Login
FreshRSS
Login
About FreshRSS
Main stream
Favourites (0)
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
http://blog.trendmicro.com/feed
ICS-CERT Alert Feed
Infosec Island Latest Articles
InfoSec Resources
Krebs on Security
McAfee Blogs
Naked Security
News β Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security β Cisco Blog
SecurityFocus News
The first stop for security news | Threatpost
The Hacker News
The Register - Security
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WeLiveSecurity
WIRED
ZDNet | security RSS
Tools
Security Tool Files β Packet Storm
ToolsWatch.org β The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files β Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
/r/netsec - Information Security News & Discussion
/r/netsec - Information Security News & Discussion
EJS - Server Side Prototype Pollution gadgets to RCE
March 9
th
2023 at 23:44Β
EJS - Server Side Prototype Pollution gadgets to RCE
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
β
r/netsec
March 9
th
2023 at 23:44
/r/netsec - Information Security News & Discussion
Pwning Akuvox E11 Smart Intercom
March 9
th
2023 at 19:00Β
Pwning Akuvox E11 Smart Intercom
By
/u/sh0n1z
submitted by
/u/sh0n1z
[link]
[comments]
Related tags
β
r/netsec
March 9
th
2023 at 19:00
/r/netsec - Information Security News & Discussion
Phineas Fisher's Hacktivist Writeups and Guides
March 9
th
2023 at 11:22Β
Phineas Fisher's Hacktivist Writeups and Guides
By
/u/gabriel_schneider
submitted by
/u/gabriel_schneider
[link]
[comments]
Related tags
β
r/netsec
March 9
th
2023 at 11:22
/r/netsec - Information Security News & Discussion
The Threat on Your Desk: Building an Evil USB-C Dock
March 9
th
2023 at 01:21Β
The Threat on Your Desk: Building an Evil USB-C Dock
By
/u/Acceptable-Doubt-878
submitted by
/u/Acceptable-Doubt-878
[link]
[comments]
Related tags
β
r/netsec
March 9
th
2023 at 01:21
/r/netsec - Information Security News & Discussion
Jailbreaking LLM (ChatGPT) Sandboxes Using Linguistic Hacks
March 8
th
2023 at 19:45Β
Jailbreaking LLM (ChatGPT) Sandboxes Using Linguistic Hacks
By
/u/alxjsn
submitted by
/u/alxjsn
[link]
[comments]
Related tags
β
r/netsec
March 8
th
2023 at 19:45
/r/netsec - Information Security News & Discussion
CorePlague: Severe Vulnerabilities in Jenkins Server Lead to Remote Code Execution
March 8
th
2023 at 16:08Β
CorePlague: Severe Vulnerabilities in Jenkins Server Lead to Remote Code Execution
By
/u/ilay789
submitted by
/u/ilay789
[link]
[comments]
Related tags
β
r/netsec
March 8
th
2023 at 16:08
/r/netsec - Information Security News & Discussion
Fog of War - How the Ukraine Conflict Transformed the οΌ£yber Threat Landscape
March 8
th
2023 at 14:35Β
Fog of War - How the Ukraine Conflict Transformed the οΌ£yber Threat Landscape
By
/u/mycall
submitted by
/u/mycall
[link]
[comments]
Related tags
β
r/netsec
March 8
th
2023 at 14:35
/r/netsec - Information Security News & Discussion
ESXi Ransomware β A case study of Royal Ransomware
March 8
th
2023 at 13:02Β
ESXi Ransomware β A case study of Royal Ransomware
By
/u/CyberMasterV
submitted by
/u/CyberMasterV
[link]
[comments]
Related tags
β
r/netsec
March 8
th
2023 at 13:02
/r/netsec - Information Security News & Discussion
Beating an old PHP source code protector
March 8
th
2023 at 12:10Β
Beating an old PHP source code protector
By
/u/gid0rah
submitted by
/u/gid0rah
[link]
[comments]
Related tags
β
r/netsec
March 8
th
2023 at 12:10
/r/netsec - Information Security News & Discussion
Persistence β Event Log Online Help
March 8
th
2023 at 08:38Β
Persistence β Event Log Online Help
By
/u/netbiosX
submitted by
/u/netbiosX
[link]
[comments]
Related tags
β
r/netsec
March 8
th
2023 at 08:38
/r/netsec - Information Security News & Discussion
I made a VS Code extension to view nmap results in a graph view. Helpful if you like to keep notes in MarkDown. Let me know what you think about it.
March 7
th
2023 at 17:21Β
I made a VS Code extension to view nmap results in a graph view. Helpful if you like to keep notes in MarkDown. Let me know what you think about it.
By
/u/marduc812
submitted by
/u/marduc812
[link]
[comments]
Related tags
β
r/netsec
March 7
th
2023 at 17:21
/r/netsec - Information Security News & Discussion
Open-source Static Code Analysis tool with sensitive-data prioritization
March 7
th
2023 at 17:12Β
Open-source Static Code Analysis tool with sensitive-data prioritization
By
/u/rukhrunnin
submitted by
/u/rukhrunnin
[link]
[comments]
Related tags
β
r/netsec
March 7
th
2023 at 17:12
/r/netsec - Information Security News & Discussion
Authentication Bypass Vulnerability in Mura CMS and Masa CMS
March 7
th
2023 at 16:56Β
Authentication Bypass Vulnerability in Mura CMS and Masa CMS
By
/u/albinowax
submitted by
/u/albinowax
[link]
[comments]
Related tags
β
r/netsec
March 7
th
2023 at 16:56
/r/netsec - Information Security News & Discussion
RCE in Implementations of SHA-3, SHAKE, EdDSA
March 7
th
2023 at 16:03Β
RCE in Implementations of SHA-3, SHAKE, EdDSA
By
/u/Definitely_not_gpt3
submitted by
/u/Definitely_not_gpt3
[link]
[comments]
Related tags
β
r/netsec
March 7
th
2023 at 16:03
/r/netsec - Information Security News & Discussion
Avoiding Single-Point-of-Failure and securing the Root Infrastructure: TCG TPM 2.0
March 7
th
2023 at 11:10Β
Avoiding Single-Point-of-Failure and securing the Root Infrastructure: TCG TPM 2.0
By
/u/hardenedvault
submitted by
/u/hardenedvault
[link]
[comments]
Related tags
β
r/netsec
March 7
th
2023 at 11:10
/r/netsec - Information Security News & Discussion
Harvesting Active Directory credentials via HTTP Request Smuggling
March 7
th
2023 at 09:16Β
Harvesting Active Directory credentials via HTTP Request Smuggling
By
/u/albinowax
submitted by
/u/albinowax
[link]
[comments]
Related tags
β
r/netsec
March 7
th
2023 at 09:16
/r/netsec - Information Security News & Discussion
Manipulating Encrypted Traffic using PyCript for Manual and Automation
March 6
th
2023 at 18:22Β
Manipulating Encrypted Traffic using PyCript for Manual and Automation
By
/u/Ano_F
submitted by
/u/Ano_F
[link]
[comments]
Related tags
β
r/netsec
March 6
th
2023 at 18:22
/r/netsec - Information Security News & Discussion
Insecure Toyota CRM exposed Mexican customer information
March 6
th
2023 at 18:19Β
Insecure Toyota CRM exposed Mexican customer information
By
/u/EatonZ
submitted by
/u/EatonZ
[link]
[comments]
Related tags
β
r/netsec
March 6
th
2023 at 18:19
/r/netsec - Information Security News & Discussion
Protecting Android clipboard content from unintended exposure
March 6
th
2023 at 17:57Β
Protecting Android clipboard content from unintended exposure
By
/u/SCI_Rusher
submitted by
/u/SCI_Rusher
[link]
[comments]
Related tags
β
r/netsec
March 6
th
2023 at 17:57
/r/netsec - Information Security News & Discussion
Polynonce A Novel Attack against ECDSA. Paper, Code, and associated Story
March 6
th
2023 at 14:13Β
Polynonce A Novel Attack against ECDSA. Paper, Code, and associated Story
By
/u/nhamiel
submitted by
/u/nhamiel
[link]
[comments]
Related tags
β
r/netsec
March 6
th
2023 at 14:13
/r/netsec - Information Security News & Discussion
Passive Takeover - uncovering (and emulating) an expensive subdomain takeover campaign
March 5
th
2023 at 12:20Β
Passive Takeover - uncovering (and emulating) an expensive subdomain takeover campaign
By
/u/-nbsp-
submitted by
/u/-nbsp-
[link]
[comments]
Related tags
β
r/netsec
March 5
th
2023 at 12:20
/r/netsec - Information Security News & Discussion
Obfuscating Rubeus using Codecepticon
March 5
th
2023 at 12:10Β
Obfuscating Rubeus using Codecepticon
By
/u/h0wlett
submitted by
/u/h0wlett
[link]
[comments]
Related tags
β
r/netsec
March 5
th
2023 at 12:10
/r/netsec - Information Security News & Discussion
Lord Of The Ring0 - Part 4 is out!
March 5
th
2023 at 12:05Β
Lord Of The Ring0 - Part 4 is out!
By
/u/Idov31
submitted by
/u/Idov31
[link]
[comments]
Related tags
β
r/netsec
March 5
th
2023 at 12:05
/r/netsec - Information Security News & Discussion
βStreamJackingβ - Hijacking Hundreds of YouTube Channels Per Day Propagating Elon Musk Branded Crypto Giveaway Scams
March 5
th
2023 at 09:30Β
βStreamJackingβ - Hijacking Hundreds of YouTube Channels Per Day Propagating Elon Musk Branded Crypto Giveaway Scams
By
/u/lowlet3443
submitted by
/u/lowlet3443
[link]
[comments]
Related tags
β
r/netsec
March 5
th
2023 at 09:30
/r/netsec - Information Security News & Discussion
Hacking the Nintendo DSi Browser
March 4
th
2023 at 07:17Β
Hacking the Nintendo DSi Browser
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
β
r/netsec
March 4
th
2023 at 07:17
/r/netsec - Information Security News & Discussion
Reverse SSH - A Fast, Stable Reverse Shell Handler
March 3
rd
2023 at 00:40Β
Reverse SSH - A Fast, Stable Reverse Shell Handler
By
/u/Acceptable-Doubt-878
submitted by
/u/Acceptable-Doubt-878
[link]
[comments]
Related tags
β
r/netsec
March 3
rd
2023 at 00:40
/r/netsec - Information Security News & Discussion
Nosey Parker, a fast secrets detector, now enumerates GitHub repos, writes SARIF output, and has 90 default rules
March 3
rd
2023 at 00:01Β
Nosey Parker, a fast secrets detector, now enumerates GitHub repos, writes SARIF output, and has 90 default rules
By
/u/exploding_nun
submitted by
/u/exploding_nun
[link]
[comments]
Related tags
β
r/netsec
March 3
rd
2023 at 00:01
/r/netsec - Information Security News & Discussion
Backups of ALL customer vault data, including encrypted passwords and decrypted authenticator seeds, exfiltrated in 2022 LastPass breach, You will need to regenerate OTP KEYS for all services and if you have a weak master password or low iteration count,
March 2
nd
2023 at 22:27Β
Backups of ALL customer vault data, including encrypted passwords and decrypted authenticator seeds, exfiltrated in 2022 LastPass breach, You will need to regenerate OTP KEYS for all services and if you have a weak master password or low iteration count,
By
/u/alexanderpas
submitted by
/u/alexanderpas
[link]
[comments]
Related tags
β
r/netsec
March 2
nd
2023 at 22:27
/r/netsec - Information Security News & Discussion
Lesser Known Persistence Techniques of WinXP are still effective on Win 10 and 11.
March 2
nd
2023 at 19:37Β
Lesser Known Persistence Techniques of WinXP are still effective on Win 10 and 11.
By
/u/jat0369
submitted by
/u/jat0369
[link]
[comments]
Related tags
β
r/netsec
March 2
nd
2023 at 19:37
/r/netsec - Information Security News & Discussion
Taking over booking.com accounts by abusing OAuth 2.0
March 2
nd
2023 at 13:20Β
Taking over booking.com accounts by abusing OAuth 2.0
By
/u/ynvb
submitted by
/u/ynvb
[link]
[comments]
Related tags
β
r/netsec
March 2
nd
2023 at 13:20
/r/netsec - Information Security News & Discussion
BlackLotus UEFI bootkit: Myth confirmed
March 2
nd
2023 at 08:41Β
BlackLotus UEFI bootkit: Myth confirmed
By
/u/hardenedvault
submitted by
/u/hardenedvault
[link]
[comments]
Related tags
β
r/netsec
March 2
nd
2023 at 08:41
/r/netsec - Information Security News & Discussion
SSH PKI on top of Web PKI
March 2
nd
2023 at 08:10Β
SSH PKI on top of Web PKI
By
/u/ptman
submitted by
/u/ptman
[link]
[comments]
Related tags
β
r/netsec
March 2
nd
2023 at 08:10
/r/netsec - Information Security News & Discussion
Gitpod remote code execution 0-day vulnerability via WebSockets
March 1
st
2023 at 23:25Β
Gitpod remote code execution 0-day vulnerability via WebSockets
By
/u/lirantal
submitted by
/u/lirantal
[link]
[comments]
Related tags
β
r/netsec
March 1
st
2023 at 23:25
/r/netsec - Information Security News & Discussion
Incident Response in Google Cloud: Forensic Artifacts
March 1
st
2023 at 22:32Β
Incident Response in Google Cloud: Forensic Artifacts
By
/u/MiguelHzBz
submitted by
/u/MiguelHzBz
[link]
[comments]
Related tags
β
r/netsec
March 1
st
2023 at 22:32
/r/netsec - Information Security News & Discussion
Making New Connections β Leveraging Cisco AnyConnect Client to Drop and Run Payloads
March 1
st
2023 at 16:30Β
Making New Connections β Leveraging Cisco AnyConnect Client to Drop and Run Payloads
By
/u/0xdea
submitted by
/u/0xdea
[link]
[comments]
Related tags
β
r/netsec
March 1
st
2023 at 16:30
/r/netsec - Information Security News & Discussion
CI/CD secrets extraction, tips and tricks
March 1
st
2023 at 15:31Β
CI/CD secrets extraction, tips and tricks
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
β
r/netsec
March 1
st
2023 at 15:31
/r/netsec - Information Security News & Discussion
Indirect Prompt Injection on Bing Chat
March 1
st
2023 at 10:19Β
Indirect Prompt Injection on Bing Chat
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
β
r/netsec
March 1
st
2023 at 10:19
/r/netsec - Information Security News & Discussion
Using JFrog Artifactory? Make sure it doesn't mistakenly expose your secrets, apparently it's not uncommon
March 1
st
2023 at 09:47Β
Using JFrog Artifactory? Make sure it doesn't mistakenly expose your secrets, apparently it's not uncommon
By
/u/roy_6472
submitted by
/u/roy_6472
[link]
[comments]
Related tags
β
r/netsec
March 1
st
2023 at 09:47
/r/netsec - Information Security News & Discussion
First steps in CHERIoT Security Research | MSRC Blog
February 28
th
2023 at 17:49Β
First steps in CHERIoT Security Research | MSRC Blog
By
/u/unaligned_access
submitted by
/u/unaligned_access
[link]
[comments]
Related tags
β
r/netsec
February 28
th
2023 at 17:49
/r/netsec - Information Security News & Discussion
SCARLETEEL: Operation leveraging Terraform, Kubernetes, and AWS for data theft
February 28
th
2023 at 17:34Β
SCARLETEEL: Operation leveraging Terraform, Kubernetes, and AWS for data theft
By
/u/MiguelHzBz
submitted by
/u/MiguelHzBz
[link]
[comments]
Related tags
β
r/netsec
February 28
th
2023 at 17:34
/r/netsec - Information Security News & Discussion
Empowering weak primitives: file truncation to code execution with Git
February 28
th
2023 at 15:54Β
Empowering weak primitives: file truncation to code execution with Git
By
/u/monoimpact
submitted by
/u/monoimpact
[link]
[comments]
Related tags
β
r/netsec
February 28
th
2023 at 15:54
/r/netsec - Information Security News & Discussion
How to conduct a Complete Kubernetes Security Config Review
February 28
th
2023 at 14:45Β
How to conduct a Complete Kubernetes Security Config Review
By
/u/phoenixzeu
submitted by
/u/phoenixzeu
[link]
[comments]
Related tags
β
r/netsec
February 28
th
2023 at 14:45
/r/netsec - Information Security News & Discussion
Dirty Arbitrary File Write to RCE in Python uWSGI
February 28
th
2023 at 13:47Β
Dirty Arbitrary File Write to RCE in Python uWSGI
By
/u/nibblesec
submitted by
/u/nibblesec
[link]
[comments]
Related tags
β
r/netsec
February 28
th
2023 at 13:47
/r/netsec - Information Security News & Discussion
Itβs All Bad News: An update on how the Lastpass breach affects Lastpass SSO
February 27
th
2023 at 23:00Β
Itβs All Bad News: An update on how the Lastpass breach affects Lastpass SSO
By
/u/csanders_
submitted by
/u/csanders_
[link]
[comments]
Related tags
β
r/netsec
February 27
th
2023 at 23:00
/r/netsec - Information Security News & Discussion
SPIP Remote Code Execution (pre-auth)
February 27
th
2023 at 21:59Β
SPIP Remote Code Execution (pre-auth)
By
/u/EasyAd9596
submitted by
/u/EasyAd9596
[link]
[comments]
Related tags
β
r/netsec
February 27
th
2023 at 21:59
/r/netsec - Information Security News & Discussion
ParamAngler - tool for testing specific payload on each parameter
February 27
th
2023 at 19:47Β
ParamAngler - tool for testing specific payload on each parameter
By
/u/spajky_yt
submitted by
/u/spajky_yt
[link]
[comments]
Related tags
β
r/netsec
February 27
th
2023 at 19:47
/r/netsec - Information Security News & Discussion
Lastpass Quietly indicates that Enterprise Users' K2s were accessed
February 27
th
2023 at 19:42Β
Lastpass Quietly indicates that Enterprise Users' K2s were accessed
By
/u/csanders_
submitted by
/u/csanders_
[link]
[comments]
Related tags
β
r/netsec
February 27
th
2023 at 19:42
/r/netsec - Information Security News & Discussion
RIG Exploit Kit: In-Depth Analysis
February 27
th
2023 at 15:35Β
RIG Exploit Kit: In-Depth Analysis
By
/u/wtfse
submitted by
/u/wtfse
[link]
[comments]
Related tags
β
r/netsec
February 27
th
2023 at 15:35
/r/netsec - Information Security News & Discussion
Scripts for playing with WinDbg JS API (hugsy/windbg_js_scripts)
February 27
th
2023 at 01:27Β
Scripts for playing with WinDbg JS API (hugsy/windbg_js_scripts)
By
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
Related tags
β
r/netsec
February 27
th
2023 at 01:27
/r/netsec - Information Security News & Discussion
open-appsec provides ML-based API Security add-on for Kong API Gateways
February 26
th
2023 at 10:00Β
open-appsec provides ML-based API Security add-on for Kong API Gateways
By
/u/Hen2022
submitted by
/u/Hen2022
[link]
[comments]
Related tags
β
r/netsec
February 26
th
2023 at 10:00
/r/netsec - Information Security News & Discussion
Wrote a hands-on blog series for anyone trying to get a start as a SOC analyst -- feedback welcome!
February 25
th
2023 at 03:56Β
Wrote a hands-on blog series for anyone trying to get a start as a SOC analyst -- feedback welcome!
By
/u/skybound5
submitted by
/u/skybound5
[link]
[comments]
Related tags
β
r/netsec
February 25
th
2023 at 03:56
/r/netsec - Information Security News & Discussion
Yet, another packer/loader with my very own implementation of GetProcAddress and GetModuleHandle to dinamically fetch function addresses, as well as AES payload and function name encryption with a derived SHA256 key
February 24
th
2023 at 16:19Β
Yet, another packer/loader with my very own implementation of GetProcAddress and GetModuleHandle to dinamically fetch function addresses, as well as AES payload and function name encryption with a derived SHA256 key
By
/u/oldboy21
submitted by
/u/oldboy21
[link]
[comments]
Related tags
β
r/netsec
February 24
th
2023 at 16:19
/r/netsec - Information Security News & Discussion
A Review of Attacks Against Language-Based Package Managers
February 24
th
2023 at 12:21Β
A Review of Attacks Against Language-Based Package Managers
By
/u/panoptischall
submitted by
/u/panoptischall
[link]
[comments]
Related tags
β
r/netsec
February 24
th
2023 at 12:21
/r/netsec - Information Security News & Discussion
SSO Gadgets: Escalate (Self-)XSS to ATO
February 24
th
2023 at 10:13Β
SSO Gadgets: Escalate (Self-)XSS to ATO
By
/u/albinowax
submitted by
/u/albinowax
[link]
[comments]
Related tags
β
r/netsec
February 24
th
2023 at 10:13
/r/netsec - Information Security News & Discussion
OpenEMR - Remote Code Execution in your Healthcare System
February 24
th
2023 at 09:20Β
OpenEMR - Remote Code Execution in your Healthcare System
By
/u/_noraj_
submitted by
/u/_noraj_
[link]
[comments]
Related tags
β
r/netsec
February 24
th
2023 at 09:20
/r/netsec - Information Security News & Discussion
The code that wasn't there: Reading memory on an Android device by accident
February 24
th
2023 at 08:30Β
The code that wasn't there: Reading memory on an Android device by accident
By
/u/albinowax
submitted by
/u/albinowax
[link]
[comments]
Related tags
β
r/netsec
February 24
th
2023 at 08:30
/r/netsec - Information Security News & Discussion
520 Malware Packages Published to PyPI in Ongoing Attack
February 24
th
2023 at 01:31Β
520 Malware Packages Published to PyPI in Ongoing Attack
By
/u/louis11
submitted by
/u/louis11
[link]
[comments]
Related tags
β
r/netsec
February 24
th
2023 at 01:31
/r/netsec - Information Security News & Discussion
41 imposter HTTP libraries discovered on PyPI
February 23
rd
2023 at 13:15Β
41 imposter HTTP libraries discovered on PyPI
By
/u/ledgit
submitted by
/u/ledgit
[link]
[comments]
Related tags
β
r/netsec
February 23
rd
2023 at 13:15
/r/netsec - Information Security News & Discussion
Detecting Server-Side Prototype Pollution
February 23
rd
2023 at 10:59Β
Detecting Server-Side Prototype Pollution
By
/u/dcthatch
submitted by
/u/dcthatch
[link]
[comments]
Related tags
β
r/netsec
February 23
rd
2023 at 10:59
/r/netsec - Information Security News & Discussion
AD Offsec Testing Tools Pre-Compiled, up to date, and ready to use
February 23
rd
2023 at 06:46Β
AD Offsec Testing Tools Pre-Compiled, up to date, and ready to use
By
/u/Pleasant-Drawer729
submitted by
/u/Pleasant-Drawer729
[link]
[comments]
Related tags
β
r/netsec
February 23
rd
2023 at 06:46
Load more articles