A complete guide to penetrate into multiple targets using Armitage - Happy Hunting
http://ift.tt/2kN6HH8

Submitted December 23, 2017 at 11:53PM by drhydrogen1
via reddit http://ift.tt/2kMx6V8

Basic security for Linux
http://ift.tt/2kLtqDp

Submitted December 24, 2017 at 12:00AM by wewewawa
via reddit http://ift.tt/2BJ9wTR

PassGAN: A deep learning approach for password guessing
http://ift.tt/2yZEaSD

Submitted December 24, 2017 at 03:45AM by brannondorsey
via reddit http://ift.tt/2DD0YLF

RCE in Trend Micro Smart Protection Server
http://ift.tt/2CDAl7S

Submitted December 24, 2017 at 04:15AM by maximilianov
via reddit http://ift.tt/2l3hegE

Experimenting with the Audiocodes MP264 - Reverse shells, Firmware analysis and LEDE
http://ift.tt/2kNxi6O

Submitted December 24, 2017 at 02:08AM by crcthrsbatterystpl
via reddit http://ift.tt/2kOH8VQ

Thoughts about SS7 vulnerabilities and 2FA over SMS?
Hey guys, so recently I was reading articles about SMS being an insecure method of transmitting 2FA codes. This makes sense reading about the SS7 breaches and inherently social engineering also increases the risk of this being a 'bad' method of authentication.In fact if I understand this correctly this means SMS basically is not 'true' 2FA, since the whole point is to require something you HAVE and proves you HAVE it, if SMS is this insecure then it fails this litmus test.My biggest conundrum on this is recoverability, obviously they still need my Google password, which is rather long and secure, however it still opens a hole however small.However, closing that hole means that should my phone be lost/destroyed, my tablet/work PC/home PC and smattering of backup envelopes be lost/inaccessible (basically a natural disaster), I would lose everything.I guess this is kind of the point, and TECHNICALLY I could reach out to Google and see if I could get access again, but they are notoriously troublesome when it comes to this.What are your thoughts, is the risk with SS7/SMS vulnerabilities 'big' enough to warrant being extra paranoid, or is it largely fools gold? I am not an important person, nor am I rich, the likelyhood of someone directly targeting me is unlikely and all the computers I use on a daily basis belong to me. I also have Google Prompt setup so even if something did happen I would be able to select that it wasn't me/see a notification.I am pretty sure I am massively overthinking this, but figure I would ask the experts. Thanks for any help or clarification you can provide!

Submitted December 24, 2017 at 05:26AM by Vorteth
via reddit http://ift.tt/2poQlJe

Never Ending Security: Adapting the POC for CVE-2017-1000112 to Other Kernels
http://ift.tt/2zn7v9L

Submitted December 24, 2017 at 04:19AM by b4n1shed
via reddit http://ift.tt/2BGSxBJ

Learn about securing communication with secure shell while penetration testing in Kali Linux
http://ift.tt/2BLlZqg

Submitted December 24, 2017 at 10:06PM by drhydrogen1
via reddit http://ift.tt/2zp97jt

How I Got Paid $0 From the Uber Security Bug Bounty
http://ift.tt/2BuvTZa

Submitted December 25, 2017 at 02:14AM by jailbird
via reddit http://ift.tt/2DGwQPD

Compromise Remote Access Protocols using Metasploit - Happy Hunting
http://ift.tt/2DJQ5aY

Submitted December 25, 2017 at 06:02AM by drhydrogen1
via reddit http://ift.tt/2l61x8e

Think Twice Before Sharing On Social Media
http://ift.tt/2pqXMQ9

Submitted December 25, 2017 at 07:23AM by abr646
via reddit http://ift.tt/2DJipKE

PassGAN: A deep learning approach to password guessing
http://ift.tt/2yZEaSD

Submitted December 25, 2017 at 06:38AM by brannondorsey
via reddit http://ift.tt/2l5Wu81

If an ISP deletes your Ip address does that mean any site holding your Ip adress cant do anything ?
I live in Canada and just curios and wanted to, I hear all the time is if someone has your Ip address can trace you. But as I stated if your internet service provider deletes your Ip address which my Isp rogers says it does after a year you stop using their service, are your off the raydar ?edit: this not because i did anything illegal lol

Submitted December 25, 2017 at 10:00AM by jeff101001
via reddit http://ift.tt/2l6Th8a

Yahoo! Remote Code Execution via Spring Engine Server Side Template Injection
http://ift.tt/2zffiGE

Submitted December 25, 2017 at 01:20PM by chocoluvin
via reddit http://ift.tt/2Dbpan8

Kali Linux on your Pocket: Kali 2017.3 on GPD 7 mini-laptop
http://ift.tt/2DKGUqL

Submitted December 25, 2017 at 04:55PM by Orlin82
via reddit http://ift.tt/2kS5qP2

Machine Learning for Cybercriminals
http://ift.tt/2klG37J

Submitted December 25, 2017 at 08:31PM by alexander_polyakov
via reddit http://ift.tt/2kUFimy

How I Got Paid $0 From the Uber Security Bug Bounty [x-post from /programming]
http://ift.tt/2BuvTZa

Submitted December 26, 2017 at 04:37AM by ElectroNeutrino
via reddit http://ift.tt/2ByQ5ZW

Bad passwords - this one from the DISA STIG
Recently learned the “standard” DISA STIG compliant password is asdf1234ASDF!@#$16 characters4-Of-4 compliantAnd stupidly-simple to guess

Submitted December 26, 2017 at 08:11AM by volci
via reddit http://ift.tt/2C9R32j

Latest Virus Threats News - Cyware
http://ift.tt/2C6dvJH

Submitted December 26, 2017 at 04:32PM by cywarelabs12
via reddit http://ift.tt/2C7TzDV

Data Connectors Columbus - January 18, 2018
http://ift.tt/2DSoN23

Submitted December 26, 2017 at 05:01PM by cywarelabs12
via reddit http://ift.tt/2pBUfhZ

LTS SECURE CYBER SOC based on SOAR stack overcome today’s security Challenges
http://ltssoc.com/

Submitted December 26, 2017 at 05:42PM by hardiksoni28111988
via reddit http://ift.tt/2C9vpcd