Login
FreshRSS
Login
Secure Planet Training Courses Updated For 2019 - Click Here
Main stream
Favourites (0)
My labels
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
ICS-CERT Alert Feed
InfoSec Resources
Infosec Island Latest Articles
Krebs on Security
McAfee Blogs
Naked Security
News ≈ Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security – Cisco Blog
SecurityFocus News
The Hacker News
The Register - Security
The first stop for security news | Threatpost
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WIRED
WeLiveSecurity
ZDNet | security RSS
http://blog.trendmicro.com/feed
Tools
KitPloit - PenTest Tools!
Security Tool Files ≈ Packet Storm
ToolsWatch.org – The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files ≈ Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
Before yesterday
Security
/r/netsec - Information Security News & Discussion
Prototype Pollution in Python
January 5
th
2023 at 01:46
Prototype Pollution in Python
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
January 5
th
2023 at 01:46
/r/netsec - Information Security News & Discussion
Escaping from bhyve
January 4
th
2023 at 22:55
Escaping from bhyve
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
January 4
th
2023 at 22:55
/r/netsec - Information Security News & Discussion
SSRF vulnerabilities caused by SNI proxy misconfigurations
January 3
rd
2023 at 13:37
SSRF vulnerabilities caused by SNI proxy misconfigurations
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
January 3
rd
2023 at 13:37
/r/netsec - Information Security News & Discussion
LuaJIT Sandbox Escape: The Saga Ends
December 31
st
2022 at 12:20
LuaJIT Sandbox Escape: The Saga Ends
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 31
st
2022 at 12:20
/r/netsec - Information Security News & Discussion
Chrome Browser Exploitation, Part 3: Analyzing and Exploiting CVE-2018-17463
December 30
th
2022 at 14:55
Chrome Browser Exploitation, Part 3: Analyzing and Exploiting CVE-2018-17463
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 30
th
2022 at 14:55
/r/netsec - Information Security News & Discussion
Reverse Prompt Engineering - Pwning the source prompts of Notion AI & 7 techniques for Reverse Prompt Engineering
December 30
th
2022 at 05:48
Reverse Prompt Engineering - Pwning the source prompts of Notion AI & 7 techniques for Reverse Prompt Engineering
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 30
th
2022 at 05:48
/r/netsec - Information Security News & Discussion
Turning Google smart speakers into wiretaps for $100k
December 29
th
2022 at 01:47
Turning Google smart speakers into wiretaps for $100k
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 29
th
2022 at 01:47
/r/netsec - Information Security News & Discussion
Netcomm NF20MESH Cloud Mesh router - Unauthenticated Remote Code Execution
December 27
th
2022 at 06:17
Netcomm NF20MESH Cloud Mesh router - Unauthenticated Remote Code Execution
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 27
th
2022 at 06:17
/r/netsec - Information Security News & Discussion
AWS ECR Public Vulnerability
December 13
th
2022 at 14:55
AWS ECR Public Vulnerability
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 13
th
2022 at 14:55
/r/netsec - Information Security News & Discussion
Fuzzing ping(8)…and finding a 24 year old bug
December 11
th
2022 at 04:27
Fuzzing ping(8)…and finding a 24 year old bug
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 11
th
2022 at 04:27
/r/netsec - Information Security News & Discussion
Nebuchadnezzar - Practically-exploitable Cryptographic Vulnerabilities in Matrix
December 10
th
2022 at 08:56
Nebuchadnezzar - Practically-exploitable Cryptographic Vulnerabilities in Matrix
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 10
th
2022 at 08:56
/r/netsec - Information Security News & Discussion
Cool vulns don't live long - Netgear and Pwn2Own
December 9
th
2022 at 07:10
Cool vulns don't live long - Netgear and Pwn2Own
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 9
th
2022 at 07:10
/r/netsec - Information Security News & Discussion
Hooking System Calls in Windows 11 22H2 like Avast Antivirus. Research, analysis and bypass
December 9
th
2022 at 01:58
Hooking System Calls in Windows 11 22H2 like Avast Antivirus. Research, analysis and bypass
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 9
th
2022 at 01:58
/r/netsec - Information Security News & Discussion
RCE via SSTI on Spring Boot Error Page with Akamai WAF Bypass
December 7
th
2022 at 02:31
RCE via SSTI on Spring Boot Error Page with Akamai WAF Bypass
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 7
th
2022 at 02:31
/r/netsec - Information Security News & Discussion
The Last Breath of Our Netgear RAX30 Bugs - A Tragic Tale before Pwn2Own Toronto 2022
December 6
th
2022 at 14:51
The Last Breath of Our Netgear RAX30 Bugs - A Tragic Tale before Pwn2Own Toronto 2022
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 6
th
2022 at 14:51
/r/netsec - Information Security News & Discussion
Pre-Auth RCE with CodeQL in Under 20 Minutes
December 3
rd
2022 at 12:49
Pre-Auth RCE with CodeQL in Under 20 Minutes
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 3
rd
2022 at 12:49
/r/netsec - Information Security News & Discussion
Remote code execution bug in FreeBSD's ping (CVE-2022-23093)
December 1
st
2022 at 04:10
Remote code execution bug in FreeBSD's ping (CVE-2022-23093)
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 1
st
2022 at 04:10
/r/netsec - Information Security News & Discussion
Race condition in snap-confine's must_mkdir_and_open_with_perms() (CVE-2022-3328) - SUID-root program installed by default on Ubuntu
December 1
st
2022 at 01:53
Race condition in snap-confine's must_mkdir_and_open_with_perms() (CVE-2022-3328) - SUID-root program installed by default on Ubuntu
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
December 1
st
2022 at 01:53
/r/netsec - Information Security News & Discussion
SGX.Fail - Overview of SGX Attacks
November 30
th
2022 at 02:29
SGX.Fail - Overview of SGX Attacks
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 30
th
2022 at 02:29
/r/netsec - Information Security News & Discussion
Exception(al) Failure - Breaking the STM32F1 Read-Out Protection
November 28
th
2022 at 15:13
Exception(al) Failure - Breaking the STM32F1 Read-Out Protection
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 28
th
2022 at 15:13
/r/netsec - Information Security News & Discussion
Bringing PAC to x86 with custom microcode
November 23
rd
2022 at 06:16
Bringing PAC to x86 with custom microcode
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 23
rd
2022 at 06:16
/r/netsec - Information Security News & Discussion
DivestOS CVE Patcher - A tool for downloading, checking, and applying (CVE) patches to a (kernel) repository
November 15
th
2022 at 07:27
DivestOS CVE Patcher - A tool for downloading, checking, and applying (CVE) patches to a (kernel) repository
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 15
th
2022 at 07:27
/r/netsec - Information Security News & Discussion
Starlink User Terminal Modchip
November 14
th
2022 at 03:15
Starlink User Terminal Modchip
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 14
th
2022 at 03:15
/r/netsec - Information Security News & Discussion
NSA guidance on how to protect against software memory safety issues [pdf]
November 11
th
2022 at 04:17
NSA guidance on how to protect against software memory safety issues [pdf]
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 11
th
2022 at 04:17
/r/netsec - Information Security News & Discussion
xterm code execution via font ops (CVE-2022-45063)
November 10
th
2022 at 17:47
xterm code execution via font ops (CVE-2022-45063)
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 10
th
2022 at 17:47
/r/netsec - Information Security News & Discussion
Integer overflow in xmlParseNameComplex (libxml2) - CVE-2022-40303
November 10
th
2022 at 01:24
Integer overflow in xmlParseNameComplex (libxml2) - CVE-2022-40303
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 10
th
2022 at 01:24
/r/netsec - Information Security News & Discussion
Jit-Picking: Differential Fuzzing of JavaScript Engines [PDF]
November 8
th
2022 at 14:55
Jit-Picking: Differential Fuzzing of JavaScript Engines [PDF]
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 8
th
2022 at 14:55
/r/netsec - Information Security News & Discussion
drgn - a debugger with an emphasis on programmability
November 7
th
2022 at 03:05
drgn - a debugger with an emphasis on programmability
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 7
th
2022 at 03:05
/r/netsec - Information Security News & Discussion
HRDevHelper - Decompiler Plugin for Hex-Rays by Dennis Elser
November 5
th
2022 at 00:33
HRDevHelper - Decompiler Plugin for Hex-Rays by Dennis Elser
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 5
th
2022 at 00:33
/r/netsec - Information Security News & Discussion
Reverse Branch Target Buffer Poisoning - new ASLR bypass technique using CPU vulnerabilities [PDF]
November 4
th
2022 at 07:41
Reverse Branch Target Buffer Poisoning - new ASLR bypass technique using CPU vulnerabilities [PDF]
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 4
th
2022 at 07:41
/r/netsec - Information Security News & Discussion
OpenSSL Blog Post with FAQs - CVE-2022-3786 and CVE-2022-3602: X.509 Email Address Buffer Overflows
November 1
st
2022 at 16:11
OpenSSL Blog Post with FAQs - CVE-2022-3786 and CVE-2022-3602: X.509 Email Address Buffer Overflows
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 1
st
2022 at 16:11
/r/netsec - Information Security News & Discussion
OpenSSL Security Advisory [01 November 2022] - CVE-2022-3786 CVE-2022-3602
November 1
st
2022 at 16:07
OpenSSL Security Advisory [01 November 2022] - CVE-2022-3786 CVE-2022-3602
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 1
st
2022 at 16:07
/r/netsec - Information Security News & Discussion
OpenSSL version 3.0.7 published - Fixed two buffer overflows in punycode decoding functions
November 1
st
2022 at 15:50
OpenSSL version 3.0.7 published - Fixed two buffer overflows in punycode decoding functions
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
November 1
st
2022 at 15:50
/r/netsec - Information Security News & Discussion
Ethernet ghosting & NAC bypass - A practical overview
October 27
th
2022 at 03:48
Ethernet ghosting & NAC bypass - A practical overview
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
October 27
th
2022 at 03:48
/r/netsec - Information Security News & Discussion
SHA-3 Buffer Overflow - CVE-2022-37454
October 20
th
2022 at 20:16
SHA-3 Buffer Overflow - CVE-2022-37454
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
October 20
th
2022 at 20:16
/r/netsec - Information Security News & Discussion
PHP filters chain: What is it and how to use it - convert almost any file inclusion to RCE
October 19
th
2022 at 00:57
PHP filters chain: What is it and how to use it - convert almost any file inclusion to RCE
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
October 19
th
2022 at 00:57
/r/netsec - Information Security News & Discussion
postMessage Braindump - a brief postMessage testing methodology
October 12
th
2022 at 03:53
postMessage Braindump - a brief postMessage testing methodology
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
October 12
th
2022 at 03:53
/r/netsec - Information Security News & Discussion
Persistent PHP payloads in PNGs: How to inject PHP code in an image and keep it there!
October 10
th
2022 at 16:47
Persistent PHP payloads in PNGs: How to inject PHP code in an image and keep it there!
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
October 10
th
2022 at 16:47
/r/netsec - Information Security News & Discussion
CVE-2022-41343 - RCE via Phar Deserialisation (Dompdf)
October 6
th
2022 at 06:42
CVE-2022-41343 - RCE via Phar Deserialisation (Dompdf)
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
October 6
th
2022 at 06:42
/r/netsec - Information Security News & Discussion
A New Supply Chain Attack on PHP
October 5
th
2022 at 05:20
A New Supply Chain Attack on PHP
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
October 5
th
2022 at 05:20
/r/netsec - Information Security News & Discussion
ModSecurity WAF bypasses via 0days
September 23
rd
2022 at 14:09
ModSecurity WAF bypasses via 0days
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
September 23
rd
2022 at 14:09
/r/netsec - Information Security News & Discussion
Passkeys - an opinionated, “quick-start” guide to using passkeys
September 23
rd
2022 at 07:46
Passkeys - an opinionated, “quick-start” guide to using passkeys
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
September 23
rd
2022 at 07:46
/r/netsec - Information Security News & Discussion
BigQuery SQL Injection Cheat Sheet
September 23
rd
2022 at 07:44
BigQuery SQL Injection Cheat Sheet
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
September 23
rd
2022 at 07:44
/r/netsec - Information Security News & Discussion
It pays to be Circomspect
September 15
th
2022 at 04:01
It pays to be Circomspect
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
September 15
th
2022 at 04:01
/r/netsec - Information Security News & Discussion
Attacking Firecracker: AWS' microVM Monitor Written in Rust
September 8
th
2022 at 16:19
Attacking Firecracker: AWS' microVM Monitor Written in Rust
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
September 8
th
2022 at 16:19
/r/netsec - Information Security News & Discussion
Exploiting Laravel based applications with leaked APP_KEYs and Queues
September 8
th
2022 at 08:32
Exploiting Laravel based applications with leaked APP_KEYs and Queues
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
September 8
th
2022 at 08:32
/r/netsec - Information Security News & Discussion
Linux CONFIG_WATCH_QUEUE LPE
September 7
th
2022 at 06:39
Linux CONFIG_WATCH_QUEUE LPE
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
September 7
th
2022 at 06:39
/r/netsec - Information Security News & Discussion
Hardware debug probes for JTAG debugging for Intel and AMD - Necrosys/x86-JTAG-Information
September 6
th
2022 at 13:09
Hardware debug probes for JTAG debugging for Intel and AMD - Necrosys/x86-JTAG-Information
By:
/u/Gallus
submitted by
/u/Gallus
[link]
[comments]
🏷️
My labels
❌
Article tags
❌
r/netsec
September 6
th
2022 at 13:09
There are no more articles
✓
Mark all as read