Posted in r/netsec by u/DavidBuchanan • 17 points and 0 comments

New method to exploit PHP local file inclusion (LFI) vulnerabilities with Nginx assistance.

Falco with plugin support is aiming to become the standard way to secure your infrastructure, the cloud one, and even the physical one.

I recently came across a really fascinating video - https://www.youtube.com/watch?v=tYFLze9VwB0 where they make use of a micro laser projector to generate a speckle pattern on a surface and then photograph it with a DSLR. They then simply touch a surface…

Posted in r/netsec by u/m_rothe • 1 point and 0 comments

Posted in r/netsec by u/Maijin • 12 points and 1 comment

CVE® is a list of records — each containing an identification number, a denoscription, and at least one public reference — for publicly known cybersecurity vulnerabilities. The mission of the CVE Program is to identify, define, and catalog publicly disclosed…

Insights on first few hours of Log4Shell zero-day, creating and sharing PoC with the community.

Japanese companies are being targeted by a novel malware called Flagpro developed by BlackTech cyber-espionage APT group.

Today I wanted to cover a subject that has been covered many times before, but writing about the techniques and tools I am learning helps me solidify my knowledge so here we go. Today’s post …

Bootkit sample for firmware attack. Contribute to hardenedvault/bootkit-samples development by creating an account on GitHub.

A modern code-injection framework for Python. Like Pyrasite but Kubernetes-aware. - GitHub - robusta-dev/debug-toolkit: A modern code-injection framework for Python. Like Pyrasite but Kubernetes-aw...

If you're wondering whether your email account is compromised by RedLine malware, you can check the same with 'Have I Been Pwned' website as RedLine malware has now 441,000 accounts that are compromised.

Posted in r/netsec by u/Novel_Author • 0 points and 3 comments

Compose your complex password. Contribute to eddiechu/passbox development by creating an account on GitHub.

C++/Win32/Boost Windows RAT (Remote Administration Tool) with a multiplatform Java/Spring RESTful C2 server and Go, C++/Qt5 frontends - GitHub - jafarlihi/serpentine: C++/Win32/Boost Windows RAT (R...

Posted in r/netsec by u/j3ssiejjj • 54 points and 5 comments

David Schütz's bug bounty writeups

tldr.engineering is available for sale! Check it out on ExpiredDomains.com. tldr.engineering is in high demand, secure it today!

In the past several years, we have seen multiple malware samples using DNS tunneling to exfiltrate data. In June, Microsoft Security Intelligence warned about BazarCall (or BazaLoader), a scam infecting victims with malware to get them to call a phony call…