Login
FreshRSS
Login
/r/netsec - Information Security News & Discussion
Malware Targeting dYdX Crypto Exchange
By
/u/louis11
β September 23
rd
2022 at 20:40
submitted by
/u/louis11
[link]
[comments]
/r/netsec - Information Security News & Discussion
CVE-2022-35256 - HTTP Request Smuggling in NodeJS
By
/u/VVX7
β September 23
rd
2022 at 19:05
submitted by
/u/VVX7
[link]
[comments]
/r/netsec - Information Security News & Discussion
Tool for Sizing Solidity Smart Contract Audits
By
/u/kruksym
β September 23
rd
2022 at 17:32
submitted by
/u/kruksym
[link]
[comments]
/r/netsec - Information Security News & Discussion
How to secure against forced browsing info disclosures
By
/u/pm_me_security_jobs
β September 23
rd
2022 at 14:26
submitted by
/u/pm_me_security_jobs
[link]
[comments]
/r/netsec - Information Security News & Discussion
ModSecurity WAF bypasses via 0days
By
/u/Gallus
β September 23
rd
2022 at 14:09
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
metamaska - malevolent payload classifier
By
/u/c0daman
β September 23
rd
2022 at 09:44
submitted by
/u/c0daman
[link]
[comments]
/r/netsec - Information Security News & Discussion
Passkeys - an opinionated, βquick-startβ guide to using passkeys
By
/u/Gallus
β September 23
rd
2022 at 07:46
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
BigQuery SQL Injection Cheat Sheet
By
/u/Gallus
β September 23
rd
2022 at 07:44
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Tool Release β Project Kubescout: Adding Kubernetes Support to Scout Suite
By
/u/digicat
β September 22
nd
2022 at 20:03
submitted by
/u/digicat
[link]
[comments]
/r/netsec - Information Security News & Discussion
Making HTTP header injection critical via response queue poisoning
By
/u/albinowax
β September 22
nd
2022 at 14:05
submitted by
/u/albinowax
[link]
[comments]
/r/netsec - Information Security News & Discussion
A technical analysis of the leaked LockBit 3.0 builder
By
/u/CyberMasterV
β September 22
nd
2022 at 13:58
submitted by
/u/CyberMasterV
[link]
[comments]
/r/netsec - Information Security News & Discussion
Raspberry Robinβs Roshtyak: A Little Lesson in Trickery
By
/u/stashing_the_smack
β September 22
nd
2022 at 10:53
submitted by
/u/stashing_the_smack
[link]
[comments]
/r/netsec - Information Security News & Discussion
Bypassing FileBlockExecutable in Sysmon 14.0: A Lesson In Analyzing Assumptions
By
/u/darronofsky
β September 22
nd
2022 at 08:52
submitted by
/u/darronofsky
[link]
[comments]
/r/netsec - Information Security News & Discussion
Exploiting Web3βs Hidden Attack Surface: Universal XSS on Netlifyβs Next.js Library
By
/u/Mempodipper
β September 22
nd
2022 at 04:26
submitted by
/u/Mempodipper
[link]
[comments]
/r/netsec - Information Security News & Discussion
Breaking Bitbucket: Pre Auth Remote Command Execution (CVE-2022-36804)
By
/u/Mempodipper
β September 22
nd
2022 at 04:25
submitted by
/u/Mempodipper
[link]
[comments]
/r/netsec - Information Security News & Discussion
Dissecting and MITMing Duo Device Health App
By
/u/sanitybit
β September 22
nd
2022 at 01:29
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
AWS IAM Identity Center Access Tokens are Stored in Clear Text and No, Thatβs Not a Criticalβ¦
By
/u/csanders_
β September 22
nd
2022 at 00:48
submitted by
/u/csanders_
[link]
[comments]
/r/netsec - Information Security News & Discussion
FilelessRemotePE: Loading fileless remote PE from URI to memory
By
/u/sanitybit
β September 21
st
2022 at 23:41
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Giving JuicyPotato a second chance: JuicyPotatoNG
By
/u/splinter_code
β September 21
st
2022 at 17:47
submitted by
/u/splinter_code
[link]
[comments]
/r/netsec - Information Security News & Discussion
How we Abused Repository Webhooks to Access Internal CI Systems at Scale
By
/u/Hefty_Knowledge_7449
β September 21
st
2022 at 15:16
submitted by
/u/Hefty_Knowledge_7449
[link]
[comments]
/r/netsec - Information Security News & Discussion
Finding a RCE and a Docker escape in OneDev
By
/u/monoimpact
β September 21
st
2022 at 15:01
submitted by
/u/monoimpact
[link]
[comments]
/r/netsec - Information Security News & Discussion
Intent Summit 2022 - The Security Research Summit. For researchers. By researchers. CFP now open!
By
/u/jat0369
β September 21
st
2022 at 09:15
submitted by
/u/jat0369
[link]
[comments]
/r/netsec - Information Security News & Discussion
Exploiting a Seagate service to create a SYSTEM shell (CVE-2022-40286)
By
/u/sanitybit
β September 21
st
2022 at 06:59
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Practical Attacks against NTLMv1
By
/u/0xdea
β September 21
st
2022 at 06:49
submitted by
/u/0xdea
[link]
[comments]
/r/netsec - Information Security News & Discussion
BGGP3 has completed! 34 entries, 23 writeups, and 3 CVE's.
By
/u/netsecfriends
β September 21
st
2022 at 01:54
submitted by
/u/netsecfriends
[link]
[comments]
/r/netsec - Information Security News & Discussion
Oracle Cloud vulnerability allows unauthorized access to customer cloud storage volumes
By
/u/sagitz_
β September 20
th
2022 at 22:33
submitted by
/u/sagitz_
[link]
[comments]
/r/netsec - Information Security News & Discussion
Cool Attack -- Bypassing NAT and Firewalls to Shut Down PDUs
By
/u/derp6996
β September 20
th
2022 at 19:43
submitted by
/u/derp6996
[link]
[comments]
/r/netsec - Information Security News & Discussion
Open Source Tool to Collect Volatile Data for Incident Response
By
/u/0x636f6f6c
β September 20
th
2022 at 15:45
submitted by
/u/0x636f6f6c
[link]
[comments]
/r/netsec - Information Security News & Discussion
I'm Building a Self-Destructing USB Drive Part 2
By
/u/Machinehum
β September 19
th
2022 at 16:48
submitted by
/u/Machinehum
[link]
[comments]
/r/netsec - Information Security News & Discussion
Vulnerabilities Identified in EZVIZ Smart Cams
By
/u/Turbulent-Ant-6813
β September 19
th
2022 at 15:41
submitted by
/u/Turbulent-Ant-6813
[link]
[comments]
/r/netsec - Information Security News & Discussion
When Athletic Abilities Just Aren't Enough - Scoreboard Hacking Part 1
By
/u/mdulin2
β September 19
th
2022 at 12:12
submitted by
/u/mdulin2
[link]
[comments]
/r/netsec - Information Security News & Discussion
kubernetes-sec-alert: Track Kubernetes CVEs by native GitHub notifications!
By
/u/mostafahussein
β September 18
th
2022 at 05:49
submitted by
/u/mostafahussein
[link]
[comments]
/r/netsec - Information Security News & Discussion
Cloning internal Google repos for fun and⦠info?
By
/u/lukeberner
β September 16
th
2022 at 05:11
submitted by
/u/lukeberner
[link]
[comments]
/r/netsec - Information Security News & Discussion
GTA 6 source code and videos leaked after Rockstar Games hack
By
/u/CyberMasterV
β September 19
th
2022 at 07:02
submitted by
/u/CyberMasterV
[link]
[comments]
/r/netsec - Information Security News & Discussion
ldapnomnom: Anonymously bruteforce Active Directory usernames from Domain Controllers by abusing LDAP Ping requests (cLDAP)
By
/u/sanitybit
β September 18
th
2022 at 19:39
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
requests-ip-rotator: A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.
By
/u/sanitybit
β September 18
th
2022 at 01:56
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Virtual FIDO is a virtual USB device that implements the FIDO2/U2F protocol (like a YubiKey) in order to support 2FA and WebAuthN.
By
/u/sanitybit
β September 18
th
2022 at 01:21
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
LLVM Passes for Security: A Brief Introduction (Part 1/4)
By
/u/sanitybit
β September 17
th
2022 at 21:10
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Securing the Supply Chain of Nothing
By
/u/sanitybit
β September 17
th
2022 at 21:07
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
cloudvelo: An experimental Velociraptor implementation using cloud infrastructure
By
/u/sanitybit
β September 16
th
2022 at 19:33
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
DylibHijackTest: Discover DYLD_INSERT_LIBRARIES hijacks on macOS
By
/u/sanitybit
β September 16
th
2022 at 07:47
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
A Basic Guide to iOS Testing in 2022
By
/u/sanitybit
β September 16
th
2022 at 07:44
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Jetty Features for Hacking Web Apps
By
/u/sanitybit
β September 16
th
2022 at 07:42
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Staged Payloads from Kali Linux | PT Phone Home β DNS
By
/u/sanitybit
β September 16
th
2022 at 07:27
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Uber hacked, internal systems breached and vulnerability reports stolen
By
/u/Fugitif
β September 16
th
2022 at 07:05
submitted by
/u/Fugitif
[link]
[comments]
/r/netsec - Information Security News & Discussion
Undermining Microsoft Teams Security by Mining Tokens
By
/u/flexibeast
β September 16
th
2022 at 01:16
submitted by
/u/flexibeast
[link]
[comments]
/r/netsec - Information Security News & Discussion
NPM Malware Targeting HubSpotβs Bucky Client
By
/u/louis11
β September 15
th
2022 at 17:47
submitted by
/u/louis11
[link]
[comments]
/r/netsec - Information Security News & Discussion
CVE North Stars: Leverage CVEs to kickstart your next vulnerability hunting adventure
By
/u/onlinereadme
β September 15
th
2022 at 16:56
submitted by
/u/onlinereadme
[link]
[comments]
/r/netsec - Information Security News & Discussion
The Blind Spots of BloodHound
By
/u/0xfffffg
β September 15
th
2022 at 15:25
submitted by
/u/0xfffffg
[link]
[comments]
/r/netsec - Information Security News & Discussion
Getting started with gVisor support in Falco
By
/u/vjjmiras
β September 15
th
2022 at 14:31
submitted by
/u/vjjmiras
[link]
[comments]
/r/netsec - Information Security News & Discussion
A Detailed Analysis of the Quantum Ransomware [PDF]
By
/u/CyberMasterV
β September 15
th
2022 at 12:04
submitted by
/u/CyberMasterV
[link]
[comments]
/r/netsec - Information Security News & Discussion
Buffer overflow in the OpenRazer open-source kernel drivers causing denial of service and privilege escalation.
By
/u/jat0369
β September 15
th
2022 at 11:05
submitted by
/u/jat0369
[link]
[comments]
/r/netsec - Information Security News & Discussion
Security Advisory: NETGEAR Routers FunJSQ Vulnerabilities
By
/u/g_e_r_h_a_r_d
β September 15
th
2022 at 08:57
submitted by
/u/g_e_r_h_a_r_d
[link]
[comments]
/r/netsec - Information Security News & Discussion
Traces of Windows remote command execution
By
/u/jeandrew
β September 15
th
2022 at 04:51
submitted by
/u/jeandrew
[link]
[comments]
/r/netsec - Information Security News & Discussion
It pays to be Circomspect
By
/u/Gallus
β September 15
th
2022 at 04:01
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Codecepticon - An offensive security obfuscator for C#, VBA, and PowerShell
By
/u/h0wlett
β September 14
th
2022 at 18:22
submitted by
/u/h0wlett
[link]
[comments]
/r/netsec - Information Security News & Discussion
Caching the Un-cacheables - Abusing URL Parser Confusions (Web Cache Poisoning Technique)
By
/u/albinowax
β September 14
th
2022 at 14:57
submitted by
/u/albinowax
[link]
[comments]
/r/netsec - Information Security News & Discussion
135 is the new 445: PsExec over Remote Procedure Calls
By
/u/0xdea
β September 14
th
2022 at 14:57
submitted by
/u/0xdea
[link]
[comments]
/r/netsec - Information Security News & Discussion
Bypassing IP based brute force protection with IPv6 temporary addresses
By
/u/nopslider
β September 14
th
2022 at 13:20
submitted by
/u/nopslider
[link]
[comments]
/r/netsec - Information Security News & Discussion
Attacking the Android kernel using the Qualcomm TrustZone
By
/u/jeandrew
β September 14
th
2022 at 09:44
submitted by
/u/jeandrew
[link]
[comments]
Load more articles