Bug Hunter's Methodology v2 - Jason Haddix, LevelUp 2017
https://www.youtube.com/watch?v=C4ZHAdI8o1w
Submitted July 17, 2017 at 05:17AM by QforQ
via reddit http://ift.tt/2uyj00j
https://www.youtube.com/watch?v=C4ZHAdI8o1w
Submitted July 17, 2017 at 05:17AM by QforQ
via reddit http://ift.tt/2uyj00j
YouTube
Bug Bounty Hunting Methodology v2 - Jason Haddix from Bugcrowd's LevelUp 2017
Learn some of the best bug bounty hunting & web hacking techniques from Bugcrowd's Jason Haddix.
Have questions? Post them to Jason on the Bugcrowd forum: http://bgcd.co/2tZHz33
Join Bugcrowd today: http://bgcd.co/2up2fUH
Have questions? Post them to Jason on the Bugcrowd forum: http://bgcd.co/2tZHz33
Join Bugcrowd today: http://bgcd.co/2up2fUH
From fuzzing Apache httpd server to CVE-2017-7668 and a 1500$ bounty
http://ift.tt/2upbCE2
Submitted July 17, 2017 at 03:40AM by NeomindMusic
via reddit http://ift.tt/2utNU9b
http://ift.tt/2upbCE2
Submitted July 17, 2017 at 03:40AM by NeomindMusic
via reddit http://ift.tt/2utNU9b
Blogspot
From fuzzing Apache httpd server to CVE-2017-7668 and a $1500 bounty
Intro In the previous post I thoroughly described how to fuzz Apache's httpd server with American Fuzzy Lop . After writing that post and...
Exploiting Alpine Linux
http://ift.tt/2un7kxo
Submitted July 17, 2017 at 01:27PM by reddit_read_today
via reddit http://ift.tt/2vsXOFm
http://ift.tt/2un7kxo
Submitted July 17, 2017 at 01:27PM by reddit_read_today
via reddit http://ift.tt/2vsXOFm
Palo Alto Networks
Prisma Cloud | Comprehensive Cloud Security
Prisma Cloud is the industry's most complete Cloud Native Application Protection Platform (CNAPP), providing code-to-cloud security in and across any cloud.
SecureHeaders v2.0 for PHP (the we ❤️ frameworks edition)
http://ift.tt/2tuWeS4
Submitted July 17, 2017 at 02:31PM by aidan---
via reddit http://ift.tt/2ti7dTy
http://ift.tt/2tuWeS4
Submitted July 17, 2017 at 02:31PM by aidan---
via reddit http://ift.tt/2ti7dTy
GitHub
aidantwoods/SecureHeaders
SecureHeaders - A PHP library aiming to make the use of browser security features more accessible.
11 remote vulnerabilities (inc. 2x RCE) in FreeRADIUS packet parsers
http://ift.tt/2u1kkFK
Submitted July 17, 2017 at 06:43PM by gvranken
via reddit http://ift.tt/2txlwPt
http://ift.tt/2u1kkFK
Submitted July 17, 2017 at 06:43PM by gvranken
via reddit http://ift.tt/2txlwPt
reddit
11 remote vulnerabilities (inc. 2x RCE) in FreeRADIUS... • r/netsec
6 points and 0 comments so far on reddit
LevelUp 2017 Presentations - Web, Mobile, IoT + Hardware talks
https://www.youtube.com/playlist?list=PLIK9nm3mu-S5InvR-myOS7hnae8w4EPFV
Submitted July 17, 2017 at 07:56PM by QforQ
via reddit http://ift.tt/2tj5QE2
https://www.youtube.com/playlist?list=PLIK9nm3mu-S5InvR-myOS7hnae8w4EPFV
Submitted July 17, 2017 at 07:56PM by QforQ
via reddit http://ift.tt/2tj5QE2
YouTube
LevelUp 0x01 2017 - YouTube
Cisco: WebEx Various GPC Sanitization bypasses permit Arbitrary Remote Command Execution - project-zero
http://ift.tt/2uBjxi7
Submitted July 17, 2017 at 10:27PM by Extremite
via reddit http://ift.tt/2varMOY
http://ift.tt/2uBjxi7
Submitted July 17, 2017 at 10:27PM by Extremite
via reddit http://ift.tt/2varMOY
reddit
Cisco: WebEx Various GPC Sanitization bypasses permit... • r/netsec
1 points and 0 comments so far on reddit
H1702 CTF Writeup
http://ift.tt/2t8HTeP
Submitted July 17, 2017 at 10:13PM by teknogeek1
via reddit http://ift.tt/2vuwDtQ
http://ift.tt/2t8HTeP
Submitted July 17, 2017 at 10:13PM by teknogeek1
via reddit http://ift.tt/2vuwDtQ
reddit
H1702 CTF Writeup • r/netsec
1 points and 0 comments so far on reddit
The Synesthesia Shellcode Generator: Code Release and Future Directions
http://ift.tt/2vuw8js
Submitted July 17, 2017 at 10:51PM by rolfr
via reddit http://ift.tt/2u1WLgh
http://ift.tt/2vuw8js
Submitted July 17, 2017 at 10:51PM by rolfr
via reddit http://ift.tt/2u1WLgh
Möbius Strip Reverse Engineering
The Synesthesia Shellcode Generator: Code Release and Future Directions
Synesthesia is an idea that I published at EkoParty last year (slides and
video are available) regarding automated shellcode generation under
encoding restrictions. The presentation walked through an extended tutorial
on program synthesis, and showed…
video are available) regarding automated shellcode generation under
encoding restrictions. The presentation walked through an extended tutorial
on program synthesis, and showed…
Pay What You Want Cybersecurity Ebooks | 4 to 14 Books -- Humble Bundle
http://ift.tt/2tyu6h2
Submitted July 18, 2017 at 12:00AM by hash_salts
via reddit http://ift.tt/2vaHQjP
http://ift.tt/2tyu6h2
Submitted July 18, 2017 at 12:00AM by hash_salts
via reddit http://ift.tt/2vaHQjP
Humble Bundle
Humble Book Bundle: Cybersecurity presented by Wiley
Pay what you want for cybersecurity ebooks and support charity!
Cisco-Talos - pyrebox (PyREBox is a Python noscriptable Reverse Engineering sandbox).
http://ift.tt/2u31v5e
Submitted July 18, 2017 at 12:05PM by sanderD
via reddit http://ift.tt/2tAHlO7
http://ift.tt/2u31v5e
Submitted July 18, 2017 at 12:05PM by sanderD
via reddit http://ift.tt/2tAHlO7
GitHub
Cisco-Talos/pyrebox
Contribute to pyrebox development by creating an account on GitHub.
Decrypting DEF CON badge challenges
http://ift.tt/2vcXr2u
Submitted July 18, 2017 at 01:45PM by cr0mangia
via reddit http://ift.tt/2u4LsFE
http://ift.tt/2vcXr2u
Submitted July 18, 2017 at 01:45PM by cr0mangia
via reddit http://ift.tt/2u4LsFE
Help Net Security
Decrypting DEF CON badge challenges - Help Net Security
Here’s an introduction into the secret world of cryptography, device modding and hidden clues that happens at the world’s largest hacker gathering.
AWS Misconfigurations in PlayerUnknown's Battlegrounds Leading to Exposed S3 Bucket with Data Leakage.
http://ift.tt/2tb8dET
Submitted July 18, 2017 at 05:25PM by elliott954
via reddit http://ift.tt/2uv2iyF
http://ift.tt/2tb8dET
Submitted July 18, 2017 at 05:25PM by elliott954
via reddit http://ift.tt/2uv2iyF
reddit
AWS Misconfigurations in PlayerUnknown's Battlegrounds... • r/netsec
5 points and 3 comments so far on reddit
Detailed incident report for Gandi domain hijacking event on July 7, 2017
http://ift.tt/2udA5MU
Submitted July 18, 2017 at 06:17PM by campuscodi
via reddit http://ift.tt/2u5mkyE
http://ift.tt/2udA5MU
Submitted July 18, 2017 at 06:17PM by campuscodi
via reddit http://ift.tt/2u5mkyE
Gandi News
Detailed incident report
A detailed report on the July 7 incident impacting a total of 751 domains managed by our technical partner.
Bitdefender Remote Stack Buffer Overflow via 7z PPMD
http://ift.tt/2tBnSNl
Submitted July 18, 2017 at 06:02PM by landave
via reddit http://ift.tt/2uuR8Kc
http://ift.tt/2tBnSNl
Submitted July 18, 2017 at 06:02PM by landave
via reddit http://ift.tt/2uuR8Kc
landave.io
Bitdefender: Remote Stack Buffer Overflow via 7z PPMD - landave's blog
Blog about anti-virus software and its issues.
NorthSec 2017 Conference Videos have been Published
http://ift.tt/2uEKJwr
Submitted July 18, 2017 at 07:42PM by ouaibe
via reddit http://ift.tt/2u6ahkv
http://ift.tt/2uEKJwr
Submitted July 18, 2017 at 07:42PM by ouaibe
via reddit http://ift.tt/2u6ahkv
NorthSec
NorthSec 2017 Conference Videos - NorthSec
The videos from NorthSec 2017 Conference have finally been published, check them out! Past editions videos are also on our YouTube channel. Want to come to Montreal for NorthSec 2018? The CFP opens in November 2017, mark your calendars & propose something…