Sigma: Generic Signature Format for SIEM Systems
http://ift.tt/2lU7ln4
Submitted November 09, 2017 at 12:31AM by Extremite
via reddit http://ift.tt/2hVjyoY
http://ift.tt/2lU7ln4
Submitted November 09, 2017 at 12:31AM by Extremite
via reddit http://ift.tt/2hVjyoY
GitHub
Neo23x0/sigma
Generic Signature Format for SIEM Systems. Contribute to Neo23x0/sigma development by creating an account on GitHub.
Rapid7 vs KPMG Penetration Testing
Hi all,Our team is thinking of conducting a Vulnerability Assessment and Penetration test of our infrastructure and applications. I read some great reviews for Rapid7 but we've used KPMG/Deloitte in the past. Should we try out Rapid7? Has anyone contracted KPMG/Deloitte for conducting pen tests? Thank you for your responses in advance!
Submitted November 09, 2017 at 01:28AM by satiyabaazi
via reddit http://ift.tt/2zrsADX
Hi all,Our team is thinking of conducting a Vulnerability Assessment and Penetration test of our infrastructure and applications. I read some great reviews for Rapid7 but we've used KPMG/Deloitte in the past. Should we try out Rapid7? Has anyone contracted KPMG/Deloitte for conducting pen tests? Thank you for your responses in advance!
Submitted November 09, 2017 at 01:28AM by satiyabaazi
via reddit http://ift.tt/2zrsADX
reddit
Rapid7 vs KPMG Penetration Testing • r/security
Hi all, Our team is thinking of conducting a Vulnerability Assessment and Penetration test of our infrastructure and applications. I read some...
Cryptojacking craze that drains your CPU now done by 2,500 sites
http://ift.tt/2zsKBQh
Submitted November 09, 2017 at 01:51AM by NISMO1968
via reddit http://ift.tt/2j9nC8x
http://ift.tt/2zsKBQh
Submitted November 09, 2017 at 01:51AM by NISMO1968
via reddit http://ift.tt/2j9nC8x
Ars Technica
Cryptojacking craze that drains your CPU now done by 2,500 sites
Android apps with millions of Google Play downloads also crash the party.
afl-unicorn: Fuzzing Arbitrary Binary Code
http://ift.tt/2ztKXWw
Submitted November 09, 2017 at 02:09AM by njv299
via reddit http://ift.tt/2j9sFpv
http://ift.tt/2ztKXWw
Submitted November 09, 2017 at 02:09AM by njv299
via reddit http://ift.tt/2j9sFpv
Medium
afl-unicorn: Fuzzing Arbitrary Binary Code
American Fuzzy Lop (AFL) is awesome. It’s easily the best thing out there for quickly doing cutting-edge fuzzing analysis on command line…
How to exploit a PHP Object Instantiation (not Injection) vulnerability with blind XXE
http://ift.tt/2zI8jLm
Submitted November 09, 2017 at 02:44AM by websecdev
via reddit http://ift.tt/2AsGbZE
http://ift.tt/2zI8jLm
Submitted November 09, 2017 at 02:44AM by websecdev
via reddit http://ift.tt/2AsGbZE
reddit
How to exploit a PHP Object Instantiation (not... • r/netsec
2 points and 0 comments so far on reddit
Quick start with Kali Linux
http://ift.tt/2AmADPw
Submitted November 09, 2017 at 03:23AM by WTSxDev
via reddit http://ift.tt/2m6psYR
http://ift.tt/2AmADPw
Submitted November 09, 2017 at 03:23AM by WTSxDev
via reddit http://ift.tt/2m6psYR
Kali Linux Tutorial
Kali Linux Tutorial: Quick start with Kali Linux
The Linux distribution Kali has officially followed the Swiss hacker knife BackTrack. Kali Linux is just like BackTrack - a Linux especially for those who are interested in the (un) security of systems or want to recover data that seems to have disappeared.…
Week 44 in Information Security, 2017
http://ift.tt/2jbocmg
Submitted November 09, 2017 at 03:11AM by undercomm
via reddit http://ift.tt/2hm4NyA
http://ift.tt/2jbocmg
Submitted November 09, 2017 at 03:11AM by undercomm
via reddit http://ift.tt/2hm4NyA
Malgregator
InfoSec Week 44, 2017
There are at least 14 newly discovered vulnerabilities in the Linux kernel USB subsystem. The vulnerabilities were found by the Google...
Cryptojacking craze that drains your CPU now done by 2,500 sites
http://ift.tt/2hUWhDQ
Submitted November 09, 2017 at 05:02AM by Boris740
via reddit http://ift.tt/2Am9PPl
http://ift.tt/2hUWhDQ
Submitted November 09, 2017 at 05:02AM by Boris740
via reddit http://ift.tt/2Am9PPl
Ars Technica
Cryptojacking craze that drains your CPU now done by 2,500 sites
Android apps with millions of Google Play downloads also crash the party.
Wİ-Fi De-authentication Attack
http://ift.tt/2helzMe
Submitted November 09, 2017 at 06:15AM by berkdusunurx
via reddit http://ift.tt/2m6eBOL
http://ift.tt/2helzMe
Submitted November 09, 2017 at 06:15AM by berkdusunurx
via reddit http://ift.tt/2m6eBOL
www.berkdusunur.net
Wi-Fi DE-authentication Attack
Disconnecting can be done by sending De-authentication packets to a device connected to a network. ATTACK Le...
Oh Brother: Hackers can crash your unpatched printers – researchers
http://ift.tt/2m0XdL7
Submitted November 09, 2017 at 06:39AM by yourbasicgeek
via reddit http://ift.tt/2hUiUrZ
http://ift.tt/2m0XdL7
Submitted November 09, 2017 at 06:39AM by yourbasicgeek
via reddit http://ift.tt/2hUiUrZ
www.theregister.co.uk
Oh Brother: Hackers can crash your unpatched printers – researchers
DoSsing for fun and profit not just a 'nuisance', they warn
So did you include your computer monitors in your risk assessment? Better add it now!
http://ift.tt/2yjvsPQ
Submitted November 09, 2017 at 07:58AM by chull2058
via reddit http://ift.tt/2AwwrxJ
http://ift.tt/2yjvsPQ
Submitted November 09, 2017 at 07:58AM by chull2058
via reddit http://ift.tt/2AwwrxJ
SecureReading
A Monitor Darkly – Attack on Monitors Bypasses your Computer Security!
A Monitor Darkly, an attack on computer monitors, now wakes up the industry for further introspection.We were concerned about the Computer security for a while now. During a security review or assessments, how many of us included monitors?
The author of the KRACKATTACK exploit released source to allow people to test their own networks
http://ift.tt/2yFNY9e
Submitted November 09, 2017 at 07:43AM by chull2058
via reddit http://ift.tt/2yiYDCr
http://ift.tt/2yFNY9e
Submitted November 09, 2017 at 07:43AM by chull2058
via reddit http://ift.tt/2yiYDCr
GitHub
vanhoefm/krackattacks-noscripts
Contribute to krackattacks-noscripts development by creating an account on GitHub.
The Year Ahead in Cybersecurity
http://ift.tt/2zs12vW
Submitted November 09, 2017 at 08:08AM by julian88888888
via reddit http://ift.tt/2m6mXpx
http://ift.tt/2zs12vW
Submitted November 09, 2017 at 08:08AM by julian88888888
via reddit http://ift.tt/2m6mXpx
Bloomberg
The Year Ahead in Cybersecurity
Endgame Malware Researcher Amanda Rousseau discusses the greatest cyber threats facing business, government and individuals in 2018 at The Year Ahead Summit at Bloomberg headquarters in New York. (Source: Bloomberg)
Security Now 636 ROCA Pain | TWiT.TV
http://ift.tt/2zqtyy8
Submitted November 09, 2017 at 08:45AM by dmp1ce
via reddit http://ift.tt/2hWFosc
http://ift.tt/2zqtyy8
Submitted November 09, 2017 at 08:45AM by dmp1ce
via reddit http://ift.tt/2hWFosc
TWiT.tv
Security Now 636 ROCA Pain | TWiT.TV
This week we discuss the inevitable dilution in the value of code signing, a new worrisome cross-site privacy leakage, is Unix embedded in all our motherboards? The ongoing applica…
Risk Consulting – Security Services – SDB World
http://ift.tt/2hmzK5S
Submitted November 09, 2017 at 11:32AM by sdbworld
via reddit http://ift.tt/2jcDQxC
http://ift.tt/2hmzK5S
Submitted November 09, 2017 at 11:32AM by sdbworld
via reddit http://ift.tt/2jcDQxC
SDB World
Risk Consulting – Security Services – SDB World
Risk Consulting provides security services, Crisis Management , Assist management, Threat and Vulnerability Assessments.
The art of iOS and iCloud forensics
http://ift.tt/2imQOF3
Submitted November 09, 2017 at 12:19PM by numberbuzy
via reddit http://ift.tt/2hVQg9Y
http://ift.tt/2imQOF3
Submitted November 09, 2017 at 12:19PM by numberbuzy
via reddit http://ift.tt/2hVQg9Y
Powershell Socks5 Proxy
http://ift.tt/2zuLRSE
Submitted November 09, 2017 at 11:55AM by p3nt4
via reddit http://ift.tt/2iHkyg0
http://ift.tt/2zuLRSE
Submitted November 09, 2017 at 11:55AM by p3nt4
via reddit http://ift.tt/2iHkyg0
GitHub
p3nt4/Invoke-SocksProxy
Socks proxy server using powershell. Supports local and reverse connections for pivoting. - p3nt4/Invoke-SocksProxy
Remember Cisco is against TLS 1.3? Look at their unsecure switches
http://ift.tt/2mDYHqi
Submitted November 09, 2017 at 02:22PM by rediii123
via reddit http://ift.tt/2zJf3IK
http://ift.tt/2mDYHqi
Submitted November 09, 2017 at 02:22PM by rediii123
via reddit http://ift.tt/2zJf3IK
blogs@Cisco - Cisco Blogs
Cisco PSIRT – Mitigating and Detecting Potential Abuse of Cisco Smart Install Feature
A Cisco Security Response alerts about possible abuse of the Smart Install feature. While not considered a vulnerability, the Response provides guidance on how to protect their networks against abuse.
Where there's a JTAG, there's a way: obtaining full system access via USB. (Uses Intel ME)
http://ift.tt/2xTznBQ
Submitted November 09, 2017 at 04:46PM by joosto
via reddit http://ift.tt/2zthj3Z
http://ift.tt/2xTznBQ
Submitted November 09, 2017 at 04:46PM by joosto
via reddit http://ift.tt/2zthj3Z
Netflix scam detected
http://ift.tt/2yK0l3Z
Submitted November 09, 2017 at 06:14PM by 3f0x9
via reddit http://ift.tt/2jdt7mL
http://ift.tt/2yK0l3Z
Submitted November 09, 2017 at 06:14PM by 3f0x9
via reddit http://ift.tt/2jdt7mL
IT SECURITY GURU
Netflix scam detected - IT SECURITY GURU
Millions of people who hold a Netflix account are currently exposed to the latest email phishing scam that is telling users that their account is suspended due to a problem validating their credit cards. Beware – this is a scam. View Full Story ORIGINAL SOURCE:…
Domain name permutation engine for detecting typo squatting, phishing and corporate espionage
http://ift.tt/1SheO7I
Submitted November 09, 2017 at 06:50PM by speckz
via reddit http://ift.tt/2m8ZDri
http://ift.tt/1SheO7I
Submitted November 09, 2017 at 06:50PM by speckz
via reddit http://ift.tt/2m8ZDri
GitHub
elceef/dnstwist
Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation - elceef/dnstwist