rev.ng is a suite of tools for binary analysis based on QEMU and LLVM
https://rev.ng/
Submitted October 20, 2017 at 07:18PM by grajagandev
via reddit http://ift.tt/2yvpFtV
https://rev.ng/
Submitted October 20, 2017 at 07:18PM by grajagandev
via reddit http://ift.tt/2yvpFtV
reddit
rev.ng is a suite of tools for binary analysis based on... • r/netsec
1 points and 0 comments so far on reddit
RSA SecureID SID700 Fips 140-2 compliant?
Just curious if anyone has any insight to this? I can find documentation on the SID800 being FIPS 140-2 compliant but the 700 datasheet does not include this and I can not find this information from RSA.
Submitted October 20, 2017 at 07:12PM by ProfFrnswrth
via reddit http://ift.tt/2yWITsY
Just curious if anyone has any insight to this? I can find documentation on the SID800 being FIPS 140-2 compliant but the 700 datasheet does not include this and I can not find this information from RSA.
Submitted October 20, 2017 at 07:12PM by ProfFrnswrth
via reddit http://ift.tt/2yWITsY
reddit
RSA SecureID SID700 Fips 140-2 compliant? • r/security
Just curious if anyone has any insight to this? I can find documentation on the SID800 being FIPS 140-2 compliant but the 700 datasheet does not...
IoT reaper - a new IoT botnet spreading using exploits, not password brute force
http://ift.tt/2l4DERS
Submitted October 20, 2017 at 07:46PM by cybergibbons
via reddit http://ift.tt/2l2zVUZ
http://ift.tt/2l4DERS
Submitted October 20, 2017 at 07:46PM by cybergibbons
via reddit http://ift.tt/2l2zVUZ
reddit
IoT reaper - a new IoT botnet spreading using exploits,... • r/netsec
12 points and 0 comments so far on reddit
DDEAUTO Root Cause Analysis
http://ift.tt/2yEOPph
Submitted October 20, 2017 at 08:38PM by billbillthebillbill
via reddit http://ift.tt/2gol8hS
http://ift.tt/2yEOPph
Submitted October 20, 2017 at 08:38PM by billbillthebillbill
via reddit http://ift.tt/2gol8hS
Endgame
The Bug or Feature Debate is Back Yet Again: DDEAUTO Root Cause Analysis
Over the last few years, macro-based document attacks have been growing in popularity. With the rising cost of memory corruption based exploitation due to the required level of expertise and resources, attackers understand that they can accomplish similar…
Poorly Secured SSH Keys Exposing Firms to Breaches
http://ift.tt/2xOjYaC
Submitted October 20, 2017 at 09:09PM by speckz
via reddit http://ift.tt/2yC7r92
http://ift.tt/2xOjYaC
Submitted October 20, 2017 at 09:09PM by speckz
via reddit http://ift.tt/2yC7r92
Infosecurity Magazine
Poorly Secured SSH Keys Exposing Firms to Breaches
Poorly Secured SSH Keys Exposing Firms to Breaches. Venafi finds 90% of orgs don’t even know what they have
Google PDFium Tiff Code Execution
http://ift.tt/2yvnxSS
Submitted October 20, 2017 at 03:38AM by Cartosho
via reddit http://ift.tt/2ywxyPB
http://ift.tt/2yvnxSS
Submitted October 20, 2017 at 03:38AM by Cartosho
via reddit http://ift.tt/2ywxyPB
Talosintelligence
Vulnerability Spotlight: Google PDFium Tiff Code Execution
A blog from the world class Intelligence Group, Talos, Cisco's Intelligence Group
How Russian Firm Might Have Siphoned Tools From the NSA
http://ift.tt/2l3cZVw
Submitted October 20, 2017 at 11:00PM by CrankyBear
via reddit http://ift.tt/2ipvT8f
http://ift.tt/2l3cZVw
Submitted October 20, 2017 at 11:00PM by CrankyBear
via reddit http://ift.tt/2ipvT8f
The Intercept
How Russian Firm Might Have Siphoned Tools from the NSA
Russian hackers got top-secret material via Moscow-based Kaspersky Lab. Intelligence sources and documents explain how it may have happened — without Kaspersky's knowledge.
OSX/Proton spreading again through supply-chain attack
http://ift.tt/2zo2kXB
Submitted October 21, 2017 at 02:53AM by SergeyGor
via reddit http://ift.tt/2gyNzxH
http://ift.tt/2zo2kXB
Submitted October 21, 2017 at 02:53AM by SergeyGor
via reddit http://ift.tt/2gyNzxH
WeLiveSecurity
OSX/Proton spreading again through supply-chain attack
ESET experts noticed that the makers of the Elmedia Player software have been distributing a version of their app trojanized with the OSX/Proton malware.
TippingPoint Threat Intelligence and Zero-Day Coverage â Week of October 16, 2017 -
http://ift.tt/2xUkHak
Submitted October 21, 2017 at 05:28AM by green_cart
via reddit http://ift.tt/2yEgwwF
http://ift.tt/2xUkHak
Submitted October 21, 2017 at 05:28AM by green_cart
via reddit http://ift.tt/2yEgwwF
Trendmicro
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of October 16, 2017 -
Various forms of fuzzing techniques that search for vulnerabilities in software programs have been around for several decades, but it can a tedious task, especially when looking at an entire enterprise application. Earlier this week, Zero Day Initiative (ZDI)…
I have done a helpful SqlMap tamper noscripts cheat sheet
http://ift.tt/2ywbBjJ
Submitted October 21, 2017 at 09:11AM by 8vw
via reddit http://ift.tt/2l2u5Te
http://ift.tt/2ywbBjJ
Submitted October 21, 2017 at 09:11AM by 8vw
via reddit http://ift.tt/2l2u5Te
Why VPN Is A Need For Every Startup
http://ift.tt/2xciQcG
Submitted October 21, 2017 at 01:32PM by tomzikerburg009
via reddit http://ift.tt/2zFBf30
http://ift.tt/2xciQcG
Submitted October 21, 2017 at 01:32PM by tomzikerburg009
via reddit http://ift.tt/2zFBf30
reddit
Why VPN Is A Need For Every Startup • r/security
0 points and 0 comments so far on reddit
Performing and Preventing SSL Stripping: A Plain-English Primer
http://ift.tt/2xUVubc
Submitted October 21, 2017 at 06:02PM by civicode
via reddit http://ift.tt/2yyoZnA
http://ift.tt/2xUVubc
Submitted October 21, 2017 at 06:02PM by civicode
via reddit http://ift.tt/2yyoZnA
reddit
Performing and Preventing SSL Stripping: A... • r/netsec
5 points and 0 comments so far on reddit
Broken Link Hijacking - How expired links can be exploited
http://ift.tt/2zEVeiD
Submitted October 21, 2017 at 07:11PM by teknogeek1
via reddit http://ift.tt/2xcCgxU
http://ift.tt/2zEVeiD
Submitted October 21, 2017 at 07:11PM by teknogeek1
via reddit http://ift.tt/2xcCgxU
reddit
Broken Link Hijacking - How expired links can be exploited • r/netsec
3 points and 0 comments so far on reddit
Millions caught in SA's 'worst data breach'
http://ift.tt/2xbtPmw
Submitted October 21, 2017 at 07:20PM by imr2017
via reddit http://ift.tt/2yEONxy
http://ift.tt/2xbtPmw
Submitted October 21, 2017 at 07:20PM by imr2017
via reddit http://ift.tt/2yEONxy
BBC News
Millions caught in South Africa's 'worst data breach'
Could the accidental publication of millions of South Africans' personal details open a new door for criminals?
Securing V2X communications
http://ift.tt/2xVYwAH
Submitted October 21, 2017 at 11:57PM by mycall
via reddit http://ift.tt/2yHJM7z
http://ift.tt/2xVYwAH
Submitted October 21, 2017 at 11:57PM by mycall
via reddit http://ift.tt/2yHJM7z
www.newelectronics.co.uk
Securing V2X communications
Test drive any new car and you’ll discover the automotive industry is in the middle of a connected car revolution. From rear view cameras and blind spot detectors to adaptive cruise control and lane assist, an unprecedented amount of electronics is being…
Differences Between Web Application Scanning Tools when Scanning for XSS and SQLi - AppSecUSA 2017
https://www.youtube.com/watch?v=VO2uBSfXZso
Submitted October 22, 2017 at 12:12AM by giomke
via reddit http://ift.tt/2xVGyJS
https://www.youtube.com/watch?v=VO2uBSfXZso
Submitted October 22, 2017 at 12:12AM by giomke
via reddit http://ift.tt/2xVGyJS
YouTube
Differences Between Web Application Scanning Tools when Scanning for XSS and SQLi - AppSecUSA 2017
An Investigation into the Differences Between Web Application Scanning Tools when Scanning for XSS and SQLi
Web Application Vulnerability Scanners are becoming increasingly automated and are facing more difficulties as web technologies change and evolve.…
Web Application Vulnerability Scanners are becoming increasingly automated and are facing more difficulties as web technologies change and evolve.…
Stress test and assess anti-phishing solutions
http://ift.tt/2xdThIn
Submitted October 22, 2017 at 03:00AM by CodeAndSec
via reddit http://ift.tt/2l6k7AB
http://ift.tt/2xdThIn
Submitted October 22, 2017 at 03:00AM by CodeAndSec
via reddit http://ift.tt/2l6k7AB
Cybersecurity Career Pathway
http://ift.tt/2ejcsuC
Submitted October 22, 2017 at 11:01AM by learnie
via reddit http://ift.tt/2hWbsfc
http://ift.tt/2ejcsuC
Submitted October 22, 2017 at 11:01AM by learnie
via reddit http://ift.tt/2hWbsfc
cyberseek.org
Cybersecurity Career Pathway
Explore the key jobs within cybersecurity, common transition opportunities and detailed information about the salaries
Kernel Exploitation - Dereferencing a NULL pointer! - Exploit Development
http://ift.tt/2yFKqSD
Submitted October 22, 2017 at 05:31PM by Evil1337
via reddit http://ift.tt/2iqAEy6
http://ift.tt/2yFKqSD
Submitted October 22, 2017 at 05:31PM by Evil1337
via reddit http://ift.tt/2iqAEy6
Researcher invites hackers to break his “unhackable” chip
http://ift.tt/2gtc6QO
Submitted October 22, 2017 at 05:58PM by Glokta_
via reddit http://ift.tt/2gALGR9
http://ift.tt/2gtc6QO
Submitted October 22, 2017 at 05:58PM by Glokta_
via reddit http://ift.tt/2gALGR9
The National
‘Unhackable’ electronic chip being developed in Abu Dhabi
New York University Abu Dhabi researcher says the chip, which could be used in phones, is the first prototype to have security features built into the hardware and he is inviting hackers to try to break the code
I want to become a security professional
Hey Reddit, i need some help with my education. I'm 18 years old, and i'll have to choose a more specific career path very soon. I spend most of my free time educating myself in various fields of programming, so i've always thought that i would want to become some kind of software or game developer.Over the past year i've reconsidered my options, and i've (almost) decided that i want to become a security professional. It's very important to me that i can work autonomously, so to speak. If i were to become a game developer, i would go the indie route. I'm supposing i can do this too, by becoming a "lone wolf pentester" (or whatever that's called), and let small/medium-sized companies hire me for various security purposes.Now, my question is this: what are some security-related job noscripts, that also enable me to work autonomously? What do i do with education, how do i learn more about this topic? I live in Denmark, where education is free, so my options are pretty good.TL;DR: I'm a young security-interested boy, trying to figure out what my next step in education should be. I want to be able to work autonomously, and i'm willing to take the risks with it. What do i do?
Submitted October 22, 2017 at 11:10PM by Dellitsni
via reddit http://ift.tt/2z1N2eY
Hey Reddit, i need some help with my education. I'm 18 years old, and i'll have to choose a more specific career path very soon. I spend most of my free time educating myself in various fields of programming, so i've always thought that i would want to become some kind of software or game developer.Over the past year i've reconsidered my options, and i've (almost) decided that i want to become a security professional. It's very important to me that i can work autonomously, so to speak. If i were to become a game developer, i would go the indie route. I'm supposing i can do this too, by becoming a "lone wolf pentester" (or whatever that's called), and let small/medium-sized companies hire me for various security purposes.Now, my question is this: what are some security-related job noscripts, that also enable me to work autonomously? What do i do with education, how do i learn more about this topic? I live in Denmark, where education is free, so my options are pretty good.TL;DR: I'm a young security-interested boy, trying to figure out what my next step in education should be. I want to be able to work autonomously, and i'm willing to take the risks with it. What do i do?
Submitted October 22, 2017 at 11:10PM by Dellitsni
via reddit http://ift.tt/2z1N2eY
reddit
I want to become a security professional • r/security
Hey Reddit, i need some help with my education. I'm 18 years old, and i'll have to choose a more specific career path very soon. I spend most of...