Scarleteel operation ups their cloud game with new targets and tools
https://ift.tt/PsfUNLo

Submitted July 11, 2023 at 06:34PM by weseven
via reddit https://ift.tt/EJRnQUl

Exploiting XSS in hidden inputs and meta tags using popovertarget
https://ift.tt/ptAyvmC

Submitted July 11, 2023 at 07:45PM by albinowax
via reddit https://ift.tt/cDLU0jd

Weaknesses and Vulnerabilities explained - Everything you need to know in simple words.
https://ift.tt/cxSb0p8

Submitted July 12, 2023 at 12:55AM by D4b0zz
via reddit https://ift.tt/aRFocSg

/r/netsec's Q3 2023 Information Security Hiring Thread
OverviewIf you have open positions at your company for information security professionals and would like to hire from the /r/netsec user base, please leave a comment detailing any open job listings at your company.We would also like to encourage you to post internship positions as well. Many of our readers are currently in school or are just finishing their education.Please reserve top level comments for those posting open positions.Rules & GuidelinesInclude the company name in the post. If you want to be topsykret, go recruit elsewhere. Include the geographic location of the position along with the availability of relocation assistance or remote work.If you are a third party recruiter, you must disclose this in your posting.Please be thorough and upfront with the position details.Use of non-hr'd (realistic) requirements is encouraged.While it's fine to link to the position on your companies website, provide the important details in the comment.Mention if applicants should apply officially through HR, or directly through you.Please clearly list citizenship, visa, and security clearance requirements.You can see an example of acceptable posts by perusing past hiring threads.FeedbackFeedback and suggestions are welcome, but please don't hijack this thread (use moderator mail instead.)

Submitted July 12, 2023 at 03:10AM by netsec_burn
via reddit https://ift.tt/K1aZsxD

Bee-yond Capacity: Unauthenticated RCE in Extreme Networks/Aerohive Wireless APs - CVE-2023-35803
https://ift.tt/EmdHXZN

Submitted July 12, 2023 at 05:32AM by Acceptable-Doubt-878
via reddit https://ift.tt/uyTURjE

CVE-2023-36884 MS Office Zero-Day Vulnerability Exploited For Espionage - Detection and Mitigation
https://ift.tt/kDKaMBh

Submitted July 12, 2023 at 09:07AM by achilles4828
via reddit https://ift.tt/MSEtrmw

Mailgun: Public Security Disclosure
https://ift.tt/Way7tLK

Submitted July 12, 2023 at 02:51PM by Aggressive-Art5250
via reddit https://ift.tt/JxhlnPW

Bringing our HTTP Fuzzer Monsoon to the Next Level
https://ift.tt/OHt0gIS

Submitted July 12, 2023 at 07:50PM by RedTeamPentesting
via reddit https://ift.tt/vgszwSX

BusKill (Dead Man Switch) v0.7.0 released 💾
https://ift.tt/DVkWfqE

Submitted July 12, 2023 at 08:57PM by maltfield
via reddit https://ift.tt/2Uy1aks

hvext - Windbg extension implementing commands helpful to study Hyper-V on Intel processors
https://ift.tt/Nbl8kFo

Submitted July 13, 2023 at 12:23AM by Titokhan
via reddit https://ift.tt/bIy4cjJ

Using MiTMProxy as a noscriptable pre-proxy for BurpSuite
https://ift.tt/ezsiOEJ

Submitted July 13, 2023 at 02:02AM by rikvduijn
via reddit https://ift.tt/aARLxwi

Microsoft mitigates China-based threat actor Storm-0558 targeting of customer email | MSRC Blog
https://ift.tt/pQ4xwFH

Submitted July 13, 2023 at 03:44AM by hontouso
via reddit https://ift.tt/BuVMqKk

github.com/ldpreload/BlackLotus: BlackLotus UEFI Windows Bootkit
https://ift.tt/DYGlH3x

Submitted July 13, 2023 at 09:44AM by pheexio
via reddit https://ift.tt/CzUpN7m

Why are Prometheus queries hard? - Blog
https://ift.tt/P2hDyx7

Submitted July 13, 2023 at 12:10PM by Xadartt
via reddit https://ift.tt/ucZJafn

Neutralising AMSI System-Wide as an Admin
https://ift.tt/Kk3Gcqw

Submitted July 13, 2023 at 02:49PM by h0wlett
via reddit https://ift.tt/JSLz4lp

TeamTNT's latest campaign
https://ift.tt/UZOSDNF

Submitted July 13, 2023 at 05:49PM by Easy-Bumblebee2503
via reddit https://ift.tt/nvPNOG5

TeamTNT Reemerged with New Aggressive Campaign
https://ift.tt/UZOSDNF

Submitted July 13, 2023 at 05:52PM by Easy-Bumblebee2503
via reddit https://ift.tt/qLYIKoz

Telemedicine, smart intercom apps at risk from QuickBlox vulns
https://ift.tt/hCq6MSr

Submitted July 13, 2023 at 08:22PM by derp6996
via reddit https://ift.tt/ipCyGgo

Resource Based Constrained Delegation - Practical Guide for Active Directory Privilege Escalation and Lateral Movement
https://ift.tt/I75M6XH

Submitted July 13, 2023 at 08:47PM by S3cur3Th1sSh1t
via reddit https://ift.tt/bTLhMPE

Agile Approach to Mass Cloud Credential Harvesting and Crypto Mining Sprints Ahead
https://ift.tt/Dj2Gnrm

Submitted July 13, 2023 at 11:09PM by permis0
via reddit https://ift.tt/qwJsGjZ

We compared modern free or open source SAST tools, and this is what we found
https://ift.tt/jgTW35k

Submitted July 13, 2023 at 11:02PM by rukhrunnin
via reddit https://ift.tt/eMkNLcK