Netsec – Telegram

Netsec

7.6K subscribers

23.2K links

This channel posts the feed from r/netsec.
For any suggestions dm @streaak
Donate to keep the bot running https://www.paypal.me/akhilgv

Download Telegram

About

Blog

Apps

Platform

7.6K subscribers

Well, Terahash $1.4 Million configuration of 448 x RTX 2080 GPUs can't even crack 1 character long hashed password generated with "Multi One Password" tool!
/r/WindowsPortableApps/comments/f6ckmu/well_terahash_14_million_configuration_of_448_x/

Submitted February 20, 2020 at 12:44AM by RedditGeneralUser
via reddit https://ift.tt/38Hpdrl

Well, Terahash $1.4 Million configuration of 448 x RTX 2080 GPUs...

Posted in r/netsec by u/RedditGeneralUser • 0 points and 0 comments

298 views19:49

Finding Python ReDoS bugs at scale using Dlint and r2c (CVE-2020-8492)
https://ift.tt/2HzZdC6

Submitted February 20, 2020 at 02:13AM by Schwag
via reddit https://ift.tt/2SWyIME

Finding Python ReDoS bugs at scale using Dlint and r2c

Automating regular expression denial-of-service detection

281 views21:49

Security Analysis of the SoloKeys Firmware
https://ift.tt/3bOldqJ

Submitted February 20, 2020 at 03:36AM by nibblesec
via reddit https://ift.tt/2V7lMWI

Security Analysis of the Solo Firmware

We engaged Doyensec to perform a security assessment of our firmware, v3.0.1 at the time of testing. During a 10 person/days project, Doyensec discovered and reported 3 vulnerabilities in our firmware. While two of the issues are considered informational…

293 views22:49

2020 Wisconsin Hacker Conference Speakers
https://ift.tt/2SK9WAl

Submitted February 20, 2020 at 08:48AM by kamic
via reddit https://ift.tt/39SQwPh

2020 Wisconsin Hacker Conference Speakers

Posted in r/netsec by u/kamic • 2 points and 0 comments

279 views03:49

MGM Resorts Says Data Breach Exposed Some Guests’ Personal Information
https://ift.tt/2vRic8t

Submitted February 20, 2020 at 09:35AM by 0xb800
via reddit https://ift.tt/2SZ9nBB

MGM Resorts Says Data Breach Exposed Some Guests’ Personal Information

The casino and hotel giant said “it was confident that no financial, payment card or password data was involved in this matter.”

299 views04:49

Stop Using Encrypted Email
https://ift.tt/2HJniX3

Submitted February 20, 2020 at 03:08PM by ajsharp
via reddit https://ift.tt/39QkhAt

latacora.micro.blog

Latacora - Stop Using Encrypted Email

Email is unsafe and cannot be made safe. The tools we have today to encrypt email are badly flawed. Even if those flaws were fixed, email would remain unsafe. Its problems cannot plausibly be mitigated. Avoid encrypted email.
Technologists hate this argument.…

307 views10:28

SentinelOne Announces $200M Series E
https://ift.tt/2v26o3d

Submitted February 20, 2020 at 03:47PM by Cyberthere
via reddit https://ift.tt/2uZe2eI

SentinelOne Announces $200M Series E

Cybersecurity’s Fastest Growing Platform Now Valued at Over $1 Billion

278 views11:28

Exploiting Jira for Host Discovery
https://ift.tt/38Ih45W

Submitted February 20, 2020 at 08:06PM by chicksdigthelongrun
via reddit https://ift.tt/2vQYb1Q

Exploiting Jira for Host Discovery

Last October I dived into the world of Jira Software (version 8.4.1) in the hope of discovering new vulnerabilities. Initially, I came…

289 views15:28

Introduction To Modern Routing For Red Team Infrastructure - using Traefik, Metasploit, Covenant and Docker
https://ift.tt/3bPEo3H

Submitted February 20, 2020 at 09:12PM by khast3x
via reddit https://ift.tt/2vR8T8y

304 views16:28

A-Z guide on setting up Graylog Part 1
/r/sysadmin/comments/f6u5gp/az_guide_on_setting_up_graylog_part_1/

Submitted February 20, 2020 at 09:08PM by HanSolo71
via reddit https://ift.tt/2V6U0d5

A-Z guide on setting up Graylog Part 1

Posted in r/netsec by u/HanSolo71 • 4 points and 0 comments

303 views16:28

BEC Group Exaggerated Lion Targets 3,000 People at 2,100 companies, Successfully Laundering Hundreds of Thousands of Dollars in Checks by Using Romance Victims
https://ift.tt/2SZDAQV

Submitted February 21, 2020 at 12:21AM by iHeartMalware
via reddit https://ift.tt/3bWZGfs

271 views19:28

Rule-Based Highlighter Plugin for BurpSuite
https://ift.tt/2SJWrRg

Submitted February 21, 2020 at 04:04AM by Sweaty_Butterscotch
via reddit https://ift.tt/2wv8ZDb

From the netsec community on Reddit: Rule-Based Highlighter Plugin for BurpSuite

Posted by Sweaty_Butterscotch - 11 votes and no comments

312 views10:28

Making Cheap Hacking tools with Arduino | Security Tools Podcast
https://ift.tt/2SzdfKF

Submitted February 21, 2020 at 06:29PM by varonisofficial
via reddit https://ift.tt/2HHqZfU

Security Tools Podcast

Seytonic is a YouTube creator who makes security content and Arduino-based hacking tools. We talk about what it's like to create content for hackers, his experience making hacker hardware, and why he chose to make low-cost hacking tools using Arduino IDE.

272 views13:28

CVE-2020-1938 - AJP RCE
/r/sysadmin/comments/f7algz/cve20201938_ajp_rce/

Submitted February 21, 2020 at 06:21PM by arcticnixadm
via reddit https://ift.tt/2T9CTVw

CVE-2020-1938 - AJP RCE

Posted in r/netsec by u/arcticnixadm • 3 points and 1 comment

247 views13:28

Flask Debug Mode RCE
https://ift.tt/3bIqCQg

Submitted February 21, 2020 at 06:58PM by ghostlulz
via reddit https://ift.tt/38MJoUN

Ghostlulz Hacks

Flask RCE Debug Mode - Ghostlulz Hacks

Django, Flask remote code execution (RCE) via enabling debug mode. Werkzeug debug mode enables anonymous command shell execution via the web.

252 views13:58

CVE-2018-8611 – Diving into the Windows Kernel Transaction Manager (KTM) for fun and exploitation
https://ift.tt/2SMk4IV

Submitted February 21, 2020 at 07:29PM by digicat
via reddit https://ift.tt/32fA5dg

NCC Group Research

CVE-2018-8611 – Diving into the Windows Kernel Transaction Manager (KTM) for fun and exploitation

Written by Cedric Halbronn On Saturday 15th February, I gave a talk titled “How CVE-2018-8611 Can be Exploited to Achieve Privilege Escalation on Windows 10 1809 (RS5) and Earlier”. Thi…

252 views14:28

Starting Sept. 1, SSL Certificate Validity Will Be Limited to One Year by Apple’s Safari Browser
https://ift.tt/39KF2gO

Submitted February 21, 2020 at 07:52PM by apkorol
via reddit https://ift.tt/2T4BOOE

Hashed Out by The SSL Store™

SSL Certificate Validity Will Be Limited to One Year by Apple’s Safari Browser - Hashed Out by The SSL Store™

Starting Sept. 1, Safari will no longer trust SSL/TLS certificates with validity periods longer than 398 days Starting Sept. 1, Apple’s Safari browser will no longer trust SSL/TLS leaf certificates...

266 views14:58

Sudo Killer
https://ift.tt/3bR3ZsZ

Submitted February 21, 2020 at 09:25PM by brainborg
via reddit https://ift.tt/2HJqwdl

KitPloit - PenTest & Hacking Tools

SUDO_KILLER - A Tool To Identify And Exploit Sudo Rules' Misconfigurations And Vulnerabilities Within Sudo

282 views16:28

A-Z guide on setting up Graylog Part 2
/r/sysadmin/comments/f7flc0/az_guide_on_setting_up_graylog_part_2/

Submitted February 22, 2020 at 12:16AM by HanSolo71
via reddit https://ift.tt/2SMOD0T

A-Z guide on setting up Graylog Part 2

Posted in r/netsec by u/HanSolo71 • 2 points and 0 comments

251 views19:28

Testing Your Red Team Infrastructure
https://ift.tt/38tKRPv

Submitted February 22, 2020 at 12:45AM by dmchell
via reddit https://ift.tt/2PecAwe

Testing your RedTeam Infrastructure - MDSec

As RedTeaming has grown with the industry, so has our need to build dependable environments. In keeping with the cat-and-mouse game we find ourselves in, it’s essential to possess the...

256 views19:58

IIS Raid – Backdooring IIS Using Native Modules
https://ift.tt/38IjEZp

Submitted February 22, 2020 at 12:45AM by dmchell
via reddit https://ift.tt/3c1lo2i

IIS Raid – Backdooring IIS Using Native Modules - MDSec

Introduction Back in 2018, PaloAlto Unit42 publicly documented RGDoor, an IIS backdoor used by the APT34. The article highlighted some details which sparked my interest and inspired me to write...

248 views19:58