Netsec – Telegram
Netsec
@RNetsec
7.44K subscribers
22.4K links
This channel posts the feed from r/netsec.
For any suggestions dm @streaak
Donate to keep the bot running https://www.paypal.me/akhilgv
Download Telegram
About
Blog
Apps
Platform
Join
Netsec
7.44K subscribers
Netsec
MailGoose: Your Solution to Curb E-mail Spoofing
https://ift.tt/CiEBAYW

Submitted July 15, 2024 at 11:24PM by kazet1234
via reddit https://ift.tt/H1z9JSo
cert.pl
MailGoose: Your Solution to Curb E-mail Spoofing
Protect organizations in your constituency from e-mail spoofing with our tool – mailgoose. In Poland it has already been used by over 25,000 users!
726 views
Netsec
Security's Achilles' Heel: Vulnerable Drivers on the Prowl
https://ift.tt/gNdqReS

Submitted July 16, 2024 at 01:35AM by thewatcher_
via reddit https://ift.tt/5w47RX2
Security Joes
Security's Achilles' Heel: Vulnerable Drivers on the Prowl
A notable trend in cyber threats nowadays is the exploitation of vulnerabilities in drivers through the Bring Your Own Vulnerable Driver (BYOVD) technique. BYOVD poses a significant risk as it allows attackers to bypass security measures and gain unrestricted…
714 views
Netsec
Collateral Damage: Kernel exploit for Xbox SystemOS using CVE-2024-30088
https://ift.tt/XRvNhW7

Submitted July 16, 2024 at 02:21AM by Titokhan
via reddit https://ift.tt/79qo06e
GitHub
GitHub - exploits-forsale/collateral-damage: Kernel exploit for Xbox SystemOS using CVE-2024-30088
Kernel exploit for Xbox SystemOS using CVE-2024-30088 - exploits-forsale/collateral-damage
696 views
Netsec
What Do the Developers Think of Your Security Program?
https://ift.tt/thqYCDX

Submitted July 15, 2024 at 10:22PM by Spriffy
via reddit https://ift.tt/hOdCpBK
Meetup
Login to Meetup | Meetup
Not a Meetup member yet? Log in and find groups that host online or in person events and meet people in your local community who share your interests.
699 views
Netsec
Pwn2Own: Pivoting from WAN to LAN to Attack a Synology BC500 IP Camera (Part 2)
https://ift.tt/EuzkNT6

Submitted July 16, 2024 at 04:47PM by sh0n1z
via reddit https://ift.tt/oJQw9sV
Claroty
Pwn2Own: Pivoting from WAN to LAN to Attack a Synology BC500 IP Camera, Part 2
Team82 demonstrates an attack exploiting a remote code execution vulnerability in Synology BC 500 IP cameras. This attack is part of a broader research project that involved exploiting a TP-Link ER605 router, and pivoting from there to the local network to…
741 views
Netsec
XenForo <= 2.2.15 RCE via CSRF (CVE-2024-38457, CVE-2024-38458)
https://ift.tt/Z8VjB0R

Submitted July 16, 2024 at 06:40PM by eg1x
via reddit https://ift.tt/tXKEsPr
Karmainsecurity
XenForo <= 2.2.15 (Widget::actionSave) Cross-Site Request Forgery Vulnerability | Karma(In)Security
This is the personal website of Egidio Romano, a very curious guy from Sicily, Italy. He's a computer security enthusiast, particularly addicted to webapp security.
711 views
Netsec
Local Privilege Escalation vulnerability found (CVE-2024-39708) in Delinea Privilege Manager (formerly Thycotic Privilege Manager).
https://www.cyberark.com/resources/threat-research-blog/identity-crisis-the-curious-case-of-a-delinea-local-privilege-escalation-vulnerability

Submitted July 17, 2024 at 05:08AM by jat0369
via reddit https://ift.tt/9FvD1bC
Cyberark
Identity Crisis: The Curious Case of a Delinea Local Privilege Escalation Vulnerability
During a recent customer engagement, the CyberArk Red Team discovered and exploited an Elevation of Privilege (EoP) vulnerability (CVE-2024-39708) in Delinea Privilege Manager (formerly Thycotic...
727 views
Netsec
How to Bypass Golang SSL Verification
https://ift.tt/Uhy6GQv

Submitted July 17, 2024 at 04:47AM by jat0369
via reddit https://ift.tt/GTbNYnf
Cyberark
How to Bypass Golang SSL Verification
Golang applications that use HTTPS requests have a built-in SSL verification feature enabled by default. In our work, we often encounter an application that uses Golang HTTPS requests, and we have...
740 views
Netsec
Furry hacking group SiegedSec announces breach of 2 Israeli companies
https://ift.tt/R01dnVl

Submitted July 17, 2024 at 09:11AM by Evropa_TheLastBattle
via reddit https://ift.tt/skuSPJD
The Daily Dot
‘Tip of the iceberg’: Furry hacking group SiegedSec announces breach of 2 Israeli companies
'This is only the tip of the iceberg of what we're working on.'
718 views
Netsec
Leveraging Automated Firmware Analysis with the Open-Source Firmware Analyzer EMBA
https://ift.tt/mHqvP34

Submitted July 17, 2024 at 06:27PM by _m-1-k-3_
via reddit https://ift.tt/FfhlIN6
Medium
Leveraging Automated Firmware Analysis with the Open-Source Firmware Analyzer EMBA
The Internet of Things (IoT) ecosystem as well as critical infrastructure represents a rapidly growing technology field that connects…
808 views
Netsec
Windows Installer Custom Actions Privilege Escalation Vulnerability
https://ift.tt/57znNhc

Submitted July 18, 2024 at 01:20PM by nibblesec
via reddit https://ift.tt/R3Ihqzp
794 views
Netsec
Attacking Connection Tracking Frameworks as used by VPN
https://ift.tt/3OwJ9WL

Submitted July 18, 2024 at 01:47PM by fo0
via reddit https://ift.tt/BcJux4w
800 views
Netsec
Respotter - a honeypot for Responder
https://ift.tt/qjaYBsy

Submitted July 18, 2024 at 02:37AM by doctormay6
via reddit https://ift.tt/Es3ZpJ9
GitHub
GitHub - lawndoc/Respotter: Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.
Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up. - lawndoc/Respotter
783 views
Netsec
/r/netsec's Q3 2024 Information Security Hiring Thread
OverviewIf you have open positions at your company for information security professionals and would like to hire from the /r/netsec user base, please leave a comment detailing any open job listings at your company.We would also like to encourage you to post internship positions as well. Many of our readers are currently in school or are just finishing their education.Please reserve top level comments for those posting open positions.Rules & GuidelinesInclude the company name in the post. If you want to be topsykret, go recruit elsewhere. Include the geographic location of the position along with the availability of relocation assistance or remote work.If you are a third party recruiter, you must disclose this in your posting.Please be thorough and upfront with the position details.Use of non-hr'd (realistic) requirements is encouraged.While it's fine to link to the position on your companies website, provide the important details in the comment.Mention if applicants should apply officially through HR, or directly through you.Please clearly list citizenship, visa, and security clearance requirements.You can see an example of acceptable posts by perusing past hiring threads.FeedbackFeedback and suggestions are welcome, but please don't hijack this thread (use moderator mail instead.)

Submitted July 19, 2024 at 06:57PM by netsec_burn
via reddit https://ift.tt/HKfrbky
Reddit
From the netsec community on Reddit
Explore this post and more from the netsec community
707 views
Netsec
PARODY: I survived CrowdStrike Gate - 20240719 | Swag Apparel
https://ift.tt/jDuFkA6

Submitted July 19, 2024 at 09:16PM by ShotokanZH
via reddit https://ift.tt/Gtr8K26
645 views
Netsec
Crowdstrike Outage brings down the Internet
https://ift.tt/BOiycsI

Submitted July 19, 2024 at 10:25PM by Altrntiv-to-security
via reddit https://ift.tt/yA7DiE4
DarkRelay
Crowdstrike Outage: Critical Services Impacted
Windows users have encountered a significant outage, part of a global outage. On July 19, 2024, Crowdstrike users experienced outage
707 views
Netsec
Electron JS ASAR Integrity Bypass
https://ift.tt/litjFBf

Submitted July 20, 2024 at 12:42AM by Ano_F
via reddit https://ift.tt/aTXUPrl
Medium
Electron JS ASAR Integrity Bypass
I recently created an Electron JS-based Windows and MacOS application. The newer version of Electron has Integrity detection which…
756 views
Netsec
RDP security consequences of TLS vs. NLA from a threat exposure perspective - GoSecure
https://ift.tt/ot9WiCE

Submitted July 20, 2024 at 04:24AM by Willsec
via reddit https://ift.tt/MxLsfgS
GoSecure
Navigating the RDP security consequences of TLS vs. NLA from a threat exposure perspective
This blogpost explores the choice of security protocols and their consequences RDP Security by navigating Transport Layer Security (TLS) and Network Level Authentication (NLA) of Remote Desktop Protocol (RDP). Attack Trends and Geographic Dynamics are explored…
757 views
Netsec
🚀 Excited to share my blog on Trusted Platform Computing!This blog aims to explain the complexities of #TPM, making them accessible and relevant to our daily tech interactions and possibly creating solutions around it.
https://ift.tt/qLAXaW7

Submitted July 21, 2024 at 07:17PM by L0u51f3r007
via reddit https://ift.tt/OlVstLh
S3curity Ninja
Trusted Platform Module (TPM)
Discover Trusted Platform Modules (TPMs) for boosted security in computing. Understand their history, functions, architecture and use-cases.
691 views
Netsec
Comprehensive Guide to Purchasing the Best NetFlow Analyzer 2024
https://ift.tt/UR2B9qd

Submitted July 22, 2024 at 12:03PM by Suitable_Grab8859
via reddit https://ift.tt/0PrGHQC
Trisul Network Analytics
Purchasing NetFlow Analyzer In 2024: A Comprehensive Guide - Trisul
Investing in a NetFlow Analyzer boosts operational excellence and ROI. This guide will help you find the right fit.
659 views
Netsec
A public database "The API Threat Landscape", summarizing information about publicly disclosed API security data breaches from 2022
https://ift.tt/IGANSyK

Submitted July 22, 2024 at 01:55PM by AlarmingApartment236
via reddit https://ift.tt/JwpWrRU
639 views