How to create the perfect anonymizing botnet by abusing UPnP features — and without any infection Security News & Discussion

---

• How to create the perfect anonymizing botnet by abusing UPnP features — and without any infection
• Tyton - Kernel-Mode Rootkit Hunter
• Hacking keyboards using QMK
• GitHub - quarantyne/quarantyne: Modern Web Firewall: stop account takeovers, weak passwords, cloud IPs, DoS attacks, disposable emails
• Hunting with ꓘamerka 2.0 aka FIST (Flickr, Instagram, Shodan, Twitter)
• Leveraging Gradle Plugin wildcard versions for remote code execution
• ekoparty 2018 videos (English/Spanish)
• Stealing Webpages Rendered on Your Browser by Exploiting GPU Vulnerabilities
• Fragmented SQL Injection Attacks – The Solution
• BLH - A much neglected Attack Vector
• Escalating SSRF in a Vulnerable Jira Instance to RCE via Docker Engine API
• Pervasive Brazilian financial malware targets bank customers in Latin America and Europe
• Finding Exposed ES instances Using Shodan
• Debian alert DLA-1598-1 (ghostscript)

How to create the perfect anonymizing botnet by abusing UPnP features — and without any infection Posted: 29 Nov 2018 09:26 AM PST submitted by /u/anotherinfosecdude [link] [comments]

Tyton - Kernel-Mode Rootkit Hunter Posted: 29 Nov 2018 06:24 AM PST submitted by /u/ImZugzwang [link] [comments]

Hacking keyboards using QMK Posted: 29 Nov 2018 06:27 AM PST submitted by /u/mthbernardes [link] [comments]

GitHub - quarantyne/quarantyne: Modern Web Firewall: stop account takeovers, weak passwords, cloud IPs, DoS attacks, disposable emails Posted: 29 Nov 2018 11:16 AM PST submitted by /u/SoldierGarrison [link] [comments]

Hunting with ꓘamerka 2.0 aka FIST (Flickr, Instagram, Shodan, Twitter) Posted: 29 Nov 2018 09:59 AM PST submitted by /u/Mysterii8 [link] [comments]

Leveraging Gradle Plugin wildcard versions for remote code execution Posted: 29 Nov 2018 06:41 AM PST submitted by /u/Fido488 [link] [comments]

ekoparty 2018 videos (English/Spanish) Posted: 29 Nov 2018 08:14 AM PST submitted by /u/albinowax [link] [comments]

Stealing Webpages Rendered on Your Browser by Exploiting GPU Vulnerabilities Posted: 28 Nov 2018 06:34 PM PST submitted by /u/Hemlck [link] [comments]

Fragmented SQL Injection Attacks – The Solution Posted: 29 Nov 2018 09:11 AM PST submitted by /u/ziyahanalbeniz [link] [comments]

BLH - A much neglected Attack Vector Posted: 28 Nov 2018 06:36 PM PST submitted by /u/payloadartist [link] [comments]

Escalating SSRF in a Vulnerable Jira Instance to RCE via Docker Engine API Posted: 28 Nov 2018 09:43 PM PST submitted by /u/payloadartist [link] [comments]

Pervasive Brazilian financial malware targets bank customers in Latin America and Europe Posted: 29 Nov 2018 10:36 AM PST submitted by /u/Eliad-Cybereason [link] [comments]

Finding Exposed ES instances Using Shodan Posted: 28 Nov 2018 07:24 PM PST submitted by /u/payloadartist [link] [comments]

Debian alert DLA-1598-1 (ghostscript) Posted: 28 Nov 2018 06:09 PM PST submitted by /u/jdrch [link] [comments]

You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States