Horse Shell: A Deep Dive into a Chinese APT Group's TP-Link Router Implant
https://ift.tt/VE5WQbd

Submitted May 16, 2023 at 04:47PM by Megabeets
via reddit https://ift.tt/xXv2tPi

Respawning PyPI Malware: Attackers leveraging automation to republish malware packages after takedown
https://ift.tt/eC5V9mH

Submitted May 17, 2023 at 12:12AM by louis11
via reddit https://ift.tt/JaUbI1n

web2shell - Automate converting webshells into reverse shells
https://ift.tt/ai26NwR

Submitted May 17, 2023 at 03:39AM by def__init___self
via reddit https://ift.tt/1foq0bZ

“Malverposting” — With Over 500K Estimated Infections, Facebook Ads Fuel This Evolving Stealer Campaign
https://ift.tt/RLzJvfy

Submitted May 17, 2023 at 04:41PM by lowlet3443
via reddit https://ift.tt/jABvCkD

(Duplicate from /r/redteamsec) Active Directory Spotlight: Attacking The Microsoft Configuration Manager (SCCM/MECM)
https://ift.tt/vzf6Oyd

Submitted May 17, 2023 at 06:19PM by 0xcsandker
via reddit https://ift.tt/7r69bmH

After 8 years of consulting, I'm leaving. Because it doesn't align the Hacker spirit.
https://ift.tt/Q9fau3o

Submitted May 17, 2023 at 07:00PM by chaign_c
via reddit https://ift.tt/mSuNojf

Bug bounties are broken - the story of "i915" bug, ChromeOS + Intel bounty programs, and beyond
https://ift.tt/pJDEYtX

Submitted May 17, 2023 at 08:48PM by Adam_pi3
via reddit https://ift.tt/g4l2OMH

Arbitrary email forgery in Webflow [PDF]
https://ift.tt/sOn6FNI

Submitted May 17, 2023 at 08:30PM by Gallus
via reddit https://ift.tt/rZ0QzeK

PASTIS - a Python framework for ensemble fuzzing
https://ift.tt/QX8BZ24

Submitted May 17, 2023 at 11:25PM by Gallus
via reddit https://ift.tt/BefTWcE

Security Advisory: Unauthenticated Remote Command Execution in Multiple WAGO Products
https://ift.tt/XYNrG93

Submitted May 17, 2023 at 11:02PM by g_e_r_h_a_r_d
via reddit https://ift.tt/Jy3sODC

From GitHub to Account Takeover: Misconfigured Actions Place GCP & AWS Accounts at Risk - Rezonate
https://ift.tt/T58Nhq6

Submitted May 18, 2023 at 05:32PM by Or1rez
via reddit https://ift.tt/os3t4am

Walking the Tightrope: Maximizing Information Gathering while Avoiding Detection for Red Teams
https://ift.tt/bAMswPr

Submitted May 18, 2023 at 10:06PM by HackingLZ
via reddit https://ift.tt/YA5O4e6

Off-Boarding Cloud Builders and Security Practioners Poses Challenges for Companies With Cloud Environments
https://ift.tt/gwXMZLt

Submitted May 18, 2023 at 11:15PM by randallvancity
via reddit https://ift.tt/kaMzTq0

OSINT Industries - 180+ modules to do OSINT from an email address, free beta
https://ift.tt/Hs50zZC

Submitted May 19, 2023 at 03:18AM by mxrchreborn
via reddit https://ift.tt/DZpFcOj

15 Most Loved ASP .Net Development Tools
https://ift.tt/8L3E6Rd

Submitted May 19, 2023 at 12:49PM by CaptainonHoliday
via reddit https://ift.tt/dSDoQHm

Automate the process of discovering and exploiting ESC1 & ESC8 ADCS vulnerabilities 🔥
https://ift.tt/xYcWXeM

Submitted May 19, 2023 at 02:51PM by S3cur3Th1sSh1t
via reddit https://ift.tt/FWoxi3r

Release 0.2 · PyCript BurpSuite Extension
https://ift.tt/Xk4WbVN

Submitted May 19, 2023 at 11:00PM by Ano_F
via reddit https://ift.tt/QUgm9yD

Moderator Applications Open
Hello /r/netsec,I am excited to announce that we are opening up applications for new moderators to join the existing moderation team. As our community continues to expand, we want to ensure that we maintain the quality and integrity of the content shared here.If you are passionate about information security and have a strong desire to help maintain and foster community, we encourage you to apply!Preferred qualifications:A history of posting links and/or comments to /r/netsec, demonstrating your active participation in the community.At least 3 years of academic or professional experience in information security.Not involved with the marketing team of any major vendor, to ensure unbiased moderation.Have read and agree with the /r/netsec posting guidelines.Application Process:To apply, please submit the following information via ModMail:Briefly describe your experience in information security, including any relevant certifications or qualifications.Explain your history of posting and participating in the /r/netsec community.Confirm that you are not involved with the marketing team of any major vendor.Describe why you want to become a moderator for /r/netsec and how you can contribute to maintaining and enhancing the quality of our community.Applying shouldn't feel like a chore; ~1 paragraph per question is more than enough. We'll review your application and /r/netsec posting history before deciding.New moderator selections will be announced on May 31st.

Submitted May 20, 2023 at 02:41AM by sanitybit
via reddit https://ift.tt/hb5QYod

PoC for Decrypting SAP Cloud Connector SSFS: Utilizing 'getRecord' Function to Decrypt SSFS Properties without Information of Encryption Algorithm
https://ift.tt/4fVU6Do

Submitted May 20, 2023 at 08:22PM by vah_13
via reddit https://ift.tt/kjGe1xT

Cisco Small Business Series Switches Buffer Overflow Vulnerabilities
https://ift.tt/tyaAKco

Submitted May 21, 2023 at 12:32AM by mstfknn
via reddit https://ift.tt/8p5fn06

PGP signatures on PyPI: worse than useless
https://ift.tt/Uw7kjRs

Submitted May 21, 2023 at 09:19PM by yossarian_flew_away
via reddit https://ift.tt/M7Agyk1