494K subscribers in the netsec community. /r/netsec is a community-curated aggregator of technical information security content. Our mission is to…

stealth userland kit that doesn't use sys_clone/sys_execve call - GitHub - io-tl/degu-lib: stealth userland kit that doesn't use sys_clone/sys_execve call

It was discovered, that redis, a persistent key-value database, due to a packaging issue, is prone to a (Debian-specific) Lua sandbox escape, which could resul…

Microsoft has discovered several vulnerabilities, collectively referred to as Nimbuspwn, that could be chained together, allowing an attacker to elevate privileges to root on many Linux desktop endpoints. Leveraging Nimbuspwn as a vector for root access could…

FindFunc is an IDA Pro plugin to find code functions that contain a certain assembly or byte pattern, reference a certain name or string, or conform to various other constraints. - GitHub - FelixBe...

Contribute to jfrog/nimbuspwn-tools development by creating an account on GitHub.

Wiz Research discovers a chain of critical vulnerabilities in the widely used Azure Database for PostgreSQL Flexible Server.

Download Fiddler Everywhere, the professionally built and supported web debugging proxy tool for Windows, macOS, and Linux. Free and fully-functional trial.

Google hacking, sometimes, referred to as Google Dorking, is an information-gathering technique used by an attacker leveraging advanced…

Posted in r/netsec by u/AlmondOffSec • 14 points and 0 comments

That noscript would have sounded very weird to me a year ago but that’s exactly what happened. Let me walk you through how we were approached by a client for a code review, had to find a zero day just to get started (CVE-2022-29856), and ultimately “decrypted…

Open source compliance tool for development platforms. - GitHub - reposaur/reposaur: Open source compliance tool for development platforms.

Colibri Loader uses a novel method of Persistence which makes use of Get-Variable cmdlet to run its executable every time powershell is launched. Here we cover the method, why it works, and how to detect such TTPs.

Interactive Kubernetes Security Learning Playground

Signal detector aims to help developers to stay ahead of threats

This post describes the techniques, tactics and procedures we observed during recent LAPSUS$ incidents.

Python module hijacking POC. Contribute to echo-devim/pyjacktrick development by creating an account on GitHub.

CLI program for automating the setup, configuration, and use of cybersecurity solutions - GitHub - MutableSecurity/mutablesecurity: CLI program for automating the setup, configuration, and use of c...

As the main routing device of the network, most routers can be set up and managed through their web enabled admin portal. This paper proposes a new method for router admin portal vulnerability mining...