Introduction to analysing full disk encryption solutions
http://bit.ly/2VYco4M
Submitted May 27, 2019 at 09:06PM by DiabloHorn
via reddit http://bit.ly/2WumFK5
http://bit.ly/2VYco4M
Submitted May 27, 2019 at 09:06PM by DiabloHorn
via reddit http://bit.ly/2WumFK5
DiabloHorn
Introduction to analysing full disk encryption solutions
I’ve written a couple of times on the subject of boot loaders and full disk encryption, but I haven’t really explored it in more detail. With this blog post I hope to dive a bit deeper …
h8mail v2: Password Breach Hunting locally or using premium services. Supports chasing down related email
http://bit.ly/2AE2yNq
Submitted May 28, 2019 at 05:31AM by khast3x
via reddit http://bit.ly/2JHMqAQ
http://bit.ly/2AE2yNq
Submitted May 28, 2019 at 05:31AM by khast3x
via reddit http://bit.ly/2JHMqAQ
GitHub
khast3x/h8mail
Password Breach Hunting and Email OSINT locally or using premium services. Supports chasing down related email - khast3x/h8mail
Frida 12.6 is out with major stability improvements on all platforms
http://bit.ly/2HFe3rW
Submitted May 28, 2019 at 06:19AM by oleavr
via reddit http://bit.ly/2YOEhhi
http://bit.ly/2HFe3rW
Submitted May 28, 2019 at 06:19AM by oleavr
via reddit http://bit.ly/2YOEhhi
Frida • A world-class dynamic instrumentation framework
Frida 12.6 Released
Inject JavaScript to explore native apps on Windows, macOS, GNU/Linux, iOS, Android, and QNX
Sample Pentest Report
http://bit.ly/30Ot564
Submitted May 28, 2019 at 12:09PM by DorkNowitzki41
via reddit http://bit.ly/2VWwHzg
http://bit.ly/30Ot564
Submitted May 28, 2019 at 12:09PM by DorkNowitzki41
via reddit http://bit.ly/2VWwHzg
GitHub
hmaverickadams/TCM-Security-Sample-Pentest-Report
Sample pentest report provided by TCM Security. Contribute to hmaverickadams/TCM-Security-Sample-Pentest-Report development by creating an account on GitHub.
investmentweek.co.uk left 330k user records exposed
http://bit.ly/2HGfXZj
Submitted May 28, 2019 at 03:22PM by drew-o
via reddit http://bit.ly/2JL031R
http://bit.ly/2HGfXZj
Submitted May 28, 2019 at 03:22PM by drew-o
via reddit http://bit.ly/2JL031R
reddit
r/privacy - investmentweek.co.uk left 330k user records exposed
0 votes and 0 comments so far on Reddit
Throwing 160 CPUs at OpenSSL 1 year CPU target.
http://bit.ly/2HG7x43
Submitted May 28, 2019 at 05:31PM by jekapats
via reddit http://bit.ly/2YRlp1e
http://bit.ly/2HG7x43
Submitted May 28, 2019 at 05:31PM by jekapats
via reddit http://bit.ly/2YRlp1e
Fuzzit
Throwing 160 CPUs at 1 Year Fuzzing Target - Fuzzit
In this blog post we will walk through how throwing 160 distributed CPUs at a fuzzing target that takes initially one year of CPU time can shorten the fuzzing time substantially. Also we will share test-cases where throwing more CPUs … Read More
Shift Left on Cloud Security, Part II - Phases of the SDLC
http://bit.ly/2K4fEcq
Submitted May 28, 2019 at 06:49PM by OnlyInstruction
via reddit http://bit.ly/2JIC03W
http://bit.ly/2K4fEcq
Submitted May 28, 2019 at 06:49PM by OnlyInstruction
via reddit http://bit.ly/2JIC03W
www.fugue.co
Shift Left on Cloud Security, Part II - Phases of the SDLC
By extending cloud infrastructure security left to development and testing phases, we can have a high degree of certainty that the production environment meets policy when deployed.
fatt /fingerprintAllTheThings - a pyshark based noscript for extracting network metadata and fingerprints from pcap files and live network traffic
http://bit.ly/2HGDXf1
Submitted May 28, 2019 at 07:33PM by fo0
via reddit http://bit.ly/2QwhtQl
http://bit.ly/2HGDXf1
Submitted May 28, 2019 at 07:33PM by fo0
via reddit http://bit.ly/2QwhtQl
GitHub
0x4D31/fatt
fatt /fingerprintAllTheThings - a pyshark based noscript for extracting network metadata and fingerprints from pcap files and live network traffic - 0x4D31/fatt
Ad Fraud Makes it's way to Twitter's Promoted Content (Social engineering, Ad fraud, Fake News)
http://bit.ly/2whrMPe
Submitted May 28, 2019 at 09:37PM by DEVCON3PJS
via reddit http://bit.ly/2YMSUlc
http://bit.ly/2whrMPe
Submitted May 28, 2019 at 09:37PM by DEVCON3PJS
via reddit http://bit.ly/2YMSUlc
BuzzFeed News
Twitter Is Showing More Ads, And People Are Seeing Lots Of Weird Crap As A Result
One malicious campaign used false articles about Drake and the Weeknd to promote casinos.
Almost One Million Vulnerable to BlueKeep Vuln (CVE-2019-0708)
http://bit.ly/2wprAgQ
Submitted May 28, 2019 at 10:04PM by zexterio
via reddit http://bit.ly/2VRqpkt
http://bit.ly/2wprAgQ
Submitted May 28, 2019 at 10:04PM by zexterio
via reddit http://bit.ly/2VRqpkt
Erratasec
Almost One Million Vulnerable to BlueKeep Vuln (CVE-2019-0708)
Microsoft announced a vulnerability in it's "Remote Desktop" product that can lead to robust, wormable exploits. I scanned the Internet to a...
Post-Exploitation with Leprechaun (finding interesting systems and connections)
http://bit.ly/2X9oqJK
Submitted May 28, 2019 at 10:00PM by altjx
via reddit http://bit.ly/2HGyWCS
http://bit.ly/2X9oqJK
Submitted May 28, 2019 at 10:00PM by altjx
via reddit http://bit.ly/2HGyWCS
Vonahi Security's Blog
Post-Exploitation with Leprechaun
Finding valuable data during post-exploitation can be a challenge. Leprechaun helps solve this problem.
Analysis of a 1day (cve-2019-0547) and discovery of a forgotten condition in the patch (cve-2019-0726) 1/2
http://bit.ly/2JEmXs1
Submitted May 29, 2019 at 03:53AM by h3ku
via reddit http://bit.ly/2WsbIJ3
http://bit.ly/2JEmXs1
Submitted May 29, 2019 at 03:53AM by h3ku
via reddit http://bit.ly/2WsbIJ3
Sensepost
SensePost | Analysis of a 1day (cve-2019-0547) and discovery of a forgotten condition in the patch (cve-2019-0726) – part 1 of…
Leaders in Information Security
Check End of Life of php, python, ubuntu, alpine, laravel etc at one place. Verify whether your application needs an update, or if you need to upgrade your device.
https://endoflife.date/
Submitted May 29, 2019 at 07:13AM by Gallus
via reddit http://bit.ly/2MenQJW
https://endoflife.date/
Submitted May 29, 2019 at 07:13AM by Gallus
via reddit http://bit.ly/2MenQJW
reddit
r/netsec - Check End of Life of php, python, ubuntu, alpine, laravel etc at one place. Verify whether your application needs an…
0 votes and 0 comments so far on Reddit
Complete Course: Zero to Hero Network Pentesting
http://bit.ly/2DHEb2N
Submitted May 29, 2019 at 09:01AM by DorkNowitzki41
via reddit http://bit.ly/2EEByPI
http://bit.ly/2DHEb2N
Submitted May 29, 2019 at 09:01AM by DorkNowitzki41
via reddit http://bit.ly/2EEByPI
Cybersecurity Training | The Cyber Mentor
Zero to Hero Pentesting | Cybersecurity Training | The Cyber Mentor
The Cyber Mentor provides cybersecurity and penetration testing training via Twitch, YouTube, and more.
Provoking browser quirks with behavioural fuzzing
http://bit.ly/2YVMXTk
Submitted May 29, 2019 at 01:34PM by albinowax
via reddit http://bit.ly/2W0WXc5
http://bit.ly/2YVMXTk
Submitted May 29, 2019 at 01:34PM by albinowax
via reddit http://bit.ly/2W0WXc5
portswigger.net
Provoking browser quirks with behavioural fuzzing | Blog
In this post I'm going to walk you through how I used behavioural fuzzing to find multiple quirks in Firefox. Normally, when fuzzing the goal is to find a crash indicating memory corruption, but my go
Experience the security flaw in Whatsapp hands-on
http://bit.ly/2EDiIZC
Submitted May 29, 2019 at 05:08PM by DebugDucky
via reddit http://bit.ly/2XeWaFA
http://bit.ly/2EDiIZC
Submitted May 29, 2019 at 05:08PM by DebugDucky
via reddit http://bit.ly/2XeWaFA
blog.adversary.io
How WhatsApp Was Hacked By Exploiting a Buffer Overflow Security Flaw
1-click RCE with Skype Web Plugin and Qt apps
http://bit.ly/2WcAkWN
Submitted May 29, 2019 at 05:36PM by TheAndroidGeek
via reddit http://bit.ly/2KadCHH
http://bit.ly/2WcAkWN
Submitted May 29, 2019 at 05:36PM by TheAndroidGeek
via reddit http://bit.ly/2KadCHH
reddit
r/netsec - 1-click RCE with Skype Web Plugin and Qt apps
0 votes and 0 comments so far on Reddit
Free GDPR and PCI DSS compliance test - all in one
http://bit.ly/2Wc1ygb
Submitted May 29, 2019 at 07:11PM by KeyDutch
via reddit http://bit.ly/2Xba2R7
http://bit.ly/2Wc1ygb
Submitted May 29, 2019 at 07:11PM by KeyDutch
via reddit http://bit.ly/2Xba2R7
Immuniweb
ImmuniWeb launches free website security and GDPR compliance test
The non-intrusive online test quickly verifies relevant GDPR and PCI DSS requirements, checks CMS security and runs a privacy check.
Honeynet Project: Innsbruck Junior CTF
http://bit.ly/30TArp2
Submitted May 29, 2019 at 07:56PM by mhils
via reddit http://bit.ly/2X81hYd
http://bit.ly/30TArp2
Submitted May 29, 2019 at 07:56PM by mhils
via reddit http://bit.ly/2X81hYd
reddit
r/netsec - Honeynet Project: Innsbruck Junior CTF
0 votes and 0 comments so far on Reddit
The Nansh0u Campaign: signed rootkit, exposed infrastructure and PE exploits in a massive MS-SQL & PHPMyAdmin attack campaign
http://bit.ly/2EFN9xY
Submitted May 29, 2019 at 07:55PM by ophirharpaz
via reddit http://bit.ly/2XkTiY5
http://bit.ly/2EFN9xY
Submitted May 29, 2019 at 07:55PM by ophirharpaz
via reddit http://bit.ly/2XkTiY5
Guardicore - Data Center and Cloud Security
The Nansh0u Campaign: Hackers Arsenal Grows Stronger
Read how Guardicore Labs revealed an end-to-end attack campaign infrastructure, designed to scan, brute-force and infect tens of thousands of MS-SQL and PHPMyAdmin servers on the internet.
A Data Wallet for secure 'Data Renting' of valuable and sensitive data sets
http://bit.ly/2VGW78S
Submitted May 29, 2019 at 08:51PM by blrm
via reddit http://bit.ly/2W1sIS0
http://bit.ly/2VGW78S
Submitted May 29, 2019 at 08:51PM by blrm
via reddit http://bit.ly/2W1sIS0
Medium
iExec V3: Data Wallet for Enterprises to Rent Data and AI Models Using Blockchain
Lyon, 15 May 2019: iExec has released its V3, which introduces a new Data Wallet feature that makes secure data renting possible. With…