Profile avatar
r-netsec.bsky.social
Mirrors r/netsec, "a community-curated link aggregator of technical information security content." Unofficial. Operated by @tweedge.net, open source @ https://github.com/tweedge/xpost-reddit-to-fediverse
1,810 posts 393 followers 4 following
Prolific Poster
Posts 50 Comments 0

Hybrid Analysis Deep Dive Into Allegedly AI-Generated FunkSec Ransomware

submitted 3 hours ago • 0 comments

We Deliberately Exposed AWS Keys on Developer Forums: Attackers Exploited One in 10 Hours

submitted 5 hours ago • 0 comments

Obfuscating API Patches to Bypass New Windows Defender Behavior Signatures

submitted 6 hours ago • 0 comments

Why a push for encryption backdoors is a global security risk

submitted 6 hours ago • 0 comments

Evading Detection with Payload Pipelines

submitted 8 hours ago • 0 comments

Client-Side Path Traversal - Penetesting guide | @VeryLazyTech

submitted 9 hours ago • 0 comments

Hacking the Xbox 360 Hypervisor Part 2: The Bad Update Exploit

submitted 15 hours ago • 0 comments

Burp Variables: a Burp extension that lets you store and reuse variables in outgoing requests, similar to functionality in Postman/Insomnia/other API testing clients

submitted 23 hours ago • 0 comments

Massive security gaps discovered in building access systems

submitted 1 day ago • 0 comments

The Full Costs of a DIY Security Canary Program

submitted 1 day ago • 0 comments

MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client

submitted 1 day ago • 0 comments

Substack Domain Takeover

submitted 1 day ago • 0 comments

Wallbleed: A Memory Disclosure Vulnerability in the Great Firewall of China

submitted 2 days ago • 0 comments

Former Disney employee files wrongful termination complaint after compromise

submitted 3 days ago • 0 comments

Bybit $1.5b hack was a Safe Wallet web app JS payload injection

submitted 3 days ago • 0 comments

Research: Using Stylometry & Topic Modeling to Attribute State-Sponsored Hacktivist Groups

submitted 3 days ago • 0 comments

Bypass AMSI in 2025

submitted 4 days ago • 0 comments

Github scam investigation: Thousands of "mods" and "cracks" stealing your data

submitted 4 days ago • 0 comments

How to Find More IDORs - @verylazytech

submitted 4 days ago • 0 comments

Join us in 2 weeks on March 12th at 13:00 GMT-5 for a meetup teamup: Liz Steininger from Least Authority and Pacu from Zcash Community Grants! The two will be presenting "Enhancing Zcash Security: a long-term engagement with Least Authority, the Zcash Ecosystem Security Lead".

submitted 5 days ago • 0 comments

An inside look at Equation/APT-C-40 TTPs from China’s lense

submitted 5 days ago • 0 comments

16 Malicious Chrome extensions infected over 3.2 mln users worldwide.

submitted 5 days ago • 0 comments

The Best Security Is When We All Agree To Keep Everything Secret (Except The Secrets) - NAKIVO Backup & Replication (CVE-2024-48248) - watchTowr Labs

submitted 6 days ago • 0 comments

Mixing up Public and Private Keys in OpenID Connect deployments

submitted 6 days ago • 0 comments

Abusing VBS Enclaves to Create Evasive Malware

submitted 7 days ago • 0 comments

Caller ID Spoofing: The Invisible Threat to Phone Security and How to Combat It

submitted 7 days ago • 0 comments

Streamlining vulnerability research with IDA Pro and Rust

submitted 7 days ago • 0 comments

DNS Zone Transfer Penetration Testing: Uncovering Hidden Risks

submitted 7 days ago • 0 comments

Methods of defeating potting compound on electronics

submitted 7 days ago • 0 comments

Exposing Shadow AI Agents: How We Extracted Financial Data from Billion-Dollar Companies

submitted 8 days ago • 0 comments

Over 35,000 Websites Targeted in Full-Page Hijack Linking to a Chinese-Language Gambling Scam

submitted 8 days ago • 0 comments

Three questions about Apple, encryption, and the U.K.

submitted 8 days ago • 0 comments

Removing Jeff Bezos from my bed

submitted 11 days ago • 0 comments

60-pages guide on how to use Bettercap on Android

submitted 11 days ago • 0 comments

Introducing keycred: A cross-platform tool for handling Active Directory Shadow Credentials/msDS-KeyCredentialLink

submitted 11 days ago • 0 comments

New Java Runtime Reverse Engineering Tool (Injected DLL, Runtime Bytecode & Heap Analysis)

submitted 11 days ago • 0 comments

RANsacked: Over 100 Security Flaws Found in LTE/5G Network Implementations

submitted 12 days ago • 0 comments

How to prove false statements? (Part 3)

submitted 12 days ago • 0 comments

Achieving RCE in famous Japanese chat tool with an obsolete Electron feature

submitted 13 days ago • 0 comments

Ivanti Endpoint Manager Credential Coercion Vulnerabilities Deep-Dive

submitted 13 days ago • 0 comments

Reinventing PowerShell in C/C++

submitted 13 days ago • 0 comments

Microsoft Edge Developer VM Remote Code Execution

submitted 14 days ago • 0 comments

Passkey Raider: Burp Suite Extension for Pentesting Passkey (Pentest & Bug Bounty)

submitted 14 days ago • 0 comments

Everyday Ghidra: How Platform Choice Influences Ghidra’s Binary Analysis

submitted 14 days ago • 0 comments

Basic Red Team Certification Pathway

submitted 14 days ago • 0 comments

Arechclient2 (sectopRAT) Analysis – A Highly Obfuscated .NET RAT with Malicious Chrome Extension

submitted 14 days ago • 0 comments

Interactive demo of an SSH honeypot using AI (open-source)

submitted 14 days ago • 0 comments

Announcing the Incident response program pack 1.5

submitted 15 days ago • 0 comments

How to approach network protocol fuzzing

submitted 15 days ago • 0 comments

PyCript WebSocket - Burp Suite extension for bypassing client-side encryption in Web Socket Messages

submitted 16 days ago • 0 comments