
/u/MiguelHzBz
[link]
[comments]
Related tags
โ
r/netsec
February 28
th
2023 at 17:34
/r/netsec - Information Security News & Discussion
Empowering weak primitives: file truncation to code execution with Git
February 28
th
2023 at 15:54ย
Empowering weak primitives: file truncation to code execution with Git
By
/u/monoimpact
submitted by
/u/monoimpact
[link]
[comments]
Related tags
โ
r/netsec
February 28
th
2023 at 15:54
/r/netsec - Information Security News & Discussion
How to conduct a Complete Kubernetes Security Config Review
February 28
th
2023 at 14:45ย
How to conduct a Complete Kubernetes Security Config Review
By
/u/phoenixzeu
submitted by
/u/phoenixzeu
[link]
[comments]
Related tags
โ
r/netsec
February 28
th
2023 at 14:45
/r/netsec - Information Security News & Discussion
Dirty Arbitrary File Write to RCE in Python uWSGI
February 28
th
2023 at 13:47ย
Dirty Arbitrary File Write to RCE in Python uWSGI
By
/u/nibblesec
submitted by
/u/nibblesec
[link]
[comments]
Related tags
โ
r/netsec
February 28
th
2023 at 13:47
/r/netsec - Information Security News & Discussion
Itโs All Bad News: An update on how the Lastpass breach affects Lastpass SSO
February 27
th
2023 at 23:00ย
Itโs All Bad News: An update on how the Lastpass breach affects Lastpass SSO
By
/u/csanders_
submitted by
/u/csanders_
[link]
[comments]
Related tags
โ
r/netsec
February 27
th
2023 at 23:00
/r/netsec - Information Security News & Discussion
SPIP Remote Code Execution (pre-auth)
February 27
th
2023 at 21:59ย
SPIP Remote Code Execution (pre-auth)
By
/u/EasyAd9596
submitted by
/u/EasyAd9596
[link]
[comments]
Related tags
โ
r/netsec
February 27
th
2023 at 21:59
/r/netsec - Information Security News & Discussion
ParamAngler - tool for testing specific payload on each parameter
February 27
th
2023 at 19:47ย
ParamAngler - tool for testing specific payload on each parameter
By
/u/spajky_yt
submitted by
/u/spajky_yt
[link]
[comments]
Related tags
โ
r/netsec
February 27
th
2023 at 19:47
/r/netsec - Information Security News & Discussion
Lastpass Quietly indicates that Enterprise Users' K2s were accessed
February 27
th
2023 at 19:42ย
Lastpass Quietly indicates that Enterprise Users' K2s were accessed
By
/u/csanders_
submitted by
/u/csanders_
[link]
[comments]
Related tags
โ
r/netsec
February 27
th
2023 at 19:42
/r/netsec - Information Security News & Discussion
RIG Exploit Kit: In-Depth Analysis
February 27
th
2023 at 15:35ย
RIG Exploit Kit: In-Depth Analysis
By
/u/wtfse
submitted by
/u/wtfse
[link]
[comments]
Related tags
โ
r/netsec
February 27
th
2023 at 15:35
/r/netsec - Information Security News & Discussion
Scripts for playing with WinDbg JS API (hugsy/windbg_js_scripts)
February 27
th
2023 at 01:27ย
Scripts for playing with WinDbg JS API (hugsy/windbg_js_scripts)
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
โ
r/netsec
February 27
th
2023 at 01:27
/r/netsec - Information Security News & Discussion
open-appsec provides ML-based API Security add-on for Kong API Gateways
February 26
th
2023 at 10:00ย
open-appsec provides ML-based API Security add-on for Kong API Gateways
By
/u/Hen2022
submitted by
/u/Hen2022
[link]
[comments]
Related tags
โ
r/netsec
February 26
th
2023 at 10:00
/r/netsec - Information Security News & Discussion
Wrote a hands-on blog series for anyone trying to get a start as a SOC analyst -- feedback welcome!
February 25
th
2023 at 03:56ย
Wrote a hands-on blog series for anyone trying to get a start as a SOC analyst -- feedback welcome!
By
/u/skybound5
submitted by
/u/skybound5
[link]
[comments]
Related tags
โ
r/netsec
February 25
th
2023 at 03:56
/r/netsec - Information Security News & Discussion
Yet, another packer/loader with my very own implementation of GetProcAddress and GetModuleHandle to dinamically fetch function addresses, as well as AES payload and function name encryption with a derived SHA256 key
February 24
th
2023 at 16:19ย
Yet, another packer/loader with my very own implementation of GetProcAddress and GetModuleHandle to dinamically fetch function addresses, as well as AES payload and function name encryption with a derived SHA256 key
By
/u/oldboy21
submitted by
/u/oldboy21
[link]
[comments]
Related tags
โ
r/netsec
February 24
th
2023 at 16:19
/r/netsec - Information Security News & Discussion
A Review of Attacks Against Language-Based Package Managers
February 24
th
2023 at 12:21ย
A Review of Attacks Against Language-Based Package Managers
By
/u/panoptischall
submitted by
/u/panoptischall
[link]
[comments]
Related tags
โ
r/netsec
February 24
th
2023 at 12:21
/r/netsec - Information Security News & Discussion
SSO Gadgets: Escalate (Self-)XSS to ATO
February 24
th
2023 at 10:13ย
SSO Gadgets: Escalate (Self-)XSS to ATO
By
/u/albinowax
submitted by
/u/albinowax
[link]
[comments]
Related tags
โ
r/netsec
February 24
th
2023 at 10:13
/r/netsec - Information Security News & Discussion
OpenEMR - Remote Code Execution in your Healthcare System
February 24
th
2023 at 09:20ย
OpenEMR - Remote Code Execution in your Healthcare System
By
/u/_noraj_
submitted by
/u/_noraj_
[link]
[comments]
Related tags
โ
r/netsec
February 24
th
2023 at 09:20
/r/netsec - Information Security News & Discussion
The code that wasn't there: Reading memory on an Android device by accident
February 24
th
2023 at 08:30ย
The code that wasn't there: Reading memory on an Android device by accident
By
/u/albinowax
submitted by
/u/albinowax
[link]
[comments]
Related tags
โ
r/netsec
February 24
th
2023 at 08:30
/r/netsec - Information Security News & Discussion
520 Malware Packages Published to PyPI in Ongoing Attack
February 24
th
2023 at 01:31ย
520 Malware Packages Published to PyPI in Ongoing Attack
By
/u/louis11
submitted by
/u/louis11
[link]
[comments]
Related tags
โ
r/netsec
February 24
th
2023 at 01:31
/r/netsec - Information Security News & Discussion
41 imposter HTTP libraries discovered on PyPI
February 23
rd
2023 at 13:15ย
41 imposter HTTP libraries discovered on PyPI
By
/u/ledgit
submitted by
/u/ledgit
[link]
[comments]
Related tags
โ
r/netsec
February 23
rd
2023 at 13:15
/r/netsec - Information Security News & Discussion
Detecting Server-Side Prototype Pollution
February 23
rd
2023 at 10:59ย
Detecting Server-Side Prototype Pollution
By
/u/dcthatch
submitted by
/u/dcthatch
[link]
[comments]
Related tags
โ
r/netsec
February 23
rd
2023 at 10:59
/r/netsec - Information Security News & Discussion
AD Offsec Testing Tools Pre-Compiled, up to date, and ready to use
February 23
rd
2023 at 06:46ย
AD Offsec Testing Tools Pre-Compiled, up to date, and ready to use
By
/u/Pleasant-Drawer729
submitted by
/u/Pleasant-Drawer729
[link]
[comments]
Related tags
โ
r/netsec
February 23
rd
2023 at 06:46
/r/netsec - Information Security News & Discussion
Vulnerability write-up - "Dangerous assumptions" (6 CVEs in Node.js packages)
February 22
nd
2023 at 16:40ย
Vulnerability write-up - "Dangerous assumptions" (6 CVEs in Node.js packages)
By
/u/ThomasRinsma
submitted by
/u/ThomasRinsma
[link]
[comments]
Related tags
โ
r/netsec
February 22
nd
2023 at 16:40
/r/netsec - Information Security News & Discussion
Disabling ClamAV as an Unprivileged User
February 22
nd
2023 at 12:58ย
Disabling ClamAV as an Unprivileged User
By
/u/DLLCoolJ
submitted by
/u/DLLCoolJ
[link]
[comments]
Related tags
โ
r/netsec
February 22
nd
2023 at 12:58
/r/netsec - Information Security News & Discussion
Multiple vulnerabilities in Nokia BTS Airscale ASIKA [PDF]
February 22
nd
2023 at 10:15ย
Multiple vulnerabilities in Nokia BTS Airscale ASIKA [PDF]
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
โ
r/netsec
February 22
nd
2023 at 10:15
/r/netsec - Information Security News & Discussion
Introducing Burp DOM Scanner, a Burp Suite's extension to scan and crawl Single Page Applications. It can discover and verify DOM based XSS by tracking JavaScript execution.
February 21
st
2023 at 10:48ย
Introducing Burp DOM Scanner, a Burp Suite's extension to scan and crawl Single Page Applications. It can discover and verify DOM based XSS by tracking JavaScript execution.
By
/u/filippo_cavallarin
submitted by
/u/filippo_cavallarin
[link]
[comments]
Related tags
โ
r/netsec
February 21
st
2023 at 10:48
/r/netsec - Information Security News & Discussion
Let's build a Chrome extension that steals everything
February 22
nd
2023 at 01:53ย
Let's build a Chrome extension that steals everything
By
/u/ScottContini
submitted by
/u/ScottContini
[link]
[comments]
Related tags
โ
r/netsec
February 22
nd
2023 at 01:53
/r/netsec - Information Security News & Discussion
Introducing Sublime: A new, open approach to email security
February 21
st
2023 at 21:53ย
Introducing Sublime: A new, open approach to email security
By
/u/Glomar-Response
submitted by
/u/Glomar-Response
[link]
[comments]
Related tags
โ
r/netsec
February 21
st
2023 at 21:53
/r/netsec - Information Security News & Discussion
OWASP Kubernetes Top 10 - Tools & Techniques
February 21
st
2023 at 15:45ย
OWASP Kubernetes Top 10 - Tools & Techniques
By
/u/MiguelHzBz
submitted by
/u/MiguelHzBz
[link]
[comments]
Related tags
โ
r/netsec
February 21
st
2023 at 15:45
/r/netsec - Information Security News & Discussion
ClamAV Critical Patch Review
February 21
st
2023 at 15:02ย
ClamAV Critical Patch Review
By
/u/g_e_r_h_a_r_d
submitted by
/u/g_e_r_h_a_r_d
[link]
[comments]
Related tags
โ
r/netsec
February 21
st
2023 at 15:02
/r/netsec - Information Security News & Discussion
A Deep Dive Into a PoshC2 Implant
February 21
st
2023 at 15:02ย
A Deep Dive Into a PoshC2 Implant
By
/u/CyberMasterV
submitted by
/u/CyberMasterV
[link]
[comments]
Related tags
โ
r/netsec
February 21
st
2023 at 15:02
/r/netsec - Information Security News & Discussion
Fortinet FortiNAC CVE-2022-39952 Deep-Dive, IOCs, and POC
February 21
st
2023 at 12:52ย
Fortinet FortiNAC CVE-2022-39952 Deep-Dive, IOCs, and POC
By
/u/scopedsecurity
submitted by
/u/scopedsecurity
[link]
[comments]
Related tags
โ
r/netsec
February 21
st
2023 at 12:52
/r/netsec - Information Security News & Discussion
New OSCP Reporting Tool (SysReptor)
February 21
st
2023 at 06:54ย
New OSCP Reporting Tool (SysReptor)
By
/u/Pleasant-Drawer729
submitted by
/u/Pleasant-Drawer729
[link]
[comments]
Related tags
โ
r/netsec
February 21
st
2023 at 06:54
/r/netsec - Information Security News & Discussion
CVE-2022-24942 Heap-based buffer overflow in Silicon Labs Gecko SDK
February 20
th
2023 at 19:18ย
CVE-2022-24942 Heap-based buffer overflow in Silicon Labs Gecko SDK
By
/u/attilaszia
submitted by
/u/attilaszia
[link]
[comments]
Related tags
โ
r/netsec
February 20
th
2023 at 19:18
/r/netsec - Information Security News & Discussion
Legitify added support for GPT-based security recommendations for GitHub & GitLab assets
February 20
th
2023 at 15:35ย
Legitify added support for GPT-based security recommendations for GitHub & GitLab assets
By
/u/dotanoam
submitted by
/u/dotanoam
[link]
[comments]
Related tags
โ
r/netsec
February 20
th
2023 at 15:35
/r/netsec - Information Security News & Discussion
GitHub - zblurx/dploot: DPAPI looting remotely in Python
February 20
th
2023 at 15:24ย
GitHub - zblurx/dploot: DPAPI looting remotely in Python
By
/u/scopedsecurity
submitted by
/u/scopedsecurity
[link]
[comments]
Related tags
โ
r/netsec
February 20
th
2023 at 15:24
/r/netsec - Information Security News & Discussion
New OpenSecurityTraining2 class, "Hardware 1101: Intel SPI Analysis"
February 20
th
2023 at 02:43ย
New OpenSecurityTraining2 class, "Hardware 1101: Intel SPI Analysis"
By
/u/OpenSecurityTraining
submitted by
/u/OpenSecurityTraining
[link]
[comments]
Related tags
โ
r/netsec
February 20
th
2023 at 02:43
/r/netsec - Information Security News & Discussion
Return of the 0ktapus? Coinbase fend of UNC3944/ScatteredSpider attack that used SMS Phishing and attempted MFA bypass
February 19
th
2023 at 04:11ย
Return of the 0ktapus? Coinbase fend of UNC3944/ScatteredSpider attack that used SMS Phishing and attempted MFA bypass
By
/u/SuaveHobo
submitted by
/u/SuaveHobo
[link]
[comments]
Related tags
โ
r/netsec
February 19
th
2023 at 04:11
/r/netsec - Information Security News & Discussion
Small utility to chunk up a large BloodHound JSON file into smaller files for faster importing.
February 18
th
2023 at 22:38ย
Small utility to chunk up a large BloodHound JSON file into smaller files for faster importing.
By
/u/ustayready
submitted by
/u/ustayready
[link]
[comments]
Related tags
โ
r/netsec
February 18
th
2023 at 22:38
/r/netsec - Information Security News & Discussion
mast1c0re: Part 3 โ Escaping the PS5 emulator
February 18
th
2023 at 22:36ย
mast1c0re: Part 3 โ Escaping the PS5 emulator
By
/u/ArbitraryWrite
submitted by
/u/ArbitraryWrite
[link]
[comments]
Related tags
โ
r/netsec
February 18
th
2023 at 22:36
/r/netsec - Information Security News & Discussion
Azure B2C Crypto Misuse and Account Compromise
February 18
th
2023 at 13:33ย
Azure B2C Crypto Misuse and Account Compromise
By
/u/dlorenc
submitted by
/u/dlorenc
[link]
[comments]
Related tags
โ
r/netsec
February 18
th
2023 at 13:33
/r/netsec - Information Security News & Discussion
chvancooten/NimPlant: A light-weight first-stage C2 implant written in Nim.
February 18
th
2023 at 03:03ย
chvancooten/NimPlant: A light-weight first-stage C2 implant written in Nim.
By
/u/Vegetable_Treat_5017
submitted by
/u/Vegetable_Treat_5017
[link]
[comments]
Related tags
โ
r/netsec
February 18
th
2023 at 03:03
/r/netsec - Information Security News & Discussion
ICS and OT Vulnerabilities Analysis for 2022
February 17
th
2023 at 15:39ย
ICS and OT Vulnerabilities Analysis for 2022
By
/u/derp6996
submitted by
/u/derp6996
[link]
[comments]
Related tags
โ
r/netsec
February 17
th
2023 at 15:39
/r/netsec - Information Security News & Discussion
How we Hacked Apple Twice in one day for Fun (and Profit)
February 17
th
2023 at 14:44ย
How we Hacked Apple Twice in one day for Fun (and Profit)
By
/u/pectoral
submitted by
/u/pectoral
[link]
[comments]
Related tags
โ
r/netsec
February 17
th
2023 at 14:44
/r/netsec - Information Security News & Discussion
Ghidra Golf: A Reverse Engineering CTF
February 17
th
2023 at 11:47ย
Ghidra Golf: A Reverse Engineering CTF
By
/u/DLLCoolJ
submitted by
/u/DLLCoolJ
[link]
[comments]
Related tags
โ
r/netsec
February 17
th
2023 at 11:47
/r/netsec - Information Security News & Discussion
Introducing Proxy Enriched Sequence Diagrams (PESD). New Burp Plugin.
February 17
th
2023 at 11:33ย
Introducing Proxy Enriched Sequence Diagrams (PESD). New Burp Plugin.
By
/u/nibblesec
submitted by
/u/nibblesec
[link]
[comments]
Related tags
โ
r/netsec
February 17
th
2023 at 11:33
/r/netsec - Information Security News & Discussion
Reinforcement learning for red/blue team automation
February 17
th
2023 at 09:47ย
Reinforcement learning for red/blue team automation
By
/u/limmen
submitted by
/u/limmen
[link]
[comments]
Related tags
โ
r/netsec
February 17
th
2023 at 09:47
Load more articles