As RedTeaming has grown with the industry, so has our need to build dependable environments. In keeping with the cat-and-mouse game we find ourselves in, it’s essential to possess the...

Introduction Back in 2018, PaloAlto Unit42 publicly documented RGDoor, an IIS backdoor used by the APT34. The article highlighted some details which sparked my interest and inspired me to write...

The open-source tool Malboxes now makes malware analysis safer by deploying directly into the Amazon AWS cloud removing the requirement of operating a local dirty network.

A new Insider Risk Management solution within Microsoft 365 uses machine learning to intelligently detect potentially risky behavior within a company.

Another Subdomain ENumeration Tool. Contribute to cinerieus/as3nt development by creating an account on GitHub.

Posted in r/netsec by u/irckeyboardwarrior • 3 points and 7 comments

Posted in r/netsec by u/securisec • 1 point and 0 comments

After buying a Model 3 in June of 2019, I began deep diving into understanding how my new car works. My interest largely being the…

This article is part of a broader series on opposition research and OSINT. If you would like to contribute or want to suggest an amendment or work with me on my upcoming articles on Facebook,

Posted in r/netsec by u/XVilka • 5 points and 1 comment

Posted in r/netsec by u/PickleeeeeRick • 3 points and 0 comments

Zetta was a hard rated box that had some interesting vulnerabilities. An unfinished dual-stack implementation was used to leak the IPv6 address of the server which exposed a rsync service. Write access to rsync was used to write to an authorized_keys file…

Slack Group Before we get started I have started a slack group dedicated to hacking. We welcome everyone from beginner…

[https://github.com/RedCursorSecurityConsulting/CVE-2020-0668](https://www.google.com/url?q=https://github.com/RedCursorSecurityConsulting/CVE-2020...

For more than half a century, governments all over the world trusted a single company to keep the communications of their spies, soldiers and diplomats secret. That company was secretly run by the …

A quick status update by Mitja Kolsek, the 0patch Team [Update 2/22/2020: More details on the exploit code for CVE-2020-0674 were publis...

Zero Networks Access Orchestrator is a network security platform that defines, enforces and adapts user- and machine-level network access policies.

Posted by wrongbaud - 78 votes and no comments

Security Research Blog for learning and sharing

This repo contains logstash of various honeypots. Contribute to 0xsha/sweetie-data development by creating an account on GitHub.