Fuzzing Like It’s 1989
http://bit.ly/2Ss9hAR
Submitted December 31, 2018 at 09:54PM by yossarian_flew_away
via reddit http://bit.ly/2s45UVn
http://bit.ly/2Ss9hAR
Submitted December 31, 2018 at 09:54PM by yossarian_flew_away
via reddit http://bit.ly/2s45UVn
Trail of Bits Blog
Fuzzing Like It’s 1989
With 2019 a day away, let’s reflect on the past to see how we can improve. Yes, let’s take a long look back 30 years and reflect on the original fuzzing paper, An Empirical Study of the Reliability…
A Review of my Bug Hunting Journey
http://bit.ly/2R0LxaC
Submitted December 31, 2018 at 10:04PM by kongwenbin
via reddit http://bit.ly/2GOoUkU
http://bit.ly/2R0LxaC
Submitted December 31, 2018 at 10:04PM by kongwenbin
via reddit http://bit.ly/2GOoUkU
My Learning Journey
A Review of my Bug Hunting Journey
A review of my bug hunting journey so far, from when I started, to the point where I made it into the Top 200 bug hunters on Bugcrowd after two years.
Code release: unCaptcha2 - Defeating Google's ReCaptcha with 91% accuracy (works on latest)
http://bit.ly/2SrlXrK
Submitted December 31, 2018 at 10:53PM by Correcthorse121
via reddit http://bit.ly/2AkVAwv
http://bit.ly/2SrlXrK
Submitted December 31, 2018 at 10:53PM by Correcthorse121
via reddit http://bit.ly/2AkVAwv
GitHub
ecthros/uncaptcha2
defeating the latest version of ReCaptcha with 91% accuracy - ecthros/uncaptcha2
The /r/netsec Monthly Discussion Thread - January 2019
OverviewQuestions regarding netsec and discussion related directly to netsec are welcome here.Rules & GuidelinesAlways maintain civil discourse. Be awesome to one another - moderator intervention will occur if necessary.Avoid NSFW content unless absolutely necessary. If used, mark it as being NSFW. If left unmarked, the comment will be removed entirely.If linking to classified content, mark it as such. If left unmarked, the comment will be removed entirely.Avoid use of memes. If you have something to say, say it with real words.All discussions and questions should directly relate to netsec.No tech support is to be requested or provided on /r/netsec.As always, the content & discussion guidelines should also be observed on /r/netsec.FeedbackFeedback and suggestions are welcome, but don't post it here. Please send it to the moderator inbox.
Submitted January 01, 2019 at 10:06AM by AutoModerator
via reddit http://bit.ly/2F0EecA
OverviewQuestions regarding netsec and discussion related directly to netsec are welcome here.Rules & GuidelinesAlways maintain civil discourse. Be awesome to one another - moderator intervention will occur if necessary.Avoid NSFW content unless absolutely necessary. If used, mark it as being NSFW. If left unmarked, the comment will be removed entirely.If linking to classified content, mark it as such. If left unmarked, the comment will be removed entirely.Avoid use of memes. If you have something to say, say it with real words.All discussions and questions should directly relate to netsec.No tech support is to be requested or provided on /r/netsec.As always, the content & discussion guidelines should also be observed on /r/netsec.FeedbackFeedback and suggestions are welcome, but don't post it here. Please send it to the moderator inbox.
Submitted January 01, 2019 at 10:06AM by AutoModerator
via reddit http://bit.ly/2F0EecA
Reddit
Technical Information Security Content & Discussion
/r/netsec is a community-curated aggregator of technical information security content. Our mission is to extract signal from the noise — to provide value to security practitioners, students, researchers, and hackers everywhere.
Methodology for Assessing System Images: Enumerate, Examine, Exploit
http://bit.ly/2EXMAkZ
Submitted January 01, 2019 at 06:19AM by xVIoct
via reddit http://bit.ly/2SwDLSf
http://bit.ly/2EXMAkZ
Submitted January 01, 2019 at 06:19AM by xVIoct
via reddit http://bit.ly/2SwDLSf
reddit
r/netsec - Methodology for Assessing System Images: Enumerate, Examine, Exploit
1 vote and 0 comments so far on Reddit
Turn Raspberry Pi Into Network Wide DNS Server
http://bit.ly/2ToqlYN
Submitted January 01, 2019 at 04:20PM by shreyasonline
via reddit http://bit.ly/2CHo1X5
http://bit.ly/2ToqlYN
Submitted January 01, 2019 at 04:20PM by shreyasonline
via reddit http://bit.ly/2CHo1X5
Technitium
Turn Raspberry Pi Into Network Wide DNS Server
Turn your Raspberry Pi into a network wide DNS server for security , privacy and blocking Internet Ads on your private network! Rasp...
Securing Your Online Accounts with 2FA
http://bit.ly/2ArM6j9
Submitted January 02, 2019 at 03:48AM by InfoSecJim
via reddit http://bit.ly/2AsWw1Y
http://bit.ly/2ArM6j9
Submitted January 02, 2019 at 03:48AM by InfoSecJim
via reddit http://bit.ly/2AsWw1Y
Jim Wilbur's Blog
Securing Your Online Accounts with 2FA
A short denoscription on MFA and 2FA followed by a few recommendations on how to keep your online accounts secure. I strongly recommend you enable 2FA for all online accounts.
Sputnik — An Open Source Intelligence Browser Extension
http://bit.ly/2RptkTu
Submitted January 02, 2019 at 07:51AM by Taptempo
via reddit http://bit.ly/2BUh0AG
http://bit.ly/2RptkTu
Submitted January 02, 2019 at 07:51AM by Taptempo
via reddit http://bit.ly/2BUh0AG
Medium
Sputnik — An Open Source Intelligence Browser Extension
Summary
WPScan Web Interface
http://bit.ly/2Qh3pZr
Submitted January 02, 2019 at 12:56PM by gmishra010
via reddit http://bit.ly/2QigO3x
http://bit.ly/2Qh3pZr
Submitted January 02, 2019 at 12:56PM by gmishra010
via reddit http://bit.ly/2QigO3x
GitHub
cyc10n3/WPScan_Web_Interface
A centralised dashboard for running and scheduling WordPress scans powered by wpscan. - cyc10n3/WPScan_Web_Interface
Malicious use of Microsoft LAPS
http://bit.ly/2R2M8sb
Submitted January 02, 2019 at 02:14PM by AkiJos
via reddit http://bit.ly/2R1EUov
http://bit.ly/2R2M8sb
Submitted January 02, 2019 at 02:14PM by AkiJos
via reddit http://bit.ly/2R1EUov
Akijosberry
Malicious use of Microsoft LAPS
LAPS Overview: LAPS (Local Administrator Password Solution) is a tool for managing local administrator passwords for domain joined computers. It stores passwords/secrets in a confidential attribute…
applepie: A hypervisor for Bochs and for fuzzing
http://bit.ly/2F19qby
Submitted January 02, 2019 at 04:24PM by gamozolabs
via reddit http://bit.ly/2SCPW0d
http://bit.ly/2F19qby
Submitted January 02, 2019 at 04:24PM by gamozolabs
via reddit http://bit.ly/2SCPW0d
GitHub
gamozolabs/applepie
A hypervisor for fuzzing built with WHVP and Bochs - gamozolabs/applepie
live #CastHack - Hacking Chromecasts/Google Homes/SmartTVs thru UPnP exposed ports
http://bit.ly/2LNm2DR
Submitted January 02, 2019 at 10:34PM by muglins
via reddit http://bit.ly/2SsFFna
http://bit.ly/2LNm2DR
Submitted January 02, 2019 at 10:34PM by muglins
via reddit http://bit.ly/2SsFFna
reddit
r/netsec - live #CastHack - Hacking Chromecasts/Google Homes/SmartTVs thru UPnP exposed ports
0 votes and 5 comments so far on Reddit
Abine Blur (online password manager) suffers partial breach of Emails, names, encrypted passwords
http://bit.ly/2QgEAge
Submitted January 02, 2019 at 11:33PM by redorhcal
via reddit http://bit.ly/2SD0V9W
http://bit.ly/2QgEAge
Submitted January 02, 2019 at 11:33PM by redorhcal
via reddit http://bit.ly/2SD0V9W
Online Privacy | Abine
Blur Security Update
We recently discovered that some information about Blur users was potentially exposed. We immediately took steps to investigate, respond, and work to prevent this from happening again. We are commu…
Open & Convert CAP Files (Wireshark Tutorial)
http://bit.ly/2AttBeb
Submitted January 03, 2019 at 12:43AM by Modern_Priyanka
via reddit http://bit.ly/2As1o7H
http://bit.ly/2AttBeb
Submitted January 03, 2019 at 12:43AM by Modern_Priyanka
via reddit http://bit.ly/2As1o7H
Redbuddy-Technology and Computer How To's Articles
Open & Convert CAP Files
Learn What Is CAP File And how to open an .CAP file or convert a CAP file to another file format.
Cross posting for hopefully better answers
http://bit.ly/2F35Pc5
Submitted January 03, 2019 at 01:53AM by throwaway9573476
via reddit http://bit.ly/2SwwsKl
http://bit.ly/2F35Pc5
Submitted January 03, 2019 at 01:53AM by throwaway9573476
via reddit http://bit.ly/2SwwsKl
reddit
r/careerguidance - Getting into cybersecurity with a marketing background?
8 votes and 1 comment so far on Reddit
Hackers Deface Electronic Billboard Near Seattle Washington
http://bit.ly/2BY6MiC
Submitted January 03, 2019 at 01:01AM by charliefourindia
via reddit http://bit.ly/2VxhKF4
http://bit.ly/2BY6MiC
Submitted January 03, 2019 at 01:01AM by charliefourindia
via reddit http://bit.ly/2VxhKF4
reddit
r/netsec - Hackers Deface Electronic Billboard Near Seattle Washington
3 votes and 1 comment so far on Reddit
Threat Intelligence For Critical Infrastructure (and why it's a different play)
http://bit.ly/2LIOOoV
Submitted January 03, 2019 at 04:45PM by mvoorzanger
via reddit http://bit.ly/2s7EiyD
http://bit.ly/2LIOOoV
Submitted January 03, 2019 at 04:45PM by mvoorzanger
via reddit http://bit.ly/2s7EiyD
Eclecticiq
Threat Intelligence For Critical Infrastructure
Despite the ever-increasing focus on the state of industrial cybersecurity, accurate and timely threat intelligence for industrial control systems (ICS) remains hard to come by.
Top Ten Bug Bounty Payouts of 2018
http://bit.ly/2LUJ23T
Submitted January 03, 2019 at 05:32PM by KeyDutch
via reddit http://bit.ly/2BXSlLv
http://bit.ly/2LUJ23T
Submitted January 03, 2019 at 05:32PM by KeyDutch
via reddit http://bit.ly/2BXSlLv
Htbridge
Top Ten Bug Bounty Payouts of 2018
Which companies were paying the most generous bounties via crowd security testing platforms in 2018?...
Super Cheap Unlimited Lifetime VPN Subnoscription Might Be a Terrible Idea
http://bit.ly/2BWnXBu
Submitted January 03, 2019 at 05:51PM by Slow_Brief
via reddit http://bit.ly/2R5sv2I
http://bit.ly/2BWnXBu
Submitted January 03, 2019 at 05:51PM by Slow_Brief
via reddit http://bit.ly/2R5sv2I
Surfshark
Super Cheap Unlimited Lifetime VPN Subnoscription Might Be a Terrible Idea (updated) - Surfshark
'Unlimited' and 'lifetime' VPN deals are tempting. Marketers are well-aware of the value proposition presented by such contracts, thus it’s difficult to argue against.
Security of Ethereum smart contracts, focusing on solidity
http://bit.ly/2F5i7AI
Submitted January 03, 2019 at 06:22PM by judit_k
via reddit http://bit.ly/2Qm4Y8z
http://bit.ly/2F5i7AI
Submitted January 03, 2019 at 06:22PM by judit_k
via reddit http://bit.ly/2Qm4Y8z
Avatao
Smart Contract Security
Blockchain-based platforms are becoming increasingly popular due to their ability to maintain a public distributed ledger, providing reliability, integrity, and...
Exploiting the Math.expm1 typing bug in V8
http://bit.ly/2AnQjEA
Submitted January 03, 2019 at 07:33PM by toastedstrawberry
via reddit http://bit.ly/2R8HB7G
http://bit.ly/2AnQjEA
Submitted January 03, 2019 at 07:33PM by toastedstrawberry
via reddit http://bit.ly/2R8HB7G
0x41414141 in ?? ()
Exploiting the Math.expm1 typing bug in V8
Minus zero behaves like zero, right?