Login
FreshRSS
Login
/r/netsec - Information Security News & Discussion
AWS universal rate-limiter bypass
By
/u/thyphoous
β May 27
th
2022 at 14:16
submitted by
/u/thyphoous
[link]
[comments]
/r/netsec - Information Security News & Discussion
GhostTouch: Targeted Attacks on Touchscreens without Physical Touch (pdf, paper)
By
/u/buybank
β May 27
th
2022 at 17:44
submitted by
/u/buybank
[link]
[comments]
/r/netsec - Information Security News & Discussion
Rikkei Finance Hack: Explained
By
/u/viagumowl
β May 28
th
2022 at 09:01
submitted by
/u/viagumowl
[link]
[comments]
/r/netsec - Information Security News & Discussion
How to secure Kubernetes Deployment
By
/u/antfigunio
β May 28
th
2022 at 10:05
submitted by
/u/antfigunio
[link]
[comments]
/r/netsec - Information Security News & Discussion
Understanding CVE-2022-22972 (VMWare Workspace One Access Auth Bypass)
By
/u/Mempodipper
β May 28
th
2022 at 10:16
submitted by
/u/Mempodipper
[link]
[comments]
/r/netsec - Information Security News & Discussion
Building a Threat Intelligence Feed using the Twitter API and a bit of code
By
/u/Robbedoes_
β May 28
th
2022 at 12:03
submitted by
/u/Robbedoes_
[link]
[comments]
/r/netsec - Information Security News & Discussion
Step by step guide of setting up SSL/TLS for a server and client
By
/u/Hakky54
β May 28
th
2022 at 18:55
submitted by
/u/Hakky54
[link]
[comments]
/r/netsec - Information Security News & Discussion
grsecurity - Tetragone: A Lesson in Security Fundamentals
By
/u/buherator
β May 29
th
2022 at 08:16
submitted by
/u/buherator
[link]
[comments]
/r/netsec - Information Security News & Discussion
ForceAdmin : Create infinate #UAC prompts forcing a user to run as admin.
By
/u/saqfi
β May 29
th
2022 at 10:52
submitted by
/u/saqfi
[link]
[comments]
/r/netsec - Information Security News & Discussion
JPG to Malware
By
/u/saqfi
β May 29
th
2022 at 10:53
submitted by
/u/saqfi
[link]
[comments]
/r/netsec - Information Security News & Discussion
GitHub - Orange-Cyberdefense/arsenal: Arsenal is just a quick inventory and launcher for hacking programs
By
/u/saqfi
β May 29
th
2022 at 20:58
submitted by
/u/saqfi
[link]
[comments]
/r/netsec - Information Security News & Discussion
CRYPTOCURRENCY OSINT
By
/u/saqfi
β May 29
th
2022 at 20:59
submitted by
/u/saqfi
[link]
[comments]
/r/netsec - Information Security News & Discussion
Offensive Windows IPC Internals 3: ALPC
By
/u/0xdea
β May 30
th
2022 at 07:07
submitted by
/u/0xdea
[link]
[comments]
/r/netsec - Information Security News & Discussion
New Zero-Day Code Execution Vulnerability In MS Office - Follina
By
/u/sciencestudent99
β May 30
th
2022 at 17:23
submitted by
/u/sciencestudent99
[link]
[comments]
/r/netsec - Information Security News & Discussion
UPnProxyChain: a Tool to Exploit Devices Vulnerable to UPnProxy
By
/u/Salmiakkilakritsi
β May 30
th
2022 at 19:37
submitted by
/u/Salmiakkilakritsi
[link]
[comments]
/r/netsec - Information Security News & Discussion
Want to be a HVACker? Learn some new skills by exploiting security, fire, and HVAC systems
By
/u/entropydaemon6
β May 31
st
2022 at 01:47
submitted by
/u/entropydaemon6
[link]
[comments]
/r/netsec - Information Security News & Discussion
How to use Atomic Red Team to test Falco rules in K8s
By
/u/MiguelHzBz
β May 31
st
2022 at 15:09
submitted by
/u/MiguelHzBz
[link]
[comments]
/r/netsec - Information Security News & Discussion
Mass account takeover in Yunmai smartscale API (full disclosure)
By
/u/adrian_rt
β May 30
th
2022 at 07:35
submitted by
/u/adrian_rt
[link]
[comments]
/r/netsec - Information Security News & Discussion
From open redirect to RCE in one week
By
/u/smaury
β May 31
st
2022 at 20:00
submitted by
/u/smaury
[link]
[comments]
/r/netsec - Information Security News & Discussion
CVE-2022-21404: Another story of developers fixing vulnerabilities unknowingly because of CodeQL
By
/u/cldrn
β May 31
st
2022 at 20:18
submitted by
/u/cldrn
[link]
[comments]
/r/netsec - Information Security News & Discussion
Minerva's evasion based CTF is open for registration
By
/u/woja111
β June 1
st
2022 at 11:13
submitted by
/u/woja111
[link]
[comments]
/r/netsec - Information Security News & Discussion
OST2 Vulnerabilities 1001: C-Family Software Implementation Vulnerabilities (Taught via explaining > 3 dozen CVEs from the last 3 years)
By
/u/OpenSecurityTraining
β June 1
st
2022 at 11:24
submitted by
/u/OpenSecurityTraining
[link]
[comments]
/r/netsec - Information Security News & Discussion
Sushi Time: Hunting for Fresh Phish
By
/u/0xDAV1D
β June 1
st
2022 at 13:32
submitted by
/u/0xDAV1D
[link]
[comments]
/r/netsec - Information Security News & Discussion
Twitch Internal Security Tools: In-depth Analysis of the Leaked Twitch Security Tools
By
/u/mazen160
β June 1
st
2022 at 14:51
submitted by
/u/mazen160
[link]
[comments]
/r/netsec - Information Security News & Discussion
GCP exploitation & lateral movement write up! - @securfreakazoid
By
/u/securfreakazoid
β June 1
st
2022 at 17:21
submitted by
/u/securfreakazoid
[link]
[comments]
/r/netsec - Information Security News & Discussion
Unofficial patches for the 0-day vulnerability called Follina (CVE-2022-30190)
By
/u/CyberMasterV
β June 1
st
2022 at 17:25
submitted by
/u/CyberMasterV
[link]
[comments]
/r/netsec - Information Security News & Discussion
Information Security BASICS - Anvil Secure
By
/u/anvilventures
β June 1
st
2022 at 17:45
submitted by
/u/anvilventures
[link]
[comments]
/r/netsec - Information Security News & Discussion
Using Python to unearth a goldmine of threat intelligence from leaked chat logs
By
/u/SCI_Rusher
β June 1
st
2022 at 18:20
submitted by
/u/SCI_Rusher
[link]
[comments]
/r/netsec - Information Security News & Discussion
Mining Google Chrome CVE data
By
/u/onlinereadme
β June 2
nd
2022 at 17:37
submitted by
/u/onlinereadme
[link]
[comments]
/r/netsec - Information Security News & Discussion
Unauthenticated Remote Code Execution in Atlassian Confluence (CVE-2022-26134)
By
/u/sullivanmatt
β June 2
nd
2022 at 23:29
submitted by
/u/sullivanmatt
[link]
[comments]
/r/netsec - Information Security News & Discussion
CVE-2022-30190 : Microsoft Windows Support Diagnostic Tool RCE
By
/u/Late_Ice_9288
β June 3
rd
2022 at 01:49
submitted by
/u/Late_Ice_9288
[link]
[comments]
/r/netsec - Information Security News & Discussion
Released new version SCodeScanner. Added yaml scanning ability for scanning kubernetes configuration files. Github - https://github.com/agrawalsmart7/scodescanner
By
/u/agrawal7
β June 3
rd
2022 at 11:34
submitted by
/u/agrawal7
[link]
[comments]
/r/netsec - Information Security News & Discussion
Meeting Owl Pwnage
By
/u/RudyWaltz
β June 3
rd
2022 at 16:00
submitted by
/u/RudyWaltz
[link]
[comments]
/r/netsec - Information Security News & Discussion
Detecting and mitigating CVE-2022-26134: Zero day at Atlassian Confluence
By
/u/MiguelHzBz
β June 3
rd
2022 at 16:04
submitted by
/u/MiguelHzBz
[link]
[comments]
/r/netsec - Information Security News & Discussion
Technical Analysis of Confluence CVE-2022-26134
By
/u/chicksdigthelongrun
β June 3
rd
2022 at 19:31
submitted by
/u/chicksdigthelongrun
[link]
[comments]
/r/netsec - Information Security News & Discussion
Technical Advisory β Multiple Vulnerabilities in U-Boot (CVE-2022-30790, CVE-2022-30552) - including remote write anywhere primitive in its IP stack
By
/u/digicat
β June 4
th
2022 at 05:12
submitted by
/u/digicat
[link]
[comments]
/r/netsec - Information Security News & Discussion
Certificate Ripper released - tool to extract server certificates
By
/u/Hakky54
β June 4
th
2022 at 14:48
submitted by
/u/Hakky54
[link]
[comments]
/r/netsec - Information Security News & Discussion
Code for Beating Google ReCaptcha and the funCaptcha using AWS Rekognition
By
/u/ScottContini
β June 5
th
2022 at 02:19
submitted by
/u/ScottContini
[link]
[comments]
/r/netsec - Information Security News & Discussion
Conti RaaS group chat leaked (English translation) about firmware exploit and implant
By
/u/hardenedvault
β June 5
th
2022 at 03:30
submitted by
/u/hardenedvault
[link]
[comments]
/r/netsec - Information Security News & Discussion
Analysis of a large brute force attack campaign against Windows Remote Desktop
By
/u/jwizq
β June 5
th
2022 at 08:00
submitted by
/u/jwizq
[link]
[comments]
/r/netsec - Information Security News & Discussion
Nidhogg rootkit - An all in one rootkit for all windows 10 versions and windows 11 that can be managed with single hpp file
By
/u/Idov31
β June 5
th
2022 at 18:15
submitted by
/u/Idov31
[link]
[comments]
/r/netsec - Information Security News & Discussion
ESP-IDF Setup Guide - A guide on setting up an environment for ESP32 vulnerability research
By
/u/Gallus
β June 6
th
2022 at 06:18
submitted by
/u/Gallus
[link]
[comments]
/r/netsec - Information Security News & Discussion
Bastion Dark Mode - Close inbound 22 to the world
By
/u/PhilipLGriffiths88
β June 6
th
2022 at 12:08
submitted by
/u/PhilipLGriffiths88
[link]
[comments]
/r/netsec - Information Security News & Discussion
WinRS and Exchange, a sneaky backdoor
By
/u/picobello_bv
β June 3
rd
2022 at 10:52
submitted by
/u/picobello_bv
[link]
[comments]
/r/netsec - Information Security News & Discussion
Popping Eagle: How Global Analytics Uncovered a Stealthy Threat Actor
By
/u/RamblinWreckGT
β June 3
rd
2022 at 22:31
submitted by
/u/RamblinWreckGT
[link]
[comments]
/r/netsec - Information Security News & Discussion
Passwordstate - Revoked its Digicert certificate used to sign the code
By
/u/_r3l0ad3d
β June 6
th
2022 at 07:52
submitted by
/u/_r3l0ad3d
[link]
[comments]
/r/netsec - Information Security News & Discussion
Shining the Light on Black Basta - documents some of the TTPs employed by a threat actor group who were observed deploying Black Basta ransomware
By
/u/digicat
β June 6
th
2022 at 19:22
submitted by
/u/digicat
[link]
[comments]
/r/netsec - Information Security News & Discussion
Observed In The Wild: Atlassian Confluence Server CVE-2022-26134
By
/u/netsecfriends
β June 7
th
2022 at 00:59
submitted by
/u/netsecfriends
[link]
[comments]
/r/netsec - Information Security News & Discussion
Building Safe End-to-End Encrypted Services for Business - a Google Workspace perspective
By
/u/ebursztein
β June 7
th
2022 at 01:20
submitted by
/u/ebursztein
[link]
[comments]
/r/netsec - Information Security News & Discussion
Scanning statistics of vulnerable Atlassian Confluence Server(CVE-2022-26134) : Still lots of servers are exposed to the internet.
By
/u/Late_Ice_9288
β June 7
th
2022 at 03:25
submitted by
/u/Late_Ice_9288
[link]
[comments]
/r/netsec - Information Security News & Discussion
Multiple vulnerabilities in Zyxel zysh
By
/u/0xdea
β June 7
th
2022 at 07:03
submitted by
/u/0xdea
[link]
[comments]
/r/netsec - Information Security News & Discussion
CVE-2022β29622: (In)vulnerability Analysis
By
/u/JohnKeymanUK
β June 7
th
2022 at 09:47
submitted by
/u/JohnKeymanUK
[link]
[comments]
/r/netsec - Information Security News & Discussion
Open source automated NIST SP 800-53 r5 benchmark for AWS (120+ controls!)
By
/u/bobtbot
β June 7
th
2022 at 13:18
submitted by
/u/bobtbot
[link]
[comments]
/r/netsec - Information Security News & Discussion
Network analysis of a targeted phish that got past Defender
By
/u/tmpXXXXXX
β June 7
th
2022 at 16:19
submitted by
/u/tmpXXXXXX
[link]
[comments]
/r/netsec - Information Security News & Discussion
AWS S3 Scanner: Online tool for finding misconfigurations
By
/u/virtue-elliott
β June 7
th
2022 at 19:23
submitted by
/u/virtue-elliott
[link]
[comments]
/r/netsec - Information Security News & Discussion
DogWalk 0-day vulnerability in Microsoft's Diagnostic Tool
By
/u/CyberMasterV
β June 7
th
2022 at 21:05
submitted by
/u/CyberMasterV
[link]
[comments]
/r/netsec - Information Security News & Discussion
Confluence Webshells being dropped into the honeypot
By
/u/Mr-R3b00t
β June 8
th
2022 at 08:29
submitted by
/u/Mr-R3b00t
[link]
[comments]
/r/netsec - Information Security News & Discussion
CVE-2022-30287 - Remote Code Execution via Email in Horde Webmail
By
/u/monoimpact
β June 8
th
2022 at 13:50
submitted by
/u/monoimpact
[link]
[comments]
/r/netsec - Information Security News & Discussion
Peopleβs Republic of China State-Sponsored Actors Exploit Network Providers and Devices
By
/u/ksr_malware
β June 8
th
2022 at 15:39
submitted by
/u/ksr_malware
[link]
[comments]
/r/netsec - Information Security News & Discussion
Using Windows Event Log IDs for Threat Hunting
By
/u/sciencestudent99
β June 8
th
2022 at 16:50
submitted by
/u/sciencestudent99
[link]
[comments]
Load more articles