GoWard - A robust Red Team proxy written in Go Security News & Discussion

---

• GoWard - A robust Red Team proxy written in Go
• Doing a uni project on pen testing and appreciated this article for help writing up an information disclosure vulnerability. Though some of you might appreciate it too.
• CVE-2021-45467: CWP CentOS Web Panel – preauth RCE
• CVE-2022-0185: Detecting and mitigating Linux Kernel vulnerability causing container escape
• The best free, open-source supply-chain security tool? The lockfile
• Captain Hook - How (not) to look for vulnerabilities in Java applications
• HOUDINI: A web app with huge number of Docker Images for Network Security with run commands and cheatsheet (Hundreds of Offensive and Useful Docker Images for Network Intrusion )
• How mail server related DNS settings (SPF, DKIM, DMARC, MTA-STS, DANE, BIMI) work and their usage stats in the top 1M domain
• A Detailed Analysis of WhisperGate Targeting Ukrainian Organizations
• Pentest Collaboration Framework: tool which will help you to store/modify/share information about pentest/web analysis projects. OpenSource, Portable, CrossPlatform & completely free! Supports integration with 15 tools & user-defined report generation. For several teams: seperated workspaces!

GoWard - A robust Red Team proxy written in Go Posted: 22 Jan 2022 10:50 AM PST submitted by /u/UnwearableCactus [link] [comments]

Doing a uni project on pen testing and appreciated this article for help writing up an information disclosure vulnerability. Though some of you might appreciate it too. Posted: 23 Jan 2022 02:09 AM PST submitted by /u/PlatonicDogLover93 [link] [comments]

CVE-2021-45467: CWP CentOS Web Panel – preauth RCE Posted: 22 Jan 2022 12:55 AM PST submitted by /u/Gallus [link] [comments]

CVE-2022-0185: Detecting and mitigating Linux Kernel vulnerability causing container escape Posted: 21 Jan 2022 02:31 PM PST submitted by /u/MiguelHzBz [link] [comments]

The best free, open-source supply-chain security tool? The lockfile Posted: 21 Jan 2022 08:28 AM PST submitted by /u/pabloest [link] [comments]

Captain Hook - How (not) to look for vulnerabilities in Java applications Posted: 20 Jan 2022 09:45 PM PST submitted by /u/Gallus [link] [comments]

HOUDINI: A web app with huge number of Docker Images for Network Security with run commands and cheatsheet (Hundreds of Offensive and Useful Docker Images for Network Intrusion ) Posted: 20 Jan 2022 07:41 AM PST submitted by /u/deleee [link] [comments]

How mail server related DNS settings (SPF, DKIM, DMARC, MTA-STS, DANE, BIMI) work and their usage stats in the top 1M domain Posted: 20 Jan 2022 05:54 AM PST submitted by /u/c0r0n3r [link] [comments]

A Detailed Analysis of WhisperGate Targeting Ukrainian Organizations Posted: 20 Jan 2022 11:29 AM PST submitted by /u/CyberMasterV [link] [comments]

Pentest Collaboration Framework: tool which will help you to store/modify/share information about pentest/web analysis projects. OpenSource, Portable, CrossPlatform & completely free! Supports integration with 15 tools & user-defined report generation. For several teams: seperated workspaces! Posted: 20 Jan 2022 07:43 AM PST submitted by /u/Any_Gas_6250 [link] [comments]

You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States