Netsec
@RNetsec
7.49K subscribers
22.9K links
This channel posts the feed from r/netsec.
For any suggestions dm @streaak
Donate to keep the bot running https://www.paypal.me/akhilgv
Download Telegram
About
Blog
Apps
Platform
Join
Netsec
7.49K subscribers
Netsec
Massive leak leaves 267 million Facebook users' data exposed
https://ift.tt/2sOwtBj

Submitted December 21, 2019 at 12:44AM by MayonaiseRemover
via reddit https://ift.tt/2sMYgSP
Android Central
Massive leak leaves 267 million Facebook users' data exposed
Security researchers found an online database containing the private information of over 267 million Facebook users exposed on the internet. It contained the Facebook IDs, phone numbers, and real names of the users.
319 views
Netsec
Source Code Analysis - SQL Injection
https://ift.tt/2sE5Te8

Submitted December 21, 2019 at 07:36AM by ghostlulz
via reddit https://ift.tt/36ZWcWC
Ghostlulz Hacks
Source Code Analysis SQL Injection - Ghostlulz Hacks
Learn how to find SQL injection while doing source code analysis .
312 views
Netsec
Privilege Escalation in AWS
https://ift.tt/2s6U5RU

Submitted December 21, 2019 at 04:34PM by digicat
via reddit https://ift.tt/2PL1aAy
Bishopfox
Well, That Escalated Quickly
Guide for security professionals performing AWS cloud security reviews or pen tests. These methods can be used in practice and explained clearly to clients.
319 views
Netsec
Drupal 8 File Upload Vulnerability
https://ift.tt/2Q7fdiL

Submitted December 21, 2019 at 04:33PM by digicat
via reddit https://ift.tt/2EI3v9a
Aon
Drupal 8 File Upload Vulnerability | Aon's Cyber Labs
Aon’s Cyber Solutions recently discovered a security vulnerability in all versions of Drupal 8 below 8.7.11 / 8.8.1.
321 views
Netsec
Safe travels for the road warrior
https://ift.tt/38WZXOl

Submitted December 21, 2019 at 03:59PM by Diddern
via reddit https://ift.tt/2Q47Dpc
317 views
Netsec
Live stream - Hacking Android application using Frida (hooking, bypassing integrity checks and tcp pinning)
https://ift.tt/35vRnnu

Submitted December 22, 2019 at 02:17AM by ISeeFacesInClouds
via reddit https://ift.tt/2Mjk1AN
Twitch
lionaneesh - Twitch
Hacking Live Stream | Playing CTFs for fun!
342 views
Netsec
Exploiting Null Byte Buffer Overflow for a $40,000 bounty
https://ift.tt/35A74dh

Submitted December 22, 2019 at 01:43AM by albinowax
via reddit https://ift.tt/36VICmW
samcurry.net
Exploiting Null Byte Buffer Overflow for a $40,000 bounty | Sam Curry
As a preface, when I originally found this bug I was unfamiliar the class of "null byte buffer overflow" even existed. I was simply fuzzing a standard web application's input field and ran into a very interesting behavior that turned out to be a cool bug.
356 views
Netsec
Out-of-band Attacks
https://ift.tt/2ZdSUfp

Submitted December 22, 2019 at 06:17AM by om3rcitak
via reddit https://ift.tt/2EKpP22
Out-of-band Attacks [EN] | Omer Citak's Blog | Om3rCitak
ömer çıtak, omer citak, om3rcitak, security, development, php, vulnerability, ethical hacking
347 views
Netsec
Why npm lockfiles can be a security blindspot for injecting malicious modules
https://ift.tt/2oS4BdP

Submitted December 23, 2019 at 05:27AM by lirantal
via reddit https://ift.tt/2MlcotE
Snyk
Why npm lockfiles can be a security blindspot for injecting malicious modules | Snyk
I recently started playing around with the idea of threat modeling packages on the npm ecosystem. Can an event-stream incident happen again? How about other
341 views
Netsec
Resources about network security, including: Proxy/GFW/ReverseProxy/Tunnel/VPN/Tor/I2P, and MiTM/PortKnocking/NetworkSniff/NetworkAnalysis/etc。More than 1700 open source tools for now. Post incoming.
https://ift.tt/2PPhS1I

Submitted December 23, 2019 at 10:10AM by lucashello
via reddit https://ift.tt/2MgqKLJ
GitHub
alphaSeclab/awesome-network-stuff
Resources about network security, including: Proxy/GFW/ReverseProxy/Tunnel/VPN/Tor/I2P, and MiTM/PortKnocking/NetworkSniff/NetworkAnalysis/etc。More than 1700 open source tools for now. Post incomin...
385 views
Netsec
Catalog of Supply Chain Compromises
/r/blueteamsec/comments/eeffw5/catalog_of_supply_chain_compromises/

Submitted December 23, 2019 at 12:59PM by digicat
via reddit https://ift.tt/2sYlcOV
reddit
Catalog of Supply Chain Compromises
Posted in r/netsec by u/digicat • 19 points and 0 comments
354 views
Netsec
Full release of Empire 3.0! BC-Security's fork will be the Kali supported fork going forward. Plus details on what's in the update.
https://ift.tt/2EKUVqj

Submitted December 23, 2019 at 06:51PM by Hubble_BC_Security
via reddit https://ift.tt/2SmzKCO
reddit
Full release of Empire 3.0! BC-Security's fork will be the Kali...
Posted in r/netsec by u/Hubble_BC_Security • 178 points and 0 comments
363 views
Netsec
App Analysis: Plenty of Fish; Locating users and revealing information via the API
https://ift.tt/2EO95Xr

Submitted December 23, 2019 at 06:43PM by theappanalyst
via reddit https://ift.tt/392wQZL
reddit
App Analysis: Plenty of Fish; Locating users and revealing...
Posted in r/netsec by u/theappanalyst • 268 points and 23 comments
392 views
Netsec
NGINX error_page request smuggling
https://ift.tt/34UvnBE

Submitted December 24, 2019 at 09:21PM by albinowax
via reddit https://ift.tt/2MpVsC6
395 views
Netsec
Pentester's Mindset - Get out of the limited OWASP TOP-10/SANS TOP-25/Bug Bounty mindset
https://ift.tt/2MHp1PV

Submitted December 25, 2019 at 03:30PM by rotisabzi
via reddit https://ift.tt/34R7XwR
reddit
Pentester's Mindset - Get out of the limited OWASP TOP-10/SANS...
Posted in r/netsec by u/rotisabzi • 127 points and 22 comments
383 views
Netsec
An Introduction to Arcade Security and How to Take All Machines Down
https://ift.tt/2t4LHlP

Submitted December 25, 2019 at 05:56PM by utku1337
via reddit https://ift.tt/34RqWr7
Utkusen
An Introduction to Arcade Security and How to Take All Machines Down
TL;DR This article contains my experiences on testing amusement arcade’s security.
I found a DoS vulnerability on Intercard devices. An attacker can take down entire
arcade machines by using this vulnerability.

Me and my girlfriend love to spend hours in…
380 views
Netsec
SANS Holiday Hack 2019 Writeup - Kringlecon 2: Turtle Doves
https://ift.tt/2PUcydq

Submitted December 26, 2019 at 12:11AM by PolleV
via reddit https://ift.tt/35WuIAX
Kringlecon-2-Turtle-Doves
Kringlecon 2: Turtle Doves
Writeup for the SANS holiday hack challenge 2019 (Kringlecon 2019)
386 views
Netsec
Parse and convert Nessus, Nmap (and more tools) to XLSX, CSV
https://ift.tt/2LOYPlW

Submitted December 26, 2019 at 01:37AM by 0bs1d1an-
via reddit https://ift.tt/39feWTF
GitLab
Guido Kroon / sr2t
Converts scanning reports to a tabular format
415 views
Netsec
Almost 2 Million Records Exposed in May 2019 Healthcare Data Breaches - HIPAA Guide
https://ift.tt/2Ymy8ZO

Submitted December 26, 2019 at 06:32PM by fgery456vb6e2
via reddit https://ift.tt/2ZpQMRR
HIPAA Guide
Almost 2 Million Records Exposed in May 2019 Healthcare Data Breaches - HIPAA Guide
April was a record-breaking month for healthcare data breaches. The high number of breaches has continued in May, with 44 reported breaches and almost 2 million records exposed.
384 views
Netsec
Gone in 30 seconds – a DIY HID cable story tale » Using bettercap HID module with CrazyRadio to connect to the rogue cable
https://ift.tt/2t5kOys

Submitted December 27, 2019 at 03:54PM by s0pas
via reddit https://ift.tt/2tXm1Z5
Davidsopas
Gone in 30 seconds – a HID cable story tale | David Sopas - Web Security Researcher
Following what I mentioned in my previous post, I went to my electronics bin and gathered a Logitech Wireless mouse (M185) and a USB cable. On the mouse, I took
371 views
Netsec
New Windows Exploit Suggester tool: Windows Exploit Dowser
https://ift.tt/39gKSHf

Submitted December 27, 2019 at 03:10PM by dangerJackpot
via reddit https://ift.tt/2rBpZps
GitHub
akabe1/windows_exploit_dowser
A simple tool which could be useful to identify the exploits afflicting a Windows OS - akabe1/windows_exploit_dowser
359 views