| Mar | APR | May |
| 04 | ||
| 2021 | 2022 | 2023 |
COLLECTED BY
Collection: Save Page Now Outlinks
e.g. subreddit:aww site:imgur.com dog
see the search faq for details.
advanced search: by author, subreddit...
/r/netsec only accepts quality technical posts. Non-technical posts are subject to moderation.
Content should focus on the "how."
Check the new queue for duplicates.
Always link to the original source.
Titles should provide context.
Ask questions in our Discussion Threads.
Hiring posts must go in the Hiring Threads.
Do not submit prohibited topics.
» Our fulltext content guidelines
Don't create unnecessary conflict.
Keep the discussion on topic.
Limit the use of jokes & memes.
Don't complain about content being a PDF.
Follow all reddit rules and obey reddiquette.
» Our fulltext discussion guidelines
No populist news articles (CNN, BBC, FOX, etc.)
No curated lists.
No question posts.
No social media posts.
No image-only/video-only posts.
No livestreams.
No tech-support requests.
No full-disclosure posts.
No paywall/regwall content.
No crowdfunding posts.
» Our fulltext list of prohibited topics & sources
Join us on IRC: #r_netsec on freenode
We're also on: Twitter, Facebook, & Google+
/r/blackhat - Hackers on Steroids
/r/computerforensics - IR Archaeologists
/r/crypto - Cryptography news and discussion
/r/Cyberpunk - High-Tech Low-Lifes
/r/lockpicking - Popular Hacker Hobby
/r/Malware - Malware reports and information
/r/netsecstudents - netsec for noobs students
/r/onions - Things That Make You Cry
/r/privacy - Orwell Was Right
/r/pwned - "What Security?"
/r/REMath - Math behind reverse engineering
/r/ReverseEngineering - Binary Reversing
/r/rootkit - Software and hardware rootkits
/r/securityCTF - CTF news and write-ups
/r/SocialEngineering - Free Candy
/r/sysadmin - Overworked Crushed Souls
/r/vrd - Vulnerability Research and Development
/r/xss - Cross Site Scripting
- announcement
●77 comments
●share
●save
●report
2
185
186
187
Introducing PacketStreamer - packet capture for Kubernetes and other platforms (oweng.medium.com)
submitted by foobarbazwibble
●10 comments
●share
●save
●report
3
2
3
4
A step-by-step analysis of the Russian Turla backdoor called TinyTurla (cybergeeks.tech)
submitted by CyberMasterV
●comment
●share
●save
●report
4
52
53
54
DoS vulnerability in firmware v3.0.3 of KNXnet/IP Secure router SCN-IP100.03 (github.com)
submitted by robertguetzkow
●comment
●share
●save
●report
5
65
66
67
How Go Mitigates Supply Chain Attacks (go.dev)
submitted by e-san55
●18 comments
●share
●save
●report
6
29
30
31
Resources Search Engine for Infosec based on Ippsec.rocks (search.redteam.fail)
submitted by sarthaksaini
●6 comments
●share
●save
●report
7
158
159
160
GitLab Critical Security Release: 14.9.2, 14.8.5, and 14.7.7 (about.gitlab.com)
submitted by 0xmilan
●13 comments
●share
●save
●report
8
9
10
11
Gaining code execution on the backend of the PEAR package manager (blog.sonarsource.com)
submitted by monoimpact
●comment
●share
●save
●report
9
163
164
165
Critical Vulnerability in Spring Core: CVE-2022-22965 a.k.a. Spring4Shell (sysdig.com)
submitted by MiguelHzBz
●31 comments
●share
●save
●report
10
7
8
9
SpringShell Zero-Day Vulnerability: All You Need To Know (jfrog.com)
submitted by SRMish3
●1 comment
●share
●save
●report
11
57
58
59
SpringShell Detector - searches compiled code (JAR/WAR binaries) for potentially vulnerable web apps (github.com)
submitted by SRMish3
●1 comment
●share
●save
●report
12
61
62
63
Pwning 3CX Phone Management Backends from the Internet (medium.com)
submitted by EnableSecurity
●3 comments
●share
●save
●report
13
147
148
149
Spring4Shell: Security Analysis of the latest Java RCE '0-day' vulnerabilities (lunasec.io)
submitted by freeqaz
●27 comments
●share
●save
●report
14
43
44
45
Spring4Shell 0-day writeup and guidance (rapid7.com)
submitted by CraZyBob
●comment
●share
●save
●report
15
32
33
34
Spring Core on JDK9+ is vulnerable to remote code execution (praetorian.com)
submitted by ScottContini
●7 comments
●share
●save
●report
16
267
268
269
Decrypting your own HTTPS traffic with Wireshark (trickster.dev)
submitted by Quantum_Rage
●25 comments
●share
●save
●report
17
67
68
69
Betabot in the Rearview Mirror (krabsonsecurity.com)
submitted by krabsonsecurity
●comment
●share
●save
●report
18
0
1
2
IDA plugin for finding constants used in conditional statements (github.com)
submitted by Martypx00
●comment
●share
●save
●report
19
1
2
3
GitHub Cache Poisoning (scribesecurity.com)
submitted by BarakScribe
●comment
●share
●save
●report
20
5
6
7
lunasec/2022-03-30-spring-core-rce (github.com)
submitted by hackerboy69
●comment
●share
●save
●report
21
0
0
0
Conti-nuation: methods and techniques observed in operations post the leaks (research.nccgroup.com)
submitted by digicatTrusted Contributor
●comment
●share
●save
●report
22
9
10
11
Threat Alert: First Python Ransomware Attack Targeting Jupyter Notebooks (blog.aquasec.com)
submitted by esdaniel-
●comment
●share
●save
●report
23
13
14
15
Cisco Nexus Dashboard Fabric Controller unauth web-to-root shell (github.com)
submitted by ChoiceGrapefruit0
●comment
●share
●save
●report
24
5
6
7
[OC] Data Exfiltration using RedDrop - A Python Webserver for file and data exfiltration which automatically detects, decodes, decrypts, and transforms data. (medium.com)
submitted by cyberbutler
●2 comments
●share
●save
●report
25
3
4
5
pdfA few vulnerabilities discovered in Wyze Cam (CVE-2019-9564, CVE-2019-12266) (bitdefender.com)
submitted by jaymzu
●comment
●share
●save
●report
view more:
●about
●blog
●about
●advertising
●careers
●help
●site rules
●Reddit help center
●reddiquette
●mod guidelines
●contact us
●apps & tools
●Reddit for iPhone
●Reddit for Android
●mobile website
●<3
●reddit premium
●reddit coins
Use of this site constitutes acceptance of our User Agreement and Privacy Policy. © 2022 reddit inc. All rights reserved.
REDDIT and the ALIEN Logo are registered trademarks of reddit inc.
Advertise - technology
π Rendered by PID 75356 on reddit-service-r2-whoalane-57556bcf65-m59hb at 2022-04-04 10:13:04.613268+00:00 running e9dbffc country code: US.
