Summary

Total Articles Found: 116

Top sources:

Top Keywords:

Top Authors

Top Articles:

  • Extraordinary Vulnerabilities Discovered in TCL Android TVs, Now World’s 3rd Largest TV Manufacturer.
  • Every FireFox extensions disabled due to expiration of intermediate signing cert
  • CVE-2020-10148 SolarWinds Orion API authentication bypass allows remote comand execution
  • Disclosing TOR users' real IP address through 301 HTTP Redirect Cache Poisoning
  • Extract PGP secret keys from Gnuk / Nitrokey Start firmwares
  • Google introduces OpenSk, an Open Source security key implementation
  • Large European Routing Leak Sends Traffic Through China Telecom
  • Analysis of new malware targeting Kubernetes (Hildegard)
  • Netgear 0-day Vulnerability Analysis and Exploit for 79 devices and 758 firmware images
  • Unknown rogue device used to defraud Amazon account twice, bypassing all security features - device in question is completely invisible to both account holder and customer support - from /r/sysadmin

CVE-2023-23397: Microsoft Outlook Elevation of Privilege Vulnerability

Published: 2023-04-05 13:11:41

Popularity: None

Author: /u/securitinerd

Keywords:

  • r/netsec

    • submitted by /u/securitinerd
    [link] [comments] ...more

    State of DNS Rebinding in 2023

    Published: 2023-04-29 00:50:18

    Popularity: None

    Author: /u/Tough_Indication_710

    Keywords:

  • r/netsec

    • submitted by /u/Tough_Indication_710
    [link] [comments] ...more

    A Comparison of Exploit-DB and 0day.today

    Published: 2023-03-31 15:41:02

    Popularity: None

    Author: /u/chicksdigthelongrun

    Keywords:

  • r/netsec

    • submitted by /u/chicksdigthelongrun
    [link] [comments] ...more

    18 Remote and Silent Zero Day RCEs/Baseband Exploits for Samsung Exynos

    Published: 2023-03-16 23:10:32

    Popularity: None

    Author: /u/BinkReddit

    Keywords:

  • r/netsec

    • submitted by /u/BinkReddit
    [link] [comments] ...more

    ClamAV Critical Patch Review

    Published: 2023-02-21 15:02:56

    Popularity: None

    Author: /u/g_e_r_h_a_r_d

    Keywords:

  • r/netsec

    • submitted by /u/g_e_r_h_a_r_d
    [link] [comments] ...more

    CVE-2023-20032: ClamAV Remote Code Execution (CVSS 9.8)

    Published: 2023-02-17 09:00:33

    Popularity: None

    Author: /u/qwerty0x41

    Keywords:

  • r/netsec

    • submitted by /u/qwerty0x41
    [link] [comments] ...more

    Using a service with markdown capabilities? Good chance it's vulnerable and attackers can easily take it down

    Published: 2023-01-22 08:15:55

    Popularity: None

    Author: /u/roy_6472

    Keywords:

  • r/netsec

    • submitted by /u/roy_6472
    [link] [comments] ...more

    OSV-Scanner: A vulnerability scanner written in Go which uses the data provided by OSV.dev

    Published: 2022-12-20 08:51:26

    Popularity: None

    Author: /u/Titokhan

    Keywords:

  • r/netsec

    • submitted by /u/Titokhan
    [link] [comments] ...more

    Exploring the depths of Istio: A researcher's guide to analyzing a caching vulnerability

    Published: 2022-12-21 05:58:46

    Popularity: None

    Author: /u/jat0369

    Keywords:

  • r/netsec

    • submitted by /u/jat0369
    [link] [comments] ...more

    BufferPwn: RCE vulnerability in the common network code of several first party Nintendo games since the Nintendo 3DS

    Published: 2022-12-28 21:13:23

    Popularity: None

    Author: None

    Keywords:

  • r/netsec


    • [link] [comments] ...more

    There is no secure software supply-chain.

    Published: 2022-12-30 12:56:04

    Popularity: None

    Author: /u/dlorenc

    Keywords:

  • r/netsec

    • submitted by /u/dlorenc
    [link] [comments] ...more

    Chrome Browser Exploitation, Part 3: Analyzing and Exploiting CVE-2018-17463

    Published: 2022-12-30 14:55:24

    Popularity: None

    Author: /u/Gallus

    Keywords:

  • r/netsec

    • submitted by /u/Gallus
    [link] [comments] ...more

    Remote code execution bug in FreeBSD's ping (CVE-2022-23093)

    Published: 2022-12-01 04:10:03

    Popularity: None

    Author: /u/Gallus

    Keywords:

  • r/netsec

    • 🤖: ""Code exec alert!""

    submitted by /u/Gallus
    [link] [comments] ...more

    Containers: Rootful, Rootless, Privileged and Super Privileged

    Published: 2022-11-25 15:42:40

    Popularity: None

    Author: /u/fcano1

    Keywords:

  • r/netsec

    • 🤖: "Container explosion"

    submitted by /u/fcano1
    [link] [comments] ...more

    CVE-2022-3602 & CVE-2022-3786 - OSS tools to detect susceptibility to the recent OpenSSL issues

    Published: 2022-11-03 11:08:30

    Popularity: None

    Author: /u/SRMish3

    Keywords:

  • r/netsec

    • submitted by /u/SRMish3
    [link] [comments] ...more

    A New Supply Chain Attack on PHP

    Published: 2022-10-05 05:20:41

    Popularity: None

    Author: /u/Gallus

    Keywords:

  • r/netsec

    • submitted by /u/Gallus
    [link] [comments] ...more

    AWS IAM Identity Center Access Tokens are Stored in Clear Text and No, That’s Not a Critical…

    Published: 2022-09-22 00:48:23

    Popularity: 2

    Author: /u/csanders_

    Keywords:

  • r/netsec

    • submitted by /u/csanders_
    [link] [comments] ...more

    Walkthrough of an unauthenticated RCE affecting pfBlockerNG <= 2.1.4_26 (CVE-2022-31814)

    Published: 2022-09-05 08:40:36

    Popularity: 2

    Author: /u/IHTeam

    Keywords:

  • r/netsec

    • submitted by /u/IHTeam
    [link] [comments] ...more

    Announcing the Open Sourcing of Paranoid's Library - Detect well-known weaknesses in large amounts of crypto artifacts, like public keys and digital signatures

    Published: 2022-08-31 12:31:16

    Popularity: None

    Author: /u/_rs

    Keywords:

  • r/netsec

    • submitted by /u/_rs
    [link] [comments] ...more

    SETTLERS OF NETLINK: Exploiting a limited Use After Free in nf_tables (CVE-2022-32250) against the latest Ubuntu (22.04) and Linux kernel 5.15 -

    Published: 2022-09-01 09:08:29

    Popularity: None

    Author: /u/digicat

    Keywords:

  • r/netsec

    • submitted by /u/digicat
    [link] [comments] ...more

    CVE-2021-38297 - Technical analysis of a Go WebAssembly vulnerability

    Published: 2022-08-31 07:30:37

    Popularity: None

    Author: /u/SRMish3

    Keywords:

  • r/netsec

    • submitted by /u/SRMish3
    [link] [comments] ...more

    SBOM 101 - All the questions you were afraid to ask Software Bill of Materials

    Published: 2022-08-23 15:06:07

    Popularity: None

    Author: /u/MiguelHzBz

    Keywords:

  • r/netsec

    • submitted by /u/MiguelHzBz
    [link] [comments] ...more

    IAM Whoever I Say IAM :: Infiltrating VMWare Workspace ONE Access Using a 0-Click Exploit

    Published: 2022-08-25 14:40:48

    Popularity: None

    Author: /u/albinowax

    Keywords:

  • r/netsec

    • submitted by /u/albinowax
    [link] [comments] ...more

    Process injection: breaking all macOS security layers with a single vulnerability

    Published: 2022-08-14 23:55:19

    Popularity: 2

    Author: /u/sanitybit

    Keywords:

  • r/netsec

    • 🤖: "MacOS fail"

    submitted by /u/sanitybit
    [link] [comments] ...more

    Attacking Google's Titan M Security Key with Only One Byte

    Published: 2022-08-15 04:46:38

    Popularity: 2

    Author: /u/sanitybit

    Keywords:

  • r/netsec

    • submitted by /u/sanitybit
    [link] [comments] ...more

    Blackhat 2022 recap - cloud, eBPF, global conflicts, supply chain, and more

    Published: 2022-08-12 07:35:52

    Popularity: None

    Author: /u/MiguelHzBz

    Keywords:

  • r/netsec

    • submitted by /u/MiguelHzBz
    [link] [comments] ...more

    Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling

    Published: 2022-08-10 18:22:24

    Popularity: 3

    Author: /u/Fugitif

    Keywords:

  • r/netsec

    • submitted by /u/Fugitif
    [link] [comments] ...more

    Critical Vulnerability Affecting Arris / Arris-variant DSL/Fiber Routers

    Published: 2022-07-29 19:40:00

    Popularity: None

    Author: /u/sanitybit

    Keywords:

  • r/netsec

    • submitted by /u/sanitybit
    [link] [comments] ...more

    CVE-2022-36123 - Linux kernel <5.18.13 lacks a certain clear operation for the block starting symbol (.bss). This allows Xen PV guest OS users to cause a denial of service, or gain privileges.

    Published: 2022-07-30 01:59:03

    Popularity: 2

    Author: /u/docker-osx

    Keywords:

  • r/netsec

    • submitted by /u/docker-osx
    [link] [comments] ...more

    I'm Building a Self-Destructing USB Drive.

    Published: 2022-07-29 21:11:05

    Popularity: None

    Author: /u/Machinehum

    Keywords:

  • r/netsec

    • submitted by /u/Machinehum
    [link] [comments] ...more

    Confuser - New Dependency Confusion Detection Tool

    Published: 2022-07-22 17:25:24

    Popularity: None

    Author: /u/nibblesec

    Keywords:

  • r/netsec

    • submitted by /u/nibblesec
    [link] [comments] ...more

    Research: Auditing WordPress Plugins (35 CVEs in 3 months)

    Published: 2022-07-18 13:22:08

    Popularity: None

    Author: /u/andersonmvd

    Keywords:

  • r/netsec

    • submitted by /u/andersonmvd
    [link] [comments] ...more

    unRAR CVE-2022-30333 deep dive (including full exploit for Zimbra)

    Published: 2022-07-18 17:00:43

    Popularity: 4

    Author: /u/iagox86

    Keywords:

  • r/netsec

    • submitted by /u/iagox86
    [link] [comments] ...more

    This Salesforce Tableau Server XSS vulnerability will not get a CVE attributed. Here is the PoC and the fixed versions.

    Published: 2022-07-13 15:52:39

    Popularity: None

    Author: /u/obilodeau

    Keywords:

  • r/netsec

    • 🤖: ""XSS attack alert""

    submitted by /u/obilodeau
    [link] [comments] ...more

    It’s Been Zero Days Since BIND9 Crashed

    Published: 2022-07-01 10:22:49

    Popularity: None

    Author: /u/jen140

    Keywords:

  • r/netsec

    • submitted by /u/jen140
    [link] [comments] ...more

    Twitch Internal Security Tools: In-depth Analysis of the Leaked Twitch Security Tools

    Published: 2022-06-01 14:51:41

    Popularity: 3

    Author: /u/mazen160

    Keywords:

  • r/netsec

    • submitted by /u/mazen160
    [link] [comments] ...more

    JWT attacks (with online labs)

    Published: 2022-06-13 13:39:42

    Popularity: 3

    Author: /u/albinowax

    Keywords:

  • r/netsec

    • submitted by /u/albinowax
    [link] [comments] ...more

    CVE-2022-29225 - Denial of Service Vulnerability in Envoy Proxy

    Published: 2022-06-10 19:28:36

    Popularity: None

    Author: /u/SRMish3

    Keywords:

  • r/netsec

    • submitted by /u/SRMish3
    [link] [comments] ...more

    I made a browser extension that spoofs your location data to match your VPN. It can also spoof your user agent.

    Published: 2022-06-12 02:16:04

    Popularity: 3

    Author: /u/z0ccc_z0ccc

    Keywords:

  • r/netsec

    • submitted by /u/z0ccc_z0ccc
    [link] [comments] ...more

    grsecurity - Tetragone: A Lesson in Security Fundamentals

    Published: 2022-05-29 08:16:56

    Popularity: None

    Author: /u/buherator

    Keywords:

  • r/netsec

    • submitted by /u/buherator
    [link] [comments] ...more

    Unauthenticated Remote Code Execution in Atlassian Confluence (CVE-2022-26134)

    Published: 2022-06-02 23:29:32

    Popularity: None

    Author: /u/sullivanmatt

    Keywords:

  • r/netsec

    • submitted by /u/sullivanmatt
    [link] [comments] ...more

    RCE over ham radio - Reverse shell via WinAPRS

    Published: 2022-05-25 18:52:22

    Popularity: None

    Author: /u/rickostuff

    Keywords:

  • r/netsec

    • submitted by /u/rickostuff
    [link] [comments] ...more

    Certifried: Active Directory Domain Privilege Escalation (CVE-2022–26923)

    Published: 2022-05-10 20:46:26

    Popularity: 4

    Author: /u/ly4k_

    Keywords:

  • r/netsec

    • submitted by /u/ly4k_
    [link] [comments] ...more

    Socket: New tool takes a proactive approach to prevent OSS supply chain attacks

    Published: 2022-04-28 20:12:05

    Popularity: None

    Author: /u/feross

    Keywords:

  • r/netsec

    • submitted by /u/feross
    [link] [comments] ...more

    Compromising Read-Only Containers with Fileless Malware

    Published: 2022-05-03 16:11:33

    Popularity: None

    Author: /u/MiguelHzBz

    Keywords:

  • r/netsec

    • submitted by /u/MiguelHzBz
    [link] [comments] ...more

    AWS's Log4Shell HotPatch Vulnerable to Container Escape and Privilige Escalation

    Published: 2022-04-19 22:50:45

    Popularity: 6

    Author: /u/YuvalAvra

    Keywords:

  • r/netsec

    • submitted by /u/YuvalAvra
    [link] [comments] ...more

    CVE-2022-21449: Psychic Signatures in Java

    Published: 2022-04-20 01:56:21

    Popularity: 3

    Author: /u/Gallus

    Keywords:

  • r/netsec

    • submitted by /u/Gallus
    [link] [comments] ...more

    Around 50,000 GitHub credentials leaked as metadata inside commits

    Published: 2022-04-13 13:50:38

    Popularity: 3

    Author: /u/gid0rah

    Keywords:

  • r/netsec

    • submitted by /u/gid0rah
    [link] [comments] ...more

    CVE Markdown Charts - Your InfoSec reports will now write themselves...

    Published: 2022-04-05 02:21:14

    Popularity: 3

    Author: /u/onlinereadme

    Keywords:

  • r/netsec

    • submitted by /u/onlinereadme
    [link] [comments] ...more

    Using the Dirty Pipe Vulnerability to Break Out from Containers

    Published: 2022-03-26 00:14:39

    Popularity: 3

    Author: /u/freakwin

    Keywords:

  • r/netsec

    • submitted by /u/freakwin
    [link] [comments] ...more

    ThreatMapper 1.3.0 update - +runtime SBOM, +secret scanning, +attack path

    Published: 2022-03-16 11:41:11

    Popularity: 1

    Author: /u/foobarbazwibble

    Keywords:

  • r/netsec

    • submitted by /u/foobarbazwibble
    [link] [comments] ...more

    An unexpected Redis sandbox escape affecting only Debian, Ubuntu, and other Debian derivatives

    Published: 2022-03-11 09:19:24

    Popularity: 3

    Author: /u/albinowax

    Keywords:

  • r/netsec

    • 🤖: "Redis exploited"

    submitted by /u/albinowax
    [link] [comments] ...more

    Container Escape to Shadow Admin: GKE Autopilot Vulnerabilities

    Published: 2022-03-08 15:27:26

    Popularity: 4

    Author: /u/YuvalAvra

    Keywords:

  • r/netsec

    • submitted by /u/YuvalAvra
    [link] [comments] ...more

    Put an io_uring on it: Exploiting the Linux Kernel

    Published: 2022-03-08 19:32:43

    Popularity: 3

    Author: /u/eberkut

    Keywords:

  • r/netsec

    • 🤖: "kernel hack fail"

    submitted by /u/eberkut
    [link] [comments] ...more

    Bypassing Google's Cloud Armor firewall with an 8 KB request

    Published: 2022-03-03 05:19:05

    Popularity: 3

    Author: /u/almostfamous

    Keywords:

  • r/netsec

    • submitted by /u/almostfamous
    [link] [comments] ...more

    Pre-auth WAN remote root for Cisco RV340 VPN Gateway Router

    Published: 2022-02-11 18:23:32

    Popularity: 2

    Author: /u/ChoiceGrapefruit0

    Keywords:

  • r/netsec

    • submitted by /u/ChoiceGrapefruit0
    [link] [comments] ...more

    Using PwnKit-Hunter to check for CVE-2021-4034 Vulnerable Systems

    Published: 2022-02-01 14:53:19

    Popularity: 4

    Author: /u/jat0369

    Keywords:

  • r/netsec

    • submitted by /u/jat0369
    [link] [comments] ...more

    Detecting and mitigating CVE-2021-4034: “Pwnkit” local privilege escalation

    Published: 2022-01-28 23:20:28

    Popularity: 3

    Author: /u/MiguelHzBz

    Keywords:

  • r/netsec

    • submitted by /u/MiguelHzBz
    [link] [comments] ...more

    CVE-2022-0329 and the problems with automated vulnerability management

    Published: 2022-01-30 03:32:40

    Popularity: 3

    Author: /u/Most-Loss5834

    Keywords:

  • r/netsec

    • submitted by /u/Most-Loss5834
    [link] [comments] ...more

    GoWard - A robust Red Team proxy written in Go

    Published: 2022-01-22 18:50:09

    Popularity: None

    Author: /u/UnwearableCactus

    Keywords:

  • r/netsec

    • submitted by /u/UnwearableCactus
    [link] [comments] ...more

    Log4j version 2.17.0 fixes a new problem CVE-2021-45105 DoS vuln (CVSS score of 7.5)

    Published: 2021-12-18 10:54:02

    Popularity: None

    Author: /u/ScottContini

    Keywords:

  • r/netsec

    • 🤖: "Server crash"

    submitted by /u/ScottContini
    [link] [comments] ...more

    Blacksmith – Rowhammer is back on DDR4

    Published: 2021-11-15 16:07:15

    Popularity: 3

    Author: /u/braincrowd

    Keywords:

  • r/netsec

    • 🤖: "Memory exploit again"

    submitted by /u/braincrowd
    [link] [comments] ...more

    All Roads Lead to OpenVPN: Pwning Industrial Remote Access Client

    Published: 2021-11-19 15:51:15

    Popularity: 3

    Author: /u/n0llbyte

    Keywords:

  • r/netsec

    • submitted by /u/n0llbyte
    [link] [comments] ...more

    Verizon SIMs open their own TCP/IP sessions. And other stuff.

    Published: 2021-11-05 21:53:37

    Popularity: 3

    Author: /u/dburgess000

    Keywords:

  • r/netsec

    • submitted by /u/dburgess000
    [link] [comments] ...more

    TPM Carte Blanche write-up

    Published: 2021-10-19 13:23:55

    Popularity: None

    Author: /u/ccnafr

    Keywords:

  • r/netsec

    • submitted by /u/ccnafr
    [link] [comments] ...more

    GHSL-2021-1012: Poor random number generation in keypair - CVE-2021-41117

    Published: 2021-10-11 17:51:07

    Popularity: None

    Author: /u/Photogurt

    Keywords:

  • r/netsec

    • submitted by /u/Photogurt
    [link] [comments] ...more

    TruffleHog The Chrome Extension

    Published: 2021-09-20 13:28:30

    Popularity: 2

    Author: /u/wifihack

    Keywords:

  • r/netsec

    • submitted by /u/wifihack
    [link] [comments] ...more

    Google to Auto-Reset Inactive Android App Permissions for Billions of Devices

    Published: 2021-09-21 13:03:47

    Popularity: 5

    Author: /u/Affectionate-Fall520

    Keywords:

  • r/netsec

    • submitted by /u/Affectionate-Fall520
    [link] [comments] ...more

    Software Supply Chain Security - Implementing Google's SLSA Framework and CNCF's Best Practices

    Published: 2021-09-22 02:44:46

    Popularity: 3

    Author: /u/garantir

    Keywords:

  • r/netsec

    • submitted by /u/garantir
    [link] [comments] ...more

    GitHub - tanc7/EXOCET-AV-Evasion: EXOCET - AV-evading, undetectable, payload delivery tool

    Published: 2021-09-26 23:17:47

    Popularity: 3

    Author: /u/ctlister

    Keywords:

  • r/netsec

    • submitted by /u/ctlister
    [link] [comments] ...more

    CVSS 9.8 vulnerabilities in vmware vCenter Server

    Published: 2021-09-21 20:19:29

    Popularity: 3

    Author: /u/Brumhartt

    Keywords:

  • r/netsec

    • 🤖: ""Server meltdown""

    submitted by /u/Brumhartt
    [link] [comments] ...more

    SSD Advisory – macOS Finder RCE: A vulnerability in macOS Finder system allows remote attackers to trick users into running arbitrary commands.

    Published: 2021-09-21 10:10:32

    Popularity: 3

    Author: /u/SSDisclosure

    Keywords:

  • r/netsec

    • submitted by /u/SSDisclosure
    [link] [comments] ...more

    Vulnerability in check-spelling GitHub Actions community workflow could have allowed malicious code to be introduced to repos from Microsoft, Jekyll, NASA and PowerDNS

    Published: 2021-09-09 01:00:40

    Popularity: 3

    Author: /u/Gallus

    Keywords:

  • r/netsec

    • submitted by /u/Gallus
    [link] [comments] ...more

    Hotcobalt - New Cobalt Strike DoS Vulnerability That Lets You Halt Operations - SentinelLabs

    Published: 2021-08-04 14:38:49

    Popularity: 1

    Author: /u/digicat

    Keywords:

  • r/netsec

    • 🤖: ""System down""

    submitted by /u/digicat
    [link] [comments] ...more

    CVE-2021-29922 – rust standard library “net” – Improper Input Validation of octal literals in rust 1.52 and below. (See comments for CVE-2021-29923 golang)

    Published: 2021-08-08 11:41:58

    Popularity: 3

    Author: /u/docker-osx

    Keywords:

  • r/netsec

    • submitted by /u/docker-osx
    [link] [comments] ...more

    OpenSSH ssh-agent Shielded Private Key Extraction (x86_64 Linux)

    Published: 2021-07-23 09:11:40

    Popularity: None

    Author: /u/0xdea

    Keywords:

  • r/netsec

    • submitted by /u/0xdea
    [link] [comments] ...more

    Microsoft signed a malicious Netfilter rootkit

    Published: 2021-06-27 16:44:03

    Popularity: None

    Author: /u/AwareSupermarket3008

    Keywords:

  • r/netsec

    • submitted by /u/AwareSupermarket3008
    [link] [comments] ...more

    CVE-2021-29921 – python stdlib “ipaddress” – Improper Input Validation of octal literals in python 3.8.0+ results in indeterminate SSRF & RFI vulnerabilities. — “ipaddress leading zeros in IPv4 address”

    Published: 2021-04-30 23:27:35

    Popularity: 5

    Author: /u/docker-osx

    Keywords:

  • r/netsec

    • submitted by /u/docker-osx
    [link] [comments] ...more

    It’s time to stop using SMS for anything

    Published: 2021-03-17 19:00:52

    Popularity: 4

    Author: /u/ScottContini

    Keywords:

  • r/netsec

    • submitted by /u/ScottContini
    [link] [comments] ...more

    China's Adobe Flash Distribute Adware

    Published: 2021-02-14 09:31:04

    Popularity: 4

    Author: /u/Ok_Table3372

    Keywords:

  • r/netsec

    • submitted by /u/Ok_Table3372
    [link] [comments] ...more

    Analysis of new malware targeting Kubernetes (Hildegard)

    Published: 2021-02-05 17:18:10

    Popularity: 8

    Author: /u/pingpongfifa

    Keywords:

  • r/netsec

    • submitted by /u/pingpongfifa
    [link] [comments] ...more

    CVE-2020-10148 SolarWinds Orion API authentication bypass allows remote comand execution

    Published: 2020-12-26 20:41:46

    Popularity: 18

    Author: /u/malware_bender

    Keywords:

  • r/netsec

    • 🤖: ""Exploited""

    submitted by /u/malware_bender
    [link] [comments] ...more

    Extraordinary Vulnerabilities Discovered in TCL Android TVs, Now World’s 3rd Largest TV Manufacturer.

    Published: 2020-11-09 14:17:04

    Popularity: 27

    Author: /u/docker-osx

    Keywords:

  • r/netsec

    • submitted by /u/docker-osx
    [link] [comments] ...more

    suPHP - The vulnerable ghost in your shell - vulnerable.af

    Published: 2020-09-21 19:27:51

    Popularity: 4

    Author: /u/PunKeel

    Keywords:

  • r/netsec

    • submitted by /u/PunKeel
    [link] [comments] ...more

    A new era of php webshells and privesc. Bantam A PHP backdoor management and generation tool featuring end to end encrypted payload streaming designed to bypass WAF, IDS, SIEM systems.

    Published: 2020-09-25 16:44:25

    Popularity: 4

    Author: /u/xpl0yt

    Keywords:

  • r/netsec

    • submitted by /u/xpl0yt
    [link] [comments] ...more

    NCC Group admits its training data was leaked online after folders full of CREST pentest certification exam notes posted to GitHub

    Published: 2020-08-12 04:38:05

    Popularity: 4

    Author: /u/kidbomb

    Keywords:

  • r/netsec

    • submitted by /u/kidbomb
    [link] [comments] ...more

    Watch Your Containers: Doki Infecting Docker Servers in the Cloud

    Published: 2020-07-29 14:03:14

    Popularity: None

    Author: /u/difki

    Keywords:

  • r/netsec

    • submitted by /u/difki
    [link] [comments] ...more

    There’s a Hole in the Boot: “BootHole” vulnerability in the GRUB2 bootloader

    Published: 2020-07-29 17:45:31

    Popularity: None

    Author: /u/CodeBlock

    Keywords:

  • r/netsec

    • 🤖: "boot fail"

    submitted by /u/CodeBlock
    [link] [comments] ...more

    Netgear 0-day Vulnerability Analysis and Exploit for 79 devices and 758 firmware images

    Published: 2020-06-15 23:34:00

    Popularity: 8

    Author: /u/pocorgtfoftw

    Keywords:

  • r/netsec

    • submitted by /u/pocorgtfoftw
    [link] [comments] ...more

    eBay is port scanning your system when you load the webpage

    Published: 2020-05-25 11:42:20

    Popularity: None

    Author: /u/CDr0m

    Keywords:

  • r/netsec

    • submitted by /u/CDr0m
    [link] [comments] ...more

    Zero Day Initiative — CVE-2020-0729: Remote Code Execution Through .LNK Files

    Published: 2020-03-26 15:38:21

    Popularity: 4

    Author: /u/thracky

    Keywords:

  • r/netsec

    • submitted by /u/thracky
    [link] [comments] ...more

    CVE-2020-8816 – Pi-hole Remote Code Execution – Detailed write-up about the vulnerability and exploitation proof of concept

    Published: 2020-03-28 14:41:32

    Popularity: 4

    Author: /u/nate_kappa

    Keywords:

  • r/netsec

    • submitted by /u/nate_kappa
    [link] [comments] ...more

    Deep Dive into Real-World Kubernetes Threats

    Published: 2020-02-12 22:13:36

    Popularity: 4

    Author: /u/digicat

    Keywords:

  • r/netsec

    • submitted by /u/digicat
    [link] [comments] ...more

    ModSecurity Vulnerability & PoC (CVE-2019-19886)

    Published: 2020-02-13 21:11:44

    Popularity: 4

    Author: /u/theMiddleBlue

    Keywords:

  • r/netsec

    • submitted by /u/theMiddleBlue
    [link] [comments] ...more

    Google introduces OpenSk, an Open Source security key implementation

    Published: 2020-02-01 17:20:20

    Popularity: 10

    Author: /u/kramed

    Keywords:

  • r/netsec

    • submitted by /u/kramed
    [link] [comments] ...more

    GitHub - hc0d3r/tas: A tiny framework for easily manipulate the tty and create fake binaries.

    Published: 2020-01-18 21:56:33

    Popularity: 4

    Author: /u/hurcod

    Keywords:

  • r/netsec

    • submitted by /u/hurcod
    [link] [comments] ...more

    GUI-less RDP command execution

    Published: 2020-01-23 08:47:27

    Popularity: 4

    Author: /u/thebloodguy

    Keywords:

  • r/netsec

    • submitted by /u/thebloodguy
    [link] [comments] ...more

    Demonstrating the Capital One breach on your own AWS account

    Published: 2019-12-29 11:10:44

    Popularity: 4

    Author: /u/sanitybit

    Keywords:

  • r/netsec

    • submitted by /u/sanitybit
    [link] [comments] ...more

    Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.

    Published: 2019-12-09 04:20:03

    Popularity: 4

    Author: /u/netsec_burn

    Keywords:

  • r/netsec

    • submitted by /u/netsec_burn
    [link] [comments] ...more

    Unknown rogue device used to defraud Amazon account twice, bypassing all security features - device in question is completely invisible to both account holder and customer support - from /r/sysadmin

    Published: 2019-10-31 20:12:17

    Popularity: 8

    Author: /u/bilde2910

    Keywords:

  • r/netsec

    • 🤖: ""Invisible Thief""

    submitted by /u/bilde2910
    [link] [comments] ...more

    Re-enact the Panama Papers Leak: How Mossack Fonseca was Hacked

    Published: 2019-10-10 16:16:57

    Popularity: 4

    Author: /u/DebugDucky

    Keywords:

  • r/netsec

    • submitted by /u/DebugDucky
    [link] [comments] ...more

    LibreOffice – A Python Interpreter (code execution vulnerability CVE-2019-9848)

    Published: 2019-07-26 12:22:26

    Popularity: 4

    Author: /u/crower

    Keywords:

  • r/netsec

    • submitted by /u/crower
    [link] [comments] ...more

    Revssl - a Bash script that automates OpenSSL reverse shell establishment

    Published: 2019-07-14 21:02:31

    Popularity: 4

    Author: /u/_____WINTERMUTE_____

    Keywords:

  • r/netsec

    • submitted by /u/_____WINTERMUTE_____
    [link] [comments] ...more

    Consul vulnerability scanner and exploit tool

    Published: 2019-06-17 17:24:08

    Popularity: 8

    Author: /u/Testing_Pens

    Keywords:

  • r/netsec

    • submitted by /u/Testing_Pens
    [link] [comments] ...more

    Project Zero: DoS in Windows core crypto-library SymCrypt

    Published: 2019-06-11 16:43:08

    Popularity: 8

    Author: /u/Ex1v0r

    Keywords:

  • r/netsec

    • 🤖: "Crypto Crash"

    submitted by /u/Ex1v0r
    [link] [comments] ...more

    Electronegativity 1.3.0 (Electron Security Tool) released. Interesting vuln around Affinity Check

    Published: 2019-06-11 21:32:11

    Popularity: 8

    Author: /u/nibblesec

    Keywords:

  • r/netsec

    • submitted by /u/nibblesec
    [link] [comments] ...more

    Rapid creation of users in a lab ad with youzer

    Published: 2019-06-07 18:35:56

    Popularity: 8

    Author: /u/smittix

    Keywords:

  • r/netsec

    • 🤖: "User flood"

    submitted by /u/smittix
    [link] [comments] ...more

    Large European Routing Leak Sends Traffic Through China Telecom

    Published: 2019-06-10 06:02:58

    Popularity: 9

    Author: /u/yahsintw

    Keywords:

  • r/netsec

    • submitted by /u/yahsintw
    [link] [comments] ...more

    GitHub - xFreed0m/RDPassSpray: Python3 tool to perform password spraying using RDP

    Published: 2019-06-06 13:17:01

    Popularity: 8

    Author: /u/GelosSnake

    Keywords:

  • r/netsec

    • submitted by /u/GelosSnake
    [link] [comments] ...more

    Bypassing CSP with policy injection

    Published: 2019-06-05 13:13:14

    Popularity: 8

    Author: /u/albinowax

    Keywords:

  • r/netsec

    • submitted by /u/albinowax
    [link] [comments] ...more

    Damn Vulnerable Crypto Wallet - An extremely insecure Ethereum cryptowallet

    Published: 2019-05-20 04:11:17

    Popularity: 8

    Author: /u/w0lf_101

    Keywords:

  • r/netsec

    • 🤖: "Wallet Fail"

    submitted by /u/w0lf_101
    [link] [comments] ...more

    Disclosing TOR users' real IP address through 301 HTTP Redirect Cache Poisoning

    Published: 2019-06-01 05:02:06

    Popularity: 12

    Author: /u/piotrd_

    Keywords:

  • r/netsec

    • submitted by /u/piotrd_
    [link] [comments] ...more

    Every FireFox extensions disabled due to expiration of intermediate signing cert

    Published: 2019-05-04 08:50:29

    Popularity: 19

    Author: /u/RodolpheB

    Keywords:

  • r/netsec

    • 🤖: "Browser panic"

    submitted by /u/RodolpheB
    [link] [comments] ...more

    Extract PGP secret keys from Gnuk / Nitrokey Start firmwares

    Published: 2019-04-29 18:20:17

    Popularity: 12

    Author: /u/r0t42

    Keywords:

  • r/netsec

    • submitted by /u/r0t42
    [link] [comments] ...more

    The WAF Swiss-Knife

    Published: 2024-05-19 21:39:11

    Popularity: None

    Author: /u/lacioffi

    Keywords:

  • r/netsec

    • 🤖: "Web security win!"

    submitted by /u/lacioffi
    [link] [comments] ...more

    File-write on Gitlab via YAML parser differential

    Published: 2024-05-07 08:53:07

    Popularity: None

    Author: /u/albinowax

    Keywords:

  • r/netsec

    • 🤖: "File write fail"

    submitted by /u/albinowax
    [link] [comments] ...more

    end