/r/netsec Archives | InfoSec Industry

Enlarge (credit: Getty Images | zf L) AT&T has started offering 2Gbps and 5Gbps symmetrical Internet speeds over its fiber-to-the-home network, the telecom company announced today. The multi-gigabit speeds are...

Registration for the (ISC)² Entry-Level Cybersecurity Certification Exam Pilot Program Is Now Open

Dark Reading January 24, 2022

New certification validates students' and career changers' foundational skills and helps kickstart their cybersecurity careers.

DC, 3 States Sue Google Saying it Invades Users' Privacy

SecurityWeek January 24, 2022

The District of Columbia and three states are suing Google for allegedly deceiving consumers and invading their privacy by making it nearly impossible for them to stop their location from being tracked. read more

A flaw in Rust Programming language could allow to delete files and directories

Security Affairs January 24, 2022

The maintainers of the Rust programming language fixed a high-severity flaw that could allow attackers to delete files and directories from a vulnerable system. The maintainers of the Rust programming language have released a security update for a high-severity...

/r/netsec

CVE-2022-0185 – What does the newest kernel exploit mean for Kubernetes

GoWard – A robust Red Team proxy written in Go

CVE-2021-45467: CWP CentOS Web Panel – preauth RCE

CVE-2022-0185: Detecting and mitigating Linux Kernel vulnerability causing container escape

The best free, open-source supply-chain security tool? The lockfile

HOUDINI: A web app with huge number of Docker Images for Network Security with run commands and cheatsheet (Hundreds of Offensive and Useful Docker Images for Network Intrusion )

Introducing TREVORproxy and TREVORspray 2.0

SeeYouCM-Thief: Exploiting common misconfigurations in Cisco phone systems

Zooming in on Zero-click Exploits (Project Zero)

Mixed Messages: Busting Box’s MFA Methods | Varonis

Public exploit POC for critical windows http RCE impacting multiple windows versions

Stealing administrative JWT’s through post auth SSRF – VMWare Workspace One Access (CVE-2021-22056)

Capturing RDP NetNTLMv2 Hashes: Attack details and a Technical How-To Guide – GoSecure

Domain Persistence – Machine Account

You’re running untrusted code!

Free copy of The ssh Plumber’s Handbook

IndexedDB in Safari 15 leaks your browsing activity in real time

A Detailed Guide to cracking the OSWE Certification

10 real-world stories of how we’ve compromised CI/CD pipelines

tlsmate: tool to scan TLS servers for their configuration weaknesses and vulnerabilities

LATEST NEWS

Linux Servers at Risk of RCE Due to Critical CWP Bugs

AT&T announces multi-gigabit fiber: $110 a month for 2Gbps, $180 for 5Gbps

Registration for the (ISC)² Entry-Level Cybersecurity Certification Exam Pilot Program Is Now Open

DC, 3 States Sue Google Saying it Invades Users' Privacy

A flaw in Rust Programming language could allow to delete files and directories

EDITOR PICKS

Now Is a Good Time to Update Your Recovery Email Addresses

Crypto.com Finally Admits It Lost $30 Million in a Hack

The Internet’s Most Tempting Targets

LEADERS

China’s Olympics App Is Horribly Insecure

Jail for prolific romance fraudster who fleeced besotted lonely hearts

San Francisco Police Illegally Spying on Protesters

LATEST POSTS

AT&T announces multi-gigabit fiber: $110 a month for 2Gbps, $180 for...

Registration for the (ISC)² Entry-Level Cybersecurity Certification Exam Pilot Program Is...

DC, 3 States Sue Google Saying it Invades Users' Privacy