Login
FreshRSS
Login
/r/netsec - Information Security News & Discussion
Unwrapping Ursnifs Gifts
By
/u/TheDFIRReport
β January 9
th
2023 at 13:03
submitted by
/u/TheDFIRReport
[link]
[comments]
/r/netsec - Information Security News & Discussion
Practical Example Of Client Side Path Manipulation
By
/u/Gallus
β January 9
th
2023 at 12:05
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Reverse Engineering TikTok's VM Obfuscation (Part 2)
By
/u/Gallus
β January 9
th
2023 at 11:16
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Vulnerable Jenkins plugins exploitation
By
/u/ntknn
β January 9
th
2023 at 09:20
submitted by
/u/ntknn
[link]
[comments]
/r/netsec - Information Security News & Discussion
How To Attack Admin Panels Successfully Part 2
By
/u/banginpadr
β January 9
th
2023 at 01:14
submitted by
/u/banginpadr
[link]
[comments]
/r/netsec - Information Security News & Discussion
Interactive Risk Explorer for Understanding Software Supply Chain Attacks
By
/u/ewok94301
β January 8
th
2023 at 19:10
submitted by
/u/ewok94301
[link]
[comments]
/r/netsec - Information Security News & Discussion
Bring your own vulnerable driver to the exploit party: Understanding BYOVD Attacks
By
/u/achilles4828
β January 8
th
2023 at 16:45
submitted by
/u/achilles4828
[link]
[comments]
/r/netsec - Information Security News & Discussion
Analyzing CVE-2022-46630 (DLL Hijacking in Squirrel.Windows)
By
/u/DLLCoolJ
β January 8
th
2023 at 15:38
submitted by
/u/DLLCoolJ
[link]
[comments]
/r/netsec - Information Security News & Discussion
Strategies for effective CSRF mitigation
By
/u/DeliveryTypical
β January 8
th
2023 at 15:26
submitted by
/u/DeliveryTypical
[link]
[comments]
/r/netsec - Information Security News & Discussion
GUARDARA 0.9.9 Available with Web Service Testing
By
/u/JohnKeymanUK
β January 7
th
2023 at 21:46
submitted by
/u/JohnKeymanUK
[link]
[comments]
/r/netsec - Information Security News & Discussion
VSCode Supply Chain Attacks: Protect Your IDE from Malicious Extensions
By
/u/gfdgfbal
β January 7
th
2023 at 19:32
submitted by
/u/gfdgfbal
[link]
[comments]
/r/netsec - Information Security News & Discussion
connmap now works with all DE/WM! Desktop widget that shows location of your current TCP peers on a world map in real-time.
By
/u/jafarlihi
β January 7
th
2023 at 14:22
submitted by
/u/jafarlihi
[link]
[comments]
/r/netsec - Information Security News & Discussion
Reflections on Trusting VEX (or when humans can improve SBOMs)
By
/u/dlorenc
β January 7
th
2023 at 12:19
submitted by
/u/dlorenc
[link]
[comments]
/r/netsec - Information Security News & Discussion
Manipulating AES Traffic using a Chain of Proxies and Hardcoded Keys
By
/u/Gallus
β January 7
th
2023 at 04:33
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
I made an Open Source Browser extension to aid in Threat Investigations!
By
/u/zack7601
β January 6
th
2023 at 22:29
submitted by
/u/zack7601
[link]
[comments]
/r/netsec - Information Security News & Discussion
TruffleHog Now Scans CircleCI log outputs for passwords/credentials
By
/u/wifihack
β January 6
th
2023 at 19:02
submitted by
/u/wifihack
[link]
[comments]
/r/netsec - Information Security News & Discussion
udon: A simple tool that helps to find assets/domains based on the Google Analytics ID.
By
/u/BananaBounty
β January 6
th
2023 at 18:56
submitted by
/u/BananaBounty
[link]
[comments]
/r/netsec - Information Security News & Discussion
I scanned every package on PyPi and found 57 live AWS keys
By
/u/Most-Loss5834
β January 6
th
2023 at 18:52
submitted by
/u/Most-Loss5834
[link]
[comments]
/r/netsec - Information Security News & Discussion
LastPass Breach - What went wrong?
By
/u/GelosSnake
β January 6
th
2023 at 18:17
submitted by
/u/GelosSnake
[link]
[comments]
/r/netsec - Information Security News & Discussion
How the Lastpass Breach affects Lastpass SSO
By
/u/csanders_
β January 6
th
2023 at 16:16
submitted by
/u/csanders_
[link]
[comments]
/r/netsec - Information Security News & Discussion
The Mac Malware of 2022
By
/u/KolideKenny
β January 6
th
2023 at 13:34
submitted by
/u/KolideKenny
[link]
[comments]
/r/netsec - Information Security News & Discussion
Variant analysis of CVE-2022-3515 affecting libksba, which resulted in CVE-2022-47629
By
/u/Gallus
β January 6
th
2023 at 07:09
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Announcing the Ronin 2.0.0 Open Beta. Ronin is a free and Open Source Ruby toolkit for security research and development.
By
/u/postmodern
β January 6
th
2023 at 06:57
submitted by
/u/postmodern
[link]
[comments]
/r/netsec - Information Security News & Discussion
PBS FRONTLINE investigates Pegasus, the powerful spyware sold to governments around the world by the Israeli company NSO Group.
By
/u/identifytarget
β January 4
th
2023 at 03:27
submitted by
/u/identifytarget
[link]
[comments]
/r/netsec - Information Security News & Discussion
Nuclear Pond: Scanning for Vulnerabilities at Scale for Less Than a Cup of Coffee
By
/u/crustysecurity
β January 3
rd
2023 at 18:38
submitted by
/u/crustysecurity
[link]
[comments]
/r/netsec - Information Security News & Discussion
of-CORS: a framework for hacking internal apps with open CORS via bug bounty
By
/u/wifihack
β January 3
rd
2023 at 17:58
submitted by
/u/wifihack
[link]
[comments]
/r/netsec - Information Security News & Discussion
SSRF vulnerabilities caused by SNI proxy misconfigurations
By
/u/Gallus
β January 3
rd
2023 at 13:37
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Web Hackers vs. The Auto Industry: Critical Vulnerabilities in Ferrari, BMW, Rolls Royce, Porsche, and More
By
/u/samwcurry
β January 3
rd
2023 at 10:23
submitted by
/u/samwcurry
[link]
[comments]
/r/netsec - Information Security News & Discussion
Cloud Metadata - AWS IAM Credential Abuse
By
/u/SNEAKYMONK3Y
β January 2
nd
2023 at 20:21
submitted by
/u/SNEAKYMONK3Y
[link]
[comments]
/r/netsec - Information Security News & Discussion
GitHub - kitabisa/teler-waf: teler-waf is a Go HTTP middleware that provide teler IDS functionality with teler IDS to protect against web-based attacks and improve the security of Go-based web applications. It is highly configurable and easy to integrate
By
/u/dwisiswant0
β January 2
nd
2023 at 05:25
submitted by
/u/dwisiswant0
[link]
[comments]
/r/netsec - Information Security News & Discussion
GitHub - jafarlihi/modreveal: Utility to find hidden Linux kernel modules
By
/u/jafarlihi
β January 1
st
2023 at 15:30
submitted by
/u/jafarlihi
[link]
[comments]
/r/netsec - Information Security News & Discussion
Compromised PyTorch-nightly dependency chain
By
/u/z84
β January 1
st
2023 at 09:01
submitted by
/u/z84
[link]
[comments]
/r/netsec - Information Security News & Discussion
LuaJIT Sandbox Escape: The Saga Ends
By
/u/Gallus
β December 31
st
2022 at 12:20
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Architecture Notes - Capture the Flag.
By
/u/myusuf3
β December 30
th
2022 at 17:50
submitted by
/u/myusuf3
[link]
[comments]
/r/netsec - Information Security News & Discussion
Chrome Browser Exploitation, Part 3: Analyzing and Exploiting CVE-2018-17463
By
/u/Gallus
β December 30
th
2022 at 14:55
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
There is no secure software supply-chain.
By
/u/dlorenc
β December 30
th
2022 at 12:56
submitted by
/u/dlorenc
[link]
[comments]
/r/netsec - Information Security News & Discussion
Reverse Prompt Engineering - Pwning the source prompts of Notion AI & 7 techniques for Reverse Prompt Engineering
By
/u/Gallus
β December 30
th
2022 at 05:48
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Mosca SAST tool
By
/u/CoolerVoid
β December 30
th
2022 at 04:44
submitted by
/u/CoolerVoid
[link]
[comments]
/r/netsec - Information Security News & Discussion
π Announcing Matano + Crowdstrike: Open source project to analyze security logs on S3 using SQL & build realtime detections-as-code
By
/u/shaeqahmed
β December 29
th
2022 at 16:37
submitted by
/u/shaeqahmed
[link]
[comments]
/r/netsec - Information Security News & Discussion
Writing Windows Kernel Drivers for Advanced Persistence (Part 1)
By
/u/v3ded
β December 29
th
2022 at 14:47
submitted by
/u/v3ded
[link]
[comments]
/r/netsec - Information Security News & Discussion
New CatB Ransomware Employs 2-Year Old DLL Hijacking Technique To Evade Detection
By
/u/woja111
β December 29
th
2022 at 13:51
submitted by
/u/woja111
[link]
[comments]
/r/netsec - Information Security News & Discussion
BufferPwn: RCE vulnerability in the common network code of several first party Nintendo games since the Nintendo 3DS
December 28
th
2022 at 21:13
[link]
[comments]
/r/netsec - Information Security News & Discussion
dnstwist: send potential spear phishing domains to Slack
By
/u/nindustries
β December 29
th
2022 at 12:35
submitted by
/u/nindustries
[link]
[comments]
/r/netsec - Information Security News & Discussion
Turning Google smart speakers into wiretaps for $100k
By
/u/Gallus
β December 29
th
2022 at 01:47
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
G-3PO: A Protocol Droid for Ghidra (a Ghidra script that glosses decompiled functions with GPT-3 generated comments)
By
/u/0xdeba5e12
β December 28
th
2022 at 19:42
submitted by
/u/0xdeba5e12
[link]
[comments]
/r/netsec - Information Security News & Discussion
Attack Surface Reduction BOF
By
/u/IamaCerealKilla
β December 28
th
2022 at 17:21
submitted by
/u/IamaCerealKilla
[link]
[comments]
/r/netsec - Information Security News & Discussion
Video game save file Trojan personified
By
/u/bemodtwz
β December 28
th
2022 at 03:06
submitted by
/u/bemodtwz
[link]
[comments]
/r/netsec - Information Security News & Discussion
Certificate Ripper v2 released - tool to extract server certificates
By
/u/Hakky54
β December 28
th
2022 at 00:54
submitted by
/u/Hakky54
[link]
[comments]
/r/netsec - Information Security News & Discussion
New AMSI Bypass Using CLR Hooking
By
/u/pracsec
β December 27
th
2022 at 23:14
submitted by
/u/pracsec
[link]
[comments]
/r/netsec - Information Security News & Discussion
Spice up your persistence: loading PHP extensions from memory
By
/u/gid0rah
β December 27
th
2022 at 21:55
submitted by
/u/gid0rah
[link]
[comments]
/r/netsec - Information Security News & Discussion
Scaling Continuous Security Testing on the Cheap
By
/u/DH_Prelude
β December 27
th
2022 at 16:43
submitted by
/u/DH_Prelude
[link]
[comments]
/r/netsec - Information Security News & Discussion
Netcomm NF20MESH Cloud Mesh router - Unauthenticated Remote Code Execution
By
/u/Gallus
β December 27
th
2022 at 06:17
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Pass-the-Challenge: Defeating Windows Defender Credential Guard
By
/u/ly4k_
β December 26
th
2022 at 20:46
submitted by
/u/ly4k_
[link]
[comments]
/r/netsec - Information Security News & Discussion
Overview of Glibc Heap Exploitation Techniques (currently up to v2.34)
By
/u/himeko98
β December 25
th
2022 at 04:47
submitted by
/u/himeko98
[link]
[comments]
/r/netsec - Information Security News & Discussion
Linux kernel module generator for Hidden firewall that follows the rules in the external YAML file.
By
/u/CoolerVoid
β December 24
th
2022 at 06:16
submitted by
/u/CoolerVoid
[link]
[comments]
/r/netsec - Information Security News & Discussion
PyRDP 1.2.0 released β Can perform Net-NTLM hash capture before the certificate error on RDP
By
/u/obilodeau
β December 23
rd
2022 at 18:06
submitted by
/u/obilodeau
[link]
[comments]
/r/netsec - Information Security News & Discussion
FIN7 Unveiled - A deep dive into notorious cybercrime gang
By
/u/wtfse
β December 23
rd
2022 at 09:35
submitted by
/u/wtfse
[link]
[comments]
/r/netsec - Information Security News & Discussion
Introducing the Columbus Project
By
/u/g0rbe
β December 23
rd
2022 at 07:38
submitted by
/u/g0rbe
[link]
[comments]
/r/netsec - Information Security News & Discussion
Lastpass Security Incident - December 22 update
By
/u/tkokilroy
β December 22
nd
2022 at 20:34
submitted by
/u/tkokilroy
[link]
[comments]
/r/netsec - Information Security News & Discussion
Attack of the clones - Stealthy Kubernetes persistence with eathar, tΓ²can and teisteanas
By
/u/raesene2
β December 22
nd
2022 at 19:42
submitted by
/u/raesene2
[link]
[comments]
Load more articles