Thunderclap: Modern computers are vulnerable to malicious peripheral devices
http://thunderclap.io/
Submitted February 26, 2019 at 10:24PM by zxombie
via reddit https://ift.tt/2To1Kag
http://thunderclap.io/
Submitted February 26, 2019 at 10:24PM by zxombie
via reddit https://ift.tt/2To1Kag
reddit
r/netsec - Thunderclap: Modern computers are vulnerable to malicious peripheral devices
0 votes and 0 comments so far on Reddit
Reversing challenge: Hack this smart contract, extract the 0.05 Ether and win a 200 Dai (USD) bounty.
https://ift.tt/2Vlk8h1
Submitted February 26, 2019 at 10:44PM by berndtzl
via reddit https://ift.tt/2XsKvDw
https://ift.tt/2Vlk8h1
Submitted February 26, 2019 at 10:44PM by berndtzl
via reddit https://ift.tt/2XsKvDw
Medium
ConsenSys Diligence Ethereum Hacking Challenge
ConsenSys Diligence is deploying vulnerable contracts on purpose.
New padding oracle attacks against TLS with CBC
https://ift.tt/2GMMCx9
Submitted February 27, 2019 at 01:39AM by xaocuc
via reddit https://ift.tt/2Vm6s5n
https://ift.tt/2GMMCx9
Submitted February 27, 2019 at 01:39AM by xaocuc
via reddit https://ift.tt/2Vm6s5n
GitHub
RUB-NDS/TLS-Padding-Oracles
New TLS Padding Oracles. Contribute to RUB-NDS/TLS-Padding-Oracles development by creating an account on GitHub.
Truly hidden Tor VPS hosting
https://ift.tt/2SueDe1
Submitted February 27, 2019 at 08:36AM by 1337shill
via reddit https://ift.tt/2Xskoww
https://ift.tt/2SueDe1
Submitted February 27, 2019 at 08:36AM by 1337shill
via reddit https://ift.tt/2Xskoww
reddit
r/netsec - Truly hidden Tor VPS hosting
0 votes and 0 comments so far on Reddit
Firewall vs Hacker
https://ift.tt/2H5tDgs
Submitted February 27, 2019 at 11:56AM by william-harvey-07
via reddit https://ift.tt/2tFAgOU
https://ift.tt/2H5tDgs
Submitted February 27, 2019 at 11:56AM by william-harvey-07
via reddit https://ift.tt/2tFAgOU
reddit
r/netsec - Firewall vs Hacker
0 votes and 2 comments so far on Reddit
Startup created remotely customisable application layer WAF engine that runs on any PHP site.
https://ift.tt/2H6Lkw3
Submitted February 27, 2019 at 01:28PM by ded1cated
via reddit https://ift.tt/2BUyMEC
https://ift.tt/2H6Lkw3
Submitted February 27, 2019 at 01:28PM by ded1cated
via reddit https://ift.tt/2BUyMEC
WebARX
New Web Application Firewall Engine - WebARX Security
WebARX web application firewall engine now allows you to make your own firewall rules. Plans starting from $4.99/month - start your free trial now.
Recently Patched Drupal RCE Flaw Discovered Actively Exploited in the Wild
https://ift.tt/2Vp6Akz
Submitted February 27, 2019 at 02:59PM by ashique789
via reddit https://ift.tt/2ViW6mM
https://ift.tt/2Vp6Akz
Submitted February 27, 2019 at 02:59PM by ashique789
via reddit https://ift.tt/2ViW6mM
SecureReading
Recently Patched Drupal RCE Flaw Discovered Actively Exploited in the Wild | SecureReading
Threat actors have already started exploiting recently patched Drupal RCE flaw (CVE-2019-6340) to deliver cryptocurrency miners
SHAREit Multiple Vulnerabilities Enable Unrestricted Access to Adjacent Devices’ Files
https://ift.tt/2H7QBDJ
Submitted February 27, 2019 at 06:27PM by Titokhan
via reddit https://ift.tt/2Nv71r2
https://ift.tt/2H7QBDJ
Submitted February 27, 2019 at 06:27PM by Titokhan
via reddit https://ift.tt/2Nv71r2
Redforce
SHAREit Multiple Vulnerabilities Enable Unrestricted Access to Adjacent Devices’ Files
Two recently discovered vulnerabilities affecting SHAREit Android application
Recently Patched Drupal RCE Flaw Discovered Actively Exploited in the Wild
https://ift.tt/2Vp6Akz
Submitted February 27, 2019 at 07:23PM by ashique789
via reddit https://ift.tt/2EB2ws2
https://ift.tt/2Vp6Akz
Submitted February 27, 2019 at 07:23PM by ashique789
via reddit https://ift.tt/2EB2ws2
SecureReading
Recently Patched Drupal RCE Flaw Discovered Actively Exploited in the Wild | SecureReading
Threat actors have already started exploiting recently patched Drupal RCE flaw (CVE-2019-6340) to deliver cryptocurrency miners
CVE-2019-6977: imagecolormatch() OOB Heap Write Exploit
https://ift.tt/2TidyKP
Submitted February 27, 2019 at 07:18PM by cfambionics
via reddit https://ift.tt/2TePokF
https://ift.tt/2TidyKP
Submitted February 27, 2019 at 07:18PM by cfambionics
via reddit https://ift.tt/2TePokF
GitHub
cfreal/exploits
Some of my exploits. Contribute to cfreal/exploits development by creating an account on GitHub.
Leaking company secrets through your testing infrastructure
https://ift.tt/2BX4yAY
Submitted February 27, 2019 at 09:25PM by JonLuca
via reddit https://ift.tt/2tEQiIu
https://ift.tt/2BX4yAY
Submitted February 27, 2019 at 09:25PM by JonLuca
via reddit https://ift.tt/2tEQiIu
JonLuca’s Blog
Experiments, growth engineering, and exposing company secrets through your API: Part 1
JonLuca’s Blog - A blog about tech, programming, and information
Top 10 web hacking techniques of 2018: The Final Verdict
https://portswigger.net/blog/top-10-web-hacking-techniques-of-2018
Submitted February 27, 2019 at 09:20PM by Fugitif
via reddit https://ift.tt/2H5aBH9
https://portswigger.net/blog/top-10-web-hacking-techniques-of-2018
Submitted February 27, 2019 at 09:20PM by Fugitif
via reddit https://ift.tt/2H5aBH9
PortSwigger Research
Top 10 web hacking techniques of 2018
The results are in! After an impressive 59 nominations followed by a community vote to pick 15 finalists, a panel consisting of myself and noted researchers Nicolas Grégoire, Soroush Dalili and Filede
A Minimal Drupal Honeypot
https://ift.tt/2UbANnd
Submitted February 28, 2019 at 10:16AM by d1str0
via reddit https://ift.tt/2Ny3gB7
https://ift.tt/2UbANnd
Submitted February 28, 2019 at 10:16AM by d1str0
via reddit https://ift.tt/2Ny3gB7
GitHub
d1str0/Drupot
Drupal Honeypot. Contribute to d1str0/Drupot development by creating an account on GitHub.
Some issues with google data security
https://www.dashdevs.com/blog/how-google-сan-help-you-to-steal-somebodies-personal-data/
Submitted February 28, 2019 at 12:01PM by dashdevs
via reddit https://ift.tt/2SxzblY
https://www.dashdevs.com/blog/how-google-сan-help-you-to-steal-somebodies-personal-data/
Submitted February 28, 2019 at 12:01PM by dashdevs
via reddit https://ift.tt/2SxzblY
How Google Can Help You to Steal Somebody's Personal Data
A real-life story from our experience of configuring the G-Suit for the company and how it ended in us unintentionally stealing personal data.
Emotet dropper analysis including server sided PHP code
https://ift.tt/2Tr3nng
Submitted February 28, 2019 at 04:52PM by ThisIsLibra
via reddit https://ift.tt/2tJzMHg
https://ift.tt/2Tr3nng
Submitted February 28, 2019 at 04:52PM by ThisIsLibra
via reddit https://ift.tt/2tJzMHg
reddit
r/netsec - Emotet dropper analysis including server sided PHP code
0 votes and 0 comments so far on Reddit
Siemens PLC JTAG Pinout Reverse Engineering (Reverse Engineering Architecture and Pinout of Custom ASICS)
https://ift.tt/2Had0Aj
Submitted February 28, 2019 at 08:09PM by dionas
via reddit https://ift.tt/2H7AQN8
https://ift.tt/2Had0Aj
Submitted February 28, 2019 at 08:09PM by dionas
via reddit https://ift.tt/2H7AQN8
SEC Consult
Reverse Engineering Architecture and Pinout of Custom ASICs - SEC Consult
Learn about the process of initial reverse engineering the pinout of unknown ASICs by using moderate methods. The two described ICs are good examples out of many industry-solutions and have been chosen to demonstrate how design decisions from vendors are…
Top 5 leading bug bounty platforms by now
https://ift.tt/2EiiVAl
Submitted February 28, 2019 at 08:22PM by KeyDutch
via reddit https://ift.tt/2TpGZdW
https://ift.tt/2EiiVAl
Submitted February 28, 2019 at 08:22PM by KeyDutch
via reddit https://ift.tt/2TpGZdW
Htbridge
Five of the Top Bug Bounty Platforms
Bug bounties are a form of results-based outsourced code checking. It is a cost-efficient and effective method of crowdsourcing a company’s code analysis, while paying only for results.
Thinking outside of the password manager box
https://ift.tt/2Eo7ZkL
Submitted March 01, 2019 at 12:48AM by zulln
via reddit https://ift.tt/2Tl0nc7
https://ift.tt/2Eo7ZkL
Submitted March 01, 2019 at 12:48AM by zulln
via reddit https://ift.tt/2Tl0nc7
Detectify Labs
Thinking outside of the password manager box
AltFS provides a virtual file system, over non-file artifacts, to demonstrate hidden storage techniques.
https://ift.tt/2SyoArc
Submitted March 01, 2019 at 03:16AM by ikotler
via reddit https://ift.tt/2IHcsUR
https://ift.tt/2SyoArc
Submitted March 01, 2019 at 03:16AM by ikotler
via reddit https://ift.tt/2IHcsUR
GitHub
SafeBreach-Labs/AltFS
The Alternative Fileless File System. Contribute to SafeBreach-Labs/AltFS development by creating an account on GitHub.
Detecting PowerShell Empire using the tools from the Sysinternals suite.
https://ift.tt/2SwCg5T
Submitted March 01, 2019 at 03:15AM by digicat
via reddit https://ift.tt/2EE8Lva
https://ift.tt/2SwCg5T
Submitted March 01, 2019 at 03:15AM by digicat
via reddit https://ift.tt/2EE8Lva
reddit
r/netsec - Detecting PowerShell Empire using the tools from the Sysinternals suite.
0 votes and 0 comments so far on Reddit
Wireshark 3.0.0 Released!
https://ift.tt/2VmUecI
Submitted March 01, 2019 at 02:41AM by CaptMeelo
via reddit https://ift.tt/2EE0048
https://ift.tt/2VmUecI
Submitted March 01, 2019 at 02:41AM by CaptMeelo
via reddit https://ift.tt/2EE0048
reddit
r/netsec - Wireshark 3.0.0 Released!
0 votes and 13 comments so far on Reddit