Login
FreshRSS
Login
/r/netsec - Information Security News & Discussion
Introducing CloudFox: Automating situational awareness for cloud penetration tests
By
/u/sethsec
β September 13
th
2022 at 14:56
submitted by
/u/sethsec
[link]
[comments]
/r/netsec - Information Security News & Discussion
The magic about how modern OS boot
By
/u/hardenedvault
β September 13
th
2022 at 10:28
submitted by
/u/hardenedvault
[link]
[comments]
/r/netsec - Information Security News & Discussion
GitHub - thiagopeixoto/massayo: Massayo is a small proof-of-concept Rust library which removes AV/EDR hooks in a given system DLL by loading a freshy copy from disk and replacing the .text section of the currently loaded DLL
By
/u/thewatcher_
β September 12
th
2022 at 21:37
submitted by
/u/thewatcher_
[link]
[comments]
/r/netsec - Information Security News & Discussion
The seventh way to call a JavaScript function without parentheses
By
/u/0xdea
β September 12
th
2022 at 18:27
submitted by
/u/0xdea
[link]
[comments]
/r/netsec - Information Security News & Discussion
How a Script Kiddie and 25 Lines of Python Could Theoretically Devastate Americaβs Gas Stations
By
/u/entropydaemon9
β September 12
th
2022 at 17:31
submitted by
/u/entropydaemon9
[link]
[comments]
/r/netsec - Information Security News & Discussion
Redeye is a platform to cover all aspects of red team engagement (data management, red team operation management, etc.)
By
/u/Idov31
β September 12
th
2022 at 14:39
submitted by
/u/Idov31
[link]
[comments]
/r/netsec - Information Security News & Discussion
Letβs Encrypt is turning on new infrastructure to support revoking certificates via Certificate Revocation Lists
By
/u/c0r0n3r
β September 12
th
2022 at 12:49
submitted by
/u/c0r0n3r
[link]
[comments]
/r/netsec - Information Security News & Discussion
Data-Centric Security: Threat Hunting based on Zipfβs Law
By
/u/ditrizna
β September 12
th
2022 at 06:20
submitted by
/u/ditrizna
[link]
[comments]
/r/netsec - Information Security News & Discussion
The Anatomy of a Malicious Package
By
/u/ambray_
β September 12
th
2022 at 03:36
submitted by
/u/ambray_
[link]
[comments]
/r/netsec - Information Security News & Discussion
How requests-ip-rotator for bypassing rate limiting got me 6th on the leaderboard for ipv4.games
By
/u/fiasco_averted
β September 11
th
2022 at 18:20
submitted by
/u/fiasco_averted
[link]
[comments]
/r/netsec - Information Security News & Discussion
"Pull Request Hijacking" - bypassing code review enforcement in GitHub
By
/u/dotanoam
β September 11
th
2022 at 17:06
submitted by
/u/dotanoam
[link]
[comments]
/r/netsec - Information Security News & Discussion
Thoughts on the use of NoVNC for phishing campaigns
By
/u/gid0rah
β September 11
th
2022 at 15:04
submitted by
/u/gid0rah
[link]
[comments]
/r/netsec - Information Security News & Discussion
x86matthew - WriteProcessMemoryAPC - Write memory to a remote process using APC calls
By
/u/jeandrew
β September 10
th
2022 at 16:55
submitted by
/u/jeandrew
[link]
[comments]
/r/netsec - Information Security News & Discussion
SiliFuzz - Fuzzing CPUs by proxy
By
/u/sanitybit
β September 9
th
2022 at 20:04
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
βGIFShellβ β Covert Attack Chain and C2 Utilizing Microsoft Teams GIFs
By
/u/sanitybit
β September 9
th
2022 at 19:56
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Crimeware Trends | Ransomware Developers Turn to Intermittent Encryption to Evade Detection
By
/u/CyberMasterV
β September 9
th
2022 at 19:48
submitted by
/u/CyberMasterV
[link]
[comments]
/r/netsec - Information Security News & Discussion
Spotlight: Occlum open source software for Intel SGX
By
/u/laramontoyalaske
β September 9
th
2022 at 15:57
submitted by
/u/laramontoyalaske
[link]
[comments]
/r/netsec - Information Security News & Discussion
Fuzzing beyond memory corruption: Finding broader classes of vulnerabilities automatically
By
/u/jeandrew
β September 9
th
2022 at 09:34
submitted by
/u/jeandrew
[link]
[comments]
/r/netsec - Information Security News & Discussion
Attacking Firecracker: AWS' microVM Monitor Written in Rust
By
/u/Gallus
β September 8
th
2022 at 16:19
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Riding the InfoRail to Exploit Ivanti Avalanche β Part 2
By
/u/0xdea
β September 8
th
2022 at 16:11
submitted by
/u/0xdea
[link]
[comments]
/r/netsec - Information Security News & Discussion
Understanding Windows Containers Communication - And a new OSS tool! RPCMon
By
/u/jat0369
β September 8
th
2022 at 16:01
submitted by
/u/jat0369
[link]
[comments]
/r/netsec - Information Security News & Discussion
cobaltstrike-headless: (mostly) functional headless cobalt strike client.
By
/u/0xdea
β September 8
th
2022 at 15:34
submitted by
/u/0xdea
[link]
[comments]
/r/netsec - Information Security News & Discussion
Fork Bomb for Flutter
By
/u/lmpact_
β September 8
th
2022 at 15:15
submitted by
/u/lmpact_
[link]
[comments]
/r/netsec - Information Security News & Discussion
Bypass Credential Exfiltration Detection - Hacking The Cloud
By
/u/RedTermSession
β September 8
th
2022 at 14:31
submitted by
/u/RedTermSession
[link]
[comments]
/r/netsec - Information Security News & Discussion
Exploiting Laravel based applications with leaked APP_KEYs and Queues
By
/u/Gallus
β September 8
th
2022 at 08:32
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
A dangerous way to fix Integer Overflow in Solidity
By
/u/boxiso6989
β September 8
th
2022 at 08:05
submitted by
/u/boxiso6989
[link]
[comments]
/r/netsec - Information Security News & Discussion
Monkey 365 is a plugin-based PowerShell module that can be used to review the security posture of your Microsoft cloud environment.
By
/u/sanitybit
β September 8
th
2022 at 07:13
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Attacks on Sysmon Revisited - SysmonEnte
By
/u/sanitybit
β September 8
th
2022 at 02:27
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Exploiting Flipper Zero NFC file loader
By
/u/VVX7
β September 7
th
2022 at 20:37
submitted by
/u/VVX7
[link]
[comments]
/r/netsec - Information Security News & Discussion
BSidesLV 2022 Conference Recordings
By
/u/sanitybit
β September 7
th
2022 at 18:06
View the talk schedule
here
, and then jump into the corresponding playlist:
Breaking Ground
Common Ground
Ground Floor
Ground Truth
Hire Ground
I Am The Cavalry
Passwords Con
Proving Ground
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Constant-Time Data Processing At a Secret Offset, Privacy and QUIC
By
/u/sanitybit
β September 7
th
2022 at 17:40
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
SharkFest'21 Wireshark Conference Playlist - hours of free netsec and network analysis content
By
/u/haveitall
β September 7
th
2022 at 17:40
submitted by
/u/haveitall
[link]
[comments]
/r/netsec - Information Security News & Discussion
How BSD Authentication Works
By
/u/sanitybit
β September 7
th
2022 at 17:26
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
TTPs Associated With a New Version of the BlackCat Ransomware
By
/u/CyberMasterV
β September 7
th
2022 at 14:02
submitted by
/u/CyberMasterV
[link]
[comments]
/r/netsec - Information Security News & Discussion
evilgophish
By
/u/edreatingmonkey
β September 7
th
2022 at 13:14
submitted by
/u/edreatingmonkey
[link]
[comments]
/r/netsec - Information Security News & Discussion
OSCP 110 - My own cheat sheet
By
/u/_kawhl
β September 7
th
2022 at 12:03
submitted by
/u/_kawhl
[link]
[comments]
/r/netsec - Information Security News & Discussion
Groovy Template Engine Exploitation - Notes from a real case scenario
By
/u/0xdea
β September 7
th
2022 at 10:29
submitted by
/u/0xdea
[link]
[comments]
/r/netsec - Information Security News & Discussion
Zero Day Initiative β CVE-2022-34715: More Microsoft Windows NFS v4 Remote Code Execution
By
/u/jeandrew
β September 7
th
2022 at 09:30
submitted by
/u/jeandrew
[link]
[comments]
/r/netsec - Information Security News & Discussion
Linux CONFIG_WATCH_QUEUE LPE
By
/u/Gallus
β September 7
th
2022 at 06:39
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Vulnerability Management for Go
By
/u/sanitybit
β September 7
th
2022 at 05:59
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Sensitive Command Token - So much offense in my defense
By
/u/0xdea
β September 6
th
2022 at 19:13
submitted by
/u/0xdea
[link]
[comments]
/r/netsec - Information Security News & Discussion
Ryuk Ransomware: History, Timeline, and Adversary Simulation
By
/u/achilles4828
β September 6
th
2022 at 17:13
submitted by
/u/achilles4828
[link]
[comments]
/r/netsec - Information Security News & Discussion
Vulnerability Analysis of CVE-2018-12613 β phpMyAdmin 4.8.1 Remote Code Execution
By
/u/sandeep1337
β September 6
th
2022 at 16:01
submitted by
/u/sandeep1337
[link]
[comments]
/r/netsec - Information Security News & Discussion
23 year old Denial of Service bug in Curl
By
/u/sanitybit
β September 6
th
2022 at 15:56
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Unpatched Unauthenticated Blind SSRF in WordPress Core
By
/u/monoimpact
β September 6
th
2022 at 15:42
submitted by
/u/monoimpact
[link]
[comments]
/r/netsec - Information Security News & Discussion
How to turn security research into profit: a CL.0 case study
By
/u/albinowax
β September 6
th
2022 at 13:28
submitted by
/u/albinowax
[link]
[comments]
/r/netsec - Information Security News & Discussion
Hardware debug probes for JTAG debugging for Intel and AMD - Necrosys/x86-JTAG-Information
By
/u/Gallus
β September 6
th
2022 at 13:09
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
TA505 Group's TeslaGun In-Depth Analysis
By
/u/wtfse
β September 6
th
2022 at 10:13
submitted by
/u/wtfse
[link]
[comments]
/r/netsec - Information Security News & Discussion
I patched my Slack client to keep "Oops" messages others delete
By
/u/sh0n1z
β September 5
th
2022 at 23:36
submitted by
/u/sh0n1z
[link]
[comments]
/r/netsec - Information Security News & Discussion
Anatomy of an exploit in Windows win32k - CVE-2022-21882 - Avira Blog
By
/u/jeandrew
β September 5
th
2022 at 18:39
submitted by
/u/jeandrew
[link]
[comments]
/r/netsec - Information Security News & Discussion
Shielder - How to Decrypt Manage Engine PMP Passwords for Fun and Domain Admin - a Red Teaming Tale
By
/u/smaury
β September 5
th
2022 at 14:47
submitted by
/u/smaury
[link]
[comments]
/r/netsec - Information Security News & Discussion
Simple IBM i (AS/400) hacking
By
/u/buherator
β September 5
th
2022 at 12:06
submitted by
/u/buherator
[link]
[comments]
/r/netsec - Information Security News & Discussion
Hacking my Helium Crypto Miner
By
/u/wez32
β September 5
th
2022 at 10:53
submitted by
/u/wez32
[link]
[comments]
/r/netsec - Information Security News & Discussion
Walkthrough of an unauthenticated RCE affecting pfBlockerNG <= 2.1.4_26 (CVE-2022-31814)
By
/u/IHTeam
β September 5
th
2022 at 08:40
submitted by
/u/IHTeam
[link]
[comments]
/r/netsec - Information Security News & Discussion
CVE-2022-30190, AKA Follina, Uses Macro-less Word Docs to Drop RCE Files
By
/u/anyore909
β September 5
th
2022 at 08:13
submitted by
/u/anyore909
[link]
[comments]
/r/netsec - Information Security News & Discussion
PoC: resolving dynamically System Service Numbers (SSN) for syscalling in VBA (x64) using FreshyCalls technique
By
/u/gid0rah
β September 5
th
2022 at 08:00
submitted by
/u/gid0rah
[link]
[comments]
/r/netsec - Information Security News & Discussion
WPHash - Fingerprinting WordPress Plugins, now in public beta and open to feedback and collaboration
By
/u/_cydave
β September 4
th
2022 at 18:44
submitted by
/u/_cydave
[link]
[comments]
/r/netsec - Information Security News & Discussion
Arti 1.0.0: Rust Tor implementation is ready for production use
By
/u/sanitybit
β September 3
rd
2022 at 18:37
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Fun with Windows Containers - Popping Calc
By
/u/sanitybit
β September 3
rd
2022 at 18:28
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Chromeloader browser hijacker
By
/u/CyberMasterV
β September 3
rd
2022 at 17:46
submitted by
/u/CyberMasterV
[link]
[comments]
Load more articles
Login
FreshRSS