Walkthrough showcasing how the EvilSlackbot red team framework can be used to send simulated phishing messages, malicious files, and search for leaked secrets within Slack Workspaces.

submitted by /u/Dr_Mantis_Tobbogon
[link] [comments]

Related tags
- ❌
- r/netsec
December 4^th 2023 at 13:51

/r/netsec - Information Security News & Discussion
SQL Brute Force Leads to BlueSky Ransomware
December 4^th 2023 at 13:16

SQL Brute Force Leads to BlueSky Ransomware

By /u/TheDFIRReport

submitted by /u/TheDFIRReport
[link] [comments]

Related tags
- ❌
- r/netsec
December 4^th 2023 at 13:16

/r/netsec - Information Security News & Discussion
Shooting Yourself in the .flags – Jailbreaking the Sonos Era 100
December 4^th 2023 at 10:31

Shooting Yourself in the .flags – Jailbreaking the Sonos Era 100

By /u/poltess0

submitted by /u/poltess0
[link] [comments]

Related tags
- ❌
- r/netsec
December 4^th 2023 at 10:31

/r/netsec - Information Security News & Discussion
Owncloud: details about CVE-2023-49103 and CVE-2023-49105
December 4^th 2023 at 10:02

Owncloud: details about CVE-2023-49103 and CVE-2023-49105

By /u/poltess0

submitted by /u/poltess0
[link] [comments]

Related tags
- ❌
- r/netsec
December 4^th 2023 at 10:02

/r/netsec - Information Security News & Discussion
Tricard: Malware Sandboxes Fingerprinting
December 1^st 2023 at 13:52

Tricard: Malware Sandboxes Fingerprinting

By /u/_kawhl

submitted by /u/_kawhl
[link] [comments]

Related tags
- ❌
- r/netsec
December 1^st 2023 at 13:52

/r/netsec - Information Security News & Discussion
We Hacked Ourselves With DNS Rebinding
December 1^st 2023 at 12:26

We Hacked Ourselves With DNS Rebinding

By /u/dcthatch

submitted by /u/dcthatch
[link] [comments]

Related tags
- ❌
- r/netsec
December 1^st 2023 at 12:26

/r/netsec - Information Security News & Discussion
Autonomous Hacking of PHP Web Applications at the Bytecode Level
December 1^st 2023 at 03:32

Autonomous Hacking of PHP Web Applications at the Bytecode Level

By /u/finixbit

submitted by /u/finixbit
[link] [comments]

Related tags
- ❌
- r/netsec
December 1^st 2023 at 03:32

/r/netsec - Information Security News & Discussion
To Schnorr and beyond (part 2)
November 30^th 2023 at 15:47

To Schnorr and beyond (part 2)

By /u/feross

submitted by /u/feross
[link] [comments]

Related tags
- ❌
- r/netsec
November 30^th 2023 at 15:47

/r/netsec - Information Security News & Discussion
TRAP; RESET; POISON; - Taking over a country Kaminsky style
November 30^th 2023 at 12:26

TRAP; RESET; POISON; - Taking over a country Kaminsky style

By /u/The_Login

submitted by /u/The_Login
[link] [comments]

Related tags
- ❌
- r/netsec
November 30^th 2023 at 12:26

/r/netsec - Information Security News & Discussion
Okta Threat Hunting Guide - Part 2
November 30^th 2023 at 07:21

Okta Threat Hunting Guide - Part 2

By /u/Or1rez

submitted by /u/Or1rez
[link] [comments]

Related tags
- ❌
- r/netsec
November 30^th 2023 at 07:21

/r/netsec - Information Security News & Discussion
Decompilation Debugging - Pretending All Binaries Come With Source Code
November 30^th 2023 at 03:15

Decompilation Debugging - Pretending All Binaries Come With Source Code

By /u/onlinereadme

submitted by /u/onlinereadme
[link] [comments]

Related tags
- ❌
- r/netsec
November 30^th 2023 at 03:15

/r/netsec - Information Security News & Discussion
Pentest Muse: an Open Source AI-Powered Tool for Ethical Hacking
November 30^th 2023 at 00:39

Pentest Muse: an Open Source AI-Powered Tool for Ethical Hacking

By /u/Jumpy-Tumbleweed-437

submitted by /u/Jumpy-Tumbleweed-437
[link] [comments]

Related tags
- ❌
- r/netsec
November 30^th 2023 at 00:39

/r/netsec - Information Security News & Discussion
DICOM Protocol Vulnerabilities and Attack Surface
November 29^th 2023 at 20:49

DICOM Protocol Vulnerabilities and Attack Surface

By /u/derp6996

submitted by /u/derp6996
[link] [comments]

Related tags
- ❌
- r/netsec
November 29^th 2023 at 20:49

/r/netsec - Information Security News & Discussion
New RCE popchain in WordPress
November 28^th 2023 at 18:28

New RCE popchain in WordPress

By /u/monoimpact

submitted by /u/monoimpact
[link] [comments]

Related tags
- ❌
- r/netsec
November 28^th 2023 at 18:28

/r/netsec - Information Security News & Discussion
BLUFFS: Bluetooth Forward and Future Secrecy Attacks and Defenses
November 28^th 2023 at 17:48

BLUFFS: Bluetooth Forward and Future Secrecy Attacks and Defenses

By /u/sanitybit

submitted by /u/sanitybit
[link] [comments]

Related tags
- ❌
- r/netsec
November 28^th 2023 at 17:48

/r/netsec - Information Security News & Discussion
I made a tool to analyze incoming HTTP/DNS requests. Let me know how it is
November 28^th 2023 at 14:16

I made a tool to analyze incoming HTTP/DNS requests. Let me know how it is

By /u/adragos_

submitted by /u/adragos_
[link] [comments]

Related tags
- ❌
- r/netsec
November 28^th 2023 at 14:16

Fuzzer-V: New project for Fuzzing Hyper-V VSP's using Intel Processor Trace (IPT) for code coverage guided fuzzing, built upon WinAFL, winipt, HAFL1, and Microsoft’s IPT.sys.

By /u/jat0369

submitted by /u/jat0369
[link] [comments]

Related tags
- ❌
- r/netsec
November 28^th 2023 at 14:06

/r/netsec - Information Security News & Discussion
Building Immune Authorization: AppSec in Healthcare Apps
November 28^th 2023 at 11:00

Building Immune Authorization: AppSec in Healthcare Apps

By /u/Permit_io

submitted by /u/Permit_io
[link] [comments]

Related tags
- ❌
- r/netsec
November 28^th 2023 at 11:00

/r/netsec - Information Security News & Discussion
Information Rights Management VS Traditional Digital Rights Management
November 28^th 2023 at 09:16

Information Rights Management VS Traditional Digital Rights Management

By /u/zolakrystie

submitted by /u/zolakrystie
[link] [comments]

Related tags
- ❌
- r/netsec
November 28^th 2023 at 09:16

/r/netsec - Information Security News & Discussion
Unmasking the Dark Art of Vectored Exception Handling: Bypassing XDR and EDR in the Evolving CyberThreat Landscape - Donato Onofri
November 28^th 2023 at 08:40

Unmasking the Dark Art of Vectored Exception Handling: Bypassing XDR and EDR in the Evolving CyberThreat Landscape - Donato Onofri

By /u/himazawa

Slides from the Black Hat MEA talk

submitted by /u/himazawa
[link] [comments]

Related tags
- ❌
- r/netsec
November 28^th 2023 at 08:40

/r/netsec - Information Security News & Discussion
Big update to my Semgrep C/C++ ruleset
November 28^th 2023 at 06:46

Big update to my Semgrep C/C++ ruleset

By /u/0xdea

submitted by /u/0xdea
[link] [comments]

Related tags
- ❌
- r/netsec
November 28^th 2023 at 06:46

/r/netsec - Information Security News & Discussion
Have I Been Squatted? — Check if your domain has been typosquatted
November 27^th 2023 at 18:12

Have I Been Squatted? — Check if your domain has been typosquatted

By /u/JDBHub

submitted by /u/JDBHub
[link] [comments]

Related tags
- ❌
- r/netsec
November 27^th 2023 at 18:12

/r/netsec - Information Security News & Discussion
LostTrust Ransomware - Trust nothing
November 27^th 2023 at 16:59

LostTrust Ransomware - Trust nothing

By /u/ShadowStackRE

submitted by /u/ShadowStackRE
[link] [comments]

Related tags
- ❌
- r/netsec
November 27^th 2023 at 16:59

/r/netsec - Information Security News & Discussion
EvilSlackbot: A Slack Attack Framework
November 27^th 2023 at 14:07

EvilSlackbot: A Slack Attack Framework

By /u/Dr_Mantis_Tobbogon

I created this Slack attack framework for red teams and pentesters conducting Phishing simulations within Slack workspaces. EvilSlackbot utilizes xoxb bot tokens and allows you to send Spoofed bot messages, phishing links, files, and search Slack for leaked secrets via a keyword search.

This tool can also be used to automate slack phishing exercises, by feeding EvilSlackbot a list of emails you would like to test by sending them simulated phishing messages.

submitted by /u/Dr_Mantis_Tobbogon
[link] [comments]

Related tags
- ❌
- r/netsec
November 27^th 2023 at 14:07

/r/netsec - Information Security News & Discussion
Defending Azure Active Directory (Entra ID): Unveiling Threats Through Hunting Techniques
November 26^th 2023 at 21:57

Defending Azure Active Directory (Entra ID): Unveiling Threats Through Hunting Techniques

By /u/Or1rez

submitted by /u/Or1rez
[link] [comments]

Related tags
- ❌
- r/netsec
November 26^th 2023 at 21:57

/r/netsec - Information Security News & Discussion
Open Source Security Assessment Collaboration Platform
November 26^th 2023 at 09:44

Open Source Security Assessment Collaboration Platform

By /u/ascetik

submitted by /u/ascetik
[link] [comments]

Related tags
- ❌
- r/netsec
November 26^th 2023 at 09:44

/r/netsec - Information Security News & Discussion
Comprehensive guide on writing your first metasploit remote code execution module
November 24^th 2023 at 08:47

Comprehensive guide on writing your first metasploit remote code execution module

By /u/security_aaudit

submitted by /u/security_aaudit
[link] [comments]

Related tags
- ❌
- r/netsec
November 24^th 2023 at 08:47