Technical Information Security Content & Discussion

401

1

Our Pwn2Own journey against time and randomness (part 2) | Quarkslab (blog.quarkslab.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/poltess0 on 2023-11-08 13:48:48+00:00.

402

1

50 Shades of Vulnerabilities: Uncovering Flaws in Open-Source Vulnerability Disclosures (blog.aquasec.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/ilay789 on 2023-11-08 13:10:03+00:00.

403

1

Visual Studio Code Security: Deep Dive into Your Favorite Editor (1/3) (www.sonarsource.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/monoimpact on 2023-11-08 10:27:28+00:00.

404

1

How to get RCE on PTRG with CVE-2023-32782 (baldursecurity.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/security_aaudit on 2023-11-08 09:07:09+00:00.

405

1

Former Meta staffer’s allegations renew calls for kids online safety bill (newyorkverified.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/anujtomar_17 on 2023-11-08 08:13:49+00:00.

406

4

When a vulnerability disclosure doesn't go how you expect. (projectblack.io)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/ezzzzz on 2023-11-07 21:58:24+00:00.

407

1

Session-Hijacking-Visual-Exploitation: Session Hijacking Visual Exploitation (github.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/gemyougym on 2023-11-07 13:01:33+00:00.

408

1

Session Hijacking Visual Exploitation, New release with Office Documents Poisoning (blog.doyensec.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/nibblesec on 2023-11-07 10:47:17+00:00.

409

1

Post-exploiting a compromised etcd – Full control over the cluster and its nodes (research.nccgroup.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/D4r1 on 2023-11-07 08:39:05+00:00.

410

1

OST2, Zephyr RTOS, and a bunch of CVEs (security.humanativaspa.it)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/0xdea on 2023-11-07 07:38:43+00:00.

411

2

OPC UA Vulnerability Scanner - OpalOPC (opalopc.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/Salmiakkilakritsi on 2023-11-06 18:15:34+00:00.

412

1

Your printer is not your printer ! - Hacking Printers at Pwn2Own Part II | DEVCORE 戴夫寇爾 (devco.re)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/poltess0 on 2023-11-06 15:28:51+00:00.

413

1

Blue2thprinting (blue-[tooth)-printing]: answering the question of 'WTF am I even looking at?!' (Slides from Hardwear.io last week) (darkmentor.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/BIOS4breakfast on 2023-11-06 12:15:52+00:00.

414

1

Open Wounds: The last 5 years have left Bluetooth to bleed (Slides & Hack.lu video) (darkmentor.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/BIOS4breakfast on 2023-11-06 12:15:02+00:00.

415

1

It Was Harder to Sniff Bluetooth Through My Mask During the Pandemic... (Slides & HITB HKT video) (darkmentor.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/BIOS4breakfast on 2023-11-06 12:14:11+00:00.

416

1

Persistence – Windows Telemetry (pentestlab.blog)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/netbiosX on 2023-11-06 09:06:34+00:00.

417

1

Smashing the TLB for fun and profit - ekoparty 2023 (www.tacitosecurity.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/maurosoria on 2023-11-05 02:22:41+00:00.

418

1

Looney Tunables Vulnerability Exploited by Kinsing (blog.aquasec.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/Easy-Bumblebee2503 on 2023-11-03 16:34:30+00:00.

419

2

Keylogger keyboard leaks passwords via Apple's "Find My" location network (www.heise.de)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/ctmagazin on 2023-11-03 13:31:40+00:00.

420

1

Use Wasm to Bypass Latest Chrome v8sbx Again (medium.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/poltess0 on 2023-11-03 09:48:35+00:00.

421

1

Prioritising Vulnerabilities Remedial Actions at Scale with EPSS (medium.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/theowni on 2023-11-02 19:18:41+00:00.

422

1

Dozens of npm Packages Caught Attempting to Deploy Reverse Shell (blog.phylum.io)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/louis11 on 2023-11-02 18:27:58+00:00.

423

1

Firmware Security Analyzer - EMBA v1.3.1 with firmware diffing mechanism available (github.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/m-1-k-3 on 2023-11-02 18:17:08+00:00.

424

1

Security Researchers from Salt-Security explain in a super detailed post how they did account takeover on Grammarly.com, Booking.com, Expo.io, Codecademy.com, Vidio.com, Bukalapak.com, and 100+ Ot... (salt.security)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/MoreMoreMoreM on 2023-11-02 16:36:31+00:00.

Original Title: Security Researchers from Salt-Security explain in a super detailed post how they did account takeover on Grammarly.com, Booking.com, Expo.io, Codecademy.com, Vidio.com, Bukalapak.com, and 100+ Other Websites.

425

1

Advice For Catching a RedLine Stealer - includes tools to identify C2 protocol (medium.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

This is an automated archive.

The original was posted on /r/netsec by /u/The_Abjuri5t on 2023-11-02 16:26:21+00:00.