PowerShell netsec noscripts I wrote for other sysadmins
http://bit.ly/2Bw43gZ
Submitted February 12, 2019 at 08:38PM by WorkLotus
via reddit http://bit.ly/2E64iB4
http://bit.ly/2Bw43gZ
Submitted February 12, 2019 at 08:38PM by WorkLotus
via reddit http://bit.ly/2E64iB4
GitHub
thom-s/netsec-ps-noscripts
Collection of PowerShell network security noscripts for system administrators. - thom-s/netsec-ps-noscripts
Practical Enclave Malware with Intel SGX
http://bit.ly/2SOGxpi
Submitted February 12, 2019 at 10:03PM by Bl00dsoul
via reddit http://bit.ly/2SspY3q
http://bit.ly/2SOGxpi
Submitted February 12, 2019 at 10:03PM by Bl00dsoul
via reddit http://bit.ly/2SspY3q
reddit
r/netsec - Practical Enclave Malware with Intel SGX
1 vote and 0 comments so far on Reddit
Docker image security scanning in a few simple steps
http://bit.ly/2GE6Vfl
Submitted February 12, 2019 at 11:14PM by weighanchore
via reddit http://bit.ly/2E5RdYK
http://bit.ly/2GE6Vfl
Submitted February 12, 2019 at 11:14PM by weighanchore
via reddit http://bit.ly/2E5RdYK
Anchore
Docker Image Security in 5 Minutes or Less
The Anchore Engine is an open source project that provides a centralized service for deep inspection, analysis and certification of container images. It is provided as a Docker container image that can be run standalone or on an orchestration platform such…
Autocert - use TLS to access internal kubernetes services from anywhere
http://bit.ly/2TLngmd
Submitted February 12, 2019 at 11:54PM by mjmalone
via reddit http://bit.ly/2DCQZGS
http://bit.ly/2TLngmd
Submitted February 12, 2019 at 11:54PM by mjmalone
via reddit http://bit.ly/2DCQZGS
GitHub
smallstep/certificates
An online certificate authority and related tools for secure automated certificate management, so you can use TLS everywhere. - smallstep/certificates
New Ubuntu Linux privilege escalation exploit and technical write-up (dirty_sock)
http://bit.ly/2BvvrMo
Submitted February 12, 2019 at 11:50PM by initstring
via reddit http://bit.ly/2thtIWl
http://bit.ly/2BvvrMo
Submitted February 12, 2019 at 11:50PM by initstring
via reddit http://bit.ly/2thtIWl
Shenanigans Labs
Privilege Escalation in Ubuntu Linux (dirty_sock exploit)
In January 2019, I discovered a privilege escalation vulnerability in default installations of Ubuntu Linux. This was due to a bug in the snapd API, a default service. Any local user could exploit this vulnerability to obtain immediate root access to the…
IoT security resources
http://bit.ly/2Dver96
Submitted February 13, 2019 at 12:14AM by v33ruiot
via reddit http://bit.ly/2RXVAIO
http://bit.ly/2Dver96
Submitted February 13, 2019 at 12:14AM by v33ruiot
via reddit http://bit.ly/2RXVAIO
GitHub
V33RU/IoTSecurity101
From IoT Pentesting to IoT Security . Contribute to V33RU/IoTSecurity101 development by creating an account on GitHub.
There are Two Types of Hackers
http://bit.ly/2I6cDJ2
Submitted February 13, 2019 at 01:01AM by neverforgetdream
via reddit http://bit.ly/2GCVfcO
http://bit.ly/2I6cDJ2
Submitted February 13, 2019 at 01:01AM by neverforgetdream
via reddit http://bit.ly/2GCVfcO
reddit
r/netsec - There are Two Types of Hackers
1 vote and 2 comments so far on Reddit
Hacking Laws are Silly, Don’t click this link.
https://breakthelaw.xyz
Submitted February 13, 2019 at 04:02AM by Evil1337
via reddit http://bit.ly/2TS3FAV
https://breakthelaw.xyz
Submitted February 13, 2019 at 04:02AM by Evil1337
via reddit http://bit.ly/2TS3FAV
breakthelaw.xyz
Hacking Laws are Silly. Seriously. Don't view this page.
As somebody who is in the Infosec/Cybersecurity industry, it is common knowledge that the laws relating to Hacking and Cybersecurity are laughably out-of-date, and as a result, it is technically prosecute somebody just for visiting a website and clicking…
Tracking Google Chrome From its PID
http://bit.ly/2TMXYDZ
Submitted February 13, 2019 at 04:51AM by lawandordercandidate
via reddit http://bit.ly/2X1hIWP
http://bit.ly/2TMXYDZ
Submitted February 13, 2019 at 04:51AM by lawandordercandidate
via reddit http://bit.ly/2X1hIWP
menz-o-matic.com
Tracking Google Chrome From its PID
Get more control over your browser with these tips.
Security.txt: a proposal for publishing channels for vulnerability disclosure
http://bit.ly/2fWIVt2
Submitted February 13, 2019 at 04:48PM by pimterry
via reddit http://bit.ly/2GF71U0
http://bit.ly/2fWIVt2
Submitted February 13, 2019 at 04:48PM by pimterry
via reddit http://bit.ly/2GF71U0
security.txt
A proposed standard which allows websites to define security policies.
Tool to export an image of an EC2 volume outside of AWS (for forensic work or archiving)
http://bit.ly/2SOHs9n
Submitted February 13, 2019 at 06:10PM by layertwo
via reddit http://bit.ly/2GFsITV
http://bit.ly/2SOHs9n
Submitted February 13, 2019 at 06:10PM by layertwo
via reddit http://bit.ly/2GFsITV
GitHub
ericpskl/exportEC2VolumeImage
A Bash noscript which uses AWS CLI to create an image of an AWS EC2 volume - ericpskl/exportEC2VolumeImage
Access to everyone in Puerto Rico's CESCO database through an Insecure Direct Object Reference
http://bit.ly/2IaE98y
Submitted February 13, 2019 at 08:57PM by rramgattie
via reddit http://bit.ly/2SzP809
http://bit.ly/2IaE98y
Submitted February 13, 2019 at 08:57PM by rramgattie
via reddit http://bit.ly/2SzP809
CVE-2019-0539 Root Cause Analysis
http://bit.ly/2tlsbP6
Submitted February 13, 2019 at 09:39PM by shleimeleh
via reddit http://bit.ly/2GpEzGo
http://bit.ly/2tlsbP6
Submitted February 13, 2019 at 09:39PM by shleimeleh
via reddit http://bit.ly/2GpEzGo
Perception Point
CVE-2019-0539 - Root Cause & Analysis | Perception Point
CVE-2019-0539 may have been recently resolved by Microsoft but are you still impacted? Learn about the root cause of CVE-2019-0539 and how it can be used to exploit.
DarkSpiritz Pentesting Framework - Updated with Bug Fixes and new features. On a new repository as well.
http://bit.ly/2tmiLCP
Submitted February 14, 2019 at 11:44AM by maxbridgland
via reddit http://bit.ly/2GJtCyD
http://bit.ly/2tmiLCP
Submitted February 14, 2019 at 11:44AM by maxbridgland
via reddit http://bit.ly/2GJtCyD
GitHub
M4cs/DarkSpiritz
Official Repository for DarkSpiritz Penetration Framework | Written in Python - M4cs/DarkSpiritz
Pwning WPA/WPA2 Networks With Bettercap and the PMKID Client-Less Attack
http://bit.ly/2N4sA1k
Submitted February 14, 2019 at 02:22PM by evilsocket
via reddit http://bit.ly/2SOIcLF
http://bit.ly/2N4sA1k
Submitted February 14, 2019 at 02:22PM by evilsocket
via reddit http://bit.ly/2SOIcLF
evilsocket
Pwning WPA/WPA2 Networks With Bettercap and the PMKID Client-Less Attack
In this post, I’ll talk about the new WiFi related features that have been recently implemented into bettercap, starting from how the EAPOL 4-way handshake capturing has been automated, to a whole new
Multi stage malicious LNK dropper analysis
http://bit.ly/2SOsX5v
Submitted February 14, 2019 at 05:04PM by ThisIsLibra
via reddit http://bit.ly/2Ea0zCD
http://bit.ly/2SOsX5v
Submitted February 14, 2019 at 05:04PM by ThisIsLibra
via reddit http://bit.ly/2Ea0zCD
Unauthenticated SSRF in Oracle EBS
http://bit.ly/2DCjyV9
Submitted February 14, 2019 at 05:32PM by albinowax
via reddit http://bit.ly/2E8YHu2
http://bit.ly/2DCjyV9
Submitted February 14, 2019 at 05:32PM by albinowax
via reddit http://bit.ly/2E8YHu2
Medium
Unauthenticated Blind SSRF in Oracle EBS
CVE-2018-3167
NordVPN Dominates VPN Market Share, and That Will Likely Continue | News & Opinion
http://bit.ly/2URwmhc
Submitted February 14, 2019 at 09:34PM by AsleepBiscotti
via reddit http://bit.ly/2GvJ4PR
http://bit.ly/2URwmhc
Submitted February 14, 2019 at 09:34PM by AsleepBiscotti
via reddit http://bit.ly/2GvJ4PR
PCMAG
NordVPN Dominates VPN Market Share, and That Will Likely Continue
Research by VPN review site VPNpro based on publicly available info puts NordVPN either ahead or poised to jump ahead of the competition in most marketing metrics.
Omnipresence on the web: browse through many locations concurrently with Docker, VPN & Squid
http://bit.ly/2GB71Eo
Submitted February 14, 2019 at 10:23PM by eloquinees_husband
via reddit http://bit.ly/2X1uXGG
http://bit.ly/2GB71Eo
Submitted February 14, 2019 at 10:23PM by eloquinees_husband
via reddit http://bit.ly/2X1uXGG
reddit
r/netsec - Omnipresence on the web: browse through many locations concurrently with Docker, VPN & Squid
2 votes and 1 comment so far on Reddit
Point of No C3 - Linux Kernel Exploitation - Part 0
http://bit.ly/2UZ2LT7
Submitted February 14, 2019 at 11:26PM by Evil1337
via reddit http://bit.ly/2Gpa839
http://bit.ly/2UZ2LT7
Submitted February 14, 2019 at 11:26PM by Evil1337
via reddit http://bit.ly/2Gpa839
reddit
r/netsec - Point of No C3 - Linux Kernel Exploitation - Part 0
2 votes and 0 comments so far on Reddit
[fosdem 2019 recording] Handling Security Flaws in an Open Source Project (Jeremy Allison)
http://bit.ly/2EcaEiF
Submitted February 14, 2019 at 11:08PM by the_gnarts
via reddit http://bit.ly/2DD5tXr
http://bit.ly/2EcaEiF
Submitted February 14, 2019 at 11:08PM by the_gnarts
via reddit http://bit.ly/2DD5tXr
reddit
r/netsec - [fosdem 2019 recording] Handling Security Flaws in an Open Source Project (Jeremy Allison)
1 vote and 1 comment so far on Reddit