Technical Information Security Content & Discussion

8 readers
1 users here now

/r/netsec is a community-curated aggregator of technical information security content. Our mission is to extract signal from the noise — to...

founded 1 year ago
MODERATORS
[email protected]
listing: all - local
301
1
GitHub - mlcsec/huntsman: Email enumerator, username generator, and context validator for hunter.io, snov.io, and skrapp.io (github.com)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/Frequent_Passenger82 on 2024-07-31 17:13:46.
302
1
CheckMesh: Unveiling the Hidden Threats in Your Firewall (hackerseye.net)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/Electronic_Fee3471 on 2024-07-31 09:55:54.
303
1
Auditing Atlassian Plugins, 53 0-Days Later| Atlassian Research Part 1 (cyllective.com)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/_cydave on 2024-08-02 09:46:17.
304
1
Bypassing Rockwell Automation Logix Controllers’ Local Chassis Security Protection (claroty.com)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/sh0n1z on 2024-08-01 17:07:15.
305
1
Windows AppLocker Driver LPE Vulnerability - CVE-2024-21338 (www.crowdfense.com)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/Void_Sec on 2024-08-01 15:19:40.
306
1
From Limited file read to full access on Jenkins (CVE-2024-23897) (xphantom.nl)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/xkarezma on 2024-08-01 10:24:08.
307
1
Patching client-side React JS to gain admin access to a Siemens cloud application (thenewstack.io)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/EatonZ on 2024-07-31 20:58:08.
308
1
Create your own custom implant for Initial Access - Blog (www.ribbiting-sec.info)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/PersonalState343 on 2024-07-31 18:12:07.
309
1
MITMing the Xbox 360 Dashboard for Fun and RCE (landaire.net)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/anxxa on 2024-07-31 16:57:13.
310
1
Credential Disclosure in LastPass (certitude.consulting)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/Acrobatic-Pen-9949 on 2024-07-31 08:31:23.
311
1
Extending Burp Suite for fun and profit - The Montoya way - Part 6 - Burp Scanner (security.humanativaspa.it)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/0xdea on 2024-07-30 14:02:17.
312
1
Bloodhound Community Edition issue (m4lwhere.medium.com)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/TheIron47Wolf on 2024-07-30 13:32:48.

Has anyone encountered an issue with the new Bloodhound CE where your path finding is not loading? The Active Directory environment I created myself and I know where the domain users can RDP and are local users but the pathfinding is not finding the path to domain admin or administrator. It is a small environment with 2 windows 10 and 1 windows server 2019. This the guide that I used to download it.

313
1
Lesson from the Hotjar vulnerability: HTTP-Only (XSS protection) is not effective if you have OAuth (salt.security)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/MoreMoreMoreM on 2024-07-29 18:57:42.
314
1
Uncovering Hardcoded Root Password in VStarcam CB73 Security Camera (brownfinesecurity.com)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/mattbrwn0 on 2024-07-28 20:50:29.
315
1
Turning Outlook into a C2 client with a single registry value and the release of a new C2 framework (trustedsec.com)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/oddvarmoe on 2024-07-29 18:28:14.
316
1
“EchoSpoofing” — A Massive Phishing Campaign Exploiting Proofpoint’s Email Protection to Dispatch Millions of Perfectly Spoofed Emails (labs.guard.io)
submitted 3 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/inntenoff on 2024-07-29 13:13:20.
317
1
Blind Trust and Broken Fixes: The Ongoing Battle with LogoFAIL Vulnerabilities (www.binarly.io)
submitted 4 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/sadyetfly11 on 2024-07-29 10:41:16.
318
1
Help required from security researchers and pentesters (forms.gle)
submitted 4 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/Saurabhjdsingh on 2024-07-28 15:10:48.

Hi guys,

I am Saurabh (https://LinkedIn.com/in/saurabhjdsingh) founding a new cybersecurity startup with my co-founders. The idea is to develop an open-source platform that lets users use any open-source, third party or their own custom pentesting tool through one click deployment to the cloud with 0 setup process & get the target scanned and provide the pentesting consolidated report within seconds.

The help we need: Actually I have created a small Google form to understand the pain point of security researchers and pentesters. It will enable us to better understand the market and help us to validate the idea. If you have time (3-5 mins) whenever possible, can you please fill this : https://forms.gle/r38UCYXJfZH1rAQf7 . Totally understandable if you don't want to, but I would appreciate it.

319
1
CVE-2021-4440: A Linux CNA Case Study (grsecurity.net)
submitted 4 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/sadyetfly11 on 2024-07-28 14:32:48.
320
1
ARM's Memory Corruption Detection - Memory Tag Extensions(MTE) Bypassed In Real World Conditions - Google's V8 Engine/Sandbox and the Linux Kernel via Speculative Execution Attacks. (arxiv.org)
submitted 4 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/AdrianTeri on 2024-07-27 19:01:53.
321
1
BunkerWeb - The open-source and next-gen Web Application Firewall (WAF) (github.com)
submitted 4 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/bunkerity on 2024-07-26 15:36:42.
322
1
New OpenSecurityTraining2 mini-class: "Debuggers 1102: Introductory Ghidra" (p.ost2.fyi)
submitted 4 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/OpenSecurityTraining on 2024-07-26 14:54:02.
323
1
Automatically secure your application with your personal Application Firewall using AppArmor and bifrost (www.simplyblock.io)
submitted 4 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/noctarius2k on 2024-07-26 07:48:06.
324
1
PKfail: Untrusted Platform Keys Undermine Secure Boot on UEFI Ecosystem (www.binarly.io)
submitted 4 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/LordAlfredo on 2024-07-25 21:06:00.
325
1
go-exploit Goes Scanless (vulncheck.com)
submitted 4 months ago by [email protected] to c/[email protected]
0 comments fedilink
 
 
The original post: /r/netsec by /u/chicksdigthelongrun on 2024-07-25 14:55:27.
view more: ‹ prev next ›