Patched Facebook Vulnerability Could Have Exposed Private Information About You and Your Friends
https://ift.tt/2K1f9xw
Submitted November 13, 2018 at 10:34PM by EvanConover
via reddit https://ift.tt/2QEZyq9
https://ift.tt/2K1f9xw
Submitted November 13, 2018 at 10:34PM by EvanConover
via reddit https://ift.tt/2QEZyq9
Blog
Patched Facebook Vulnerability Could Have Exposed Private Information About You and Your Friends | Imperva
In a previous blog we highlighted a vulnerability in Chrome that allowed bad actors to steal Facebook users’ personal information.
[Early-Access] Now on Steam! Squally, a Game to Teach Hacking Fundamentals
https://ift.tt/2QHjbhe
Submitted November 14, 2018 at 03:50AM by Aecial
via reddit https://ift.tt/2B4VtpC
https://ift.tt/2QHjbhe
Submitted November 14, 2018 at 03:50AM by Aecial
via reddit https://ift.tt/2B4VtpC
Steampowered
Squally on Steam
Squally is a 2D puzzle RPG game that teaches video game hacking -- WITHOUT boring lessons, lectures, nor the need for prior experience. Instead, Squally teaches hacking through fun engaging puzzles where learning is a by-product.
Hacking GMail's UX With From Fields - Another Phishing Vector
https://ift.tt/2PwbP3O
Submitted November 14, 2018 at 09:00AM by timcotten
via reddit https://ift.tt/2PqnocL
https://ift.tt/2PwbP3O
Submitted November 14, 2018 at 09:00AM by timcotten
via reddit https://ift.tt/2PqnocL
Cotten.IO
Hacking Gmail’s UX With From Fields
An Unexpected Consequence of a Bad Header
Clickjacking on myaccount.google.com worth $7,500
https://ift.tt/2qMEcMg
Submitted November 14, 2018 at 10:19AM by Mempodipper
via reddit https://ift.tt/2K2ZKNk
https://ift.tt/2qMEcMg
Submitted November 14, 2018 at 10:19AM by Mempodipper
via reddit https://ift.tt/2K2ZKNk
Why Open Bug Bounty Should Restrict Their Site
https://ift.tt/2FiJjxS
Submitted November 14, 2018 at 10:15AM by lawandordercandidate
via reddit https://ift.tt/2qMNU14
https://ift.tt/2FiJjxS
Submitted November 14, 2018 at 10:15AM by lawandordercandidate
via reddit https://ift.tt/2qMNU14
MUFASA.GQ
Why Open Bug Bounty Should Restrict Their Site
Open Bug Bounty should reconsider publicly listing the vulnrabilities they collect.
How I discovered XSS that affects over 20 uber subdomains (tool released)
https://ift.tt/2QGQ79H
Submitted November 14, 2018 at 07:11AM by fady_othman
via reddit https://ift.tt/2PsFFG3
https://ift.tt/2QGQ79H
Submitted November 14, 2018 at 07:11AM by fady_othman
via reddit https://ift.tt/2PsFFG3
Fady's Technical Blog
How I Discovered XSS that Affects around 20 Uber Subdomains
Hi again, Welcome my first bug bounty write up, I don't do bug bounty that much especially web bug bounties but it started to interest me lately so I decided to start looking for bugs in UBER. Disclaimer Before you start I highly recommend you read about…
DeepMasterPrints: Generating MasterPrints for Dictionary Attacks via Latent Variable Evolution
https://ift.tt/2qlmzAz
Submitted November 14, 2018 at 03:53PM by eberkut
via reddit https://ift.tt/2Ppze6E
https://ift.tt/2qlmzAz
Submitted November 14, 2018 at 03:53PM by eberkut
via reddit https://ift.tt/2Ppze6E
User Account Hijacking On DJI Drone Manufacturer by Check Point Reserach
https://ift.tt/2Flhh4u
Submitted November 14, 2018 at 03:15PM by Orlin82
via reddit https://ift.tt/2TclfQ7
https://ift.tt/2Flhh4u
Submitted November 14, 2018 at 03:15PM by Orlin82
via reddit https://ift.tt/2TclfQ7
Check Point Research
DJI Drone Vulnerability - Check Point Research
Research by: Oded Vanun, Dikla Barda and Roman Zaikin DJI is the world’s leader in the civilian drone and aerial imaging technology industry. Besides from consumers, though, it has also taken a large share of the corporate market, with customers coming from…
ZIP File Raider - Burp Extension for ZIP File Payload Testing
https://ift.tt/2B6uhXJ
Submitted November 14, 2018 at 04:43PM by catsec
via reddit https://ift.tt/2K3t6Lu
https://ift.tt/2B6uhXJ
Submitted November 14, 2018 at 04:43PM by catsec
via reddit https://ift.tt/2K3t6Lu
GitHub
destine21/ZIPFileRaider
ZIP File Raider - Burp Extension for ZIP File Payload Testing - destine21/ZIPFileRaider
[0day] Bypassing disabled exec functions in PHP via imap_open
https://ift.tt/2TaGq4V
Submitted November 14, 2018 at 06:32PM by i_bo0om
via reddit https://ift.tt/2Tf6GuO
https://ift.tt/2TaGq4V
Submitted November 14, 2018 at 06:32PM by i_bo0om
via reddit https://ift.tt/2Tf6GuO
GitHub
Bo0oM/PHP_imap_open_exploit
Bypassing disabled exec functions in PHP via imap_open - Bo0oM/PHP_imap_open_exploit
What is Metadata and why people should care about it
https://ift.tt/2FnNyZ0
Submitted November 14, 2018 at 08:13PM by TimeDistrict
via reddit https://ift.tt/2qJSqgC
https://ift.tt/2FnNyZ0
Submitted November 14, 2018 at 08:13PM by TimeDistrict
via reddit https://ift.tt/2qJSqgC
Surfshark
What Is Metadata and Why You Should Start Caring About It (updated) - Surfshark
Metadata reveals what might be contained in the data: the point of it is to make connections and provide context, show relationships and help understand them.
OSINT with gOSINT
https://ift.tt/2DBMPBy
Submitted November 14, 2018 at 09:56PM by mstfknn
via reddit https://ift.tt/2RUUgad
https://ift.tt/2DBMPBy
Submitted November 14, 2018 at 09:56PM by mstfknn
via reddit https://ift.tt/2RUUgad
PRISMA CSI
OSINT with gOSINT • PRISMA CSI
gOSINT is an open source intelligence gathering tool developed in Go programming language.
CVE-2018-8552 | Scripting Engine Memory Corruption Vulnerability
https://ift.tt/2qLHGhZ
Submitted November 14, 2018 at 11:02PM by jdrch
via reddit https://ift.tt/2QHTCN4
https://ift.tt/2qLHGhZ
Submitted November 14, 2018 at 11:02PM by jdrch
via reddit https://ift.tt/2QHTCN4
CVE-2018-8471 | Microsoft RemoteFX Virtual GPU miniport driver Elevation of Privilege Vulnerability
https://ift.tt/2qMsDVo
Submitted November 14, 2018 at 11:01PM by jdrch
via reddit https://ift.tt/2PxnZJK
https://ift.tt/2qMsDVo
Submitted November 14, 2018 at 11:01PM by jdrch
via reddit https://ift.tt/2PxnZJK
Security updates available for Flash Player | APSB18-39
https://ift.tt/2FmYXZ4
Submitted November 14, 2018 at 11:00PM by jdrch
via reddit https://ift.tt/2FmU6XO
https://ift.tt/2FmYXZ4
Submitted November 14, 2018 at 11:00PM by jdrch
via reddit https://ift.tt/2FmU6XO
Adobe
Adobe Security Bulletin
Security updates available for Flash Player
msf-autoshell: Give it a .nessus file and watch Metasploit shells rain upon ye
https://ift.tt/2PYOl6H
Submitted November 14, 2018 at 10:50PM by FlyingTriangle
via reddit https://ift.tt/2DkfHgW
https://ift.tt/2PYOl6H
Submitted November 14, 2018 at 10:50PM by FlyingTriangle
via reddit https://ift.tt/2DkfHgW
GitHub
DanMcInerney/msf-autoshell
Feed the tool a .nessus file and it will automatically get you MSF shell - DanMcInerney/msf-autoshell
CVE-2018-8544 | Windows VBScript Engine Remote Code Execution Vulnerability
https://ift.tt/2DmmWVm
Submitted November 14, 2018 at 11:40PM by jdrch
via reddit https://ift.tt/2Q0Fj92
https://ift.tt/2DmmWVm
Submitted November 14, 2018 at 11:40PM by jdrch
via reddit https://ift.tt/2Q0Fj92
reddit
r/netsec - CVE-2018-8544 | Windows VBScript Engine Remote Code Execution Vulnerability
0 votes and 0 comments so far on Reddit
Adventures in Fuzzing - NYU Talk 2018
https://www.youtube.com/watch?v=SngK4W4tVc0
Submitted November 14, 2018 at 04:56PM by gamozolabs
via reddit https://ift.tt/2B7QJjh
https://www.youtube.com/watch?v=SngK4W4tVc0
Submitted November 14, 2018 at 04:56PM by gamozolabs
via reddit https://ift.tt/2B7QJjh
YouTube
Adventures in Fuzzing - NYU Talk 2018
Get the slides and audio here: https://github.com/gamozolabs/adventures_in_fuzzing
Follow me on Twitter: https://twitter.com/gamozolabs
I gave a talk at NYU about some of the major tools I've worked on over the years and why they came to be.
Follow me on Twitter: https://twitter.com/gamozolabs
I gave a talk at NYU about some of the major tools I've worked on over the years and why they came to be.
CVE-2018-8553 | Microsoft Graphics Components Remote Code Execution Vulnerability
https://ift.tt/2PrTbtG
Submitted November 15, 2018 at 01:42AM by jdrch
via reddit https://ift.tt/2K4tx8k
https://ift.tt/2PrTbtG
Submitted November 15, 2018 at 01:42AM by jdrch
via reddit https://ift.tt/2K4tx8k
reddit
r/netsec - CVE-2018-8553 | Microsoft Graphics Components Remote Code Execution Vulnerability
0 votes and 6 comments so far on Reddit
CVE-2018-8553 | Microsoft Graphics Components Remote Code Execution Vulnerability
https://ift.tt/2PrTbtG
Submitted November 15, 2018 at 01:42AM by jdrch
via reddit https://ift.tt/2K4tx8k
https://ift.tt/2PrTbtG
Submitted November 15, 2018 at 01:42AM by jdrch
via reddit https://ift.tt/2K4tx8k
reddit
r/netsec - CVE-2018-8553 | Microsoft Graphics Components Remote Code Execution Vulnerability
0 votes and 6 comments so far on Reddit
Privilege Escalation in gVisor, Google's Container Sandbox
https://ift.tt/2FmcWOx
Submitted November 15, 2018 at 03:34AM by justicz
via reddit https://ift.tt/2OK1uvQ
https://ift.tt/2FmcWOx
Submitted November 15, 2018 at 03:34AM by justicz
via reddit https://ift.tt/2OK1uvQ
justi.cz
Privilege Escalation in gVisor, Google's Container Sandbox
tl;dr gVisor is Google’s sandboxing technology for containers running less-than-fully-trusted code. It’s a Golang reimplementation of the Linux kernel that r...