/r/netsec - Information Security News & Discussion

Blog Patrowl: OmniSpace, from automated 0day XSS to RCE by @Pepito_oh

By /u/MaKyOtOx — September 12^th 2023 at 13:06

submitted by /u/MaKyOtOx
[link] [comments]

/r/netsec - Information Security News & Discussion

Analyzing Security Vulnerabilities in XWiki: In-Depth Examination

By /u/appsec1337 — September 12^th 2023 at 12:49

submitted by /u/appsec1337
[link] [comments]

/r/netsec - Information Security News & Discussion

Activation Context Hell - DosDevices Remapping Attack under Impersonation

By /u/hacksysteam — September 11^th 2023 at 19:03

submitted by /u/hacksysteam
[link] [comments]

/r/netsec - Information Security News & Discussion

HijackLoader: a new malware downloader with modular architecture

By /u/nareksays — September 11^th 2023 at 13:16

submitted by /u/nareksays
[link] [comments]

/r/netsec - Information Security News & Discussion

GitHub - boringtools/git-alerts: A Public Git repository & misconfiguration detection tool

By /u/predev0x00 — September 11^th 2023 at 11:13

submitted by /u/predev0x00
[link] [comments]

/r/netsec - Information Security News & Discussion

“MrTonyScam” — Botnet of Facebook Users Launch High-Intent Messenger Phishing Attack on Business Accounts

By /u/lowlet3443 — September 10^th 2023 at 11:05

submitted by /u/lowlet3443
[link] [comments]

/r/netsec - Information Security News & Discussion

Rustproofing Linux (Part 1/4 Leaking Addresses)

By /u/meowerguy — September 9^th 2023 at 23:02

submitted by /u/meowerguy
[link] [comments]

/r/netsec - Information Security News & Discussion

Azure Incident Response Cheat Sheet (PDF)

By /u/0x636f6f6c — September 9^th 2023 at 12:46

submitted by /u/0x636f6f6c
[link] [comments]

/r/netsec - Information Security News & Discussion

Cybercriminals target Windows Advanced Installer to run crypto-mining malware

By /u/nareksays — September 8^th 2023 at 18:16

submitted by /u/nareksays
[link] [comments]

/r/netsec - Information Security News & Discussion

Bcrypt at 25: A retrospective on password security

By /u/ScottContini — September 8^th 2023 at 11:26

submitted by /u/ScottContini
[link] [comments]

/r/netsec - Information Security News & Discussion

How to DoS iOS devices with Bluetooth pairing messages using Android

By /u/barakadua131 — September 8^th 2023 at 06:48

submitted by /u/barakadua131
[link] [comments]

/r/netsec - Information Security News & Discussion

Orbeon Forms: The Final Form? On A Journey To RCE 0day

By /u/dx7r__ — September 8^th 2023 at 04:17

submitted by /u/dx7r__
[link] [comments]

/r/netsec - Information Security News & Discussion

BLASTPASS: NSO Group iPhone Zero-Click, Zero-Day Exploit Captured in the Wild

By /u/Frostlike2816 — September 8^th 2023 at 00:12

submitted by /u/Frostlike2816
[link] [comments]

/r/netsec - Information Security News & Discussion

Nagios Plugins: Hacking Monitored Servers with check_by_ssh and Argument Injection: CVE-2023-37154

By /u/MegaManSec2 — September 7^th 2023 at 22:31

submitted by /u/MegaManSec2
[link] [comments]

/r/netsec - Information Security News & Discussion

New vulnerabilities disclosed in Ivanti EPM

By /u/jrozner — September 7^th 2023 at 16:54

submitted by /u/jrozner
[link] [comments]

/r/netsec - Information Security News & Discussion

Boot Unguarded: x86 Trust Anchor Downfalls to The Leaked OEM Internal Tools and Signing Keys

By /u/hardenedvault — September 7^th 2023 at 15:25

submitted by /u/hardenedvault
[link] [comments]

/r/netsec - Information Security News & Discussion

Event Likelihood Scoring Model

By /u/OkPossible7152 — September 7^th 2023 at 14:02

submitted by /u/OkPossible7152
[link] [comments]

/r/netsec - Information Security News & Discussion

A tale about a Red Team exercise and the Forcepoint Endpoint One DLP client - vsociety

By /u/k4m1ll0 — September 6^th 2023 at 22:16

submitted by /u/k4m1ll0
[link] [comments]

/r/netsec - Information Security News & Discussion

Results of Major Technical Investigations for Storm-0558 Key Acquisition (How a threat actor acquired and used a Microsoft signing key to access customer emails)

By /u/The_Electric_Feel — September 6^th 2023 at 18:55

submitted by /u/The_Electric_Feel
[link] [comments]

/r/netsec - Information Security News & Discussion

DogeRAT malware targets Indian users (tracks Locations, makes illegal payments, and more)

By /u/nareksays — September 6^th 2023 at 16:38

submitted by /u/nareksays
[link] [comments]

/r/netsec - Information Security News & Discussion

Apache Superset Part II: RCE, Credential Harvesting and More

By /u/scopedsecurity — September 6^th 2023 at 14:43

submitted by /u/scopedsecurity
[link] [comments]

/r/netsec - Information Security News & Discussion

Main Analytical Frameworks for CTI

By /u/ziyahanalbeniz — September 6^th 2023 at 14:34

submitted by /u/ziyahanalbeniz
[link] [comments]

/r/netsec - Information Security News & Discussion

eBPF Offensive Capabilities

By /u/weseven — September 6^th 2023 at 13:38

submitted by /u/weseven
[link] [comments]

/r/netsec - Information Security News & Discussion

XSS vulnerability in Proton Mail allowed to leak unencrypted emails

By /u/SonarPaul — September 6^th 2023 at 09:44

submitted by /u/SonarPaul
[link] [comments]

/r/netsec - Information Security News & Discussion

How to Write a Secure JWT Library If You Absolutely Must

By /u/sarciszewski — September 6^th 2023 at 08:28

submitted by /u/sarciszewski
[link] [comments]

/r/netsec - Information Security News & Discussion

Lord Of The Ring0 part 5 is out (kernel development series)

By /u/Idov31 — September 6^th 2023 at 05:34

submitted by /u/Idov31
[link] [comments]

/r/netsec - Information Security News & Discussion

Peeking under the bonnet of the Litter Robot 3

By /u/thinkV — September 6^th 2023 at 01:47

submitted by /u/thinkV
[link] [comments]

/r/netsec - Information Security News & Discussion

Android 14 blocks all modification of system certificates, even as root

By /u/pi3ch — September 5^th 2023 at 21:54

submitted by /u/pi3ch
[link] [comments]

/r/netsec - Information Security News & Discussion

Live API Keys and Source Code Leaked in 4,500 of the Top Alexa Sites

By /u/Phorcez — September 5^th 2023 at 16:28

submitted by /u/Phorcez
[link] [comments]

/r/netsec - Information Security News & Discussion

Flaws in IBM Security Verify allows hackers to steal sensitive information

By /u/nareksays — September 5^th 2023 at 16:17

submitted by /u/nareksays
[link] [comments]

/r/netsec - Information Security News & Discussion

Analysis of a new Facebook profile stealer written in Node.js

By /u/nareksays — September 5^th 2023 at 11:37

submitted by /u/nareksays
[link] [comments]

/r/netsec - Information Security News & Discussion

Improving nmap's service scanning accuracy and speed with nmap-service-probes data

By /u/MegaManSec2 — September 5^th 2023 at 10:24

submitted by /u/MegaManSec2
[link] [comments]

/r/netsec - Information Security News & Discussion

LFI/RCE Vulnerability in WordPress Media Library Assistant Plugin - CVE-2023-4634 - Patrowl

By /u/Pepito_oh — September 5^th 2023 at 08:22

submitted by /u/Pepito_oh
[link] [comments]

/r/netsec - Information Security News & Discussion

When URL parsers disagree (CVE-2023-38633)

By /u/ScottContini — September 5^th 2023 at 07:57

submitted by /u/ScottContini
[link] [comments]

/r/netsec - Information Security News & Discussion

VulnHub Kioptrix Level 1.1 CTF Walkthrough - Step-by-step with Explanations

By /u/kongwenbin — September 5^th 2023 at 05:12

submitted by /u/kongwenbin
[link] [comments]

/r/netsec - Information Security News & Discussion

Chepy 6.0.0 released with lots of new changes, capabilities etc. Cyberchef in pure python

By /u/securisec — September 5^th 2023 at 00:27

submitted by /u/securisec
[link] [comments]

/r/netsec - Information Security News & Discussion

Uncovering Web Cache Deception: A Missed Vulnerability in the Most Unexpected Places

By /u/vikzsharma — September 4^th 2023 at 22:00

submitted by /u/vikzsharma
[link] [comments]

/r/netsec - Information Security News & Discussion

Nascent Malware Campaign Targets npm, PyPI, and RubyGems Developers

By /u/louis11 — September 4^th 2023 at 18:57

submitted by /u/louis11
[link] [comments]

/r/netsec - Information Security News & Discussion

Using Open Source Software Composition Analysis Tool From Google. Presenting the usage of the osv-scanner tool in real-life Python and Java projects. A tool review with pros and cons.

By /u/theowni — September 4^th 2023 at 17:35

submitted by /u/theowni
[link] [comments]

/r/netsec - Information Security News & Discussion

Useful resources for SOC Analyst and SOC Analyst candidates.

By /u/ogunal00 — September 4^th 2023 at 15:13

submitted by /u/ogunal00
[link] [comments]

/r/netsec - Information Security News & Discussion

WordPress website fingerprint techniques

By /u/theMiddleBlue — September 4^th 2023 at 08:07

submitted by /u/theMiddleBlue
[link] [comments]

/r/netsec - Information Security News & Discussion

Microsoft Edge Forensics: Screenshot History

By /u/OwnPreparation3424 — September 4^th 2023 at 07:38

submitted by /u/OwnPreparation3424
[link] [comments]

/r/netsec - Information Security News & Discussion

China-linked cybercriminals bypass Barracuda’s security patch

By /u/nareksays — September 3^rd 2023 at 20:14

submitted by /u/nareksays
[link] [comments]

/r/netsec - Information Security News & Discussion

New advisory: File History Service (fhsvc.dll) Elevation of Privilege - SSD Secure Disclosure

By /u/SSDisclosure — September 3^rd 2023 at 14:19

submitted by /u/SSDisclosure
[link] [comments]

/r/netsec - Information Security News & Discussion

Secure FastAPI with eBPF

By /u/cov_id19 — September 3^rd 2023 at 11:02

submitted by /u/cov_id19
[link] [comments]

/r/netsec - Information Security News & Discussion

Session Hijacking Visual Exploitation (SHVE). New tool for XSS Exploitation

By /u/nibblesec — September 1^st 2023 at 23:31

submitted by /u/nibblesec
[link] [comments]

/r/netsec - Information Security News & Discussion

New OpenSecurityTraining2 class "Debuggers 3301: HyperDbg" by Sina Karvandi (~16 hours)

By /u/OpenSecurityTraining — September 1^st 2023 at 12:16

submitted by /u/OpenSecurityTraining
[link] [comments]

/r/netsec - Information Security News & Discussion

NetNTLMv1 Downgrade attacks

By /u/S3cur3Th1sSh1t — September 1^st 2023 at 09:00

submitted by /u/S3cur3Th1sSh1t
[link] [comments]

/r/netsec - Information Security News & Discussion

Mashing Enter to bypass Linux full disk encryption with TPM, Clevis, dracut and systemd

By /u/MysteriousHotel3017 — August 31^st 2023 at 22:50

submitted by /u/MysteriousHotel3017
[link] [comments]

/r/netsec - Information Security News & Discussion

Bypassing Windows Defender LSASS Dump Detection with EvilLsassTwin

By /u/EphReborn — August 31^st 2023 at 18:32

submitted by /u/EphReborn
[link] [comments]

/r/netsec - Information Security News & Discussion

BitLocker, TPM and Pluton | What Are They and How Do They Work

By /u/HotCakeXXXXXXXXXXXXX — August 31^st 2023 at 17:58

submitted by /u/HotCakeXXXXXXXXXXXXX
[link] [comments]

/r/netsec - Information Security News & Discussion

(nodejs) CVEAggregate - Generate and work with EPSS probabilities, CVSS vectors, and CISA-KEV due dates mapped by CVE IDs

By /u/r3volved — August 31^st 2023 at 17:27

submitted by /u/r3volved
[link] [comments]

/r/netsec - Information Security News & Discussion

A Deep Dive into Brute Ratel C4 payloads

By /u/CyberMasterV — August 31^st 2023 at 13:01

submitted by /u/CyberMasterV
[link] [comments]

/r/netsec - Information Security News & Discussion

Unpinnable Actions: How Malicious Code Can Sneak into Your GitHub Actions Workflows

By /u/Due_Lengthiness_9329 — August 31^st 2023 at 10:09

submitted by /u/Due_Lengthiness_9329
[link] [comments]

/r/netsec - Information Security News & Discussion

Converting Tokens to Session Cookies for Outlook Web Application

By /u/Vast-Part7039 — August 31^st 2023 at 08:10

submitted by /u/Vast-Part7039
[link] [comments]

/r/netsec - Information Security News & Discussion

Contain Yourself: Staying Undetected Using the Windows Container Isolation Framework

By /u/Daniel24z25 — August 31^st 2023 at 07:42

Research presented on DEF CON 31 that demonstrates how the Windows containers isolation framework (wcifs.sys), which is loaded on every modern Windows system by default, can be abused to bypass EDR file system malware protection, file/folder write restrictions and I/O ETW log-based correlations.

submitted by /u/Daniel24z25
[link] [comments]

/r/netsec - Information Security News & Discussion

Bypassing Defender’s LSASS dump detection and PPL protection In Go

By /u/tasty-pepperoni — August 30^th 2023 at 17:00

submitted by /u/tasty-pepperoni
[link] [comments]

/r/netsec - Information Security News & Discussion

NosyMonkey: API hooking and code injection made easy! - Anvil Secure

By /u/anvilventures — August 30^th 2023 at 16:30

submitted by /u/anvilventures
[link] [comments]

/r/netsec - Information Security News & Discussion

GitHub - APT64/EternalHushFramework: EternalHush - new free advanced open-source c2 framework

By /u/novkira03 — August 30^th 2023 at 15:47

submitted by /u/novkira03
[link] [comments]

/r/netsec - Information Security News & Discussion

Anti-Deepfake Proposal

By /u/endless — August 30^th 2023 at 13:44

submitted by /u/endless
[link] [comments]