/r/netsec - Information Security News & Discussion

Easy Pentest Reporting Tool SysReptor released (Community Edition)

By /u/Pleasant-Drawer729 — May 2^nd 2023 at 13:52

submitted by /u/Pleasant-Drawer729
[link] [comments]

/r/netsec - Information Security News & Discussion

Databricks platform root privilege escalation and bypassing cluster isolation

By /u/0x9000 — May 2^nd 2023 at 13:12

submitted by /u/0x9000
[link] [comments]

/r/netsec - Information Security News & Discussion

Exploiting an Order of Operations Bug to Achieve RCE in Oracle Opera

By /u/Mempodipper — May 2^nd 2023 at 04:19

submitted by /u/Mempodipper
[link] [comments]

/r/netsec - Information Security News & Discussion

CoinMiner (KONO DIO DA) Distributed to Linux SSH Servers

By /u/montouesto — May 2^nd 2023 at 03:23

submitted by /u/montouesto
[link] [comments]

/r/netsec - Information Security News & Discussion

[PAPERBUG] Nomadic Octopus’ Paperbug Campaign

By /u/wtfse — May 1^st 2023 at 16:36

submitted by /u/wtfse
[link] [comments]

/r/netsec - Information Security News & Discussion

Practical Risks to Machine Learning Systems -- Pickle Serialization of Shared Models

By /u/SUPACOMPUTA — May 1^st 2023 at 15:41

submitted by /u/SUPACOMPUTA
[link] [comments]

/r/netsec - Information Security News & Discussion

Azure DevOps CICD Pipelines - Command Injection with Parameters, Variables and a discussion on Runner hijacking

By /u/MysteriousHotel3017 — May 1^st 2023 at 08:42

submitted by /u/MysteriousHotel3017
[link] [comments]

/r/netsec - Information Security News & Discussion

Sharing a tool I developed to help Blue Teamers discover Persistence on Windows - please check it out!

By /u/panscanner — April 30^th 2023 at 13:52

submitted by /u/panscanner
[link] [comments]

/r/netsec - Information Security News & Discussion

Elastic Security Labs discovers the LOBSHOT malware

By /u/montouesto — April 30^th 2023 at 12:10

submitted by /u/montouesto
[link] [comments]

/r/netsec - Information Security News & Discussion

assetnote/ghostbuster: Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.

By /u/Mempodipper — April 30^th 2023 at 12:08

submitted by /u/Mempodipper
[link] [comments]

/r/netsec - Information Security News & Discussion

Automate Burp Certificate Installation on Android with ChatGPT's Python Tool

By /u/Ano_F — April 30^th 2023 at 05:25

submitted by /u/Ano_F
[link] [comments]

/r/netsec - Information Security News & Discussion

State of DNS Rebinding in 2023

By /u/Tough_Indication_710 — April 29^th 2023 at 00:50

submitted by /u/Tough_Indication_710
[link] [comments]

/r/netsec - Information Security News & Discussion

How Cloud Environments Are Exploited for Smishing Campaigns

By /u/permis0 — April 28^th 2023 at 17:55

submitted by /u/permis0
[link] [comments]

/r/netsec - Information Security News & Discussion

Chinese Alloy Taurus Updates PingPull Malware

By /u/EspoJ — April 28^th 2023 at 12:54

submitted by /u/EspoJ
[link] [comments]

/r/netsec - Information Security News & Discussion

Finding XSS in a million websites (cPanel CVE-2023-29489)

By /u/Mempodipper — April 27^th 2023 at 01:12

submitted by /u/Mempodipper
[link] [comments]

/r/netsec - Information Security News & Discussion

Microsoft Exchange Powershell Remoting Deserialization leading to RCE (CVE-2023-21707)

By /u/scopedsecurity — April 28^th 2023 at 10:39

submitted by /u/scopedsecurity
[link] [comments]

/r/netsec - Information Security News & Discussion

CVE-2022-37955: Vulnerability in Microsoft Windows Group Policy Updates Leads to Improper Link Resolution Before File Access (Privilege Escalation CWE-59)

By /u/usdAG — April 28^th 2023 at 09:13

submitted by /u/usdAG
[link] [comments]

/r/netsec - Information Security News & Discussion

Dissecting Npm Malware: Five Packages And Their Evil Install Scripts

By /u/sculabobone — April 28^th 2023 at 07:48

submitted by /u/sculabobone
[link] [comments]

/r/netsec - Information Security News & Discussion

Android greybox fuzzing with AFL++ Frida mode

By /u/jeandrew — April 27^th 2023 at 16:36

submitted by /u/jeandrew
[link] [comments]

/r/netsec - Information Security News & Discussion

Odoo: Get your Content Type right, or else! (CVE-2023-1434)

By /u/monoimpact — April 27^th 2023 at 13:59

submitted by /u/monoimpact
[link] [comments]

/r/netsec - Information Security News & Discussion

User impersonation via stolen UUID code in KeyCloak (CVE-2023-0264)

By /u/Offensity — April 27^th 2023 at 12:30

submitted by /u/Offensity
[link] [comments]

/r/netsec - Information Security News & Discussion

Introducing DeepSecrets: a better appsec tool for secrets scanning

By /u/surfaceflinger — April 27^th 2023 at 12:03

submitted by /u/surfaceflinger
[link] [comments]

/r/netsec - Information Security News & Discussion

Smash PostScript Interpreters Using a Syntax-Aware Fuzzer

By /u/Gallus — April 27^th 2023 at 09:36

submitted by /u/Gallus
[link] [comments]

/r/netsec - Information Security News & Discussion

Fastly 0day: Malformed HTTP/1.1 Request Causes out of Memory Error Within H2O Server

By /u/geoffreyhuntley — April 27^th 2023 at 06:22

submitted by /u/geoffreyhuntley
[link] [comments]

/r/netsec - Information Security News & Discussion

RDP is susceptible to a transparent Net-NTLMv2 hash-stealing attack. When disclosed, Microsoft responded: “not a vulnerability, […] by design”.

By /u/obilodeau — April 26^th 2023 at 14:43

submitted by /u/obilodeau
[link] [comments]

/r/netsec - Information Security News & Discussion

Secure Your Infrastructure as Code with These DevOps Best Practices (+ Free Cheat Sheet)

By /u/segtekdev — April 26^th 2023 at 13:25

submitted by /u/segtekdev
[link] [comments]

/r/netsec - Information Security News & Discussion

So you think you can block Macros?

By /u/munrobotic — April 26^th 2023 at 07:42

A great blog post from Outflank, and a must-read for CISOs and technical blue teams! The post outlines common controls and strategies deployed to mitigate Microsoft Office macro security issues. They also introduce LOLdocs from a recent Brucon talk, detailing how vulnerabilities in signed #microsoft Office content might be abused to bypass even strictly configured MS Office installs. Awesome.

submitted by /u/munrobotic
[link] [comments]

/r/netsec - Information Security News & Discussion

TheR1D/shell_gpt: A command-line productivity tool powered by ChatGPT, will help you accomplish your tasks faster and more efficiently.

By /u/meowerguy — April 26^th 2023 at 05:26

submitted by /u/meowerguy
[link] [comments]

/r/netsec - Information Security News & Discussion

codingo/dorky: A tool to automate dorking of Github/Shodan and a variety of other sources

By /u/meowerguy — April 26^th 2023 at 05:26

submitted by /u/meowerguy
[link] [comments]

/r/netsec - Information Security News & Discussion

Capturing the Flag with GPT-4

By /u/_vavkamil_ — April 25^th 2023 at 15:45

submitted by /u/_vavkamil_
[link] [comments]

/r/netsec - Information Security News & Discussion

CVE-2023-27524: Insecure Default Configuration in Apache Superset Leads to Remote Code Execution

By /u/scopedsecurity — April 25^th 2023 at 11:53

submitted by /u/scopedsecurity
[link] [comments]

/r/netsec - Information Security News & Discussion

Intel Trust Domain Extensions (TDX) Security Review by Google Project Zero

By /u/poltess0 — April 25^th 2023 at 07:40

submitted by /u/poltess0
[link] [comments]

/r/netsec - Information Security News & Discussion

KeepassXC audit report

By /u/Blocikinio — April 25^th 2023 at 06:13

submitted by /u/Blocikinio
[link] [comments]

/r/netsec - Information Security News & Discussion

How AI helps keeping Gmail inboxes malware free

By /u/ebursztein — April 25^th 2023 at 02:05

submitted by /u/ebursztein
[link] [comments]

/r/netsec - Information Security News & Discussion

New .NET Malware “WhiteSnake” Targets Python Developers, Uses Tor for C&C Communication

By /u/SRMish3 — April 24^th 2023 at 19:24

submitted by /u/SRMish3
[link] [comments]

/r/netsec - Information Security News & Discussion

Book Review: Red Team Blues

By /u/feross — April 24^th 2023 at 17:31

submitted by /u/feross
[link] [comments]

/r/netsec - Information Security News & Discussion

3D-Printable BusKill (USB Dead Man Switch) Prototype

By /u/maltfield — April 24^th 2023 at 17:22

submitted by /u/maltfield
[link] [comments]

/r/netsec - Information Security News & Discussion

c0c0n XVI | The cy0ps c0n - Call For Papers & Call For Workshops

By /u/pr4jwal — April 24^th 2023 at 15:48

submitted by /u/pr4jwal
[link] [comments]

/r/netsec - Information Security News & Discussion

Detecting and decrypting Sliver C2 – a threat hunter's guide

By /u/kev-thehermit — April 24^th 2023 at 15:00

submitted by /u/kev-thehermit
[link] [comments]

/r/netsec - Information Security News & Discussion

Eating 4 Day Old Sushi - Replicating the SushiSwap Blockchain Hack (Blog and Live Video)

By /u/mdulin2 — April 24^th 2023 at 14:49

submitted by /u/mdulin2
[link] [comments]

/r/netsec - Information Security News & Discussion

PaperCut CVE-2023-27350 Deep Dive, Indicators of Compromise, and Exploit POC

By /u/scopedsecurity — April 24^th 2023 at 11:23

submitted by /u/scopedsecurity
[link] [comments]

/r/netsec - Information Security News & Discussion

First-Ever Attack Leveraging Kubernetes RBAC to Backdoor Clusters

By /u/RetiredReverser — April 22^nd 2023 at 02:28

submitted by /u/RetiredReverser
[link] [comments]

/r/netsec - Information Security News & Discussion

RCE via WebView; Telegram Web, external links; and IP leak; Leak users behind anonymous channel posts.

By /u/davtur19 — April 21^st 2023 at 12:38

submitted by /u/davtur19
[link] [comments]

/r/netsec - Information Security News & Discussion

GCP Cloud Function Abuse

By /u/debifrank — April 24^th 2023 at 01:14

submitted by /u/debifrank
[link] [comments]

/r/netsec - Information Security News & Discussion

Generative AI Design Best Practices for Web Applications

By /u/kerberosmansour — April 23^rd 2023 at 13:31

submitted by /u/kerberosmansour
[link] [comments]

/r/netsec - Information Security News & Discussion

ThePhish: an automated phishing email analysis tool - A new version will come when the Python API for TheHive 5 becomes stable, so stay tuned!

By /u/emalderson — April 22^nd 2023 at 11:55

submitted by /u/emalderson
[link] [comments]

/r/netsec - Information Security News & Discussion

Vulkan Files

By /u/Snoo_27235 — April 22^nd 2023 at 10:54

submitted by /u/Snoo_27235
[link] [comments]

/r/netsec - Information Security News & Discussion

The Most Dangerous Codec in the World: Finding and Exploiting Vulnerabilities in H.264 Decoders

By /u/1esproc — April 22^nd 2023 at 02:49

submitted by /u/1esproc
[link] [comments]

/r/netsec - Information Security News & Discussion

Hiding in Plain Sight: Unlinking Malicious DLLs from the PEB

By /u/thorn42 — April 21^st 2023 at 20:35

submitted by /u/thorn42
[link] [comments]

/r/netsec - Information Security News & Discussion

Compromising Garmin's Sport Watches: A Deep Dive into GarminOS and its MonkeyC Virtual Machine - Anvil Secure

By /u/anvilventures — April 21^st 2023 at 16:42

submitted by /u/anvilventures
[link] [comments]

/r/netsec - Information Security News & Discussion

Qakbot Malware Continues to Morph

By /u/RetiredReverser — April 21^st 2023 at 15:59

submitted by /u/RetiredReverser
[link] [comments]

/r/netsec - Information Security News & Discussion

8220 Gang Uses Log4Shell Vulnerability to Install CoinMiner

By /u/RetiredReverser — April 21^st 2023 at 15:58

submitted by /u/RetiredReverser
[link] [comments]

/r/netsec - Information Security News & Discussion

The Case Against Automatic Dependency Updates

By /u/DevSec23 — April 21^st 2023 at 15:49

Are automatic dependency updates always a good idea?

submitted by /u/DevSec23
[link] [comments]

/r/netsec - Information Security News & Discussion

Windows Secrets Extraction

By /u/Gallus — April 21^st 2023 at 14:26

submitted by /u/Gallus
[link] [comments]

/r/netsec - Information Security News & Discussion

8220 Gang Uses Log4Shell Vulnerability to Install CoinMiner

By /u/montouesto — April 21^st 2023 at 05:40

submitted by /u/montouesto
[link] [comments]

/r/netsec - Information Security News & Discussion

Multiple Vulnerabilities found in Docker Desktop - privesc, code execution, file overwrite/delete and more.

By /u/jat0369 — April 20^th 2023 at 14:53

submitted by /u/jat0369
[link] [comments]

/r/netsec - Information Security News & Discussion

The Fuzzing Guide to the Galaxy: An Attempt with Android System Services

By /u/poltess0 — April 20^th 2023 at 13:39

submitted by /u/poltess0
[link] [comments]

/r/netsec - Information Security News & Discussion

Generating Deserialization Payloads for MessagePack C#’s Typeless Mode

By /u/NetwrixSecurity — April 20^th 2023 at 12:57

submitted by /u/NetwrixSecurity
[link] [comments]

/r/netsec - Information Security News & Discussion

CVE-2023-29084 Command injection in ManageEngine ADManager Plus

By /u/nirohf — April 20^th 2023 at 12:08

submitted by /u/nirohf
[link] [comments]

/r/netsec - Information Security News & Discussion

‘AuKill’ EDR killer malware abuses Process Explorer driver

By /u/montouesto — April 19^th 2023 at 23:41

submitted by /u/montouesto
[link] [comments]