Login
FreshRSS
Login
Secure Planet Training Courses Updated For 2019 - Click Here
Main stream
Favourites (0)
My labels
Security
/r/netsec - Information Security News & Discussion
Dark Reading:
ICS-CERT Alert Feed
InfoSec Resources
Infosec Island Latest Articles
Krebs on Security
McAfee Blogs
Naked Security
News ≈ Packet Storm
Paul's Security Weekly
SANS Internet Storm Center, InfoCON: green
Security – Cisco Blog
SecurityFocus News
The Hacker News
The Register - Security
The first stop for security news | Threatpost
Threatpost | The first stop for security news
Troy Hunt
Verisign Blog
WIRED
WeLiveSecurity
ZDNet | security RSS
http://blog.trendmicro.com/feed
Tools
KitPloit - PenTest Tools!
Security Tool Files ≈ Packet Storm
ToolsWatch.org – The Hackers Arsenal Tools Portal
Vulnerabilities
Advisory Files ≈ Packet Storm
Exploit-DB Updates
Full Disclosure
SecurityFocus Vulnerabilities
There are new available articles, click to refresh the page.
/r/netsec - Information Security News & Discussion
Fun with Windows Containers - Popping Calc
By:
/u/sanitybit
— September 3
rd
2022 at 18:28
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Practical guide for Golden SAML
By:
/u/sanitybit
— September 3
rd
2022 at 04:19
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Reviewing macOS Unified Logs
By:
/u/sanitybit
— September 3
rd
2022 at 04:17
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Windows Firmware Attack Surface Reduction (FASR)
By:
/u/sanitybit
— September 2
nd
2022 at 18:03
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
curl’s TLS fingerprint
By:
/u/sanitybit
— September 2
nd
2022 at 17:46
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
iPhone 11 w/ iBoot & iOS16 emulated on QEMU
By:
/u/sanitybit
— September 2
nd
2022 at 16:54
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Source Code Management Attack Toolkit - Supports GitHub Enterprise, GitLab Enterprise, & Bitbucket Server
By:
/u/sanitybit
— September 2
nd
2022 at 04:20
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
More SRE Lessons for SOC: Release Engineering Ideas
By:
/u/sanitybit
— September 2
nd
2022 at 04:11
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
How I Met Your Beacon: Detection Strategies
By:
/u/sanitybit
— September 1
st
2022 at 00:23
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
MemLabs: Learn Memory Forensics through CTF-styled labs
By:
/u/sanitybit
— August 31
st
2022 at 17:32
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
MATE: Interactive Program Analysis with Code Property Graphs
By:
/u/sanitybit
— August 31
st
2022 at 00:05
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Microsoft ports Windows SymCrypt to Linux, bringing a FIPS certified drop-in module to OpenSSL
By:
/u/sanitybit
— August 30
th
2022 at 23:55
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Announcing Google’s Open Source Software Vulnerability Rewards Program
By:
/u/sanitybit
— August 30
th
2022 at 23:43
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Snakes on a Domain: An Analysis of a Python Malware Loader
By:
/u/sanitybit
— August 30
th
2022 at 23:29
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
reinschauer - A PoC to remotely control Windows machines over Websockets.
By:
/u/sanitybit
— August 30
th
2022 at 23:00
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Going Atomic: The Strengths and Weaknesses of a Technique-centric Purple Teaming Approach
By:
/u/sanitybit
— August 30
th
2022 at 22:50
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Truth Behind the Celer Network cBridge cross-chain bridge incident: BGP hijacking
By:
/u/sanitybit
— August 30
th
2022 at 05:48
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Tetsuji: Remote Code Execution on a GameBoy Colour 22 Years Later
By:
/u/sanitybit
— August 30
th
2022 at 05:46
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Incident Response in AWS
By:
/u/sanitybit
— August 30
th
2022 at 05:41
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
jscythe: Abuse the node.js inspector mechanism to force any node.js/electron/v8 based process to execute arbitrary javascript code.
By:
/u/sanitybit
— August 29
th
2022 at 19:37
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Microsoft: New UEFI CA memory mitigation requirements for signing
By:
/u/sanitybit
— August 27
th
2022 at 00:43
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
The Elastic Container Project for Security Research
By:
/u/sanitybit
— August 27
th
2022 at 00:43
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Matano - An open source serverless security lake platform for AWS using Rust + Apache Iceberg
By:
/u/sanitybit
— August 26
th
2022 at 22:20
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Free SANS Workshop: Building an Azure Pentest Lab for Red Teams
By:
/u/sanitybit
— August 25
th
2022 at 17:59
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Investigating .NET CLR Usage Log Tampering Techniques For EDR Evasion (Part 2)
By:
/u/sanitybit
— August 25
th
2022 at 07:19
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Uncovering a ChromeOS remote memory corruption vulnerability
By:
/u/sanitybit
— August 25
th
2022 at 06:09
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
whids - Open Source EDR for Windows
By:
/u/sanitybit
— August 25
th
2022 at 06:05
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
EtwSessionHijacking: Blocking Procmon from monitoring network events
By:
/u/sanitybit
— August 24
th
2022 at 23:31
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Attack surface of browser extension pages
By:
/u/sanitybit
— August 24
th
2022 at 21:42
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Twitter Whistleblower Document Archive
By:
/u/sanitybit
— August 24
th
2022 at 17:41
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
But You Told Me You Were Safe: Attacking the Mozilla Firefox Renderer (Part 2)
By:
/u/sanitybit
— August 23
rd
2022 at 20:51
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
bomber - a vulnerability scanner for SBOMs
By:
/u/sanitybit
— August 23
rd
2022 at 20:37
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Chainsaw 2.0: Allows users to rapidly search through Windows event logs and hunt for threats using Sigma detection rules.
By:
/u/sanitybit
— August 23
rd
2022 at 15:49
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
CVE-2022-22715 PoC: Windows Dirty Pipe
By:
/u/sanitybit
— August 23
rd
2022 at 05:32
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Masky is a python library providing an alternative way to remotely dump domain users’ credentials
By:
/u/sanitybit
— August 23
rd
2022 at 05:29
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
kyber-py: A pure python implementation of CRYSTALS-Kyber
By:
/u/sanitybit
— August 22
nd
2022 at 18:29
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
A Lightweight Approach To Implement Secure Software Development LifeCycle (Secure SDLC)
By:
/u/sanitybit
— August 19
th
2022 at 06:23
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Zero Day Initiative — But You Told Me You Were Safe: Attacking the Mozilla Firefox Renderer (Part 1)
By:
/u/sanitybit
— August 19
th
2022 at 03:41
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Oh SSH-it, what's my fingerprint? A Large-Scale Analysis of SSH Host Key Fingerprint Verification Records in the DNS
By:
/u/sanitybit
— August 19
th
2022 at 03:37
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Process Behaviour Anomaly Detection Using eBPF and Unsupervised-Learning Autoencoders
By:
/u/sanitybit
— August 15
th
2022 at 23:22
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Attacking Google's Titan M Security Key with Only One Byte
By:
/u/sanitybit
— August 15
th
2022 at 04:46
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
HijackLibs: an open-source, community-driven project tracking DLL Hijacking opportunities in in Windows
By:
/u/sanitybit
— August 15
th
2022 at 02:21
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
STrace: MIT Licensed Windows Reimplementation of DTrace
By:
/u/sanitybit
— August 15
th
2022 at 01:59
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Evade Windows Defender Mimikatz detection by patching the amsi.dll
By:
/u/sanitybit
— August 14
th
2022 at 23:59
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
DC30 Mainframe Buffer Overflow workshop. This docker container has everything you need to learn how to do MVS buffer overflows.
By:
/u/sanitybit
— August 14
th
2022 at 23:58
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Process injection: breaking all macOS security layers with a single vulnerability
By:
/u/sanitybit
— August 14
th
2022 at 23:55
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
wtfis - A commandline tool that gathers information about a domain or FQDN using various OSINT services and displays them formatted for human consumption.
By:
/u/sanitybit
— August 14
th
2022 at 23:19
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
From Oscilloscope to Wireshark
By:
/u/sanitybit
— August 14
th
2022 at 23:11
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
capa v4: casting a wider .NET
By:
/u/sanitybit
— August 12
th
2022 at 10:35
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Researching TEE payment system built into Xiaomi smartphones powered by MediaTek
By:
/u/sanitybit
— August 12
th
2022 at 10:32
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
DNSMonitor leverages Apple's Network Extension Framework to monitor DNS requests and responses
By:
/u/sanitybit
— August 12
th
2022 at 07:12
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
A deep dive into an in-the-wild Android exploit: the quantum state of Linux kernel garbage collection - CVE-2021-0920 (Part 1)
By:
/u/sanitybit
— August 11
th
2022 at 00:07
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
AWSGoat is a vulnerable by design infrastructure on AWS featuring the latest released OWASP Top 10 web application security risks (2021) and other misconfigured AWS services.
By:
/u/sanitybit
— August 10
th
2022 at 19:00
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
BlueHound combines information about user permissions, network access and unpatched vulnerabilities to reveal the paths attackers would take if they were inside your network.
By:
/u/sanitybit
— August 10
th
2022 at 08:16
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
PowerHuntShares is designed to automatically inventory, analyze, and report excessive privilege assigned to SMB shares on Active Directory domain joined computers
By:
/u/sanitybit
— August 10
th
2022 at 08:04
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
ÆPIC Leak: Intel CPU bug able to architecturally disclose sensitive data
By:
/u/sanitybit
— August 10
th
2022 at 06:07
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
A Novel SIP Based Distributed Reflection Denial-of-Service Attack and an Effective Defense Mechanism
By:
/u/sanitybit
— August 10
th
2022 at 02:39
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Blackbird: An OSINT tool to search for accounts by username
By:
/u/sanitybit
— August 7
th
2022 at 22:08
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
WinAPi Search - Recursively Search PE Binaries by Win32 Function Name
By:
/u/sanitybit
— August 7
th
2022 at 21:24
submitted by
/u/sanitybit
[link]
[comments]
/r/netsec - Information Security News & Discussion
Reverse Engineering Windows Printer Drivers (Part 1)
By:
/u/sanitybit
— August 5
th
2022 at 17:56
submitted by
/u/sanitybit
[link]
[comments]
Load more articles