Load testing private endpoints
https://ift.tt/QnT9HYL
Submitted January 14, 2023 at 02:51AM by krstCB
via reddit https://ift.tt/qAUkBEV
https://ift.tt/QnT9HYL
Submitted January 14, 2023 at 02:51AM by krstCB
via reddit https://ift.tt/qAUkBEV
Getanteon
Testing the Performance of User Authentication Flow
Explore how to thoroughly test the performance of user authentication flows
CircleCI incident report for January 4, 2023 security incident
https://ift.tt/iH8gqXe
Submitted January 14, 2023 at 03:56AM by baty0man_
via reddit https://ift.tt/Fzt9qdG
https://ift.tt/iH8gqXe
Submitted January 14, 2023 at 03:56AM by baty0man_
via reddit https://ift.tt/Fzt9qdG
CircleCI
CircleCI incident report for January 4, 2023 security incident
Read the complete incident report from CircleCI’s January 4, 2023 security alert.
santa-linux: a proof of concept binary authorization system for linux, based on Google's Santa
https://ift.tt/GUPxHnd
Submitted January 14, 2023 at 10:19PM by ahigherporpoise
via reddit https://ift.tt/bTnECXy
https://ift.tt/GUPxHnd
Submitted January 14, 2023 at 10:19PM by ahigherporpoise
via reddit https://ift.tt/bTnECXy
GitHub
GitHub - mellow-hype/santa-linux: A proof-of-concept Linux clone of Santa, Google's binary authorization system for macOS
A proof-of-concept Linux clone of Santa, Google's binary authorization system for macOS - GitHub - mellow-hype/santa-linux: A proof-of-concept Linux clone of Santa, Google's binary ...
Impact of the CircleCI Security Incident on the Datadog Agent
https://ift.tt/e87yTsx
Submitted January 14, 2023 at 11:59PM by dlorenc
via reddit https://ift.tt/9wTuo6P
https://ift.tt/e87yTsx
Submitted January 14, 2023 at 11:59PM by dlorenc
via reddit https://ift.tt/9wTuo6P
Datadog Infrastructure and Application Monitoring
Impact of the CircleCI Security Incident on the Datadog Agent
Datadog, the leading service for cloud-scale monitoring.
Analysis of FG-IR-22-398 – FortiOS - heap-based buffer overflow in SSLVPNd
https://ift.tt/w3lyFhr
Submitted January 15, 2023 at 02:48AM by Gallus
via reddit https://ift.tt/JoLeQYW
https://ift.tt/w3lyFhr
Submitted January 15, 2023 at 02:48AM by Gallus
via reddit https://ift.tt/JoLeQYW
Fortinet Blog
Analysis of FG-IR-22-398 – FortiOS - heap-based buffer overflow in SSLVPNd | Fortinet Blog
Fortinet published CVSS: Critical advisory FG-IR-22-398 / CVE-2022-42475 on Dec 12, 2022. This blog details our initial investigation into this malware and additional IoCs identified during our on…
Is it possible to hack iCloud info for missing person (last known location of phone)
https://ift.tt/8n2Wqhw
Submitted January 15, 2023 at 06:09AM by beeksoner
via reddit https://ift.tt/spVYbZJ
https://ift.tt/8n2Wqhw
Submitted January 15, 2023 at 06:09AM by beeksoner
via reddit https://ift.tt/spVYbZJ
DLL Hijacking outside DllMain, using Spartacus
https://ift.tt/LI3smYB
Submitted January 15, 2023 at 01:47PM by h0wlett
via reddit https://ift.tt/foEjrVk
https://ift.tt/LI3smYB
Submitted January 15, 2023 at 01:47PM by h0wlett
via reddit https://ift.tt/foEjrVk
Pavel Tsakalidis - Personal Blog
DLL Hijacking using Spartacus, outside of DllMain
Exploiting DLL Hijacking vulnerabilities and running payloads outside DllMain
what do you think about that ?🧑💻🧠
https://ift.tt/8y3GwZk
Submitted January 16, 2023 at 04:11AM by devnatech
via reddit https://ift.tt/QYZRpmn
https://ift.tt/8y3GwZk
Submitted January 16, 2023 at 04:11AM by devnatech
via reddit https://ift.tt/QYZRpmn
Medium
How to start Penetration testing of Artificial Intelligence
Pentesting needs to evolve to find AI based risks
[CVE-2023-0179] Linux kernel stack buffer overflow in nftables: PoC and writeup
https://ift.tt/ubA5eaj
Submitted January 16, 2023 at 01:55PM by qwerty0x41
via reddit https://ift.tt/CqGl5do
https://ift.tt/ubA5eaj
Submitted January 16, 2023 at 01:55PM by qwerty0x41
via reddit https://ift.tt/CqGl5do
seclists.org
oss-sec: CVE-2023-0179: Linux kernel stack buffer overflow in nftables: PoC and writeup
Unauthenticated Configuration Export in Multiple WAGO Products
https://ift.tt/g93t0LU
Submitted January 16, 2023 at 04:22PM by g_e_r_h_a_r_d
via reddit https://ift.tt/Nd4y3hr
https://ift.tt/g93t0LU
Submitted January 16, 2023 at 04:22PM by g_e_r_h_a_r_d
via reddit https://ift.tt/Nd4y3hr
ONEKEY
🚨 WAGO Alert: Unauthorized Configuration Exports Discovered 🔒
Learn How to Keep Your Industrial Controllers Safe 👉
rsbkb: a Rust CLI tool to easily chain operations (CyberChef-like) through pipes. Other utils as a bonus.
https://ift.tt/kSqKrsj
Submitted January 17, 2023 at 03:28AM by alain_proviste
via reddit https://ift.tt/8dterzS
https://ift.tt/kSqKrsj
Submitted January 17, 2023 at 03:28AM by alain_proviste
via reddit https://ift.tt/8dterzS
GitHub
GitHub - trou/rsbkb: CLI tools to encode/decode things
CLI tools to encode/decode things. Contribute to trou/rsbkb development by creating an account on GitHub.
Expanding to /r/netsec! Fun 3min newsletter idea
http://icephishing.io
Submitted January 17, 2023 at 07:04AM by frenchfry_wildcat
via reddit https://ift.tt/AESqcNl
http://icephishing.io
Submitted January 17, 2023 at 07:04AM by frenchfry_wildcat
via reddit https://ift.tt/AESqcNl
Ice Phishing Newsletter
Get smarter about cybersecurity
The misadventures of SPF: Delivering SPF authenticated emails on behalf of the Ukrainian MoD, MIT and 1000+ others.
https://ift.tt/XqQG6vV
Submitted January 17, 2023 at 11:40AM by Jumpy_Resolution3089
via reddit https://ift.tt/2UnW1v7
https://ift.tt/XqQG6vV
Submitted January 17, 2023 at 11:40AM by Jumpy_Resolution3089
via reddit https://ift.tt/2UnW1v7
Caniphish
Scanning SPF Records For Severe Misconfigurations | CanIPhish
Understand why anyone can deliver SPF authenticated emails on behalf of these 1000+ organisations.
Introducing RPC Investigator
https://ift.tt/MjWhS0P
Submitted January 17, 2023 at 07:43PM by Gallus
via reddit https://ift.tt/lmbsGqZ
https://ift.tt/MjWhS0P
Submitted January 17, 2023 at 07:43PM by Gallus
via reddit https://ift.tt/lmbsGqZ
Trail of Bits Blog
Introducing RPC Investigator
A new tool for Windows RPC research By Aaron LeMasters Trail of Bits is releasing a new tool for exploring RPC clients and servers on Windows. RPC Investigator is a .NET application that builds on …
Creating a polymorphic malware using ChatGPT
https://ift.tt/AGXfonE
Submitted January 17, 2023 at 08:49PM by ES_CY
via reddit https://ift.tt/c8UIgvF
https://ift.tt/AGXfonE
Submitted January 17, 2023 at 08:49PM by ES_CY
via reddit https://ift.tt/c8UIgvF
Cyberark
Chatting Our Way Into Creating a Polymorphic Malware
Abstract ChatGPT took the world by storm being released less than two months ago, it has become prominent and is used everywhere, for a wide variety of tasks – from automation tasks to the...
Announcing the public beta of Caido, a BurpSuite alternative
https://ift.tt/MPOwTQn
Submitted January 17, 2023 at 09:39PM by TheSytten
via reddit https://ift.tt/Ox6jGJ3
https://ift.tt/MPOwTQn
Submitted January 17, 2023 at 09:39PM by TheSytten
via reddit https://ift.tt/Ox6jGJ3
Medium
Caido is now in public beta
We’re excited to announce the public beta of Caido!
AWS CloudTrail vulnerability: Undocumented API allows CloudTrail bypass | Datadog Security Labs
https://ift.tt/1iazyZX
Submitted January 17, 2023 at 09:33PM by RedTermSession
via reddit https://ift.tt/d6RvmP8
https://ift.tt/1iazyZX
Submitted January 17, 2023 at 09:33PM by RedTermSession
via reddit https://ift.tt/d6RvmP8
Datadoghq
AWS CloudTrail vulnerability: Undocumented API allows CloudTrail bypass
Public disclosure of a method to bypass CloudTrail for specific IAM actions.
Security audit of Git
https://ift.tt/WkXG2P0
Submitted January 18, 2023 at 01:20AM by joernchen
via reddit https://ift.tt/7okJZMa
https://ift.tt/WkXG2P0
Submitted January 18, 2023 at 01:20AM by joernchen
via reddit https://ift.tt/7okJZMa
X41 D-SEC
X41 Audited Git
X41 releases the audit report of Git
Hacking ICS Historians: The Pivot Point From IT to OT
https://ift.tt/kRobpVO
Submitted January 18, 2023 at 02:10AM by derp6996
via reddit https://ift.tt/CKcVSls
https://ift.tt/kRobpVO
Submitted January 18, 2023 at 02:10AM by derp6996
via reddit https://ift.tt/CKcVSls
Claroty
Hacking ICS Historians: The Pivot Point from IT to OT
Tailscale bug allowed a person to share nodes from other tailnets without auth
https://ift.tt/hzBJwC8
Submitted January 18, 2023 at 07:10AM by Security_Chief_Odo
via reddit https://ift.tt/4rYbU3K
https://ift.tt/hzBJwC8
Submitted January 18, 2023 at 07:10AM by Security_Chief_Odo
via reddit https://ift.tt/4rYbU3K
Tailscale
Security notifications affecting the Tailscale client and service If you’re directly affected by a security issue in Tailscale, and we have your contact information, we will contact you.
Nothing new under the Sun - Discovering and exploiting a CDE bug chain
https://ift.tt/ZmE6agQ
Submitted January 18, 2023 at 02:30PM by 0xdea
via reddit https://ift.tt/dEN4kQM
https://ift.tt/ZmE6agQ
Submitted January 18, 2023 at 02:30PM by 0xdea
via reddit https://ift.tt/dEN4kQM
hn security
Nothing new under the Sun - Discovering and exploiting a CDE bug chain - hn security
“What has been will be again, […]