Posted in r/netsec by u/wrongbaud • 1 point and 1 comment

The post go through a QUIC (HTTP/3) implementation bug in the H2O webserver. The bug is interesting as it affected Fastly, a well-known…

This blog provides a walkthrough of how to gain RCE on the TrendNET AC2600 (model TEW-827DRU specifically) consumer router via the WAN…

This class is an introduction to Symbolic Analysis and Execution of binaries. It requires you to know x86-64 assembly, and be comfortable with Python3 programming.

Exploit Writeup and POC for AI Hydra 26 (and probably 52) series lights - GitHub - Laransec/AIHydra: Exploit Writeup and POC for AI Hydra 26 (and probably 52) series lights

And habitually review the third party code you're using - even when it's in thestandard library.

Table of Contents Introduction The First Detection The Module Stomp Bypass The Module Stomp Detection Final Thoughts Introduction This is the second post in my series and with this post we will...

Posted in r/netsec by u/lormayna • 208 points and 33 comments

The pass the hash technique is not new and it was usually used for lateral movement on the network in scenarios where the administrator password hash could not be cracked due to complexity or asses…

What is PwnKit Vulnerability CVE-2021-4034? On January 25th, 2022, a critical vulnerability in polkit’s pkexec was publicly disclosed (link). The Qualys research team named this vulnerability...

OiVaVoii is targeting general managers and company executives with malicious OAuth apps and custom phishing messages sent from hijacked Microsoft Office 365 accounts.

Internal messages WIRED has viewed shed new light on the operators of one of the world's biggest botnets.

Periodic cyber security newsletters that capture the latest news, summaries of conference talks, research, best practices, tools, events, vulnerabilities, and analysis of trending threats and attac...

Contribute to httpvoid/writeups development by creating an account on GitHub.

How threat actors can use Microsoft Power Automate to automate data exfiltration, C2 communication, lateral movement, and evade DLP solutions.

Jon DiMaggio dives in depth on the history of the REvil Ransomware Gang. While many researchers and media organizations have produced reports on REvil, most of the accounts detail specific attacks, telling only part of REvil’s story. The purpose of this white…

And habitually review the third party code you're using - even when it's in thestandard library.

The first comprehensive resource about relaying that will walk you through the attack primitives that continue to work today including some lesser known attacks.

Posted in r/netsec by u/CyberMasterV • 37 points and 10 comments

Apiiro's Security Research team has discovered a major vulnerability in Argo CD platform (CVE-2022-24348).

by Diego Freijo Welcome to the first dispatch coming out of the Ministry of Silly Ideas! It’s a space we’ve got inside Anvil where we encourage ourselves to come up with interesting-even-if-sounding-silly-at-first-glance ideas around security or IT in general.…