hackxor - web application hacking challenges
https://hackxor.net/
Submitted January 03, 2019 at 09:51PM by albinowax
via reddit http://bit.ly/2TsuP0y
https://hackxor.net/
Submitted January 03, 2019 at 09:51PM by albinowax
via reddit http://bit.ly/2TsuP0y
reddit
r/netsec - hackxor - web application hacking challenges
3 votes and 1 comment so far on Reddit
I'm also interested in hearing your horror stories
http://bit.ly/2TojRcc
Submitted January 03, 2019 at 09:51PM by DFNIckS
via reddit http://bit.ly/2CM1kB8
http://bit.ly/2TojRcc
Submitted January 03, 2019 at 09:51PM by DFNIckS
via reddit http://bit.ly/2CM1kB8
reddit
r/cybersecurity - I Am Looking For Your Cybersecurity Horror Stories
12 votes and 4 comments so far on Reddit
Exploiting JNDI Injections in Java
https://vera.cd/2VzClZo
Submitted January 03, 2019 at 11:18PM by artsploit
via reddit http://bit.ly/2QibFsh
https://vera.cd/2VzClZo
Submitted January 03, 2019 at 11:18PM by artsploit
via reddit http://bit.ly/2QibFsh
Veracode
Exploiting JNDI Injections in Java
Java Naming and Directory Interface (JNDI) is a Java API that allows clients to discover and look up data and objects via a name. These objects can be stored in different naming or directory services, such as Remote Method Invocation (RMI), Common Object…
Best CISSP Certification Training Courses & Bootcamps (Updated 2019)
http://bit.ly/2C2hRQ6
Submitted January 04, 2019 at 12:04AM by eyyamgudeer
via reddit http://bit.ly/2RpuBtJ
http://bit.ly/2C2hRQ6
Submitted January 04, 2019 at 12:04AM by eyyamgudeer
via reddit http://bit.ly/2RpuBtJ
Courses Buddy
Best CISSP Certification Training Courses & Bootcamps (Updated 2019) – Courses Buddy
CISSP candidates? Well, hello! We have compiled the best CISSP certification training courses. Free and best paid courses and reviews here.
Spyware Disguises as Android Applications on Google Play
http://bit.ly/2LPWzcC
Submitted January 04, 2019 at 12:00AM by EvanConover
via reddit http://bit.ly/2AsOwhA
http://bit.ly/2LPWzcC
Submitted January 04, 2019 at 12:00AM by EvanConover
via reddit http://bit.ly/2AsOwhA
Trendmicro
Spyware Disguises as Android Applications on Google Play - TrendLabs Security Intelligence Blog
Recently discovered spyware disguises itself as legitimate Android applications to gather information from Google Play users.
Hackers Threaten to Release 9/11 Insurance Documents
http://bit.ly/2C33QkS
Submitted January 04, 2019 at 12:50AM by Fantastic_Fix
via reddit http://bit.ly/2BWomDY
http://bit.ly/2C33QkS
Submitted January 04, 2019 at 12:50AM by Fantastic_Fix
via reddit http://bit.ly/2BWomDY
InfoSec-IT
Hackers Threaten to Release 9/11 Insurance Documents | InfoSec-IT
Hackers are threatening to release documents in relation to the 9/11 attacks, which relate to insurance claims and other secret documentation.
Inter-application vulnerabilities and HTTP header issues - my summary of 2018 in Bug Bounty programs
http://bit.ly/2R4kMBS
Submitted January 04, 2019 at 03:01AM by Keeseeel
via reddit http://bit.ly/2F5Ag27
http://bit.ly/2R4kMBS
Submitted January 04, 2019 at 03:01AM by Keeseeel
via reddit http://bit.ly/2F5Ag27
Medium
Inter-application vulnerabilities and HTTP header issues. My summary of 2018 in Bug Bounty programs.
In 2018 I managed to report 27 unique vulnerabilities in web apps of well-known companies. I’m sharing my thoughts on the reported…
It Appears China is Building a Massive Espionage Database on America
http://bit.ly/2CMdRVn
Submitted January 04, 2019 at 02:58AM by danielrm26
via reddit http://bit.ly/2GRoV7u
http://bit.ly/2CMdRVn
Submitted January 04, 2019 at 02:58AM by danielrm26
via reddit http://bit.ly/2GRoV7u
Daniel Miessler
It Appears China is Building a Massive Espionage Database on America | Daniel Miessler
I've mentioned this in numerous places for the last few years, so I decided it was time to finally put it into a formal piece. It seems obvious at this
Adobe patches two critical vulnerabilities [CVE-2018-16011/CVE-2018-19725]
https://adobe.ly/2GViWyT
Submitted January 04, 2019 at 11:26AM by Dormidera
via reddit http://bit.ly/2QjJbOF
https://adobe.ly/2GViWyT
Submitted January 04, 2019 at 11:26AM by Dormidera
via reddit http://bit.ly/2QjJbOF
Adobe
Adobe Security Bulletin
Security Bulletin for Adobe Acrobat and Reader | APSB19-02
Open redirects - the vulnerability class no one but attackers cares about
http://bit.ly/2At9IUw
Submitted January 04, 2019 at 09:06AM by steven-tabernacle
via reddit http://bit.ly/2LP8PKy
http://bit.ly/2At9IUw
Submitted January 04, 2019 at 09:06AM by steven-tabernacle
via reddit http://bit.ly/2LP8PKy
stevetabernacle.github.io
Open redirects - the vulnerability class no one but attackers cares about - Steve Tabernacle
NIST CSRC is down due to shutdown
https://csrc.nist.gov/
Submitted January 04, 2019 at 06:55AM by ejmart1n
via reddit http://bit.ly/2BX15BQ
https://csrc.nist.gov/
Submitted January 04, 2019 at 06:55AM by ejmart1n
via reddit http://bit.ly/2BX15BQ
csrc.nist.gov
NIST Computer Security Resource Center | CSRC
CSRC provides access to NIST's cybersecurity- and information security-related projects, publications, news and events.
A Summary of Planned Improvements to the Security of the PHP Ecosystem (and Beyond) for 2019
http://bit.ly/2F6iRpm
Submitted January 04, 2019 at 01:27PM by sarciszewski
via reddit http://bit.ly/2s9Ieif
http://bit.ly/2F6iRpm
Submitted January 04, 2019 at 01:27PM by sarciszewski
via reddit http://bit.ly/2s9Ieif
Paragonie
Our PHP Security Roadmap for the Year 2019 - Paragon Initiative Enterprises Blog
We have a lot of work ahead of us in 2019, and we hope it benefits the entire PHP community
Discovering and Hacking IoT Devices Using Web-Based Attacks
http://bit.ly/2VnvoKR
Submitted January 04, 2019 at 01:26PM by ziyahanalbeniz
via reddit http://bit.ly/2LNNscJ
http://bit.ly/2VnvoKR
Submitted January 04, 2019 at 01:26PM by ziyahanalbeniz
via reddit http://bit.ly/2LNNscJ
Netsparker
Discovering and Hacking IoT Devices Using Web-Based Attacks
This article discusses recent university level research on web-based attacks involving the discovery, hacking and remote control of Internet of Things (IoT) devices. We examine the duration and phases of these attacks, and conclude by suggesting some web…
Major hack of German politicians’ private data
http://bit.ly/2AvFaSp
Submitted January 04, 2019 at 04:16PM by yesnoornext
via reddit http://bit.ly/2Qopgyf
http://bit.ly/2AvFaSp
Submitted January 04, 2019 at 04:16PM by yesnoornext
via reddit http://bit.ly/2Qopgyf
threader.app
A thread written by @JulianRoepcke
#BREAKINGGermany faces the biggest hacker attack in its history.Private data of almost 1000 German #Bundestag, #Regional Parliament & #EU delegates was leaked.I worked through the leaked data all night. It's shocking!Not affected so far: #AfD.https://t.c…
Easily convert your APK into an Android Studio Project with APC, version 1.1 release notes!
http://bit.ly/2TnW2Be
Submitted January 04, 2019 at 10:32PM by ThisIsLibra
via reddit http://bit.ly/2COzGU1
http://bit.ly/2TnW2Be
Submitted January 04, 2019 at 10:32PM by ThisIsLibra
via reddit http://bit.ly/2COzGU1
reddit
r/netsec - Easily convert your APK into an Android Studio Project with APC, version 1.1 release notes!
2 votes and 0 comments so far on Reddit
Phishing template uses fake fonts to decode content and evade detection
http://bit.ly/2RdgB6T
Submitted January 05, 2019 at 01:07AM by cwardnet
via reddit http://bit.ly/2AtQ76U
http://bit.ly/2RdgB6T
Submitted January 05, 2019 at 01:07AM by cwardnet
via reddit http://bit.ly/2AtQ76U
Proofpoint
Phishing template uses fake fonts to decode content and evade
Proofpoint researchers describe a new phishing template that uses a previously undocumented font trick to decode and display pages.
BEC-International Slack Channel Aims at Impacting Fraud Across the Globe. TLP:White Information Sharing
http://bit.ly/2LQLI2e
Submitted January 05, 2019 at 02:36AM by iHeartMalware
via reddit http://bit.ly/2F9eNWh
http://bit.ly/2LQLI2e
Submitted January 05, 2019 at 02:36AM by iHeartMalware
via reddit http://bit.ly/2F9eNWh
Medium
BEC-International Slack Channel
Hello world!
Sensitive data captured in screenshots taken by Air Canada mobile application
http://bit.ly/2TsUMNi
Submitted January 05, 2019 at 07:41PM by kahunalu
via reddit http://bit.ly/2AyLGaT
http://bit.ly/2TsUMNi
Submitted January 05, 2019 at 07:41PM by kahunalu
via reddit http://bit.ly/2AyLGaT
New Town of Salem breach - already 27% cracked hashes available publicly
http://bit.ly/2LUe4IM
Submitted January 05, 2019 at 08:54PM by s3inlc
via reddit http://bit.ly/2RayVxI
http://bit.ly/2LUe4IM
Submitted January 05, 2019 at 08:54PM by s3inlc
via reddit http://bit.ly/2RayVxI
hashes.org
Hashes.org - Leak 'Blankmediagames.com (Town of Salem)'
Hashes.org is a community recovering password from submitted hashes.
HackTheBox — Mischief Writeup
http://bit.ly/2CRZVcs
Submitted January 05, 2019 at 11:57PM by TheShahzada
via reddit http://bit.ly/2Ty4hel
http://bit.ly/2CRZVcs
Submitted January 05, 2019 at 11:57PM by TheShahzada
via reddit http://bit.ly/2Ty4hel
Medium
HackTheBox — Mischief Writeup
This is one of my favorite Machine. And it’s my first CTF & HackTheBox write-up. If you read this please give me feedback, How was the…
Tool release: Universal Phishing Reverse Proxy "Modlishka" (2FA support)
http://bit.ly/2GQxEa6
Submitted January 06, 2019 at 03:36PM by piotrd_
via reddit http://bit.ly/2C5Arqj
http://bit.ly/2GQxEa6
Submitted January 06, 2019 at 03:36PM by piotrd_
via reddit http://bit.ly/2C5Arqj
GitHub
drk1wi/Modlishka
Modlishka. Reverse Proxy. Phishing NG. Contribute to drk1wi/Modlishka development by creating an account on GitHub.