There are new available articles, click to refresh the page.

Before yesterday/r/netsec - Information Security News & Discussion

/r/netsec - Information Security News & Discussion
Blog Patrowl: OmniSpace, from automated 0day XSS to RCE by @Pepito_oh
September 12^th 2023 at 13:06

Blog Patrowl: OmniSpace, from automated 0day XSS to RCE by @Pepito_oh

By /u/MaKyOtOx

submitted by /u/MaKyOtOx
[link] [comments]

Related tags
- ❌
- r/netsec
September 12^th 2023 at 13:06

/r/netsec - Information Security News & Discussion
Analyzing Security Vulnerabilities in XWiki: In-Depth Examination
September 12^th 2023 at 12:49

Analyzing Security Vulnerabilities in XWiki: In-Depth Examination

By /u/appsec1337

submitted by /u/appsec1337
[link] [comments]

Related tags
- ❌
- r/netsec
September 12^th 2023 at 12:49

/r/netsec - Information Security News & Discussion
Activation Context Hell - DosDevices Remapping Attack under Impersonation
September 11^th 2023 at 19:03

Activation Context Hell - DosDevices Remapping Attack under Impersonation

By /u/hacksysteam

submitted by /u/hacksysteam
[link] [comments]

Related tags
- ❌
- r/netsec
September 11^th 2023 at 19:03

/r/netsec - Information Security News & Discussion
HijackLoader: a new malware downloader with modular architecture
September 11^th 2023 at 13:16

HijackLoader: a new malware downloader with modular architecture

By /u/nareksays

submitted by /u/nareksays
[link] [comments]

Related tags
- ❌
- r/netsec
September 11^th 2023 at 13:16

/r/netsec - Information Security News & Discussion
GitHub - boringtools/git-alerts: A Public Git repository & misconfiguration detection tool
September 11^th 2023 at 11:13

GitHub - boringtools/git-alerts: A Public Git repository & misconfiguration detection tool

By /u/predev0x00

submitted by /u/predev0x00
[link] [comments]

Related tags
- ❌
- r/netsec
September 11^th 2023 at 11:13

/r/netsec - Information Security News & Discussion
“MrTonyScam” — Botnet of Facebook Users Launch High-Intent Messenger Phishing Attack on Business Accounts
September 10^th 2023 at 11:05

“MrTonyScam” — Botnet of Facebook Users Launch High-Intent Messenger Phishing Attack on Business Accounts

By /u/lowlet3443

submitted by /u/lowlet3443
[link] [comments]

Related tags
- ❌
- r/netsec
September 10^th 2023 at 11:05

/r/netsec - Information Security News & Discussion
Rustproofing Linux (Part 1/4 Leaking Addresses)
September 9^th 2023 at 23:02

Rustproofing Linux (Part 1/4 Leaking Addresses)

By /u/meowerguy

submitted by /u/meowerguy
[link] [comments]

Related tags
- ❌
- r/netsec
September 9^th 2023 at 23:02

/r/netsec - Information Security News & Discussion
Azure Incident Response Cheat Sheet (PDF)
September 9^th 2023 at 12:46

Azure Incident Response Cheat Sheet (PDF)

By /u/0x636f6f6c

submitted by /u/0x636f6f6c
[link] [comments]

Related tags
- ❌
- r/netsec
September 9^th 2023 at 12:46

/r/netsec - Information Security News & Discussion
Cybercriminals target Windows Advanced Installer to run crypto-mining malware
September 8^th 2023 at 18:16

Cybercriminals target Windows Advanced Installer to run crypto-mining malware

By /u/nareksays

submitted by /u/nareksays
[link] [comments]

Related tags
- ❌
- r/netsec
September 8^th 2023 at 18:16

/r/netsec - Information Security News & Discussion
Bcrypt at 25: A retrospective on password security
September 8^th 2023 at 11:26

Bcrypt at 25: A retrospective on password security

By /u/ScottContini

submitted by /u/ScottContini
[link] [comments]

Related tags
- ❌
- r/netsec
September 8^th 2023 at 11:26

/r/netsec - Information Security News & Discussion
How to DoS iOS devices with Bluetooth pairing messages using Android
September 8^th 2023 at 06:48

How to DoS iOS devices with Bluetooth pairing messages using Android

By /u/barakadua131

submitted by /u/barakadua131
[link] [comments]

Related tags
- ❌
- r/netsec
September 8^th 2023 at 06:48

/r/netsec - Information Security News & Discussion
Orbeon Forms: The Final Form? On A Journey To RCE 0day
September 8^th 2023 at 04:17

Orbeon Forms: The Final Form? On A Journey To RCE 0day

By /u/dx7r__

submitted by /u/dx7r__
[link] [comments]

Related tags
- ❌
- r/netsec
September 8^th 2023 at 04:17

/r/netsec - Information Security News & Discussion
BLASTPASS: NSO Group iPhone Zero-Click, Zero-Day Exploit Captured in the Wild
September 8^th 2023 at 00:12

BLASTPASS: NSO Group iPhone Zero-Click, Zero-Day Exploit Captured in the Wild

By /u/Frostlike2816

submitted by /u/Frostlike2816
[link] [comments]

Related tags
- ❌
- r/netsec
September 8^th 2023 at 00:12

/r/netsec - Information Security News & Discussion
Nagios Plugins: Hacking Monitored Servers with check_by_ssh and Argument Injection: CVE-2023-37154
September 7^th 2023 at 22:31

Nagios Plugins: Hacking Monitored Servers with check_by_ssh and Argument Injection: CVE-2023-37154

By /u/MegaManSec2

submitted by /u/MegaManSec2
[link] [comments]

Related tags
- ❌
- r/netsec
September 7^th 2023 at 22:31

/r/netsec - Information Security News & Discussion
New vulnerabilities disclosed in Ivanti EPM
September 7^th 2023 at 16:54

New vulnerabilities disclosed in Ivanti EPM

By /u/jrozner

submitted by /u/jrozner
[link] [comments]

Related tags
- ❌
- r/netsec
September 7^th 2023 at 16:54

/r/netsec - Information Security News & Discussion
Boot Unguarded: x86 Trust Anchor Downfalls to The Leaked OEM Internal Tools and Signing Keys
September 7^th 2023 at 15:25

Boot Unguarded: x86 Trust Anchor Downfalls to The Leaked OEM Internal Tools and Signing Keys

By /u/hardenedvault

submitted by /u/hardenedvault
[link] [comments]

Related tags
- ❌
- r/netsec
September 7^th 2023 at 15:25

/r/netsec - Information Security News & Discussion
Event Likelihood Scoring Model
September 7^th 2023 at 14:02

Event Likelihood Scoring Model

By /u/OkPossible7152

submitted by /u/OkPossible7152
[link] [comments]

Related tags
- ❌
- r/netsec
September 7^th 2023 at 14:02

/r/netsec - Information Security News & Discussion
A tale about a Red Team exercise and the Forcepoint Endpoint One DLP client - vsociety
September 6^th 2023 at 22:16

A tale about a Red Team exercise and the Forcepoint Endpoint One DLP client - vsociety

By /u/k4m1ll0

submitted by /u/k4m1ll0
[link] [comments]

Related tags
- ❌
- r/netsec
September 6^th 2023 at 22:16

Results of Major Technical Investigations for Storm-0558 Key Acquisition (How a threat actor acquired and used a Microsoft signing key to access customer emails)

By /u/The_Electric_Feel

submitted by /u/The_Electric_Feel
[link] [comments]

Related tags
- ❌
- r/netsec
September 6^th 2023 at 18:55

/r/netsec - Information Security News & Discussion
DogeRAT malware targets Indian users (tracks Locations, makes illegal payments, and more)
September 6^th 2023 at 16:38

DogeRAT malware targets Indian users (tracks Locations, makes illegal payments, and more)

By /u/nareksays

submitted by /u/nareksays
[link] [comments]

Related tags
- ❌
- r/netsec
September 6^th 2023 at 16:38

/r/netsec - Information Security News & Discussion
Apache Superset Part II: RCE, Credential Harvesting and More
September 6^th 2023 at 14:43

Apache Superset Part II: RCE, Credential Harvesting and More

By /u/scopedsecurity

submitted by /u/scopedsecurity
[link] [comments]

Related tags
- ❌
- r/netsec
September 6^th 2023 at 14:43

/r/netsec - Information Security News & Discussion
Main Analytical Frameworks for CTI
September 6^th 2023 at 14:34

Main Analytical Frameworks for CTI

By /u/ziyahanalbeniz

submitted by /u/ziyahanalbeniz
[link] [comments]

Related tags
- ❌
- r/netsec
September 6^th 2023 at 14:34

/r/netsec - Information Security News & Discussion
eBPF Offensive Capabilities
September 6^th 2023 at 13:38

eBPF Offensive Capabilities

By /u/weseven

submitted by /u/weseven
[link] [comments]

Related tags
- ❌
- r/netsec
September 6^th 2023 at 13:38

/r/netsec - Information Security News & Discussion
XSS vulnerability in Proton Mail allowed to leak unencrypted emails
September 6^th 2023 at 09:44

XSS vulnerability in Proton Mail allowed to leak unencrypted emails

By /u/SonarPaul

submitted by /u/SonarPaul
[link] [comments]

Related tags
- ❌
- r/netsec
September 6^th 2023 at 09:44

/r/netsec - Information Security News & Discussion
How to Write a Secure JWT Library If You Absolutely Must
September 6^th 2023 at 08:28

How to Write a Secure JWT Library If You Absolutely Must

By /u/sarciszewski

submitted by /u/sarciszewski
[link] [comments]

Related tags
- ❌
- r/netsec
September 6^th 2023 at 08:28

/r/netsec - Information Security News & Discussion
Lord Of The Ring0 part 5 is out (kernel development series)
September 6^th 2023 at 05:34

Lord Of The Ring0 part 5 is out (kernel development series)

By /u/Idov31

submitted by /u/Idov31
[link] [comments]

Related tags
- ❌
- r/netsec
September 6^th 2023 at 05:34

/r/netsec - Information Security News & Discussion
Peeking under the bonnet of the Litter Robot 3
September 6^th 2023 at 01:47

Peeking under the bonnet of the Litter Robot 3

By /u/thinkV

submitted by /u/thinkV
[link] [comments]

Related tags
- ❌
- r/netsec
September 6^th 2023 at 01:47

/r/netsec - Information Security News & Discussion
Android 14 blocks all modification of system certificates, even as root
September 5^th 2023 at 21:54

Android 14 blocks all modification of system certificates, even as root

By /u/pi3ch

submitted by /u/pi3ch
[link] [comments]

Related tags
- ❌
- r/netsec
September 5^th 2023 at 21:54

/r/netsec - Information Security News & Discussion
Live API Keys and Source Code Leaked in 4,500 of the Top Alexa Sites
September 5^th 2023 at 16:28

Live API Keys and Source Code Leaked in 4,500 of the Top Alexa Sites

By /u/Phorcez

submitted by /u/Phorcez
[link] [comments]

Related tags
- ❌
- r/netsec
September 5^th 2023 at 16:28

/r/netsec - Information Security News & Discussion
Flaws in IBM Security Verify allows hackers to steal sensitive information
September 5^th 2023 at 16:17

Flaws in IBM Security Verify allows hackers to steal sensitive information

By /u/nareksays

submitted by /u/nareksays
[link] [comments]

Related tags
- ❌
- r/netsec
September 5^th 2023 at 16:17

/r/netsec - Information Security News & Discussion
Analysis of a new Facebook profile stealer written in Node.js
September 5^th 2023 at 11:37

Analysis of a new Facebook profile stealer written in Node.js

By /u/nareksays

submitted by /u/nareksays
[link] [comments]

Related tags
- ❌
- r/netsec
September 5^th 2023 at 11:37

/r/netsec - Information Security News & Discussion
Improving nmap's service scanning accuracy and speed with nmap-service-probes data
September 5^th 2023 at 10:24

Improving nmap's service scanning accuracy and speed with nmap-service-probes data

By /u/MegaManSec2

submitted by /u/MegaManSec2
[link] [comments]

Related tags
- ❌
- r/netsec
September 5^th 2023 at 10:24

/r/netsec - Information Security News & Discussion
LFI/RCE Vulnerability in WordPress Media Library Assistant Plugin - CVE-2023-4634 - Patrowl
September 5^th 2023 at 08:22

LFI/RCE Vulnerability in WordPress Media Library Assistant Plugin - CVE-2023-4634 - Patrowl

By /u/Pepito_oh

submitted by /u/Pepito_oh
[link] [comments]

Related tags
- ❌
- r/netsec
September 5^th 2023 at 08:22

/r/netsec - Information Security News & Discussion
When URL parsers disagree (CVE-2023-38633)
September 5^th 2023 at 07:57

When URL parsers disagree (CVE-2023-38633)

By /u/ScottContini

submitted by /u/ScottContini
[link] [comments]

Related tags
- ❌
- r/netsec
September 5^th 2023 at 07:57

/r/netsec - Information Security News & Discussion
VulnHub Kioptrix Level 1.1 CTF Walkthrough - Step-by-step with Explanations
September 5^th 2023 at 05:12

VulnHub Kioptrix Level 1.1 CTF Walkthrough - Step-by-step with Explanations

By /u/kongwenbin

submitted by /u/kongwenbin
[link] [comments]

Related tags
- ❌
- r/netsec
September 5^th 2023 at 05:12

/r/netsec - Information Security News & Discussion
Chepy 6.0.0 released with lots of new changes, capabilities etc. Cyberchef in pure python
September 5^th 2023 at 00:27

Chepy 6.0.0 released with lots of new changes, capabilities etc. Cyberchef in pure python

By /u/securisec

submitted by /u/securisec
[link] [comments]

Related tags
- ❌
- r/netsec
September 5^th 2023 at 00:27

/r/netsec - Information Security News & Discussion
Uncovering Web Cache Deception: A Missed Vulnerability in the Most Unexpected Places
September 4^th 2023 at 22:00

Uncovering Web Cache Deception: A Missed Vulnerability in the Most Unexpected Places

By /u/vikzsharma

submitted by /u/vikzsharma
[link] [comments]

Related tags
- ❌
- r/netsec
September 4^th 2023 at 22:00

/r/netsec - Information Security News & Discussion
Nascent Malware Campaign Targets npm, PyPI, and RubyGems Developers
September 4^th 2023 at 18:57

Nascent Malware Campaign Targets npm, PyPI, and RubyGems Developers

By /u/louis11

submitted by /u/louis11
[link] [comments]

Related tags
- ❌
- r/netsec
September 4^th 2023 at 18:57

Using Open Source Software Composition Analysis Tool From Google. Presenting the usage of the osv-scanner tool in real-life Python and Java projects. A tool review with pros and cons.

By /u/theowni

submitted by /u/theowni
[link] [comments]

Related tags
- ❌
- r/netsec
September 4^th 2023 at 17:35

/r/netsec - Information Security News & Discussion
Useful resources for SOC Analyst and SOC Analyst candidates.
September 4^th 2023 at 15:13

Useful resources for SOC Analyst and SOC Analyst candidates.

By /u/ogunal00

submitted by /u/ogunal00
[link] [comments]

Related tags
- ❌
- r/netsec
September 4^th 2023 at 15:13

/r/netsec - Information Security News & Discussion
WordPress website fingerprint techniques
September 4^th 2023 at 08:07

WordPress website fingerprint techniques

By /u/theMiddleBlue

submitted by /u/theMiddleBlue
[link] [comments]

Related tags
- ❌
- r/netsec
September 4^th 2023 at 08:07

/r/netsec - Information Security News & Discussion
Microsoft Edge Forensics: Screenshot History
September 4^th 2023 at 07:38

Microsoft Edge Forensics: Screenshot History

By /u/OwnPreparation3424

submitted by /u/OwnPreparation3424
[link] [comments]

Related tags
- ❌
- r/netsec
September 4^th 2023 at 07:38

/r/netsec - Information Security News & Discussion
China-linked cybercriminals bypass Barracuda’s security patch
September 3^rd 2023 at 20:14

China-linked cybercriminals bypass Barracuda’s security patch

By /u/nareksays

submitted by /u/nareksays
[link] [comments]

Related tags
- ❌
- r/netsec
September 3^rd 2023 at 20:14

/r/netsec - Information Security News & Discussion
New advisory: File History Service (fhsvc.dll) Elevation of Privilege - SSD Secure Disclosure
September 3^rd 2023 at 14:19

New advisory: File History Service (fhsvc.dll) Elevation of Privilege - SSD Secure Disclosure

By /u/SSDisclosure

submitted by /u/SSDisclosure
[link] [comments]

Related tags
- ❌
- r/netsec
September 3^rd 2023 at 14:19

/r/netsec - Information Security News & Discussion
Secure FastAPI with eBPF
September 3^rd 2023 at 11:02

Secure FastAPI with eBPF

By /u/cov_id19

submitted by /u/cov_id19
[link] [comments]

Related tags
- ❌
- r/netsec
September 3^rd 2023 at 11:02

/r/netsec - Information Security News & Discussion
Session Hijacking Visual Exploitation (SHVE). New tool for XSS Exploitation
September 1^st 2023 at 23:31

Session Hijacking Visual Exploitation (SHVE). New tool for XSS Exploitation

By /u/nibblesec

submitted by /u/nibblesec
[link] [comments]

Related tags
- ❌
- r/netsec
September 1^st 2023 at 23:31

/r/netsec - Information Security News & Discussion
New OpenSecurityTraining2 class "Debuggers 3301: HyperDbg" by Sina Karvandi (~16 hours)
September 1^st 2023 at 12:16

New OpenSecurityTraining2 class "Debuggers 3301: HyperDbg" by Sina Karvandi (~16 hours)

By /u/OpenSecurityTraining

submitted by /u/OpenSecurityTraining
[link] [comments]

Related tags
- ❌
- r/netsec
September 1^st 2023 at 12:16

/r/netsec - Information Security News & Discussion
NetNTLMv1 Downgrade attacks
September 1^st 2023 at 09:00

NetNTLMv1 Downgrade attacks

By /u/S3cur3Th1sSh1t

submitted by /u/S3cur3Th1sSh1t
[link] [comments]

Related tags
- ❌
- r/netsec
September 1^st 2023 at 09:00

/r/netsec - Information Security News & Discussion
Mashing Enter to bypass Linux full disk encryption with TPM, Clevis, dracut and systemd
August 31^st 2023 at 22:50

Mashing Enter to bypass Linux full disk encryption with TPM, Clevis, dracut and systemd

By /u/MysteriousHotel3017

submitted by /u/MysteriousHotel3017
[link] [comments]

Related tags
- ❌
- r/netsec
August 31^st 2023 at 22:50

/r/netsec - Information Security News & Discussion
Bypassing Windows Defender LSASS Dump Detection with EvilLsassTwin
August 31^st 2023 at 18:32

Bypassing Windows Defender LSASS Dump Detection with EvilLsassTwin

By /u/EphReborn

submitted by /u/EphReborn
[link] [comments]

Related tags
- ❌
- r/netsec
August 31^st 2023 at 18:32

/r/netsec - Information Security News & Discussion
BitLocker, TPM and Pluton | What Are They and How Do They Work
August 31^st 2023 at 17:58

BitLocker, TPM and Pluton | What Are They and How Do They Work

By /u/HotCakeXXXXXXXXXXXXX

submitted by /u/HotCakeXXXXXXXXXXXXX
[link] [comments]

Related tags
- ❌
- r/netsec
August 31^st 2023 at 17:58

(nodejs) CVEAggregate - Generate and work with EPSS probabilities, CVSS vectors, and CISA-KEV due dates mapped by CVE IDs

By /u/r3volved

submitted by /u/r3volved
[link] [comments]

Related tags
- ❌
- r/netsec
August 31^st 2023 at 17:27

/r/netsec - Information Security News & Discussion
A Deep Dive into Brute Ratel C4 payloads
August 31^st 2023 at 13:01

A Deep Dive into Brute Ratel C4 payloads

By /u/CyberMasterV

submitted by /u/CyberMasterV
[link] [comments]

Related tags
- ❌
- r/netsec
August 31^st 2023 at 13:01

/r/netsec - Information Security News & Discussion
Unpinnable Actions: How Malicious Code Can Sneak into Your GitHub Actions Workflows
August 31^st 2023 at 10:09

Unpinnable Actions: How Malicious Code Can Sneak into Your GitHub Actions Workflows

By /u/Due_Lengthiness_9329

submitted by /u/Due_Lengthiness_9329
[link] [comments]

Related tags
- ❌
- r/netsec
August 31^st 2023 at 10:09

/r/netsec - Information Security News & Discussion
Converting Tokens to Session Cookies for Outlook Web Application
August 31^st 2023 at 08:10

Converting Tokens to Session Cookies for Outlook Web Application

By /u/Vast-Part7039

submitted by /u/Vast-Part7039
[link] [comments]

Related tags
- ❌
- r/netsec
August 31^st 2023 at 08:10

/r/netsec - Information Security News & Discussion
Contain Yourself: Staying Undetected Using the Windows Container Isolation Framework
August 31^st 2023 at 07:42

Contain Yourself: Staying Undetected Using the Windows Container Isolation Framework

By /u/Daniel24z25

Research presented on DEF CON 31 that demonstrates how the Windows containers isolation framework (wcifs.sys), which is loaded on every modern Windows system by default, can be abused to bypass EDR file system malware protection, file/folder write restrictions and I/O ETW log-based correlations.

submitted by /u/Daniel24z25
[link] [comments]

Related tags
- ❌
- r/netsec
August 31^st 2023 at 07:42

/r/netsec - Information Security News & Discussion
Bypassing Defender’s LSASS dump detection and PPL protection In Go
August 30^th 2023 at 17:00

Bypassing Defender’s LSASS dump detection and PPL protection In Go

By /u/tasty-pepperoni

submitted by /u/tasty-pepperoni
[link] [comments]

Related tags
- ❌
- r/netsec
August 30^th 2023 at 17:00

/r/netsec - Information Security News & Discussion
NosyMonkey: API hooking and code injection made easy! - Anvil Secure
August 30^th 2023 at 16:30

NosyMonkey: API hooking and code injection made easy! - Anvil Secure

By /u/anvilventures

submitted by /u/anvilventures
[link] [comments]

Related tags
- ❌
- r/netsec
August 30^th 2023 at 16:30

/r/netsec - Information Security News & Discussion
GitHub - APT64/EternalHushFramework: EternalHush - new free advanced open-source c2 framework
August 30^th 2023 at 15:47

GitHub - APT64/EternalHushFramework: EternalHush - new free advanced open-source c2 framework

By /u/novkira03

submitted by /u/novkira03
[link] [comments]

Related tags
- ❌
- r/netsec
August 30^th 2023 at 15:47

/r/netsec - Information Security News & Discussion
Anti-Deepfake Proposal
August 30^th 2023 at 13:44

Anti-Deepfake Proposal

By /u/endless

submitted by /u/endless
[link] [comments]

Related tags
- ❌
- r/netsec
August 30^th 2023 at 13:44