IDA plugin for finding constants used in conditional statements
https://ift.tt/mxZ8u9A
Submitted March 31, 2022 at 07:15PM by Martypx00
via reddit https://ift.tt/NCf9zeS
https://ift.tt/mxZ8u9A
Submitted March 31, 2022 at 07:15PM by Martypx00
via reddit https://ift.tt/NCf9zeS
GitHub
GitHub - Accenture/Condstanta
Contribute to Accenture/Condstanta development by creating an account on GitHub.
Critical Vulnerability in Spring Core: CVE-2022-22965 a.k.a. Spring4Shell
https://ift.tt/yRuJQ5h
Submitted March 31, 2022 at 09:13PM by MiguelHzBz
via reddit https://ift.tt/FvHszNf
https://ift.tt/yRuJQ5h
Submitted March 31, 2022 at 09:13PM by MiguelHzBz
via reddit https://ift.tt/FvHszNf
Sysdig
Critical Vulnerability in Spring Core: CVE-2022-22965 a.k.a. Spring4Shell
Critical Vulnerability in Spring Core, CVE-2022-22965, allows remote code execution, you should patch with newest version as soon as possible
GitLab Critical Security Release: 14.9.2, 14.8.5, and 14.7.7
https://ift.tt/Q5AeHs6
Submitted April 01, 2022 at 05:28AM by 0xmilan
via reddit https://ift.tt/j4b7R8W
https://ift.tt/Q5AeHs6
Submitted April 01, 2022 at 05:28AM by 0xmilan
via reddit https://ift.tt/j4b7R8W
GitLab
GitLab Critical Security Release: 14.9.2, 14.8.5, and 14.7.7
Learn more about GitLab Critical Security Release: 14.9.2, 14.8.5, and 14.7.7 for GitLab Community Edition (CE) and Enterprise Edition (EE).
SpringShell Zero-Day Vulnerability: All You Need To Know
https://ift.tt/hef4sFv
Submitted April 01, 2022 at 12:45PM by SRMish3
via reddit https://ift.tt/ofFBayQ
https://ift.tt/hef4sFv
Submitted April 01, 2022 at 12:45PM by SRMish3
via reddit https://ift.tt/ofFBayQ
JFrog
SpringShell (Spring4Shell) Zero-Day Vulnerability: All You Need to Know | JFrog
Understand SpringShell (Spring4Shell) vulnerability CVE-2022-22965 exploitation vectors, learn what's vulnerable & discover remediations to this zero-day vulnerability
How Go Mitigates Supply Chain Attacks
https://ift.tt/sR2A8qv
Submitted April 01, 2022 at 01:59PM by e-san55
via reddit https://ift.tt/n5jGqXg
https://ift.tt/sR2A8qv
Submitted April 01, 2022 at 01:59PM by e-san55
via reddit https://ift.tt/n5jGqXg
go.dev
How Go Mitigates Supply Chain Attacks - The Go Programming Language
Go tooling and design help mitigate supply chain attacks at various stages.
Gaining code execution on the backend of the PEAR package manager
https://ift.tt/zfiHN3J
Submitted April 01, 2022 at 03:40PM by monoimpact
via reddit https://ift.tt/OVkXtRI
https://ift.tt/zfiHN3J
Submitted April 01, 2022 at 03:40PM by monoimpact
via reddit https://ift.tt/OVkXtRI
Resources Search Engine for Infosec based on Ippsec.rocks
https://ift.tt/pjYTtkQ
Submitted April 01, 2022 at 03:54PM by sarthaksaini
via reddit https://ift.tt/vS65Gdk
https://ift.tt/pjYTtkQ
Submitted April 01, 2022 at 03:54PM by sarthaksaini
via reddit https://ift.tt/vS65Gdk
search.redteam.fail
Search Engine - Resources
Search utility for Sarthak's Resources Server
SSH-MITM - Support for OpenSSH's certificate authority planned
https://ift.tt/q79WNiH
Submitted April 01, 2022 at 10:28PM by ssh-mitm
via reddit https://ift.tt/Wjzwd6E
https://ift.tt/q79WNiH
Submitted April 01, 2022 at 10:28PM by ssh-mitm
via reddit https://ift.tt/Wjzwd6E
GitHub
ssh-mitm/README.md at master · ssh-mitm/ssh-mitm
ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation - ssh-mitm/README.md at master · ssh-mitm/ssh-mitm
DoS vulnerability in firmware v3.0.3 of KNXnet/IP Secure router SCN-IP100.03
https://ift.tt/LkPDcFR
Submitted April 02, 2022 at 05:05PM by robertguetzkow
via reddit https://ift.tt/O8GCvas
https://ift.tt/LkPDcFR
Submitted April 02, 2022 at 05:05PM by robertguetzkow
via reddit https://ift.tt/O8GCvas
GitHub
GitHub - robertguetzkow/CVE-2021-37740: PoC for DoS vulnerability CVE-2021-37740 in firmware v3.0.3 of SCN-IP100.03 and SCN-IP000.03…
PoC for DoS vulnerability CVE-2021-37740 in firmware v3.0.3 of SCN-IP100.03 and SCN-IP000.03 by MDT. The bug has been fixed in firmware v3.0.4. - robertguetzkow/CVE-2021-37740
Introducing PacketStreamer - packet capture for Kubernetes and other platforms
https://ift.tt/YlTKRFe
Submitted April 03, 2022 at 03:08AM by foobarbazwibble
via reddit https://ift.tt/Y2oSz0h
https://ift.tt/YlTKRFe
Submitted April 03, 2022 at 03:08AM by foobarbazwibble
via reddit https://ift.tt/Y2oSz0h
Medium
Introducing PacketStreamer: distributed packet capture for cloud-native platforms
PacketStreamer is an open-source tool that captures network traffic from multiple remote sources concurrently and aggregates the data into…
A step-by-step analysis of the Russian Turla backdoor called TinyTurla
https://ift.tt/ZzceFnH
Submitted April 03, 2022 at 11:24PM by CyberMasterV
via reddit https://ift.tt/9KIcU34
https://ift.tt/ZzceFnH
Submitted April 03, 2022 at 11:24PM by CyberMasterV
via reddit https://ift.tt/9KIcU34
Reddit
From the netsec community on Reddit: A step-by-step analysis of the Russian Turla backdoor called TinyTurla
Posted by CyberMasterV - 8 votes and 5 comments
Dockerized Spring4Shell Exploit Proof of Concept
https://ift.tt/EP6WwMT
Submitted April 04, 2022 at 12:52PM by sciencestudent99
via reddit https://ift.tt/VRI0e5x
https://ift.tt/EP6WwMT
Submitted April 04, 2022 at 12:52PM by sciencestudent99
via reddit https://ift.tt/VRI0e5x
GitHub
GitHub - FourCoreLabs/spring4shell-exploit-poc: Exploit a vulnerable Spring application with the Spring4Shell (CVE-2022-22965)…
Exploit a vulnerable Spring application with the Spring4Shell (CVE-2022-22965) Vulnerability. - FourCoreLabs/spring4shell-exploit-poc
Discovering Vulnerabilities in WordPress Plugins at Scale
https://ift.tt/RW8x0eX
Submitted April 04, 2022 at 05:31PM by jonas02
via reddit https://ift.tt/iksLhYK
https://ift.tt/RW8x0eX
Submitted April 04, 2022 at 05:31PM by jonas02
via reddit https://ift.tt/iksLhYK
WPSec
Discovering Vulnerabilities in WordPress Plugins at Scale - WPSec
Author: Luke (@hakluke) Stephens It always blows me away to think that WordPress runs 43% of all websites, including those without a content management system (CMS) 🤯. A single open source project is responsible for such a huge part of the internet! It's…
A quick walkthrough of how to crack hashed passwords with John the Ripper
https://ift.tt/odaHKDW
Submitted April 04, 2022 at 06:34PM by oxagast
via reddit https://ift.tt/ey3ptoQ
https://ift.tt/odaHKDW
Submitted April 04, 2022 at 06:34PM by oxagast
via reddit https://ift.tt/ey3ptoQ
oxasploits.com oxasploits
A quick walkthrough of how to crack hashed passwords with John the Ripper
A collection of blog enteries on infosec utilities and exploit development work by Marshall Whittaker
TruffleHog V3: Automatically validate over 600 API Keys
https://ift.tt/CR49cOk
Submitted April 04, 2022 at 08:17PM by wifihack
via reddit https://ift.tt/B27zY0V
https://ift.tt/CR49cOk
Submitted April 04, 2022 at 08:17PM by wifihack
via reddit https://ift.tt/B27zY0V
Truffle Security
Introducing TruffleHog v3 - Truffle Security
TruffleHog v3 adds much more to scanning for secrets
CVE Markdown Charts - Your InfoSec reports will now write themselves...
https://ift.tt/LduMPFN
Submitted April 05, 2022 at 07:51AM by onlinereadme
via reddit https://ift.tt/j9wOPsN
https://ift.tt/LduMPFN
Submitted April 05, 2022 at 07:51AM by onlinereadme
via reddit https://ift.tt/j9wOPsN
clearbluejar
Introducing CVE Markdown Charts - Part 1
CVE Markdown Charts - Your InfoSec reports will now write themselves. After writing several Infosec reports and researching popular CVEs, I discovered a means to create dynamic charts that help readers and myself understand various CVE relationships and their…
Researchers Uncover New Android Spyware With C2 Server Linked to Turla Hackers. Interestingly, the app establishes contact with a remote command-and-control server, 82.146.35[.]240, which has been previously identified as infrastructure belonging to the Russia-based hacking group known as Turla.
https://ift.tt/j7wthqd
Submitted April 05, 2022 at 07:15AM by Late_Ice_9288
via reddit https://ift.tt/lspVtDr
https://ift.tt/j7wthqd
Submitted April 05, 2022 at 07:15AM by Late_Ice_9288
via reddit https://ift.tt/lspVtDr
Reddit
From the netsec community on Reddit: Researchers Uncover New Android Spyware With C2 Server Linked to Turla Hackers. Interestingly…
Posted by Late_Ice_9288 - 293 votes and 10 comments
Shielder - A Sneak Peek into Smart Contracts Reversing and Emulation
https://ift.tt/5RCOKl1
Submitted April 05, 2022 at 04:31PM by smaury
via reddit https://ift.tt/RghF7rA
https://ift.tt/5RCOKl1
Submitted April 05, 2022 at 04:31PM by smaury
via reddit https://ift.tt/RghF7rA
Shielder
Shielder - A Sneak Peek into Smart Contracts Reversing and Emulation
Introduction to web3 security, Smart Contract Reversing (bytecode and decompiled code level) and EVM emulation with Qiling.
Kepler: open source CVE Search Engine written in Rust
https://ift.tt/vsUkQlB
Submitted April 05, 2022 at 06:20PM by bndt00
via reddit https://ift.tt/QCuSriW
https://ift.tt/vsUkQlB
Submitted April 05, 2022 at 06:20PM by bndt00
via reddit https://ift.tt/QCuSriW
GitHub
GitHub - exein-io/kepler: NIST-based CVE lookup store and API powered by Rust.
NIST-based CVE lookup store and API powered by Rust. - exein-io/kepler
Wordle for CVEs!
https://cverdle.io/
Submitted April 05, 2022 at 08:33PM by benzies
via reddit https://ift.tt/Wkc1FtC
https://cverdle.io/
Submitted April 05, 2022 at 08:33PM by benzies
via reddit https://ift.tt/Wkc1FtC
House of Heap Exploitation Dojo — CanSecWest 2022 Registration
https://ift.tt/9klieXu
Submitted April 05, 2022 at 11:44PM by mdulin2
via reddit https://ift.tt/ZNvmftV
https://ift.tt/9klieXu
Submitted April 05, 2022 at 11:44PM by mdulin2
via reddit https://ift.tt/ZNvmftV