ASP.NET View State Decoding
https://ift.tt/2GVrTDG
Submitted April 12, 2018 at 03:03PM by folliez
via reddit https://ift.tt/2HuRcNV
https://ift.tt/2GVrTDG
Submitted April 12, 2018 at 03:03PM by folliez
via reddit https://ift.tt/2HuRcNV
GitHub
yuvadm/viewstate
ASP.NET View State Decoder. Contribute to yuvadm/viewstate development by creating an account on GitHub.
Penetrating Pays: The Pornhub Story
https://ift.tt/2v7W1KD
Submitted April 12, 2018 at 04:50PM by ZephrX112
via reddit https://ift.tt/2GPFTmm
https://ift.tt/2v7W1KD
Submitted April 12, 2018 at 04:50PM by ZephrX112
via reddit https://ift.tt/2GPFTmm
ZeroSec - Adventures In Information Security
Penetrating Pays: The Pornhub Story
This post is to explain the techniques I've used to get to where I am and how I found my most recent $2500 bug on pornhub.
JSON Web Tokens for Burp Proxy
https://ift.tt/2HrYVw9
Submitted April 12, 2018 at 05:30PM by CoolUsernamesAreGone
via reddit https://ift.tt/2qoZkbw
https://ift.tt/2HrYVw9
Submitted April 12, 2018 at 05:30PM by CoolUsernamesAreGone
via reddit https://ift.tt/2qoZkbw
GitHub
mvetsch/JWT4B
JWT4B - JWT Support for Burp
Securing DNS across all of my devices with Pi-Hole + DNS-over-HTTPS + 1.1.1.1
https://ift.tt/2EFJk9j
Submitted April 12, 2018 at 05:24PM by Sjoerder
via reddit https://ift.tt/2IOc7Lq
https://ift.tt/2EFJk9j
Submitted April 12, 2018 at 05:24PM by Sjoerder
via reddit https://ift.tt/2IOc7Lq
Scott Helme
Securing DNS across all of my devices with Pi-Hole + DNS-over-HTTPS + 1.1.1.1
DNS is the protocol that makes the web work. It's how we convert easy to remember names like facebook.com into hard to remember IP addresses like 157.240.1.35 and others. Without it, the web wouldn't work but DNS has a problem, it's not secure. The Problem…
Introducing Snallygaster - a Tool to Scan for Secrets on Web Servers
https://ift.tt/2JCkrzd
Submitted April 12, 2018 at 06:28PM by al-maisan
via reddit https://ift.tt/2JF3vb2
https://ift.tt/2JCkrzd
Submitted April 12, 2018 at 06:28PM by al-maisan
via reddit https://ift.tt/2JF3vb2
reddit
Introducing Snallygaster - a Tool to Scan for Secrets... • r/netsec
1 points and 0 comments so far on reddit
Visual VPC Flow
https://ift.tt/2IjXiRu
Submitted April 12, 2018 at 06:56PM by tech-tramp
via reddit https://ift.tt/2JDqRhm
https://ift.tt/2IjXiRu
Submitted April 12, 2018 at 06:56PM by tech-tramp
via reddit https://ift.tt/2JDqRhm
Visual VPC Flow Logs | TotalCloud
Sign-up for TotalCloud closed beta to visualize AWS VPC flow logs
Scan For Security - is a professional penetration testing and security standards guiding portal. We will provide you with all required information and do our best to make your application secure and compliant with modern security standards.
https://ift.tt/2HyJouM
Submitted April 12, 2018 at 06:39PM by TechnologiesHive
via reddit https://ift.tt/2qqOXEe
https://ift.tt/2HyJouM
Submitted April 12, 2018 at 06:39PM by TechnologiesHive
via reddit https://ift.tt/2qqOXEe
Security In 5: Episode 215 - Ways To Detect A Hacker In Your Environment
https://ift.tt/2GX8mmb
Submitted April 12, 2018 at 06:37PM by BinaryBlog
via reddit https://ift.tt/2Hu5Yod
https://ift.tt/2GX8mmb
Submitted April 12, 2018 at 06:37PM by BinaryBlog
via reddit https://ift.tt/2Hu5Yod
Libsyn
Security In Five Podcast: Episode 215 - Ways To Detect A Hacker In Your Environment
On average it takes a business 180 days to detect a breach. Six months of a hacker walking around your systems, stealing data, planting malware and anything else they can. There are things you can look out for, abnormalities in your environment's behavior…
Security In 5: Episode 215 - Ways To Detect A Hacker In Your Environment
https://ift.tt/2GX8mmb
Submitted April 12, 2018 at 06:37PM by BinaryBlog
via reddit https://ift.tt/2Hu5Yod
https://ift.tt/2GX8mmb
Submitted April 12, 2018 at 06:37PM by BinaryBlog
via reddit https://ift.tt/2Hu5Yod
Libsyn
Security In Five Podcast: Episode 215 - Ways To Detect A Hacker In Your Environment
On average it takes a business 180 days to detect a breach. Six months of a hacker walking around your systems, stealing data, planting malware and anything else they can. There are things you can look out for, abnormalities in your environment's behavior…
Analyze VPC flow logs
https://ift.tt/2FSZ1P5
Submitted April 12, 2018 at 07:57PM by tech-tramp
via reddit https://ift.tt/2qqjz8z
https://ift.tt/2FSZ1P5
Submitted April 12, 2018 at 07:57PM by tech-tramp
via reddit https://ift.tt/2qqjz8z
TotalCloud Blog
Analyze VPC flow logs | Security | Performance - TotalCloud Blog
The VPC flow logs capture important information about the IP traffic to and from network interfaces, subnets and VPCs in the AWS infrastructure. They are used to monitor security by tracking traffic reaching and leaving the resources(instance, databases,…
Smashing Ethereum smart contracts for fun and real profit (conference paper)
https://ift.tt/2qqeLjB
Submitted April 12, 2018 at 07:49PM by berndtzl
via reddit https://ift.tt/2INNWgc
https://ift.tt/2qqeLjB
Submitted April 12, 2018 at 07:49PM by berndtzl
via reddit https://ift.tt/2INNWgc
Medium
HITB2018AMS: Smashing Smart Contracts for Fun and Real Profit
During my first year in university, I discovered Phrack magazine and the 1,746 infamous lines of ASCII text noscriptd “Smashing the Stack for…
GDPR Explained in under 4 Minutes | Training Video for Employees
https://ift.tt/2JDrmYK
Submitted April 12, 2018 at 08:17PM by Inkyandthebrain
via reddit https://ift.tt/2GSf1SQ
https://ift.tt/2JDrmYK
Submitted April 12, 2018 at 08:17PM by Inkyandthebrain
via reddit https://ift.tt/2GSf1SQ
Wistia
Habitu8 GDPR Animated Video
3 min 50 sec video
GDPR Explained in under 4 Minutes | Training Video for Employees
https://ift.tt/2JDrmYK
Submitted April 12, 2018 at 08:17PM by Inkyandthebrain
via reddit https://ift.tt/2GSf1SQ
https://ift.tt/2JDrmYK
Submitted April 12, 2018 at 08:17PM by Inkyandthebrain
via reddit https://ift.tt/2GSf1SQ
Wistia
Habitu8 GDPR Animated Video
3 min 50 sec video
Releasing Free Beta API for Zero-Day Phishing Detection based on Computer Vision.
https://app.phish.ai
Submitted April 12, 2018 at 08:32PM by jekapats
via reddit https://ift.tt/2GVG4bZ
https://app.phish.ai
Submitted April 12, 2018 at 08:32PM by jekapats
via reddit https://ift.tt/2GVG4bZ
reddit
Releasing Free Beta API for Zero-Day Phishing Detection... • r/netsec
1 points and 0 comments so far on reddit
What We Know And Don’t Know About Election Hacking
https://ift.tt/2Ez4shu
Submitted April 12, 2018 at 08:18PM by BS_Is_Annoying
via reddit https://ift.tt/2v4gmQQ
https://ift.tt/2Ez4shu
Submitted April 12, 2018 at 08:18PM by BS_Is_Annoying
via reddit https://ift.tt/2v4gmQQ
FiveThirtyEight
What We Know And Don’t Know About Election Hacking
Also, what we don't know we don't know.
A quick guide to JIT comparisons: answering if it is ever possible that (a== 1 && a ==2 && a==3) could evaluate to true in JavaScript.
https://ift.tt/2IOAhW3
Submitted April 12, 2018 at 09:13PM by RedmondSecGnome
via reddit https://ift.tt/2qqHnJH
https://ift.tt/2IOAhW3
Submitted April 12, 2018 at 09:13PM by RedmondSecGnome
via reddit https://ift.tt/2qqHnJH
Zero Day Initiative
Inverting Your Assumptions: A Guide to JIT Comparisons
Similar to many others that have spent an unhealthy amount of their life staring at a computer screen, I have back issues. Having an office setup with proper ergonomics is an obvious first step towards avoiding back pain, but I've also found that getting…
Separating app containers and DB networks
Security-wise, does it make sense to separate the application k8s containers VPC OR subnet from the infrastructure (mysql, etc) network?The infra network can be isolated from the internet and have strict ACL (container network is probably more relaxed)
Submitted April 12, 2018 at 10:11PM by yonatannn
via reddit https://ift.tt/2qrhYzD
Security-wise, does it make sense to separate the application k8s containers VPC OR subnet from the infrastructure (mysql, etc) network?The infra network can be isolated from the internet and have strict ACL (container network is probably more relaxed)
Submitted April 12, 2018 at 10:11PM by yonatannn
via reddit https://ift.tt/2qrhYzD
reddit
Separating app containers and DB networks • r/security
Security-wise, does it make sense to separate the application k8s containers VPC OR subnet from the infrastructure (mysql, etc) network? The...
Week 15 in Information Security, 2018
https://ift.tt/2qtf10F
Submitted April 12, 2018 at 09:57PM by undercomm
via reddit https://ift.tt/2IR609h
https://ift.tt/2qtf10F
Submitted April 12, 2018 at 09:57PM by undercomm
via reddit https://ift.tt/2IR609h
Malgregator
InfoSec Week 15, 2018
The U.S. Secret Service is warning about a new scam scheme where the crooks are intercepting new debit cards in the mail and replace the...
My Brief Career as a Facebook Bug Bounty Hunter | Issues with white hat programs
https://ift.tt/2JFb1mz
Submitted April 12, 2018 at 10:36PM by nkrva
via reddit https://ift.tt/2qpM32q
https://ift.tt/2JFb1mz
Submitted April 12, 2018 at 10:36PM by nkrva
via reddit https://ift.tt/2qpM32q
The Tyee
My Brief Career as a Facebook Bug Bounty Hunter | The Tyee
You, too, can poke holes in the social media giant's platform while giving up yet even more of your personal information.
XSS via unsanitized markdown output in pastebin.com
https://ift.tt/2HvNlAb
Submitted April 12, 2018 at 11:11PM by Nhoya
via reddit https://ift.tt/2GSvIJW
https://ift.tt/2HvNlAb
Submitted April 12, 2018 at 11:11PM by Nhoya
via reddit https://ift.tt/2GSvIJW
GitHub
Nhoya/PastebinMarkdownXSS
PastebinMarkdownXSS - pastebin.com XSS via unsanitized markdown function
Cops Around the Country Can Now Unlock iPhones
https://ift.tt/2EGJVrl
Submitted April 13, 2018 at 01:11AM by StevenTheBirdSeagull
via reddit https://ift.tt/2GSaFeh
https://ift.tt/2EGJVrl
Submitted April 13, 2018 at 01:11AM by StevenTheBirdSeagull
via reddit https://ift.tt/2GSaFeh
Motherboard
Cops Around the Country Can Now Unlock iPhones, Records Show
A Motherboard investigation has found that law enforcement agencies across the country have purchased GrayKey, a relatively cheap tool for bypassing the encryption on iPhones, while the FBI pushes again for encryption backdoors.