Login
FreshRSS
Login
/r/netsec - Information Security News & Discussion
ATM/Kiosk Hacking - 2022 Payment Village
By
/u/WiseTuna
β November 10
th
2022 at 15:46
submitted by
/u/WiseTuna
[link]
[comments]
/r/netsec - Information Security News & Discussion
Accidental $70k Google Pixel Lock Screen Bypass
By
/u/_vavkamil_
β November 10
th
2022 at 12:07
submitted by
/u/_vavkamil_
[link]
[comments]
/r/netsec - Information Security News & Discussion
PcapPlusPlus v22.11 released - C++ library for capturing and analyzing network packets
By
/u/seladb
β November 10
th
2022 at 08:21
submitted by
/u/seladb
[link]
[comments]
/r/netsec - Information Security News & Discussion
Integer overflow in xmlParseNameComplex (libxml2) - CVE-2022-40303
By
/u/Gallus
β November 10
th
2022 at 01:24
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Capturing credentials from runZero (formerly Rumble.run) scanners
By
/u/ss2342-
β November 10
th
2022 at 00:49
submitted by
/u/ss2342-
[link]
[comments]
/r/netsec - Information Security News & Discussion
Write up for the API secure programming challenge that was inspired by the major security incident happened to second largest telco in Australia
By
/u/pi3ch
β November 9
th
2022 at 23:22
submitted by
/u/pi3ch
[link]
[comments]
/r/netsec - Information Security News & Discussion
Checkmk: Remote Code Execution by Chaining Multiple Bugs (2/3)
By
/u/monoimpact
β November 9
th
2022 at 22:47
submitted by
/u/monoimpact
[link]
[comments]
/r/netsec - Information Security News & Discussion
Exploring ZIP Mark-of-the-Web Bypass Vulnerability (CVE-2022-41049)
By
/u/CyberMasterV
β November 9
th
2022 at 08:49
submitted by
/u/CyberMasterV
[link]
[comments]
/r/netsec - Information Security News & Discussion
Compromising Plesk via its REST API
By
/u/adrian_rt
β November 9
th
2022 at 08:16
submitted by
/u/adrian_rt
[link]
[comments]
/r/netsec - Information Security News & Discussion
Vulnerabilities in Tenda's W15Ev2 AC1200 Router
By
/u/WiseTuna
β November 8
th
2022 at 17:27
submitted by
/u/WiseTuna
[link]
[comments]
/r/netsec - Information Security News & Discussion
SpyGuard:: a forked and enhanced version of TinyCheck. The main objective is to detect signs of compromise by monitoring network flows transmitted by a device.
By
/u/lugh
β November 8
th
2022 at 17:19
submitted by
/u/lugh
[link]
[comments]
/r/netsec - Information Security News & Discussion
SimpleX Chat: security assessment by Trail of Bits and v4.2 released
By
/u/epoberezkin
β November 8
th
2022 at 18:28
submitted by
/u/epoberezkin
[link]
[comments]
/r/netsec - Information Security News & Discussion
How to deal with ransomware on Azure
By
/u/MiguelHzBz
β November 8
th
2022 at 17:38
submitted by
/u/MiguelHzBz
[link]
[comments]
/r/netsec - Information Security News & Discussion
Research on Flow Computers Used in Oil and Gas
By
/u/derp6996
β November 8
th
2022 at 17:00
submitted by
/u/derp6996
[link]
[comments]
/r/netsec - Information Security News & Discussion
Jit-Picking: Differential Fuzzing of JavaScript Engines [PDF]
By
/u/Gallus
β November 8
th
2022 at 14:55
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
New updated IceXLoader claims thousands of victims around the world
By
/u/woja111
β November 8
th
2022 at 14:34
submitted by
/u/woja111
[link]
[comments]
/r/netsec - Information Security News & Discussion
#ShortAndMalicious: StrelaStealer aims for mail credentials
By
/u/OwnPreparation3424
β November 8
th
2022 at 14:22
submitted by
/u/OwnPreparation3424
[link]
[comments]
/r/netsec - Information Security News & Discussion
We sign code now | Trail of Bits Blog
By
/u/D4r1
β November 8
th
2022 at 13:12
submitted by
/u/D4r1
[link]
[comments]
/r/netsec - Information Security News & Discussion
Shennina Framework - Automating Host Exploitation with AI
By
/u/mazen160
β November 8
th
2022 at 09:12
submitted by
/u/mazen160
[link]
[comments]
/r/netsec - Information Security News & Discussion
DefCon 30: Exploitation in the era of formal verification [video]
By
/u/Adam_pi3
β November 8
th
2022 at 05:21
submitted by
/u/Adam_pi3
[link]
[comments]
/r/netsec - Information Security News & Discussion
Weβre Christian Mouchet, Jean-Philippe Bossuat, Kurt Rohloff, Nigel Smart, Pascal Paillier, Rand Hindi, Wonkyung Jung, various researchers and library developers of homomorphic encryption to answer questions about homomorphic encryption and why itβs i
By
/u/carrotcypher
β November 8
th
2022 at 00:47
submitted by
/u/carrotcypher
[link]
[comments]
/r/netsec - Information Security News & Discussion
Substation: data pipeline and transformation toolkit for security teams
By
/u/jshlbrd-brex
β November 7
th
2022 at 15:36
submitted by
/u/jshlbrd-brex
[link]
[comments]
/r/netsec - Information Security News & Discussion
Client-side path traversal attacks
By
/u/albinowax
β November 7
th
2022 at 14:45
submitted by
/u/albinowax
[link]
[comments]
/r/netsec - Information Security News & Discussion
Malicious Python Packages Replace Crypto Addresses in Developer Clipboards
By
/u/louis11
β November 7
th
2022 at 05:56
submitted by
/u/louis11
[link]
[comments]
/r/netsec - Information Security News & Discussion
drgn - a debugger with an emphasis on programmability
By
/u/Gallus
β November 7
th
2022 at 03:05
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
ThinkstScapes Quarterly | 2022.Q3 | Summary of a lot of conference talks
By
/u/ffyns
β November 6
th
2022 at 21:41
submitted by
/u/ffyns
[link]
[comments]
/r/netsec - Information Security News & Discussion
HRDevHelper - Decompiler Plugin for Hex-Rays by Dennis Elser
By
/u/Gallus
β November 5
th
2022 at 00:33
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
AWS Organizations Defaults - Hacking The Cloud
By
/u/RedTermSession
β November 5
th
2022 at 00:22
submitted by
/u/RedTermSession
[link]
[comments]
/r/netsec - Information Security News & Discussion
The Android Malware's Journey: From Google Play to banking fraud | Cleafy Labs
By
/u/f3d_0x0
β November 4
th
2022 at 13:37
submitted by
/u/f3d_0x0
[link]
[comments]
/r/netsec - Information Security News & Discussion
Reverse Branch Target Buffer Poisoning - new ASLR bypass technique using CPU vulnerabilities [PDF]
By
/u/Gallus
β November 4
th
2022 at 07:41
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
MI-X - Determine whether your compute is truly vulnerable to a specific vulnerability
By
/u/boutnaru
β November 4
th
2022 at 06:54
submitted by
/u/boutnaru
[link]
[comments]
/r/netsec - Information Security News & Discussion
CVE-2022-33679 Windows Kerberos Elevation of Privilege
By
/u/smokiesmk
β November 4
th
2022 at 05:26
submitted by
/u/smokiesmk
[link]
[comments]
/r/netsec - Information Security News & Discussion
Release Ghidra 10.2 Β· NationalSecurityAgency/ghidra
By
/u/mumbel
β November 3
rd
2022 at 22:52
submitted by
/u/mumbel
[link]
[comments]
/r/netsec - Information Security News & Discussion
Why Did the OpenSSL Punycode Vulnerability Happen
By
/u/ScottContini
β November 3
rd
2022 at 22:26
submitted by
/u/ScottContini
[link]
[comments]
/r/netsec - Information Security News & Discussion
Threat Model Examples
By
/u/hipver
β November 3
rd
2022 at 16:56
submitted by
/u/hipver
[link]
[comments]
/r/netsec - Information Security News & Discussion
The below-OS for supply chain of critical infrastructure protection
By
/u/hardenedvault
β November 3
rd
2022 at 14:47
submitted by
/u/hardenedvault
[link]
[comments]
/r/netsec - Information Security News & Discussion
CVE-2022-3602 & CVE-2022-3786 - OSS tools to detect susceptibility to the recent OpenSSL issues
By
/u/SRMish3
β November 3
rd
2022 at 11:08
submitted by
/u/SRMish3
[link]
[comments]
/r/netsec - Information Security News & Discussion
Checkmk: Remote Code Execution by Chaining Multiple Bugs (1/3)
By
/u/monoimpact
β November 2
nd
2022 at 22:50
submitted by
/u/monoimpact
[link]
[comments]
/r/netsec - Information Security News & Discussion
Gregor Samsa: Exploiting Java's XML Signature Verification
By
/u/jp_bennett
β November 2
nd
2022 at 19:26
submitted by
/u/jp_bennett
[link]
[comments]
/r/netsec - Information Security News & Discussion
urlscan.io's SOAR spot: Chatty security tools leaking private data
By
/u/mckirk_
β November 2
nd
2022 at 12:58
submitted by
/u/mckirk_
[link]
[comments]
/r/netsec - Information Security News & Discussion
Symbolic Triage: Making the Best of a Good Situation β Atredis Partners
By
/u/jeandrew
β November 2
nd
2022 at 05:55
submitted by
/u/jeandrew
[link]
[comments]
/r/netsec - Information Security News & Discussion
Awesome Security Newsletters
By
/u/mymalema
β November 1
st
2022 at 23:00
submitted by
/u/mymalema
[link]
[comments]
/r/netsec - Information Security News & Discussion
Dozens More PyPI Packages Attempting to Deliver W4SP Stealer in Ongoing Supply-Chain Attack
By
/u/louis11
β November 1
st
2022 at 21:20
submitted by
/u/louis11
[link]
[comments]
/r/netsec - Information Security News & Discussion
The OpenSSL punycode vulnerability (CVE-2022-3602): Overview, detection, exploitation, and remediation | Datadog Security Labs
By
/u/RedTermSession
β November 1
st
2022 at 16:57
submitted by
/u/RedTermSession
[link]
[comments]
/r/netsec - Information Security News & Discussion
OpenSSL Blog Post with FAQs - CVE-2022-3786 and CVE-2022-3602: X.509 Email Address Buffer Overflows
By
/u/Gallus
β November 1
st
2022 at 16:11
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
OpenSSL version 3.0.7 published - Fixed two buffer overflows in punycode decoding functions
By
/u/Gallus
β November 1
st
2022 at 15:50
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
List of (un)affected software OpenSSL vulnerability (still being updated)
By
/u/Triyujin
β November 1
st
2022 at 12:01
submitted by
/u/Triyujin
[link]
[comments]
/r/netsec - Information Security News & Discussion
Exploiting Static Site Generators: When Static Is Not Actually Static
By
/u/Mempodipper
β November 1
st
2022 at 07:13
submitted by
/u/Mempodipper
[link]
[comments]
/r/netsec - Information Security News & Discussion
No Hat 2022 Conference Recordings
By
/u/Khryse
β October 31
st
2022 at 22:15
submitted by
/u/Khryse
[link]
[comments]
/r/netsec - Information Security News & Discussion
Fugu15 - a semi-untethered permasigned jailbreak for iOS 15
By
/u/_rs
β October 31
st
2022 at 20:09
submitted by
/u/_rs
[link]
[comments]
/r/netsec - Information Security News & Discussion
A tale of a simple Apple kernel bug
By
/u/JordyZomer
β October 31
st
2022 at 19:15
submitted by
/u/JordyZomer
[link]
[comments]
/r/netsec - Information Security News & Discussion
Abusing windowsβ tokens to compromise active directory without touching lsass
By
/u/sanitybit
β October 31
st
2022 at 17:52
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
New Microcorruption Challenges - Embedded Hardware Security CTF
By
/u/sanitybit
β October 31
st
2022 at 17:47
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
What I learnt from reading 217 subdomain takeover bug reports.
By
/u/_nynan
β October 31
st
2022 at 14:04
submitted by
/u/_nynan
[link]
[comments]
/r/netsec - Information Security News & Discussion
A technical analysis of Pegasus for Android β Part 3
By
/u/CyberMasterV
β October 31
st
2022 at 14:02
submitted by
/u/CyberMasterV
[link]
[comments]
/r/netsec - Information Security News & Discussion
Vulnerability and Exploit feeds
By
/u/AnyYak5018
β October 31
st
2022 at 08:03
submitted by
/u/AnyYak5018
[link]
[comments]
/r/netsec - Information Security News & Discussion
Baby steps into MITRE Stix/Taxii, Pandas, Graphs & Jupyter notebooks
By
/u/DiabloHorn
β October 31
st
2022 at 07:44
submitted by
/u/DiabloHorn
[link]
[comments]
/r/netsec - Information Security News & Discussion
Part 3 of Lord Of The Ring0 - Sailing to the land of the user (and debugging the ship)
By
/u/Idov31
β October 30
th
2022 at 12:09
submitted by
/u/Idov31
[link]
[comments]
/r/netsec - Information Security News & Discussion
The Automated Penetration Testing Reporting System (APTRS). Pentester can easily maintain projects, customers, and vulnerabilities, and create PDF reports without needing to use traditional DOC files. The tool allows you to maintain a vulnerability databa
By
/u/Ano_F
β October 30
th
2022 at 07:29
submitted by
/u/Ano_F
[link]
[comments]
/r/netsec - Information Security News & Discussion
Urgent: Patch OpenSSL on November 1 to avoid βCriticalβ Security Vulnerability - GlobalSign
By
/u/c0r0n3r
β October 29
th
2022 at 22:37
submitted by
/u/c0r0n3r
[link]
[comments]
Load more articles