Login
FreshRSS
Login
/r/netsec - Information Security News & Discussion
Intent Summit 2022 - The Security Research Summit. For researchers. By researchers. CFP now open!
By
/u/jat0369
β September 21
st
2022 at 09:15
submitted by
/u/jat0369
[link]
[comments]
/r/netsec - Information Security News & Discussion
Exploiting a Seagate service to create a SYSTEM shell (CVE-2022-40286)
By
/u/sanitybit
β September 21
st
2022 at 06:59
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Practical Attacks against NTLMv1
By
/u/0xdea
β September 21
st
2022 at 06:49
submitted by
/u/0xdea
[link]
[comments]
/r/netsec - Information Security News & Discussion
BGGP3 has completed! 34 entries, 23 writeups, and 3 CVE's.
By
/u/netsecfriends
β September 21
st
2022 at 01:54
submitted by
/u/netsecfriends
[link]
[comments]
/r/netsec - Information Security News & Discussion
Oracle Cloud vulnerability allows unauthorized access to customer cloud storage volumes
By
/u/sagitz_
β September 20
th
2022 at 22:33
submitted by
/u/sagitz_
[link]
[comments]
/r/netsec - Information Security News & Discussion
Cool Attack -- Bypassing NAT and Firewalls to Shut Down PDUs
By
/u/derp6996
β September 20
th
2022 at 19:43
submitted by
/u/derp6996
[link]
[comments]
/r/netsec - Information Security News & Discussion
Open Source Tool to Collect Volatile Data for Incident Response
By
/u/0x636f6f6c
β September 20
th
2022 at 15:45
submitted by
/u/0x636f6f6c
[link]
[comments]
/r/netsec - Information Security News & Discussion
I'm Building a Self-Destructing USB Drive Part 2
By
/u/Machinehum
β September 19
th
2022 at 16:48
submitted by
/u/Machinehum
[link]
[comments]
/r/netsec - Information Security News & Discussion
Vulnerabilities Identified in EZVIZ Smart Cams
By
/u/Turbulent-Ant-6813
β September 19
th
2022 at 15:41
submitted by
/u/Turbulent-Ant-6813
[link]
[comments]
/r/netsec - Information Security News & Discussion
When Athletic Abilities Just Aren't Enough - Scoreboard Hacking Part 1
By
/u/mdulin2
β September 19
th
2022 at 12:12
submitted by
/u/mdulin2
[link]
[comments]
/r/netsec - Information Security News & Discussion
kubernetes-sec-alert: Track Kubernetes CVEs by native GitHub notifications!
By
/u/mostafahussein
β September 18
th
2022 at 05:49
submitted by
/u/mostafahussein
[link]
[comments]
/r/netsec - Information Security News & Discussion
Cloning internal Google repos for fun and⦠info?
By
/u/lukeberner
β September 16
th
2022 at 05:11
submitted by
/u/lukeberner
[link]
[comments]
/r/netsec - Information Security News & Discussion
GTA 6 source code and videos leaked after Rockstar Games hack
By
/u/CyberMasterV
β September 19
th
2022 at 07:02
submitted by
/u/CyberMasterV
[link]
[comments]
/r/netsec - Information Security News & Discussion
ldapnomnom: Anonymously bruteforce Active Directory usernames from Domain Controllers by abusing LDAP Ping requests (cLDAP)
By
/u/sanitybit
β September 18
th
2022 at 19:39
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
requests-ip-rotator: A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.
By
/u/sanitybit
β September 18
th
2022 at 01:56
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Virtual FIDO is a virtual USB device that implements the FIDO2/U2F protocol (like a YubiKey) in order to support 2FA and WebAuthN.
By
/u/sanitybit
β September 18
th
2022 at 01:21
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
LLVM Passes for Security: A Brief Introduction (Part 1/4)
By
/u/sanitybit
β September 17
th
2022 at 21:10
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Securing the Supply Chain of Nothing
By
/u/sanitybit
β September 17
th
2022 at 21:07
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
cloudvelo: An experimental Velociraptor implementation using cloud infrastructure
By
/u/sanitybit
β September 16
th
2022 at 19:33
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
DylibHijackTest: Discover DYLD_INSERT_LIBRARIES hijacks on macOS
By
/u/sanitybit
β September 16
th
2022 at 07:47
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
A Basic Guide to iOS Testing in 2022
By
/u/sanitybit
β September 16
th
2022 at 07:44
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Jetty Features for Hacking Web Apps
By
/u/sanitybit
β September 16
th
2022 at 07:42
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Staged Payloads from Kali Linux | PT Phone Home β DNS
By
/u/sanitybit
β September 16
th
2022 at 07:27
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Uber hacked, internal systems breached and vulnerability reports stolen
By
/u/Fugitif
β September 16
th
2022 at 07:05
submitted by
/u/Fugitif
[link]
[comments]
/r/netsec - Information Security News & Discussion
Undermining Microsoft Teams Security by Mining Tokens
By
/u/flexibeast
β September 16
th
2022 at 01:16
submitted by
/u/flexibeast
[link]
[comments]
/r/netsec - Information Security News & Discussion
NPM Malware Targeting HubSpotβs Bucky Client
By
/u/louis11
β September 15
th
2022 at 17:47
submitted by
/u/louis11
[link]
[comments]
/r/netsec - Information Security News & Discussion
CVE North Stars: Leverage CVEs to kickstart your next vulnerability hunting adventure
By
/u/onlinereadme
β September 15
th
2022 at 16:56
submitted by
/u/onlinereadme
[link]
[comments]
/r/netsec - Information Security News & Discussion
The Blind Spots of BloodHound
By
/u/0xfffffg
β September 15
th
2022 at 15:25
submitted by
/u/0xfffffg
[link]
[comments]
/r/netsec - Information Security News & Discussion
Getting started with gVisor support in Falco
By
/u/vjjmiras
β September 15
th
2022 at 14:31
submitted by
/u/vjjmiras
[link]
[comments]
/r/netsec - Information Security News & Discussion
A Detailed Analysis of the Quantum Ransomware [PDF]
By
/u/CyberMasterV
β September 15
th
2022 at 12:04
submitted by
/u/CyberMasterV
[link]
[comments]
/r/netsec - Information Security News & Discussion
Buffer overflow in the OpenRazer open-source kernel drivers causing denial of service and privilege escalation.
By
/u/jat0369
β September 15
th
2022 at 11:05
submitted by
/u/jat0369
[link]
[comments]
/r/netsec - Information Security News & Discussion
Security Advisory: NETGEAR Routers FunJSQ Vulnerabilities
By
/u/g_e_r_h_a_r_d
β September 15
th
2022 at 08:57
submitted by
/u/g_e_r_h_a_r_d
[link]
[comments]
/r/netsec - Information Security News & Discussion
Traces of Windows remote command execution
By
/u/jeandrew
β September 15
th
2022 at 04:51
submitted by
/u/jeandrew
[link]
[comments]
/r/netsec - Information Security News & Discussion
It pays to be Circomspect
By
/u/Gallus
β September 15
th
2022 at 04:01
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Codecepticon - An offensive security obfuscator for C#, VBA, and PowerShell
By
/u/h0wlett
β September 14
th
2022 at 18:22
submitted by
/u/h0wlett
[link]
[comments]
/r/netsec - Information Security News & Discussion
Caching the Un-cacheables - Abusing URL Parser Confusions (Web Cache Poisoning Technique)
By
/u/albinowax
β September 14
th
2022 at 14:57
submitted by
/u/albinowax
[link]
[comments]
/r/netsec - Information Security News & Discussion
135 is the new 445: PsExec over Remote Procedure Calls
By
/u/0xdea
β September 14
th
2022 at 14:57
submitted by
/u/0xdea
[link]
[comments]
/r/netsec - Information Security News & Discussion
Bypassing IP based brute force protection with IPv6 temporary addresses
By
/u/nopslider
β September 14
th
2022 at 13:20
submitted by
/u/nopslider
[link]
[comments]
/r/netsec - Information Security News & Discussion
Attacking the Android kernel using the Qualcomm TrustZone
By
/u/jeandrew
β September 14
th
2022 at 09:44
submitted by
/u/jeandrew
[link]
[comments]
/r/netsec - Information Security News & Discussion
How Cymulate Discovered an Abuse Risk in Google Cloud Platform (GCP)
By
/u/cutboxhe
β September 14
th
2022 at 08:04
submitted by
/u/cutboxhe
[link]
[comments]
/r/netsec - Information Security News & Discussion
Hacking Unity Games with Malicious GameObjects, Part 2
By
/u/haxboxone
β September 13
th
2022 at 17:02
submitted by
/u/haxboxone
[link]
[comments]
/r/netsec - Information Security News & Discussion
Introducing CloudFox: Automating situational awareness for cloud penetration tests
By
/u/sethsec
β September 13
th
2022 at 14:56
submitted by
/u/sethsec
[link]
[comments]
/r/netsec - Information Security News & Discussion
The magic about how modern OS boot
By
/u/hardenedvault
β September 13
th
2022 at 10:28
submitted by
/u/hardenedvault
[link]
[comments]
/r/netsec - Information Security News & Discussion
GitHub - thiagopeixoto/massayo: Massayo is a small proof-of-concept Rust library which removes AV/EDR hooks in a given system DLL by loading a freshy copy from disk and replacing the .text section of the currently loaded DLL
By
/u/thewatcher_
β September 12
th
2022 at 21:37
submitted by
/u/thewatcher_
[link]
[comments]
/r/netsec - Information Security News & Discussion
The seventh way to call a JavaScript function without parentheses
By
/u/0xdea
β September 12
th
2022 at 18:27
submitted by
/u/0xdea
[link]
[comments]
/r/netsec - Information Security News & Discussion
How a Script Kiddie and 25 Lines of Python Could Theoretically Devastate Americaβs Gas Stations
By
/u/entropydaemon9
β September 12
th
2022 at 17:31
submitted by
/u/entropydaemon9
[link]
[comments]
/r/netsec - Information Security News & Discussion
Redeye is a platform to cover all aspects of red team engagement (data management, red team operation management, etc.)
By
/u/Idov31
β September 12
th
2022 at 14:39
submitted by
/u/Idov31
[link]
[comments]
/r/netsec - Information Security News & Discussion
Letβs Encrypt is turning on new infrastructure to support revoking certificates via Certificate Revocation Lists
By
/u/c0r0n3r
β September 12
th
2022 at 12:49
submitted by
/u/c0r0n3r
[link]
[comments]
/r/netsec - Information Security News & Discussion
Data-Centric Security: Threat Hunting based on Zipfβs Law
By
/u/ditrizna
β September 12
th
2022 at 06:20
submitted by
/u/ditrizna
[link]
[comments]
/r/netsec - Information Security News & Discussion
The Anatomy of a Malicious Package
By
/u/ambray_
β September 12
th
2022 at 03:36
submitted by
/u/ambray_
[link]
[comments]
/r/netsec - Information Security News & Discussion
How requests-ip-rotator for bypassing rate limiting got me 6th on the leaderboard for ipv4.games
By
/u/fiasco_averted
β September 11
th
2022 at 18:20
submitted by
/u/fiasco_averted
[link]
[comments]
/r/netsec - Information Security News & Discussion
"Pull Request Hijacking" - bypassing code review enforcement in GitHub
By
/u/dotanoam
β September 11
th
2022 at 17:06
submitted by
/u/dotanoam
[link]
[comments]
/r/netsec - Information Security News & Discussion
Thoughts on the use of NoVNC for phishing campaigns
By
/u/gid0rah
β September 11
th
2022 at 15:04
submitted by
/u/gid0rah
[link]
[comments]
/r/netsec - Information Security News & Discussion
x86matthew - WriteProcessMemoryAPC - Write memory to a remote process using APC calls
By
/u/jeandrew
β September 10
th
2022 at 16:55
submitted by
/u/jeandrew
[link]
[comments]
/r/netsec - Information Security News & Discussion
SiliFuzz - Fuzzing CPUs by proxy
By
/u/sanitybit
β September 9
th
2022 at 20:04
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
βGIFShellβ β Covert Attack Chain and C2 Utilizing Microsoft Teams GIFs
By
/u/sanitybit
β September 9
th
2022 at 19:56
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Crimeware Trends | Ransomware Developers Turn to Intermittent Encryption to Evade Detection
By
/u/CyberMasterV
β September 9
th
2022 at 19:48
submitted by
/u/CyberMasterV
[link]
[comments]
/r/netsec - Information Security News & Discussion
Spotlight: Occlum open source software for Intel SGX
By
/u/laramontoyalaske
β September 9
th
2022 at 15:57
submitted by
/u/laramontoyalaske
[link]
[comments]
/r/netsec - Information Security News & Discussion
Fuzzing beyond memory corruption: Finding broader classes of vulnerabilities automatically
By
/u/jeandrew
β September 9
th
2022 at 09:34
submitted by
/u/jeandrew
[link]
[comments]
/r/netsec - Information Security News & Discussion
Attacking Firecracker: AWS' microVM Monitor Written in Rust
By
/u/Gallus
β September 8
th
2022 at 16:19
submitted by
/u/Gallus
[link]
[comments]
Load more articles