Looking to hire someone to help me
http://www.roblox.com
Submitted July 27, 2024 at 06:14PM by sugxrkat
via reddit https://ift.tt/TFWHkzV
http://www.roblox.com
Submitted July 27, 2024 at 06:14PM by sugxrkat
via reddit https://ift.tt/TFWHkzV
Roblox
Roblox is ushering in the next generation of entertainment. Imagine, create, and play together with millions of people across an infinite variety of immersive, user-generated 3D worlds.
ARM's Memory Corruption Detection - Memory Tag Extensions(MTE) Bypassed In Real World Conditions - Google's V8 Engine/Sandbox and the Linux Kernel via Speculative Execution Attacks.
https://ift.tt/L6q3F72
Submitted July 28, 2024 at 12:31AM by AdrianTeri
via reddit https://ift.tt/kDhdtB4
https://ift.tt/L6q3F72
Submitted July 28, 2024 at 12:31AM by AdrianTeri
via reddit https://ift.tt/kDhdtB4
BunkerWeb - The open-source and next-gen Web Application Firewall (WAF)
https://ift.tt/tJwBLya
Submitted July 26, 2024 at 09:06PM by bunkerity
via reddit https://ift.tt/V5Nr2l7
https://ift.tt/tJwBLya
Submitted July 26, 2024 at 09:06PM by bunkerity
via reddit https://ift.tt/V5Nr2l7
GitHub
GitHub - bunkerity/bunkerweb: 🛡️ Open-source and next-generation Web Application Firewall (WAF)
🛡️ Open-source and next-generation Web Application Firewall (WAF) - bunkerity/bunkerweb
CVE-2021-4440: A Linux CNA Case Study
https://ift.tt/BVov7ys
Submitted July 28, 2024 at 08:02PM by sadyetfly11
via reddit https://ift.tt/TuFr3bx
https://ift.tt/BVov7ys
Submitted July 28, 2024 at 08:02PM by sadyetfly11
via reddit https://ift.tt/TuFr3bx
grsecurity.net
grsecurity - CVE-2021-4440: A Linux CNA Case Study
This blog serves as a case study into how the newly-formed Linux CNA (CVE Numbering Authority) has affected Linux kernel vulnerability management, through the mishandling of a vulnerability we reported this year in the upstream 5.10 LTS kernel.
Help required from security researchers and pentesters
https://ift.tt/9uADw7M
Submitted July 28, 2024 at 08:40PM by Saurabhjdsingh
via reddit https://ift.tt/WSqR5D9
https://ift.tt/9uADw7M
Submitted July 28, 2024 at 08:40PM by Saurabhjdsingh
via reddit https://ift.tt/WSqR5D9
Google Docs
Security researcher Feedback
hey! We would love to have your feedback on below questions.
SAML: How it Works, Vulnerabilities and Common Attacks
https://ift.tt/auHSgOs
Submitted July 29, 2024 at 12:46PM by sadyetfly11
via reddit https://ift.tt/PSnLOG9
https://ift.tt/auHSgOs
Submitted July 29, 2024 at 12:46PM by sadyetfly11
via reddit https://ift.tt/PSnLOG9
VAADATA - Ethical Hacking Services
SAML: How it Works, Vulnerabilities and Common Attacks
What is SAML (Security Assertion Markup Language)? This article explains how it works, its vulnerabilities, common attacks as well as security best practices.
Blind Trust and Broken Fixes: The Ongoing Battle with LogoFAIL Vulnerabilities
https://ift.tt/g8pOSt6
Submitted July 29, 2024 at 04:11PM by sadyetfly11
via reddit https://ift.tt/4Ucm58z
https://ift.tt/g8pOSt6
Submitted July 29, 2024 at 04:11PM by sadyetfly11
via reddit https://ift.tt/4Ucm58z
www.binarly.io
Blind Trust and Broken Fixes: The Ongoing Battle with LogoFAIL Vulnerabilities
6 months after LogoFAIL disclosure, several downstream vulnerabilities remain unfixed and hundreds of insecure devices are still in the field. Read full research and analysis.
“EchoSpoofing” — A Massive Phishing Campaign Exploiting Proofpoint’s Email Protection to Dispatch Millions of Perfectly Spoofed Emails
https://ift.tt/txMWKHO
Submitted July 29, 2024 at 06:43PM by inntenoff
via reddit https://ift.tt/3tzE8Vd
https://ift.tt/txMWKHO
Submitted July 29, 2024 at 06:43PM by inntenoff
via reddit https://ift.tt/3tzE8Vd
Medium
“EchoSpoofing” — A Massive Phishing Campaign Exploiting Proofpoint’s Email Protection to Dispatch Millions of Perfectly Spoofed…
By Nati Tal (Head of Guardio Labs)
I recently got infected by a virus can anyone tell me if any of these listining ports are sus? i need to know that im 100% clean
https://ift.tt/ZplnM67
Submitted July 29, 2024 at 09:05PM by swify08
via reddit https://ift.tt/QvhLkNr
https://ift.tt/ZplnM67
Submitted July 29, 2024 at 09:05PM by swify08
via reddit https://ift.tt/QvhLkNr
Google Docs
here is the list
here is the list Image
PID
Address
Port
Protocol
Firewall Status svchost.exe (netsvcs -p)
3492
IPv4 unspecified
53
UDP
Allowed, restricted svchost.exe (netsvcs -p)
3492
172.25.16.1
67
UDP
Allowed, restricted svchost.exe (netsvcs -p)
3492
172.25.16.1
68
UDP…
PID
Address
Port
Protocol
Firewall Status svchost.exe (netsvcs -p)
3492
IPv4 unspecified
53
UDP
Allowed, restricted svchost.exe (netsvcs -p)
3492
172.25.16.1
67
UDP
Allowed, restricted svchost.exe (netsvcs -p)
3492
172.25.16.1
68
UDP…
Turning Outlook into a C2 client with a single registry value and the release of a new C2 framework
https://ift.tt/03bPqsw
Submitted July 29, 2024 at 11:58PM by oddvarmoe
via reddit https://ift.tt/49rWiMR
https://ift.tt/03bPqsw
Submitted July 29, 2024 at 11:58PM by oddvarmoe
via reddit https://ift.tt/49rWiMR
TrustedSec
Specula - Turning Outlook Into a C2 With One Registry Change
Engineering Learnings from the CrowdStrike Falcon Outage
https://ift.tt/9WQmNrX
Submitted July 30, 2024 at 08:24AM by mazen160
via reddit https://ift.tt/lqcXLMk
https://ift.tt/9WQmNrX
Submitted July 30, 2024 at 08:24AM by mazen160
via reddit https://ift.tt/lqcXLMk
Mazin Ahmed
Engineering Learnings from the CrowdStrike Falcon Outage
Lesson from the Hotjar vulnerability: HTTP-Only (XSS protection) is not effective if you have OAuth
https://ift.tt/UXNYyun
Submitted July 30, 2024 at 12:27AM by MoreMoreMoreM
via reddit https://ift.tt/PyX0HBd
https://ift.tt/UXNYyun
Submitted July 30, 2024 at 12:27AM by MoreMoreMoreM
via reddit https://ift.tt/PyX0HBd
salt.security
Over 1 Million websites are at risk of sensitive information leakage
What better way to showcase a new attack technique than with real-world examples? This blog post will do just that.
Uncovering Hardcoded Root Password in VStarcam CB73 Security Camera
https://ift.tt/btiTnfI
Submitted July 29, 2024 at 02:20AM by mattbrwn0
via reddit https://ift.tt/rtZiThI
https://ift.tt/btiTnfI
Submitted July 29, 2024 at 02:20AM by mattbrwn0
via reddit https://ift.tt/rtZiThI
Extending Burp Suite for fun and profit - The Montoya way - Part 6 - Burp Scanner
https://ift.tt/aNQYli9
Submitted July 30, 2024 at 07:32PM by 0xdea
via reddit https://ift.tt/e2Kxlrj
https://ift.tt/aNQYli9
Submitted July 30, 2024 at 07:32PM by 0xdea
via reddit https://ift.tt/e2Kxlrj
hn security
Extending Burp Suite for fun and profit - The Montoya way - Part 6 - hn security
Setting up the environment + Hello […]
Bloodhound Community Edition issue
https://ift.tt/AL2GaQJ
Submitted July 30, 2024 at 07:02PM by TheIron47Wolf
via reddit https://ift.tt/7cSN25E
https://ift.tt/AL2GaQJ
Submitted July 30, 2024 at 07:02PM by TheIron47Wolf
via reddit https://ift.tt/7cSN25E
Medium
The Ultimate Guide for BloodHound Community Edition (BHCE)
I’ve run into many interested hackers who want to learn how to use BloodHound, but struggle to get started. Here’s how to be effective!
Credential Disclosure in LastPass
https://ift.tt/kl34V0E
Submitted July 31, 2024 at 02:01PM by Acrobatic-Pen-9949
via reddit https://ift.tt/rq3VEn9
https://ift.tt/kl34V0E
Submitted July 31, 2024 at 02:01PM by Acrobatic-Pen-9949
via reddit https://ift.tt/rq3VEn9
MITMing the Xbox 360 Dashboard for Fun and RCE
https://ift.tt/7h28GKk
Submitted July 31, 2024 at 10:27PM by anxxa
via reddit https://ift.tt/DrsC213
https://ift.tt/7h28GKk
Submitted July 31, 2024 at 10:27PM by anxxa
via reddit https://ift.tt/DrsC213
landaire.net
MITMing the Xbox 360 Dashboard for Fun and RCE
The golden era of man-in-the-middle attacks
Create your own custom implant for Initial Access - Blog
https://ift.tt/oKEXy7A
Submitted July 31, 2024 at 11:42PM by PersonalState343
via reddit https://ift.tt/BykVJSp
https://ift.tt/oKEXy7A
Submitted July 31, 2024 at 11:42PM by PersonalState343
via reddit https://ift.tt/BykVJSp
Ribbit-ing Cybersecurity
Create your own custom implant
A few days ago I read a fantastic blog post by Forrest Kalser that piqued my curiosity. In the blog post, noscriptd ‘Deep Sea Phishing Pt.1’, Kalser ar
Patching client-side React JS to gain admin access to a Siemens cloud application
https://ift.tt/qL6ic7n
Submitted August 01, 2024 at 02:28AM by EatonZ
via reddit https://ift.tt/qcwNUAW
https://ift.tt/qL6ic7n
Submitted August 01, 2024 at 02:28AM by EatonZ
via reddit https://ift.tt/qcwNUAW
The New Stack
Plug Security Holes in React Apps That Can Lead to API Exploitation
Understanding the Risks of Client-Side Authentication: Why relying on client-side security isn’t enough.
From Limited file read to full access on Jenkins (CVE-2024-23897)
https://ift.tt/EbxS6Le
Submitted August 01, 2024 at 03:54PM by xkarezma
via reddit https://ift.tt/bHlrqQe
https://ift.tt/EbxS6Le
Submitted August 01, 2024 at 03:54PM by xkarezma
via reddit https://ift.tt/bHlrqQe
Ahmed Sherif
From Limited file read to full access on Jenkins (CVE-2024-23897)
TL;DR:
Wristband launches multi-tenant auth platform today. They are offering free SSO, RBAC and MFA.
https://ift.tt/lNEFdfg
Submitted August 01, 2024 at 06:57PM by jardiohead
via reddit https://ift.tt/mecYQFq
https://ift.tt/lNEFdfg
Submitted August 01, 2024 at 06:57PM by jardiohead
via reddit https://ift.tt/mecYQFq
Product Hunt
Wristband - Product Information, Latest Updates, and Reviews 2024 | Product Hunt
Wristband makes it fast and easy for B2B startups and SMBs to build multi-tenant customer authentication and access controls into their app.