Login
FreshRSS
Login
/r/netsec - Information Security News & Discussion
SHA-1 gets SHAttered β A deep dive into why it was retired
By
/u/Ecmoy
β March 23
rd
2023 at 17:50
submitted by
/u/Ecmoy
[link]
[comments]
/r/netsec - Information Security News & Discussion
Remarks on βChat Controlβ
By
/u/feross
β March 23
rd
2023 at 14:51
submitted by
/u/feross
[link]
[comments]
/r/netsec - Information Security News & Discussion
Joomla! CVE-2023-23752 to Code Execution
By
/u/chicksdigthelongrun
β March 23
rd
2023 at 14:28
submitted by
/u/chicksdigthelongrun
[link]
[comments]
/r/netsec - Information Security News & Discussion
Veeam Backup and Replication CVE-2023-27532 Deep Dive and Linux POC Exploit
By
/u/scopedsecurity
β March 23
rd
2023 at 12:39
submitted by
/u/scopedsecurity
[link]
[comments]
/r/netsec - Information Security News & Discussion
Harvesting Logs for Fun and Profit
By
/u/DevSec23
β March 23
rd
2023 at 00:59
submitted by
/u/DevSec23
[link]
[comments]
/r/netsec - Information Security News & Discussion
Detecting Unlinked Windows Services with Volatility 3
By
/u/transt
β March 22
nd
2023 at 20:32
submitted by
/u/transt
[link]
[comments]
/r/netsec - Information Security News & Discussion
Brute Ratel Analysis
By
/u/Diesl
β March 22
nd
2023 at 20:21
submitted by
/u/Diesl
[link]
[comments]
/r/netsec - Information Security News & Discussion
YARA rule for rapid detection of PNG images affected by Acropalypse - CVE-2023-21036
By
/u/fede_k
β March 22
nd
2023 at 19:23
submitted by
/u/fede_k
[link]
[comments]
/r/netsec - Information Security News & Discussion
Malicious Actors Use Unicode Support in Python to Evade Detection
By
/u/louis11
β March 22
nd
2023 at 17:26
submitted by
/u/louis11
[link]
[comments]
/r/netsec - Information Security News & Discussion
ChatGPT said that AI could hack the world! A DFIR analyst perspective.
By
/u/chaign_c
β March 22
nd
2023 at 17:05
submitted by
/u/chaign_c
[link]
[comments]
/r/netsec - Information Security News & Discussion
ZeusCloud - An Open-source Cloud Security Platfrom
By
/u/VariousAd5147
β March 22
nd
2023 at 16:22
submitted by
/u/VariousAd5147
[link]
[comments]
/r/netsec - Information Security News & Discussion
Typhooncon's 2023 Call for Papers is open for submissions!
By
/u/Marsy_star
β March 22
nd
2023 at 16:22
submitted by
/u/Marsy_star
[link]
[comments]
/r/netsec - Information Security News & Discussion
How to Create a Virtual Hacking Lab: The Ultimate Hacker Setup
By
/u/flacao9
β March 22
nd
2023 at 14:41
submitted by
/u/flacao9
[link]
[comments]
/r/netsec - Information Security News & Discussion
Decoding DKP Project $80K Exploit | QuillAudits
By
/u/Devendra_Khati
β March 22
nd
2023 at 11:00
submitted by
/u/Devendra_Khati
[link]
[comments]
/r/netsec - Information Security News & Discussion
PowerHub 2.0 released
By
/u/0xfffffg
β March 21
st
2023 at 22:37
submitted by
/u/0xfffffg
[link]
[comments]
/r/netsec - Information Security News & Discussion
A Guide to Delegated Administrator in AWS Organizations and Multi-Account Management and how to secure the Root Management Account
By
/u/jsonpile
β March 21
st
2023 at 16:01
submitted by
/u/jsonpile
[link]
[comments]
/r/netsec - Information Security News & Discussion
Nexus: a new Android botnet? | Cleafy Labs
By
/u/f3d_0x0
β March 21
st
2023 at 15:56
submitted by
/u/f3d_0x0
[link]
[comments]
/r/netsec - Information Security News & Discussion
Windows Installer EOP (CVE-2023-21800)
By
/u/poltess0
β March 21
st
2023 at 15:26
submitted by
/u/poltess0
[link]
[comments]
/r/netsec - Information Security News & Discussion
PHP filter chains: file read from error-based oracle
By
/u/poltess0
β March 21
st
2023 at 15:22
submitted by
/u/poltess0
[link]
[comments]
/r/netsec - Information Security News & Discussion
Guide: Terraform Security
By
/u/MiguelHzBz
β March 21
st
2023 at 14:51
submitted by
/u/MiguelHzBz
[link]
[comments]
/r/netsec - Information Security News & Discussion
Burp Project Settings for JumpCloud Console using a discovered JumpCloud API key
By
/u/AhBoon
β March 21
st
2023 at 13:09
submitted by
/u/AhBoon
[link]
[comments]
/r/netsec - Information Security News & Discussion
elastic-security-labs-thawing-the-permafrost-of-icedid
By
/u/montouesto
β March 21
st
2023 at 11:42
submitted by
/u/montouesto
[link]
[comments]
/r/netsec - Information Security News & Discussion
Converting string to enum at the cost of 50 GB: let's analyze the CVE-2020-36620 vulnerability
By
/u/Xadartt
β March 21
st
2023 at 11:16
submitted by
/u/Xadartt
[link]
[comments]
/r/netsec - Information Security News & Discussion
Deciphering Linux AuditD for Threat Detection Part 3
By
/u/InH4te
β March 21
st
2023 at 10:55
submitted by
/u/InH4te
[link]
[comments]
/r/netsec - Information Security News & Discussion
Parallels Desktop Toolgate Vulnerability
By
/u/poltess0
β March 21
st
2023 at 09:38
submitted by
/u/poltess0
[link]
[comments]
/r/netsec - Information Security News & Discussion
Uncovering HinataBot: A Deep Dive into a Go-Based Threat
By
/u/montouesto
β March 21
st
2023 at 02:55
submitted by
/u/montouesto
[link]
[comments]
/r/netsec - Information Security News & Discussion
Havoc Across the Cyberspace
By
/u/montouesto
β March 21
st
2023 at 02:54
submitted by
/u/montouesto
[link]
[comments]
/r/netsec - Information Security News & Discussion
ShellBot Malware Being Distributed to Linux SSH Servers
By
/u/montouesto
β March 21
st
2023 at 02:53
submitted by
/u/montouesto
[link]
[comments]
/r/netsec - Information Security News & Discussion
Find Threats in Event Logs with Hayabusa
By
/u/skybound5
β March 21
st
2023 at 02:40
submitted by
/u/skybound5
[link]
[comments]
/r/netsec - Information Security News & Discussion
Black Angel is a Windows 11/10 x64 kernel mode rootkit. Rootkit can be loaded with enabled DSE while maintaining its full functionality.
By
/u/XaFF-XaFF
β March 20
th
2023 at 18:50
submitted by
/u/XaFF-XaFF
[link]
[comments]
/r/netsec - Information Security News & Discussion
New tool to detect use of known secrets in web frameworks - Badsecrets
By
/u/L1QU1DF1R3
β March 20
th
2023 at 18:12
submitted by
/u/L1QU1DF1R3
[link]
[comments]
/r/netsec - Information Security News & Discussion
KillNet and affiliate hacktivist groups targeting healthcare with DDoS attacks
By
/u/SCI_Rusher
β March 20
th
2023 at 17:35
submitted by
/u/SCI_Rusher
[link]
[comments]
/r/netsec - Information Security News & Discussion
Persistence β Service Control Manager
By
/u/netbiosX
β March 20
th
2023 at 16:18
submitted by
/u/netbiosX
[link]
[comments]
/r/netsec - Information Security News & Discussion
Attackers are starting to target .NET developers with malicious-code NuGet packages
By
/u/n0llbyte
β March 20
th
2023 at 15:29
submitted by
/u/n0llbyte
[link]
[comments]
/r/netsec - Information Security News & Discussion
Bypassing CloudTrail in AWS Service Catalog, and Other Logging Research | Datadog Security Labs
By
/u/RedTermSession
β March 20
th
2023 at 14:09
submitted by
/u/RedTermSession
[link]
[comments]
/r/netsec - Information Security News & Discussion
Obfuscating WebAssembly using Emscripten with an LLVM-based obfuscator
By
/u/Hawkis98
β March 20
th
2023 at 07:53
submitted by
/u/Hawkis98
[link]
[comments]
/r/netsec - Information Security News & Discussion
Bitwarden PINs can be brute-forced, a how-to and reason for stronger master passwords.
By
/u/AverageCowboyCentaur
β March 19
th
2023 at 16:25
submitted by
/u/AverageCowboyCentaur
[link]
[comments]
/r/netsec - Information Security News & Discussion
Undocumented behavior change in Android 10: mode "w" no longer truncates
By
/u/Gallus
β March 18
th
2023 at 12:40
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Adversary Simulation with Voice Cloning in Real Time, Part 1
By
/u/kerberoast
β March 17
th
2023 at 03:36
submitted by
/u/kerberoast
[link]
[comments]
/r/netsec - Information Security News & Discussion
Surveying Software Supply Chain Security
By
/u/pmz
β March 16
th
2023 at 21:57
submitted by
/u/pmz
[link]
[comments]
/r/netsec - Information Security News & Discussion
Debugging D-Link: Emulating firmware and hacking hardware
By
/u/netsecfriends
β March 16
th
2023 at 19:38
submitted by
/u/netsecfriends
[link]
[comments]
/r/netsec - Information Security News & Discussion
Introducing "safe npm" β magical NPM wrapper to protect developers from malware
By
/u/feross
β March 16
th
2023 at 19:16
submitted by
/u/feross
[link]
[comments]
/r/netsec - Information Security News & Discussion
Rapid7 Vulnerability Intelligence Report Webcast - today at 11am PDT / 2pm EDT
By
/u/iagox86
β March 16
th
2023 at 14:47
submitted by
/u/iagox86
[link]
[comments]
/r/netsec - Information Security News & Discussion
Smart Contracts Security: Exploring Common Bugs
By
/u/kobsoN
β March 16
th
2023 at 14:30
submitted by
/u/kobsoN
[link]
[comments]
/r/netsec - Information Security News & Discussion
NPM request Library SSRF Cross Protocol Redirect Bypass
By
/u/nibblesec
β March 16
th
2023 at 13:15
submitted by
/u/nibblesec
[link]
[comments]
/r/netsec - Information Security News & Discussion
Nonsense, mayhem, browser security, CSRF, and CORS - Part 1
By
/u/arnc_cryptid
β March 16
th
2023 at 06:27
submitted by
/u/arnc_cryptid
[link]
[comments]
/r/netsec - Information Security News & Discussion
CVE-2023-23415 - ICMP Remote Code Execution
By
/u/Thrimbor
β March 15
th
2023 at 20:20
submitted by
/u/Thrimbor
[link]
[comments]
/r/netsec - Information Security News & Discussion
We need a new way to measure AI security
By
/u/yossarian_flew_away
β March 15
th
2023 at 15:48
submitted by
/u/yossarian_flew_away
[link]
[comments]
/r/netsec - Information Security News & Discussion
Producing a POC for CVE-2022-42475 (Fortinet RCE)
By
/u/BlackCatNeo
β March 15
th
2023 at 07:51
submitted by
/u/BlackCatNeo
[link]
[comments]
/r/netsec - Information Security News & Discussion
Exploiting CVE-2023-23397: Microsoft Outlook Elevation of Privilege Vulnerability
By
/u/Gallus
β March 15
th
2023 at 01:25
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
BeyondTrust AD Bridge Open Post-Exploitation
By
/u/v1brio
β March 14
th
2023 at 23:05
submitted by
/u/v1brio
[link]
[comments]
/r/netsec - Information Security News & Discussion
Examining OpenSSH Sandboxing and Privilege Separation β Attack Surface Analysis
By
/u/n0llbyte
β March 14
th
2023 at 17:13
submitted by
/u/n0llbyte
[link]
[comments]
/r/netsec - Information Security News & Discussion
Vulnerabilities in the TPM 2.0 reference implementation code
By
/u/guedou
β March 14
th
2023 at 12:49
submitted by
/u/guedou
[link]
[comments]
/r/netsec - Information Security News & Discussion
Bootkit Showcase: Real-World Examples of Infrastructure Security Threats
By
/u/hardenedvault
β March 14
th
2023 at 11:26
submitted by
/u/hardenedvault
[link]
[comments]
/r/netsec - Information Security News & Discussion
Kali Linux 2023.1 introduces 'Purple' distro for defensive security
By
/u/MrNobody136
β March 14
th
2023 at 10:55
submitted by
/u/MrNobody136
[link]
[comments]
/r/netsec - Information Security News & Discussion
"Understanding a Payload's Life (featuring Meterpreter & other guests)". Understanding the life of a Meterpreter payload from its generation to its execution. How all the pieces fit together!
By
/u/attl4s
β March 14
th
2023 at 08:28
submitted by
/u/attl4s
[link]
[comments]
/r/netsec - Information Security News & Discussion
Dolibarr ERP/CRM 16.x is vulnerable to a pre-auth customer database theft
By
/u/qwerty0x41
β March 14
th
2023 at 06:55
submitted by
/u/qwerty0x41
[link]
[comments]
/r/netsec - Information Security News & Discussion
Dissecting Exfiltrator-22: A Post-Exploitation Framework
By
/u/navneetmuffin
β March 14
th
2023 at 05:40
submitted by
/u/navneetmuffin
[link]
[comments]
/r/netsec - Information Security News & Discussion
Vendor Acknowledges Smart Intercom RCE Vulns
By
/u/derp6996
β March 13
th
2023 at 19:31
submitted by
/u/derp6996
[link]
[comments]
/r/netsec - Information Security News & Discussion
DEV-1101 enables high-volume AiTM campaigns with open-source phishing kit
By
/u/SCI_Rusher
β March 13
th
2023 at 16:22
submitted by
/u/SCI_Rusher
[link]
[comments]
Load more articles