NuCypher KMS whitepaper: decentralized key management system. Call for comments and suggestions
http://ift.tt/2uzxqNi
Submitted July 19, 2017 at 10:41PM by michwill
via reddit http://ift.tt/2uD4vaM
http://ift.tt/2uzxqNi
Submitted July 19, 2017 at 10:41PM by michwill
via reddit http://ift.tt/2uD4vaM
Medium
NuCypher KMS: Decentralized key management system
We’re excited to share NuCypher KMS, a decentralized key management system (KMS) for public blockchains.
ARM Exploit Development beginners: "Process Memory and Memory Corruptions (Stack and Heap)"
http://ift.tt/2gLDVH0
Submitted July 20, 2017 at 03:40AM by maxxori
via reddit http://ift.tt/2trM3m7
http://ift.tt/2gLDVH0
Submitted July 20, 2017 at 03:40AM by maxxori
via reddit http://ift.tt/2trM3m7
Azeria-Labs
Process Memory and Memory Corruption
Anatomy of Ransomware Part 1: Chimera
http://ift.tt/2qb289N
Submitted July 20, 2017 at 04:28AM by NeedsMoreCarryHandle
via reddit http://ift.tt/2gLHTj6
http://ift.tt/2qb289N
Submitted July 20, 2017 at 04:28AM by NeedsMoreCarryHandle
via reddit http://ift.tt/2gLHTj6
hackers-arise
Anatomy of Ransomware, Part 1: Chimera | hackers-arise
Ransomware is a type of malware that has become almost epidemic in recent years. Consumers and businesses are being hit with this malware around the world. Afte...
Remote code execution in Source games via player fragging
http://ift.tt/2uKyRsN
Submitted July 20, 2017 at 06:46AM by OneUpSecurity
via reddit http://ift.tt/2tIEl2l
http://ift.tt/2uKyRsN
Submitted July 20, 2017 at 06:46AM by OneUpSecurity
via reddit http://ift.tt/2tIEl2l
Oneupsecurity
Ever get remote code execution by fragging a player?
Valve's Source SDK contained a buffer overflow vulnerability which allowed remote code execution on clients and servers. The vulnerability was exploited by fragging a player, which casued a specially crafted ragdoll model to be loaded. Multiple Source games…
Authenticating Email Using DKIM and ARC
http://ift.tt/2uzTWFZ
Submitted July 20, 2017 at 08:04AM by danwin
via reddit http://ift.tt/2u9RWRT
http://ift.tt/2uzTWFZ
Submitted July 20, 2017 at 08:04AM by danwin
via reddit http://ift.tt/2u9RWRT
ProPublica
Authenticating Email Using DKIM and ARC, or How We Analyzed the Kasowitz Emails
Last week we needed to authenticate some emails sent by the President’s lawyer, Marc Kasowitz. Here’s how we did it.
How to Pwn one of the CREST exam Postgres boxes
https://medium.com/@panagiotis84/a-penetration-testers-guide-to-postgresql-e0eafd1a1028?lipi=urn%3Ali%3Apage%3Ad_flagship3_feed%3BkQdiQJgtRUy3YVAgXSIn1g%3D%3D
Submitted July 20, 2017 at 12:20PM by johnsmithe99
via reddit https://www.reddit.com/r/netsec/comments/6oektf/how_to_pwn_one_of_the_crest_exam_postgres_boxes/?utm_source=ifttt
https://medium.com/@panagiotis84/a-penetration-testers-guide-to-postgresql-e0eafd1a1028?lipi=urn%3Ali%3Apage%3Ad_flagship3_feed%3BkQdiQJgtRUy3YVAgXSIn1g%3D%3D
Submitted July 20, 2017 at 12:20PM by johnsmithe99
via reddit https://www.reddit.com/r/netsec/comments/6oektf/how_to_pwn_one_of_the_crest_exam_postgres_boxes/?utm_source=ifttt
Medium
A Penetration Tester’s Guide to PostgreSQL
PostgreSQL is an open source database which can be found mostly in Linux operating systems. However it has great compatibility with…
Notes and Analysis for RE and Pwning tasks in CTFs
http://ift.tt/2udBIYe
Submitted July 20, 2017 at 10:00PM by Fuzz_Stati0n
via reddit http://ift.tt/2ttPIje
http://ift.tt/2udBIYe
Submitted July 20, 2017 at 10:00PM by Fuzz_Stati0n
via reddit http://ift.tt/2ttPIje
GitHub
jaybosamiya/security-notes
:notebook: Some security related notes. Contribute to jaybosamiya/security-notes development by creating an account on GitHub.
How I tricked Symantec with a Fake Private Key
http://ift.tt/2uCVWNo
Submitted July 20, 2017 at 10:49PM by pheedrus
via reddit http://ift.tt/2udhwFD
http://ift.tt/2uCVWNo
Submitted July 20, 2017 at 10:49PM by pheedrus
via reddit http://ift.tt/2udhwFD
reddit
How I tricked Symantec with a Fake Private Key • r/netsec
2 points and 0 comments so far on reddit
Disarming a home alarm using PandwaRF Rogue Pro – RF analysis tool for physical pentesters
https://www.youtube.com/watch?v=zKXKO7Zsa4Y
Submitted July 20, 2017 at 03:06PM by Tartopom06
via reddit http://ift.tt/2udtVtm
https://www.youtube.com/watch?v=zKXKO7Zsa4Y
Submitted July 20, 2017 at 03:06PM by Tartopom06
via reddit http://ift.tt/2udtVtm
YouTube
PandwaRF vs PandwaRF Rogue: Brute Force Attack
Are your alarm systems secure?
PandwaRF is a pocket-sized, portable RF analysis tool operating the sub-1 GHz range. It allows the capture, analysis and re-transmission of RF via an Android device or a Linux PC.
PandwaRF Rogue is an improved variant of the…
PandwaRF is a pocket-sized, portable RF analysis tool operating the sub-1 GHz range. It allows the capture, analysis and re-transmission of RF via an Android device or a Linux PC.
PandwaRF Rogue is an improved variant of the…
Limitations of Android AntiVirus Scanners
http://ift.tt/2uE11oW
Submitted July 21, 2017 at 12:20AM by _Z_
via reddit http://ift.tt/2udFzV8
http://ift.tt/2uE11oW
Submitted July 21, 2017 at 12:20AM by _Z_
via reddit http://ift.tt/2udFzV8
reddit
Limitations of Android AntiVirus Scanners • r/netsec
1 points and 0 comments so far on reddit
Building a Content Security Policy configuration with CSP Auditor
http://ift.tt/2voAjhI
Submitted July 21, 2017 at 12:47AM by becojo
via reddit http://ift.tt/2gO9QGQ
http://ift.tt/2voAjhI
Submitted July 21, 2017 at 12:47AM by becojo
via reddit http://ift.tt/2gO9QGQ
GoSecure
Building a Content Security Policy configuration with CSP Auditor - GoSecure
In this blog post, we discuss the basic strategy to integrate CSP into an existing website. It covers the theory and the new features of CSP Auditor.
Seccomp filter in Android O
http://ift.tt/2tLadTG
Submitted July 21, 2017 at 04:22AM by invapid
via reddit http://ift.tt/2uEIrNq
http://ift.tt/2tLadTG
Submitted July 21, 2017 at 04:22AM by invapid
via reddit http://ift.tt/2uEIrNq
Android Developers Blog
Seccomp filter in Android O
The latest Android and Google Play news and tips for app and game developers.
REcon 2017 slides
http://ift.tt/2ug5DR8
Submitted July 21, 2017 at 05:15AM by alain_proviste
via reddit http://ift.tt/2uO9nKW
http://ift.tt/2ug5DR8
Submitted July 21, 2017 at 05:15AM by alain_proviste
via reddit http://ift.tt/2uO9nKW
recon.cx
Slides
REcon is a computer security conference with a focus on reverse engineering and advanced exploitation techniques.
Investigating a 5 year old bug deep within the Windows kernel
http://ift.tt/2vpr4h2
Submitted July 21, 2017 at 06:18AM by 0xNemi
via reddit http://ift.tt/2ufOAg8
http://ift.tt/2vpr4h2
Submitted July 21, 2017 at 06:18AM by 0xNemi
via reddit http://ift.tt/2ufOAg8
www.triplefault.io
Breaking backwards compatibility: a 5 year old bug deep within Windows
A blog about general reverse engineering, security research, poking around Windows internals, and messing with the Intel x86/AMD64 architecture.
A simple Android app security checklist with links to testing instructions and best practices
http://ift.tt/2tkY9cH
Submitted July 21, 2017 at 09:27AM by berndtzl
via reddit http://ift.tt/2uggNFm
http://ift.tt/2tkY9cH
Submitted July 21, 2017 at 09:27AM by berndtzl
via reddit http://ift.tt/2uggNFm
GitHub
b-mueller/android_app_security_checklist
android_app_security_checklist - Android App Security Checklist
Black Hat Arsenal USA 2017 [UPDATED]
http://ift.tt/2slQNFF
Submitted July 21, 2017 at 10:10AM by bnchandrapal
via reddit http://ift.tt/2uFhWHx
http://ift.tt/2slQNFF
Submitted July 21, 2017 at 10:10AM by bnchandrapal
via reddit http://ift.tt/2uFhWHx
Medium
Black Hat Arsenal USA 2017
On June 1, 2017 @toolswatch announced the tools selected for Black Hat Arsenal USA 2017.
Briar - Darknet Messenger Releases Beta, Passes Security Audit
http://ift.tt/2uPDCBg
Submitted July 21, 2017 at 08:02PM by tovok7
via reddit http://ift.tt/2gQeMew
http://ift.tt/2uPDCBg
Submitted July 21, 2017 at 08:02PM by tovok7
via reddit http://ift.tt/2gQeMew
briarproject.org
Briar - Darknet Messenger Releases Beta, Passes Security Audit
Secure messaging, anywhere
SickOS 1.2 Walkthrough - a CTF/Boot2Root VulnHub vm that I worked on while studying for the OSCP. Enjoy! 😊
http://ift.tt/2uJkggg
Submitted July 21, 2017 at 09:57PM by InfoSecJim
via reddit http://ift.tt/2uQ6klB
http://ift.tt/2uJkggg
Submitted July 21, 2017 at 09:57PM by InfoSecJim
via reddit http://ift.tt/2uQ6klB
Jim Wilbur's Blog
SickOS 1.2 Walkthrough - VulnHub
SickOS 1.2 Walkthrough - VulnHub - Boot2Root. Step by step walkthrough of SickOS 1.2 from Vulnhub.com created by D4rk.
KLEE 1.4 is now available
http://ift.tt/2uJcqDA
Submitted July 21, 2017 at 11:33PM by Fuzz_Stati0n
via reddit http://ift.tt/2uitfVi
http://ift.tt/2uJcqDA
Submitted July 21, 2017 at 11:33PM by Fuzz_Stati0n
via reddit http://ift.tt/2uitfVi
GitHub
klee/klee
klee - KLEE Symbolic Virtual Machine
Inject All the Things - DLL injection
http://ift.tt/2ujTdWD
Submitted July 22, 2017 at 02:25AM by muhh198
via reddit http://ift.tt/2txrCUN
http://ift.tt/2ujTdWD
Submitted July 22, 2017 at 02:25AM by muhh198
via reddit http://ift.tt/2txrCUN
blog.deniable.org
Inject All the Things - Shut Up and Hack
Well, its 2017 and I’m writing about DLL injection. It could be worse. DLL injection is a technique used by legitimate software to add/extend …
Free Daily Dark Web Reports - New Hidden Services Discovered, What's Up/Down
http://ift.tt/2gQN5SS
Submitted July 22, 2017 at 02:22AM by jms_dot_py
via reddit http://ift.tt/2tOt5BC
http://ift.tt/2gQN5SS
Submitted July 22, 2017 at 02:22AM by jms_dot_py
via reddit http://ift.tt/2tOt5BC
darkweb.hunch.ly
Daily Dark Web Monitoring Reports from Hunchly
Receive free daily dark web monitoring reports that tell you of any newly discovered Tor hidden services.