0 votes and 1 comment so far on Reddit

The Exploit Database - Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, Security Articles, Tutorials and more.

Practical tcpdump examples that gives you maximum packet carving in the minimum amount of time. Includes numerous examples and explanations ranging from basic to advanced—including how to isolate hosts, networks, and specific protocols.

This is our story of exploiting caching Domain Name System (DNS) servers to break network segregation.

901 votes and 138 comments so far on Reddit

0 votes and 0 comments so far on Reddit

0 votes and 0 comments so far on Reddit

0 votes and 0 comments so far on Reddit

0 votes and 0 comments so far on Reddit

0 votes and 0 comments so far on Reddit

0 votes and 0 comments so far on Reddit

0 votes and 0 comments so far on Reddit

Daniel Shapira and Arash Tohidi discovered that QEMU incorrectly handled NE2000 device emulation. An attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service. (CVE-2018-10839)
It was discovered that QEMU incorrectly…

German conglomerate Siemens has been busy trying to close several gaps in its security infrastructure caused by critical vulnerabilities.

A Team Building Activity

This blog post explains how the Tor network, selected for anonymity, can actually be used to discover users' IP addresses due to an incorrect SSL configuration. It includes examples, screenshots and recommendations for further reading.

How an npm package was taken over to infect mobile apps and steal bitcoins.

An XSS reverse shell framework. Contribute to raz-varren/xsshell development by creating an account on GitHub.

A complete boot2root walkthrough of LAMPSecurity's 4th CTF challenge.

People tracker on the Internet: OSINT analysis and research tool by Jose Pino - jofpin/trape

1 vote and 0 comments so far on Reddit