Modern tactical exploitation toolkit written in Python and PowerShell Security News & Discussion

---

• Modern tactical exploitation toolkit written in Python and PowerShell
• Windows Remote Administration Tool via Telegram [Full Sources - See Comment for More Details]
• WPA3: Technical Details and Discussion
• Process Injection with GDB
• Somebody's watching! When cameras are more than just 'smart'
• DJI Spark Drone Hijacking [Bug Bounty]
• Extract subdomains with GAN | python tool that extract subdomains from HTTPS certificates.
• Major version release 1.0.0 of amass, the subdomain enumeration tool written in Go. Shown to be more effective than Sublist3r.
• Fuzzing arbitrary functions in ELF binaries
• iOS Static Analysis and Recon
• Campaign Possibly Connected to “MuddyWater” Surfaces in the Middle East and Central Asia
• Fuzzing JSON Web Services
• yescrypt 1.0.0 KDF and password hashing scheme (algorithm finalized, code released)
• Release 2.0 of Top 2 Billion Probable Passwords, Probability Sorted - GitHub Repo
• Go phishing: Extending the proxy
• Vagrant Hack Box
• Reversing an Aigo (Chinese encrypted HDD) − Part 1: taking it apart
• Reversing an Aigo (Chinese encrypted HDD) − Part 2: Dumping a Cypress PSoC 1 microcontroller
• Default Stored XSS Laravel framework (fixed, sorta)
• 100k active installs preauth POI due unpatched flaw in Wordpress core

Modern tactical exploitation toolkit written in Python and PowerShell Posted: 12 Mar 2018 06:58 AM PDT submitted by /u/0xdea [link] [comments]

Windows Remote Administration Tool via Telegram [Full Sources - See Comment for More Details] Posted: 12 Mar 2018 02:02 AM PDT submitted by /u/TechLord2 [link] [comments]

WPA3: Technical Details and Discussion Posted: 12 Mar 2018 12:37 PM PDT submitted by /u/omegga [link] [comments]

Process Injection with GDB Posted: 12 Mar 2018 11:36 AM PDT submitted by /u/TechLord2 [link] [comments]

Somebody's watching! When cameras are more than just 'smart' Posted: 12 Mar 2018 11:56 AM PDT submitted by /u/EvanConover [link] [comments]

DJI Spark Drone Hijacking [Bug Bounty] Posted: 12 Mar 2018 01:31 AM PDT submitted by /u/Orlin82 [link] [comments]

Extract subdomains with GAN | python tool that extract subdomains from HTTPS certificates. Posted: 11 Mar 2018 11:46 PM PDT submitted by /u/francc3sco [link] [comments]

Major version release 1.0.0 of amass, the subdomain enumeration tool written in Go. Shown to be more effective than Sublist3r. Posted: 11 Mar 2018 06:46 PM PDT submitted by /u/Oliver_Fish [link] [comments]

Fuzzing arbitrary functions in ELF binaries Posted: 11 Mar 2018 07:11 PM PDT submitted by /u/grajagandev [link] [comments]

iOS Static Analysis and Recon Posted: 12 Mar 2018 01:01 AM PDT submitted by /u/secdevops [link] [comments]

Campaign Possibly Connected to “MuddyWater” Surfaces in the Middle East and Central Asia Posted: 12 Mar 2018 07:46 AM PDT submitted by /u/EvanConover [link] [comments]

Fuzzing JSON Web Services Posted: 12 Mar 2018 06:17 AM PDT submitted by /u/ivanpanchev333 [link] [comments]

yescrypt 1.0.0 KDF and password hashing scheme (algorithm finalized, code released) Posted: 12 Mar 2018 10:59 AM PDT submitted by /u/solardiz [link] [comments]

Release 2.0 of Top 2 Billion Probable Passwords, Probability Sorted - GitHub Repo Posted: 12 Mar 2018 02:15 PM PDT submitted by /u/berzerk0 [link] [comments]

Go phishing: Extending the proxy Posted: 12 Mar 2018 01:36 PM PDT submitted by /u/jamaican420guy [link] [comments]

Vagrant Hack Box Posted: 12 Mar 2018 04:07 AM PDT submitted by /u/X1M_ [link] [comments]

Reversing an Aigo (Chinese encrypted HDD) − Part 1: taking it apart Posted: 12 Mar 2018 08:06 AM PDT submitted by /u/trou_fr [link] [comments]

Reversing an Aigo (Chinese encrypted HDD) − Part 2: Dumping a Cypress PSoC 1 microcontroller Posted: 12 Mar 2018 08:20 AM PDT submitted by /u/trou_fr [link] [comments]

Default Stored XSS Laravel framework (fixed, sorta) Posted: 12 Mar 2018 04:28 AM PDT submitted by /u/X1M_ [link] [comments]

100k active installs preauth POI due unpatched flaw in Wordpress core Posted: 12 Mar 2018 03:41 AM PDT submitted by /u/mslavco [link] [comments]

You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States