Adobe Flash Exploitation, Then and Now: From CVE-2015-5119 to CVE-2018-4878
http://ift.tt/2EcZdZq
Submitted February 09, 2018 at 08:01PM by dmchell
via reddit http://ift.tt/2sjXZGu
http://ift.tt/2EcZdZq
Submitted February 09, 2018 at 08:01PM by dmchell
via reddit http://ift.tt/2sjXZGu
reddit
Adobe Flash Exploitation, Then and Now: From... • r/netsec
17 points and 1 comments so far on reddit
Analyzing CVE-2018-6376 - Joomla!, Second Order SQL Injection
http://ift.tt/2EeQ7LT
Submitted February 09, 2018 at 07:03PM by anantshri
via reddit http://ift.tt/2siTaNn
http://ift.tt/2EeQ7LT
Submitted February 09, 2018 at 07:03PM by anantshri
via reddit http://ift.tt/2siTaNn
NotSoSecure
Analyzing CVE-2018-6376 - Joomla!, Second Order SQL Injection
We analyze the second order SQL Injection CVE-2018-6376 identified in Joomla!. We then attempt to exploit and automated the data extraction process.
Replicator - A Burp extension to help developers replicate pen test findings
http://ift.tt/2Eru7gf
Submitted February 09, 2018 at 09:47PM by netsecwarrior
via reddit http://ift.tt/2ERvKBs
http://ift.tt/2Eru7gf
Submitted February 09, 2018 at 09:47PM by netsecwarrior
via reddit http://ift.tt/2ERvKBs
portswigger.net
Replicator
Helps developers replicate findings discovered in pen tests.
osueta - exploit the OpenSSH User Enumeration Timing Attack
http://ift.tt/2H4J1Y3
Submitted February 09, 2018 at 10:14PM by howucan
via reddit http://ift.tt/2nMahTh
http://ift.tt/2H4J1Y3
Submitted February 09, 2018 at 10:14PM by howucan
via reddit http://ift.tt/2nMahTh
Week 6 in Information Security, 2018
http://ift.tt/2nOLmhS
Submitted February 09, 2018 at 11:58PM by undercomm
via reddit http://ift.tt/2nUm1Co
http://ift.tt/2nOLmhS
Submitted February 09, 2018 at 11:58PM by undercomm
via reddit http://ift.tt/2nUm1Co
Malgregator
InfoSec Week 6, 2018
A buffer overflow vulnerability in older Starcraft version enabled modders to create new maps, so Blizzard tasked reverse engineer to...
Advisories and Exploits - Shimo and PureVPN for macOS
http://ift.tt/2Bkjl9y
Submitted February 10, 2018 at 12:29AM by rotlogix_
via reddit http://ift.tt/2BNhdIg
http://ift.tt/2Bkjl9y
Submitted February 10, 2018 at 12:29AM by rotlogix_
via reddit http://ift.tt/2BNhdIg
GitHub
VerSprite/research
research - VerSprite Security Research
WEBINAR | HOW TO BUILD YOUR SECURITY AWARENESS PROGRAM PLAN
http://ift.tt/2Efte6V
Submitted February 10, 2018 at 02:19AM by Inkyandthebrain
via reddit http://ift.tt/2ETc93W
http://ift.tt/2Efte6V
Submitted February 10, 2018 at 02:19AM by Inkyandthebrain
via reddit http://ift.tt/2ETc93W
Habitu8
WEBINAR | How to build your security awareness program plan
Watch now to hear Jason show you how to build your security awareness program plan! You can even follow along with our free program plan template on our Strategy Guide Page.
Lesson almost learned: how not to use a driver to execute code with kernel privileges
http://ift.tt/2sgr45x
Submitted February 10, 2018 at 02:15AM by DerBootsMann
via reddit http://ift.tt/2EgO2uK
http://ift.tt/2sgr45x
Submitted February 10, 2018 at 02:15AM by DerBootsMann
via reddit http://ift.tt/2EgO2uK
Securelist - Information about Viruses, Hackers and Spam
Lesson almost learned: how not to use a driver to execute code with kernel privileges
At first, it looked like we’d found a zero-day local privilege escalation vulnerability for Windows, but the sample that was triggering Exploit Checker events turned out to be the clean signed executable file, part of the multiplayer online game.
Monero mining botnet operating on Nanopool uses its infected machines' IP addresses as worker names. : Monero
http://ift.tt/2Eco23L
Submitted February 10, 2018 at 02:49AM by DeleteMyOldAccount
via reddit http://ift.tt/2EfWEC7
http://ift.tt/2Eco23L
Submitted February 10, 2018 at 02:49AM by DeleteMyOldAccount
via reddit http://ift.tt/2EfWEC7
xmr.nanopool.org
Nanopool | Monero | Account
Account statistics. Check your hashrate, balance, payments.
LibreOffice Remote Arbitrary File Disclosure Vulnerability
http://ift.tt/2nSiQvN
Submitted February 10, 2018 at 02:21AM by boramalper
via reddit http://ift.tt/2G0owud
http://ift.tt/2nSiQvN
Submitted February 10, 2018 at 02:21AM by boramalper
via reddit http://ift.tt/2G0owud
GitHub
jollheef/libreoffice-remote-arbitrary-file-disclosure
libreoffice-remote-arbitrary-file-disclosure - Proof of concept of LibreOffice remote arbitrary file disclosure vulnerability
GitHub Shouldn't Allow Username Reuse
http://ift.tt/2EytZLR
Submitted February 10, 2018 at 04:25AM by speckz
via reddit http://ift.tt/2Eg0cZ9
http://ift.tt/2EytZLR
Submitted February 10, 2018 at 04:25AM by speckz
via reddit http://ift.tt/2Eg0cZ9
Donat Studios
Github's Total Security Facepalm
Free Ethical Hacking Course - Practice 3 - Network Scanning
http://ift.tt/2C9ufvt
Submitted February 10, 2018 at 04:18AM by gburu
via reddit http://ift.tt/2EeDxw5
http://ift.tt/2C9ufvt
Submitted February 10, 2018 at 04:18AM by gburu
via reddit http://ift.tt/2EeDxw5
en.gburu.net
Free Ethical Hacking Course - Practice 3 - Network Scanning - en.gburu.net
In the third free ethical hacking course, we will scan a network looking for open ports and vulnerabilities in them.
KDE Plasma command execution via label name in vfat volume
Patch of the week: https://i.imgur.com/8RtUI2L.pngReport https://www.kde.org/info/security/advisory-20180208-2.txtI'm the only one who is laughing hard at the moment?
Submitted February 10, 2018 at 04:02AM by Nhoya
via reddit http://ift.tt/2C9uc2L
Patch of the week: https://i.imgur.com/8RtUI2L.pngReport https://www.kde.org/info/security/advisory-20180208-2.txtI'm the only one who is laughing hard at the moment?
Submitted February 10, 2018 at 04:02AM by Nhoya
via reddit http://ift.tt/2C9uc2L
Is there any subreddit or forum in wich people discuss the hardware and new applications used in security forces and divisions?
Hi guys im currently working in IT for public security forces in another country and the hardware and software used here is a bit dated, i want to know if some of you know any place where i can find recent info on stuff regarding 911 or anti panic buttons for victims, or even hardware used by the personnel working in the streets. I dont know if this is the wrong sub but i dont know where else to ask.
Submitted February 10, 2018 at 05:50AM by puntero
via reddit http://ift.tt/2nWG17g
Hi guys im currently working in IT for public security forces in another country and the hardware and software used here is a bit dated, i want to know if some of you know any place where i can find recent info on stuff regarding 911 or anti panic buttons for victims, or even hardware used by the personnel working in the streets. I dont know if this is the wrong sub but i dont know where else to ask.
Submitted February 10, 2018 at 05:50AM by puntero
via reddit http://ift.tt/2nWG17g
reddit
Is there any subreddit or forum in wich people... • r/security
Hi guys im currently working in IT for public security forces in another country and the hardware and software used here is a bit dated, i want to...
Paskto - Passive Web Scanner
http://ift.tt/2sknfwl
Submitted February 10, 2018 at 02:02PM by howucan
via reddit http://ift.tt/2EWkmV6
http://ift.tt/2sknfwl
Submitted February 10, 2018 at 02:02PM by howucan
via reddit http://ift.tt/2EWkmV6
reddit
Paskto - Passive Web Scanner • r/netsec
2 points and 0 comments so far on reddit
'Bitcoin' arrests at Russian nuclear lab
http://ift.tt/2nO2zIg
Submitted February 10, 2018 at 05:37PM by imr2017
via reddit http://ift.tt/2EusXQW
http://ift.tt/2nO2zIg
Submitted February 10, 2018 at 05:37PM by imr2017
via reddit http://ift.tt/2EusXQW
BBC News
Russian nuclear scientists arrested for 'Bitcoin mining plot'
Reports say scientists at a Russian nuclear bomb factory tried to mine crypto-currencies.
Hackers hijack Nintendo Switch, show Linux loaded on console
http://ift.tt/2shzU2Z
Submitted February 10, 2018 at 09:04PM by NISMO1968
via reddit http://ift.tt/2BPPXcq
http://ift.tt/2shzU2Z
Submitted February 10, 2018 at 09:04PM by NISMO1968
via reddit http://ift.tt/2BPPXcq
Ars Technica
Hackers hijack Nintendo Switch, show Linux loaded on console
Public release of exploit could be a long way off, though.
calls from Russia and singapore
Have been recently receiving calls from Singapore multiple times a day as well as other 5 digit phone numbers from Russia and the U.S.? Today I finally decided to pick one up and it was a female with a strong accent asking if I was "XY" which happened to be my father initials( who owns the phone plan I am on). I responded "yes" and they promptly hung up. Should I be worried? I assume this is some sort of scam or somebody trying to breach my information. Anything I should do? Should I be worried?
Submitted February 11, 2018 at 02:14AM by bovinespecies
via reddit http://ift.tt/2Eh5seL
Have been recently receiving calls from Singapore multiple times a day as well as other 5 digit phone numbers from Russia and the U.S.? Today I finally decided to pick one up and it was a female with a strong accent asking if I was "XY" which happened to be my father initials( who owns the phone plan I am on). I responded "yes" and they promptly hung up. Should I be worried? I assume this is some sort of scam or somebody trying to breach my information. Anything I should do? Should I be worried?
Submitted February 11, 2018 at 02:14AM by bovinespecies
via reddit http://ift.tt/2Eh5seL
reddit
calls from Russia and singapore • r/security
Have been recently receiving calls from Singapore multiple times a day as well as other 5 digit phone numbers from Russia and the U.S.? Today I...
IoT security events and conferences for 2018
http://ift.tt/2DH1oB8
Submitted February 11, 2018 at 03:38AM by Iot_Security
via reddit http://ift.tt/2nQQIZX
http://ift.tt/2DH1oB8
Submitted February 11, 2018 at 03:38AM by Iot_Security
via reddit http://ift.tt/2nQQIZX
SecuriThings
IoT security events and conferences for 2018
We are now evaluating our participation in events and conferences for the upcoming year. To do this we’ve curated a list of all the relevant IoT Security events- meaning events that deal [...]
Question: What's the most recommended security software to protect my home machine?
I know there are lots of options, I'm familiar with Kaspersky, but I just don't know where to go to see legitimate analysis of which product I should be using. Thanks in advance!
Submitted February 11, 2018 at 03:29AM by theoneandonlypatriot
via reddit http://ift.tt/2nQSGJS
I know there are lots of options, I'm familiar with Kaspersky, but I just don't know where to go to see legitimate analysis of which product I should be using. Thanks in advance!
Submitted February 11, 2018 at 03:29AM by theoneandonlypatriot
via reddit http://ift.tt/2nQSGJS
reddit
Question: What's the most recommended security... • r/security
I know there are lots of options, I'm familiar with Kaspersky, but I just don't know where to go to see legitimate analysis of which product I...
Symposium on Securing the IoT Conference March 5th-7th San Francisco
http://ift.tt/2G3bCM4
Submitted February 11, 2018 at 01:07PM by Iot_Security
via reddit http://ift.tt/2H7zQGa
http://ift.tt/2G3bCM4
Submitted February 11, 2018 at 01:07PM by Iot_Security
via reddit http://ift.tt/2H7zQGa
The Daily Telescope
Symposium on Securing the IoT Conference March 5th-7th San Francisco
SAN FRANCISCO, CA, February 03, 2018 — Come March 5th -7th 2018 to the Crowne Plaza San Francisco Airport for the Symposium on Securing The IoT.Discoun…