Netsec – Telegram
Netsec
@RNetsec
7.46K subscribers
22.4K links
This channel posts the feed from r/netsec.
For any suggestions dm @streaak
Donate to keep the bot running https://www.paypal.me/akhilgv
Download Telegram
About
Blog
Apps
Platform
Join
Netsec
7.46K subscribers
Netsec
Case Story: Data theft by Average Joe
https://ift.tt/2PcRq2A

Submitted October 22, 2018 at 03:06PM by ellastiller8
via reddit https://ift.tt/2q4w3Ck
Neutral IT - IT Oversight and Independent Consulting
How Average Joe walked away with all his employer's data after being sacked. - Neutral IT - IT Oversight and Independent Consulting
The true story of Average Joe, who breached his employer's network and stole everything - in a single day, with almost no technical knowledge.
216 views
Netsec
Not Your Ordinary OSCP Review
https://ift.tt/2MR9Gtf

Submitted October 22, 2018 at 09:33PM by m4v3r1ck-
via reddit https://ift.tt/2q3jXt4
261 views
Netsec
Chromium Asking for Feedback on trivial subdomains: 883038 - Feedback: Eliding www/m subdomains - chromium
https://ift.tt/2MrckFM

Submitted October 23, 2018 at 04:15AM by nightkhaos
via reddit https://ift.tt/2D0eZpK
192 views
Netsec
PS4 messenger bug causes crash and boot loop.
https://ift.tt/2ENsHy2

Submitted October 23, 2018 at 11:09AM by steven-mctowelie
via reddit https://ift.tt/2OIJjvh
www.kaspersky.co.uk
Killer messages on Sony PlayStation 4 and how to deal with them
One short message is enough to send a Sony PS4 into an infinite restart loop. Here's how to deal with it.
186 views
Netsec
Here is a blog post showing some example uses of the tool I recently wrote, JTB Investigator. I added a lot of functionality since I posted the tool on here thanks to help from the awesome community. Check it out!
https://ift.tt/2Sb3Qqs

Submitted October 23, 2018 at 10:05AM by jbob133
via reddit https://ift.tt/2PeOUc8
Th3J0kr's Ramblings
JTB in Action | Th3J0kr's Ramblings
JTB Investigator Updates So my last post was about a new tool/framework I had written in python to make looking…
186 views
Netsec
RCE Cornucopia - AppSec USA 2018 CTF Writeup and Challenge Download
https://ift.tt/2NYLBRM

Submitted October 23, 2018 at 09:09AM by Dejanz
via reddit https://ift.tt/2OG5QZv
Dejandayoff
RCE Cornucopia - AppSec USA 2018 CTF Solution
Official solution for AppSec USA's RCE Cornucopia CTF challenge.
171 views
Netsec
Step by step guide to integrate opensource container security scanner (Anchore engine) with Jenkins
https://ift.tt/2PLRNOM

Submitted October 23, 2018 at 02:16PM by tahmed11
via reddit https://ift.tt/2PNviJ5
Medium
Step by step guide to integrate opensource container security scanner (Anchore engine) with CICD tool (Jenkins).
Continuous integration and continuous deployment can become a continuous pain for security folks. But it doesn’t have to be that way…
163 views
Netsec
I wrote a few short blog posts about T-pot, a multi-honeypot platform and the data i got from three honeypots in different parts of the world.
https://ift.tt/2NXpo6t

Submitted October 23, 2018 at 03:22PM by nexxic
via reddit https://ift.tt/2ApRsfr
Northsec Security Blog
Introduction to T-Pot - The all in one honeypot
Using honeypots to gather information and analyse the state of security on the Internet.we have all probably heard of the internet referred to as the new wild wild west, and you always read about new attacks, and bigger and bigger DDoS attacks flooding our…
185 views
Netsec
The MSRD3X40 patch debacle
https://ift.tt/2Pqfo7b

Submitted October 23, 2018 at 05:10PM by yuhong
via reddit https://ift.tt/2S93v7L
0Patch
Patching, Re-Patching and Meta-Patching the Jet Database Engine RCE (CVE-2018-8423)
Flawed Patches Will Always Happen, But We Can Change How They Get Fixed   by Mitja Kolsek, the 0patch Team TL;DR: Microsoft patched CV...
172 views
Netsec
A Loophole in the Firewall
https://ift.tt/2R7rwul

Submitted October 23, 2018 at 08:13PM by cyberpunkych
via reddit https://ift.tt/2PoKZtz
FBK CyberSecurity
A Loophole in the Firewall
When the Internet access is firewalled, but you badly need to transfer data, DNS tunneling comes to the rescue. Even at the strictest settings, DNS queriescan sometimes be allowed, and we can use this by responding to them from our server on the other side.…
181 views
Netsec
Amazon S3: How an ISP Exposed Administrative System Credentials
https://ift.tt/2CxVEuY

Submitted October 24, 2018 at 01:05AM by 33c3wegwerf
via reddit https://ift.tt/2yqYb7i
Upguard
Out of Pocket: How an ISP Exposed Administrative System Credentials
ISPs do more than provide internet service for individual customers-- they can also act as part of US critical infrastructure. See how one ISP exposed their administrative and root passwords to the public.
180 views
Netsec
DEFCON 26 Talk Recordings are now up!
https://www.youtube.com/playlist?list=PL9fPq3eQfaaD0cf5c7wkzMoj2kifzGO4U

Submitted October 23, 2018 at 08:10PM by thel3l
via reddit https://ift.tt/2PPapND
YouTube
DEF CON 26
Enjoy the videos and music you love, upload original content, and share it all with friends, family, and the world on YouTube.
209 views
Netsec
OSINT WITH RECON-NG
https://ift.tt/2JgK5d2

Submitted October 24, 2018 at 01:34AM by ka1nsha
via reddit https://ift.tt/2D0iFHU
PRISMA CSI
OSINT with Recon-ng • PRISMA CSI
One of these tools is Recon-ng, an OSINT gathering tool written in Python. For users conversant with Metasploit, using Recon-ng can be a walk in the park because of their striking similarities both in structure and interface appearance.
290 views
Netsec
jQuery-File-Upload <= 9.x Remote Code Execution (ImageMagick/Ghostnoscript)
https://ift.tt/2D05W85

Submitted October 24, 2018 at 11:17AM by Ambulong
via reddit https://ift.tt/2PhlcTS
Vulnspy Blog
jQuery-File-Upload <= 9.x Remote Code Execution (with ImageMagick/Ghostnoscript)
Author: @Ambulong jQuery-File-Upload is the second most starred jQuery project on GitHub, after the jQuery framework itself. The project was recently reported to have a three-year-old arbitrary file u
196 views
Netsec
Embedding Meterpreter in Android APK
https://ift.tt/2ykIxKR

Submitted October 24, 2018 at 01:10PM by CyberBullets
via reddit https://ift.tt/2R66LPI
Black Hills Information Security
Embedding Meterpreter in Android APK - Black Hills Information Security
Joff Thyer// Mobile is everywhere these days. So many applications in our daily life are being migrated towards a cloud deployment whereby the front end technology is back to the days of thin clients. As the pendulum swings yet again, our thin client can…
286 views
Netsec
FreeRTOS TCP/IP Stack Vulnerabilities Put A Wide Range of Devices at Risk of Compromise
https://ift.tt/2yNlpnB

Submitted October 24, 2018 at 02:44PM by IamNullByte
via reddit https://ift.tt/2OJPQWG
Zimperium Mobile Security Blog
FreeRTOS TCP/IP Stack Vulnerabilities Put A Wide Range of Devices at Risk of Compromise: From Smart Homes to Critical Infrastructure…
Researchers: Ori Karliner (@oriHCX) Relevant Operating Systems: FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), AWS FreeRTOS up to V1.3.1, WHIS OpenRTOS and SafeRTOS (With WHIS Connect middleware TCP/IP components) . CVE List: As a part of our ongoing IoT platform…
195 views
Netsec
Multiple 0days used by Magecart
https://ift.tt/2q6EnS5

Submitted October 24, 2018 at 03:01PM by dtdn
via reddit https://ift.tt/2EECzty
184 views
Netsec
Command and Control via DNS over HTTPS (DoH) for Cobalt Strike
https://ift.tt/2EEbIhm

Submitted October 24, 2018 at 06:59PM by ratfmuser
via reddit https://ift.tt/2EF2Urq
GitHub
SpiderLabs/DoHC2
DoHC2 allows the ExternalC2 library from Ryan Hanson (https://github.com/ryhanson/ExternalC2) to be leveraged for command and control (C2) via DNS over HTTPS (DoH). - SpiderLabs/DoHC2
199 views
Netsec
HoneyProcs: Going beyond honeyfiles for Deception on Endpoints
Deploying detection solutions on an endpoint host comes with constraints - limited availability of CPU, memory, disk and other resources, stability constraints, policy adherence and restrictions, the need to be non-intrusive to the user, the host OS and other applications on the host.In response to this, we present HoneyProcs, a new deception methodology (patent pending) and an all user space method that extends existing deception honeypot technology on endpoint hosts. HoneyProcs complements existing deception technology by using forged, controlled decoy processes to catch info stealers, Banking Trojans, rootkits and other generic malware, and it does so by exploiting a common trait exhibited by these malwares - code injection.By limiting its inspection footprint to only these decoy processes, HoneyProcs effectively addresses efficacy and performance concerns that otherwise constrain endpoint deployments.  Throughout this article, we further explain how the reduced and targeted inspection footprint can be leveraged to turn HoneyProcs into an intelligence gathering toolkit that can be used to write automated signatures for other antivirus and detection solutions to remediate infections on the system.​https://forums.juniper.net/t5/Threat-Research/HoneyProcs-Going-Beyond-Honeyfiles-for-Deception-on-Endpoints/ba-p/385830

Submitted October 24, 2018 at 03:28PM by anoopsaldanha
via reddit https://ift.tt/2yZ0A8U
209 views
Netsec
PhishAPI Tool - Rapid Deployment of Fake Sites and Maldocs with Notifications!
https://ift.tt/2ECXddE

Submitted October 24, 2018 at 11:49AM by IndySecMan
via reddit https://ift.tt/2ScoyWS
Blogspot
PhishAPI Tool - Rapid Deployment of Fake Sites and Maldocs with Notifications!
Intro / TL;DR Hey InfoSec Community! As the penetration testing lead, I got tired of setting up and tearing down environments each time...
209 views
Netsec
Reverse Engineering ESP8266 Firmware (Part 1)
https://ift.tt/2PgAnNa

Submitted October 24, 2018 at 05:22PM by BoredPentester
via reddit https://ift.tt/2SconLc
192 views