Login
FreshRSS
Login
/r/netsec - Information Security News & Discussion
windows arbitrary MSR write and kernel-memory write
By
/u/meowerguy
โ November 15
th
2023 at 14:12
submitted by
/u/meowerguy
[link]
[comments]
/r/netsec - Information Security News & Discussion
Microsoft Edge VR - Escaping the sandbox: A bug that speaks for itself
By
/u/poltess0
โ November 15
th
2023 at 09:22
submitted by
/u/poltess0
[link]
[comments]
/r/netsec - Information Security News & Discussion
Reptar: an Intel Ice Lake CPU vulnerability, by Tavis Ormandy
By
/u/poltess0
โ November 15
th
2023 at 09:12
submitted by
/u/poltess0
[link]
[comments]
/r/netsec - Information Security News & Discussion
Summer 2023 Study on Wi-Fi 6 & WPA3 Popularity
By
/u/wirelessbits
โ November 14
th
2023 at 23:38
submitted by
/u/wirelessbits
[link]
[comments]
/r/netsec - Information Security News & Discussion
Static Code Injections in OpenCart (CVE-2023-47444)
By
/u/UsedSite2578
โ November 14
th
2023 at 23:33
submitted by
/u/UsedSite2578
[link]
[comments]
/r/netsec - Information Security News & Discussion
Critical bug bounty reports in Microsoft & GitHub, with publication of CVE-2023-36052: "All the Small Things: Azure CLI Leakage and Problematic Usage Patterns".
By
/u/Hefty_Knowledge_7449
โ November 14
th
2023 at 20:34
submitted by
/u/Hefty_Knowledge_7449
[link]
[comments]
/r/netsec - Information Security News & Discussion
Tapping into a telecommunications company's office cameras
By
/u/EatonZ
โ November 14
th
2023 at 19:10
submitted by
/u/EatonZ
[link]
[comments]
/r/netsec - Information Security News & Discussion
Passive SSH Key Compromise via Lattices
By
/u/elatllat
โ November 14
th
2023 at 13:22
submitted by
/u/elatllat
[link]
[comments]
/r/netsec - Information Security News & Discussion
Beginners guide to free SIEM: Automated setup of Graylog Open using Puppet
By
/u/ezzzzz
โ November 14
th
2023 at 11:52
submitted by
/u/ezzzzz
[link]
[comments]
/r/netsec - Information Security News & Discussion
Nothing new, still broken, insecure by default since then: Python's e-mail libraries and certificate verification and how it affected open source projects
By
/u/aunga
โ November 14
th
2023 at 09:43
submitted by
/u/aunga
[link]
[comments]
/r/netsec - Information Security News & Discussion
The Open Source Fortress: A workshop for finding vulnerabilities in codebases using open source tools
By
/u/iosifache
โ November 14
th
2023 at 07:49
submitted by
/u/iosifache
[link]
[comments]
/r/netsec - Information Security News & Discussion
CVE Watcher: Hunting Down CVEs Before the Patch Drops
By
/u/Pale_Fly_2673
โ November 13
th
2023 at 20:14
submitted by
/u/Pale_Fly_2673
[link]
[comments]
/r/netsec - Information Security News & Discussion
One shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerability
By
/u/poltess0
โ November 13
th
2023 at 14:37
submitted by
/u/poltess0
[link]
[comments]
/r/netsec - Information Security News & Discussion
GPTs & Assistants API - Code Interpreter Data Exfiltration
By
/u/Standard_Arm_4476
โ November 12
th
2023 at 10:17
submitted by
/u/Standard_Arm_4476
[link]
[comments]
/r/netsec - Information Security News & Discussion
BlueNoroff strikes again with new macOS malware
By
/u/avid_reader_72
โ November 11
th
2023 at 17:20
submitted by
/u/avid_reader_72
[link]
[comments]
/r/netsec - Information Security News & Discussion
AWS IoT Core: A Compromised Device Perspective
By
/u/SeanPesce
โ November 9
th
2023 at 15:57
submitted by
/u/SeanPesce
[link]
[comments]
/r/netsec - Information Security News & Discussion
NoMoreCookies protector version 2.3 released
By
/u/AhmedMinegames
โ November 10
th
2023 at 14:57
submitted by
/u/AhmedMinegames
[link]
[comments]
/r/netsec - Information Security News & Discussion
AOL's 92M records database leak in 2003 - A Retroactive Examination
By
/u/nantucket
โ November 10
th
2023 at 14:36
submitted by
/u/nantucket
[link]
[comments]
/r/netsec - Information Security News & Discussion
Command and Control (C2) Redirectors
By
/u/Numerous_General_808
โ November 10
th
2023 at 01:07
submitted by
/u/Numerous_General_808
[link]
[comments]
/r/netsec - Information Security News & Discussion
BugBountyGPT - Now GPT helps to find vulnerabilities!
By
/u/lmpact_
โ November 9
th
2023 at 21:38
submitted by
/u/lmpact_
[link]
[comments]
/r/netsec - Information Security News & Discussion
From Akamai to F5 to NTLM... with love
By
/u/albinowax
โ November 9
th
2023 at 16:38
submitted by
/u/albinowax
[link]
[comments]
/r/netsec - Information Security News & Discussion
Diving into PyPI package name squatting
By
/u/0rsinium
โ November 9
th
2023 at 12:25
submitted by
/u/0rsinium
[link]
[comments]
/r/netsec - Information Security News & Discussion
Using Github as C2
By
/u/cybermepls
โ November 9
th
2023 at 06:58
submitted by
/u/cybermepls
[link]
[comments]
/r/netsec - Information Security News & Discussion
avoidr - masscan with exclusive exclusions
By
/u/acidvegas
โ November 8
th
2023 at 20:55
submitted by
/u/acidvegas
[link]
[comments]
/r/netsec - Information Security News & Discussion
Our Pwn2Own journey against time and randomness (part 2) | Quarkslab
By
/u/poltess0
โ November 8
th
2023 at 13:48
submitted by
/u/poltess0
[link]
[comments]
/r/netsec - Information Security News & Discussion
50 Shades of Vulnerabilities: Uncovering Flaws in Open-Source Vulnerability Disclosures
By
/u/ilay789
โ November 8
th
2023 at 13:10
submitted by
/u/ilay789
[link]
[comments]
/r/netsec - Information Security News & Discussion
Visual Studio Code Security: Deep Dive into Your Favorite Editor (1/3)
By
/u/monoimpact
โ November 8
th
2023 at 10:27
submitted by
/u/monoimpact
[link]
[comments]
/r/netsec - Information Security News & Discussion
How to get RCE on PTRG with CVE-2023-32782
By
/u/security_aaudit
โ November 8
th
2023 at 09:07
submitted by
/u/security_aaudit
[link]
[comments]
/r/netsec - Information Security News & Discussion
When a vulnerability disclosure doesn't go how you expect.
By
/u/ezzzzz
โ November 7
th
2023 at 21:58
submitted by
/u/ezzzzz
[link]
[comments]
/r/netsec - Information Security News & Discussion
Session-Hijacking-Visual-Exploitation: Session Hijacking Visual Exploitation
By
/u/gemyougym
โ November 7
th
2023 at 13:01
submitted by
/u/gemyougym
[link]
[comments]
/r/netsec - Information Security News & Discussion
Session Hijacking Visual Exploitation, New release with Office Documents Poisoning
By
/u/nibblesec
โ November 7
th
2023 at 10:47
submitted by
/u/nibblesec
[link]
[comments]
/r/netsec - Information Security News & Discussion
Post-exploiting a compromised etcd โ Full control over the cluster and its nodes
By
/u/D4r1
โ November 7
th
2023 at 08:39
submitted by
/u/D4r1
[link]
[comments]
/r/netsec - Information Security News & Discussion
OST2, Zephyr RTOS, and a bunch of CVEs
By
/u/0xdea
โ November 7
th
2023 at 07:38
submitted by
/u/0xdea
[link]
[comments]
/r/netsec - Information Security News & Discussion
OPC UA Vulnerability Scanner - OpalOPC
By
/u/Salmiakkilakritsi
โ November 6
th
2023 at 18:15
submitted by
/u/Salmiakkilakritsi
[link]
[comments]
/r/netsec - Information Security News & Discussion
Your printer is not your printer ! - Hacking Printers at Pwn2Own Part II | DEVCORE ๆดๅคซๅฏ็พ
By
/u/poltess0
โ November 6
th
2023 at 15:28
submitted by
/u/poltess0
[link]
[comments]
/r/netsec - Information Security News & Discussion
Open Wounds: The last 5 years have left Bluetooth to bleed (Slides & Hack.lu video)
By
/u/BIOS4breakfast
โ November 6
th
2023 at 12:15
submitted by
/u/BIOS4breakfast
[link]
[comments]
/r/netsec - Information Security News & Discussion
Blue2thprinting (blue-[tooth)-printing]: answering the question of 'WTF am I even looking at?!' (Slides from Hardwear.io last week)
By
/u/BIOS4breakfast
โ November 6
th
2023 at 12:15
submitted by
/u/BIOS4breakfast
[link]
[comments]
/r/netsec - Information Security News & Discussion
It Was Harder to Sniff Bluetooth Through My Mask During the Pandemic... (Slides & HITB HKT video)
By
/u/BIOS4breakfast
โ November 6
th
2023 at 12:14
submitted by
/u/BIOS4breakfast
[link]
[comments]
/r/netsec - Information Security News & Discussion
Smashing the TLB for fun and profit - ekoparty 2023
By
/u/maurosoria
โ November 5
th
2023 at 02:22
submitted by
/u/maurosoria
[link]
[comments]
/r/netsec - Information Security News & Discussion
Looney Tunables Vulnerability Exploited by Kinsing
By
/u/Easy-Bumblebee2503
โ November 3
rd
2023 at 16:34
submitted by
/u/Easy-Bumblebee2503
[link]
[comments]
/r/netsec - Information Security News & Discussion
Keylogger keyboard leaks passwords via Apple's "Find My" location network
By
/u/ctmagazin
โ November 3
rd
2023 at 13:31
submitted by
/u/ctmagazin
[link]
[comments]
/r/netsec - Information Security News & Discussion
Use Wasm to Bypass Latest Chrome v8sbx Again
By
/u/poltess0
โ November 3
rd
2023 at 09:48
submitted by
/u/poltess0
[link]
[comments]
/r/netsec - Information Security News & Discussion
Prioritising Vulnerabilities Remedial Actions at Scale with EPSS
By
/u/theowni
โ November 2
nd
2023 at 19:18
submitted by
/u/theowni
[link]
[comments]
/r/netsec - Information Security News & Discussion
Dozens of npm Packages Caught Attempting to Deploy Reverse Shell
By
/u/louis11
โ November 2
nd
2023 at 18:27
submitted by
/u/louis11
[link]
[comments]
/r/netsec - Information Security News & Discussion
Firmware Security Analyzer - EMBA v1.3.1 with firmware diffing mechanism available
By
/u/_m-1-k-3_
โ November 2
nd
2023 at 18:17
submitted by
/u/_m-1-k-3_
[link]
[comments]
/r/netsec - Information Security News & Discussion
Security Researchers from Salt-Security explain in a super detailed post how they did account takeover on Grammarly.com, Booking.com, Expo.io, Codecademy.com, Vidio.com, Bukalapak.com, and 100+ Other Websites.
By
/u/MoreMoreMoreM
โ November 2
nd
2023 at 16:36
submitted by
/u/MoreMoreMoreM
[link]
[comments]
/r/netsec - Information Security News & Discussion
Advice For Catching a RedLine Stealer - includes tools to identify C2 protocol
By
/u/The_Abjuri5t
โ November 2
nd
2023 at 16:26
submitted by
/u/The_Abjuri5t
[link]
[comments]
/r/netsec - Information Security News & Discussion
Free and open-source approach to Domain Monitoring.
By
/u/Seaerkin2
โ November 2
nd
2023 at 16:01
submitted by
/u/Seaerkin2
[link]
[comments]
/r/netsec - Information Security News & Discussion
CRLF Injection in SAP HTTP Content Server - CVE-2023-26457
By
/u/usdAG
โ November 2
nd
2023 at 09:51
submitted by
/u/usdAG
[link]
[comments]
/r/netsec - Information Security News & Discussion
LdrLockLiberator: For when DLLMain is the only way
By
/u/elliotkillick
โ November 2
nd
2023 at 09:09
submitted by
/u/elliotkillick
[link]
[comments]
/r/netsec - Information Security News & Discussion
Official release of CVSS v4.0
By
/u/adityatelange
โ November 1
st
2023 at 18:09
submitted by
/u/adityatelange
[link]
[comments]
/r/netsec - Information Security News & Discussion
EKS Cluster Games: An EKS-focused CTF Challenge
By
/u/nirohf
โ November 1
st
2023 at 17:29
submitted by
/u/nirohf
[link]
[comments]
/r/netsec - Information Security News & Discussion
Critical phpFox RCE Vulnerability Risked Social Networks
By
/u/eg1x
โ November 1
st
2023 at 11:22
submitted by
/u/eg1x
[link]
[comments]
/r/netsec - Information Security News & Discussion
Impersonating Slack Users - Red Team Tradecraft
By
/u/FalconSpy
โ November 1
st
2023 at 06:11
submitted by
/u/FalconSpy
[link]
[comments]
/r/netsec - Information Security News & Discussion
How to crack Windows Password
By
/u/keshav_xplore
โ November 1
st
2023 at 02:57
submitted by
/u/keshav_xplore
[link]
[comments]
/r/netsec - Information Security News & Discussion
Data-bouncing - New Exfil and C2 Technique
By
/u/ZephrX112
โ November 1
st
2023 at 00:57
submitted by
/u/ZephrX112
[link]
[comments]
/r/netsec - Information Security News & Discussion
Supercharging Red-Teaming with Infrastructure as Code Integration
By
/u/RoseSec_
โ October 31
st
2023 at 18:43
submitted by
/u/RoseSec_
[link]
[comments]
/r/netsec - Information Security News & Discussion
Practical DoS Attacks Against OPC UA Implementations
By
/u/derp6996
โ October 31
st
2023 at 16:44
submitted by
/u/derp6996
[link]
[comments]
/r/netsec - Information Security News & Discussion
Endomorph: Convert little-endian to big-endian and vice-versa
By
/u/r0075h3ll
โ October 31
st
2023 at 12:54
submitted by
/u/r0075h3ll
[link]
[comments]
/r/netsec - Information Security News & Discussion
LDAP authentication in Active Directory environments
By
/u/AlmondOffSec
โ October 31
st
2023 at 12:05
submitted by
/u/AlmondOffSec
[link]
[comments]
Load more articles