Port 22

Evading Sysmon DNS Monitoring

/u/sanitybitReddit NetSec

Trinity: PSP Emulator Escape

/u/0xInfectionReddit NetSec

Instagram tests new ways to recover hacked accounts

Tom FoltnESET

Firefox Releases Critical Patch Update to Stop Ongoing Zero-Day Attacks

noreply@blogger.com (Unknown)The Hackers News

As Cloud Adoption Grows, DLP Remains Key Challenge

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

Online lyric service Genius hid a Morse code message in song lyrics to prove Google was copying them to its own search page

/u/HardlyNetworkingReddit NetSec

New Android 2FA Exploit Discovered, Wave of New Apps Targets Cryptocurrency Users

/u/Ichi_MokuMReddit NetSec

Advertising Alliance Plans Protocols to Reduce Dangerous Content

Dark Reading StaffDark Reading - Threat Intelligence

Escalating AWS IAM Privileges with an Undocumented CodeStar API

/u/rhino_security_labs_Reddit NetSec

Google Targets Deceptive Sites with New Chrome Tools

Dark Reading StaffDark Reading - Threat Intelligence

Mobile Cyberespionage Campaign Bouncing Golf Affects Middle East

Mobile Threat Response TeamTrend Micro

Plurox: Modular backdoor

Anton KuzmenkoSecure List

5 Keys to Improve Your Cybersecurity

noreply@blogger.com (The Hacker News)The Hackers News

Running iOS in QEMU to an interactive bash shell (Part 1)

/u/TitokhanReddit NetSec

GandCrab Ransomware Decryption Tool [All Versions] Recover Files for Free

noreply@blogger.com (Unknown)The Hackers News

570K HQ Combo (Spotify,Deezer,Crunchy,Netflix,uPlay,Steam,Origin)

/u/daseggdReddit NetSec

How Fraudulent Domains 'Hide in Plain Sight'

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

Why you should not use free VPNs

/u/brent901Reddit NetSec

When you need more security than typical TLS or SSH protocols...

/u/cryptozoneReddit NetSec

TCP SACK PANIC - Kernel vulnerabilities

/u/jeffrossisfatReddit NetSec

Zero to Hero with AWS GuardDuty, Terraform and Slack

/u/oh_heyyyyReddit NetSec

A Blue Team guide to Azure & Office 365 monitoring - 0x00sec

/u/Evil1337Reddit NetSec

SACK Panic - CVE-2019-11477 - Multiple TCP-based remote denial of service issues

/u/cdingoReddit NetSec

Biggest Malware Threats in Healthcare Revealed - NetSec.News

/u/arssal786Reddit NetSec

Consul vulnerability scanner and exploit tool

/u/Testing_PensReddit NetSec

Deploy a private Burp Collaborator Server in Azure

/u/Eta-MesonReddit NetSec

Data, Surveillance, and the AI Arms Race

Bruce SchneierSchneier on Security

Utilities, Nations Need Better Plan Against Critical Infrastructure Attackers

Robert Lemos Contributing WriterDark Reading - Threat Intelligence

Malware sidesteps Google permissions policy with new 2FA bypass technique

Lukas StefankoESET

Searchbook: free Firefox extension for executing some Graph-like searches against Facebook

/u/0xdeaReddit NetSec

772K [EMAIL:PASS] COMBO [Minecraft, Fortnite,Netflix,Spotify,Hulu,Deezer,Steam,Crunchyroll,uPlay]

/u/daseggdReddit NetSec

0xsp Mongoose Linux Privilege Escalation intelligent Enumeration Toolkit

/u/lawrenceamerReddit NetSec

GitHub - BishopFox/sliver: Implant framework

/u/BishopfoxReddit NetSec

708k Combo HQ [Email_Pass][Netflix,Deezer,Spotify, Fortnite, Origin,fibit ,Minecraft]

/u/daseggdReddit NetSec

Arc of Erie County New York Reports that 3,751 Patients PHI Was Exposed on Internet in 30-Month Period

/u/wjakfdsnmsdf956Reddit NetSec

Threat Group Cards from ThaiCERT

/u/digicatReddit NetSec

Windows Incident Response Cheat Sheet

/u/digicatReddit NetSec

Yubico does product recall of FIPS YubiKey due to reduced entropy

/u/digicatReddit NetSec

Solving each and every FB-CTF challenge - PART 1

/u/Eta-MesonReddit NetSec

Sliver - Advanced implant and C2 framework

/u/mandatoryprogrammerReddit NetSec

DistroTest.net - The first online operating system tester

/u/devilbonesReddit NetSec

Antivirus Evasion with Python

/u/Eta-MesonReddit NetSec

Hack The Box - FluJab Write-up by 0xRick

/u/Ahm3d_H3shamReddit NetSec

App Analysis: Nimses (Tracking PewDiePie and collecting user data)

/u/kahunaluReddit NetSec

10 Notable Security Acquisitions of 2019 (So Far)

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

AttackDetection/cve-2019-0708.rules which detect possible exploitation under TLS

/u/digicatReddit NetSec

600 Million Unique Clear-text Passwords Accompanied By Various Hashes

/u/nexangelusReddit NetSec

Friday Squid Blogging: Climate Change Could be Good for Squid

Bruce SchneierSchneier on Security

vim Code Execution via the vim plugin Modelines

/u/FiroSolutionsReddit NetSec

Upcoming Speaking Engagements

Bruce SchneierSchneier on Security

Computers and Video Surveillance

Bruce SchneierSchneier on Security

SSH Passphrase Phishing (PoC)

/u/crabpatReddit NetSec

Only 20 days left for the CFP/CFT/CFW for Threat CON 2019 happening in Kathmandu, Nepal on 29-31 August. Submit your paper, tool and workshop proposals soon. Also, the early bird passes along with passes for workshop by Dr. Mario Heiderich are up for grabs.

/u/itsplaneReddit NetSec

Week in security with Tony Anscombe

Tom FoltnESET

6 tips for choosing the right VPN for personal use

/u/Specific_NameReddit NetSec

Nginx security tips: TLS/SSL HTTPS Improved security and TTFB

/u/UnprotectedtxtReddit NetSec

GDPR one year on: Most Europeans know at least some of their rights

Tom FoltnESET

Better Cybersecurity Research Requires More Data Sharing

Robert Lemos Contributing WriterDark Reading - Threat Intelligence

How spending our Saturday hacking earned us 20k

/u/_vavkamil_Reddit NetSec

AESDDoS Botnet Malware Infiltrates Containers via Exposed Docker APIs

Trend MicroTrend Micro

Video Surveillance by Computer

Bruce SchneierSchneier on Security

Sensory Overload: Filtering Out Cybersecurity's Noise

Joshua Goldfarb Independent ConsultantDark Reading - Threat Intelligence

Eclipse attacks on IoT devices

/u/yahsintwReddit NetSec

Cybersecurity Supply And Demand Heat Map

/u/lord_sqlReddit NetSec

News crawler, Clean Text Extraction & ML Training automation

/u/kalden31Reddit NetSec

Port 22

~ 19 Jun 2019 ~

Evading Sysmon DNS Monitoring

Trinity: PSP Emulator Escape

~ 18 Jun 2019 ~

Instagram tests new ways to recover hacked accounts

Firefox Releases Critical Patch Update to Stop Ongoing Zero-Day Attacks

As Cloud Adoption Grows, DLP Remains Key Challenge

Online lyric service Genius hid a Morse code message in song lyrics to prove Google was copying them to its own search page

New Android 2FA Exploit Discovered, Wave of New Apps Targets Cryptocurrency Users

Advertising Alliance Plans Protocols to Reduce Dangerous Content

Escalating AWS IAM Privileges with an Undocumented CodeStar API

Google Targets Deceptive Sites with New Chrome Tools

Mobile Cyberespionage Campaign Bouncing Golf Affects Middle East

Plurox: Modular backdoor

5 Keys to Improve Your Cybersecurity

Running iOS in QEMU to an interactive bash shell (Part 1)

GandCrab Ransomware Decryption Tool [All Versions] Recover Files for Free

570K HQ Combo (Spotify,Deezer,Crunchy,Netflix,uPlay,Steam,Origin)

How Fraudulent Domains 'Hide in Plain Sight'

~ 17 Jun 2019 ~

Why you should not use free VPNs

When you need more security than typical TLS or SSH protocols...

TCP SACK PANIC - Kernel vulnerabilities

Zero to Hero with AWS GuardDuty, Terraform and Slack

A Blue Team guide to Azure & Office 365 monitoring - 0x00sec

SACK Panic - CVE-2019-11477 - Multiple TCP-based remote denial of service issues

Biggest Malware Threats in Healthcare Revealed - NetSec.News

Consul vulnerability scanner and exploit tool

Deploy a private Burp Collaborator Server in Azure

Data, Surveillance, and the AI Arms Race

Utilities, Nations Need Better Plan Against Critical Infrastructure Attackers

Malware sidesteps Google permissions policy with new 2FA bypass technique

Searchbook: free Firefox extension for executing some Graph-like searches against Facebook

772K [EMAIL:PASS] COMBO [Minecraft, Fortnite,Netflix,Spotify,Hulu,Deezer,Steam,Crunchyroll,uPlay]

~ 16 Jun 2019 ~

0xsp Mongoose Linux Privilege Escalation intelligent Enumeration Toolkit

GitHub - BishopFox/sliver: Implant framework

708k Combo HQ [Email_Pass][Netflix,Deezer,Spotify, Fortnite, Origin,fibit ,Minecraft]

Arc of Erie County New York Reports that 3,751 Patients PHI Was Exposed on Internet in 30-Month Period

Threat Group Cards from ThaiCERT

Windows Incident Response Cheat Sheet

Yubico does product recall of FIPS YubiKey due to reduced entropy

~ 15 Jun 2019 ~

Solving each and every FB-CTF challenge - PART 1

Sliver - Advanced implant and C2 framework

DistroTest.net - The first online operating system tester

Antivirus Evasion with Python

Hack The Box - FluJab Write-up by 0xRick

App Analysis: Nimses (Tracking PewDiePie and collecting user data)

10 Notable Security Acquisitions of 2019 (So Far)

AttackDetection/cve-2019-0708.rules which detect possible exploitation under TLS

600 Million Unique Clear-text Passwords Accompanied By Various Hashes

~ 14 Jun 2019 ~

Friday Squid Blogging: Climate Change Could be Good for Squid

vim Code Execution via the vim plugin Modelines

Upcoming Speaking Engagements

Computers and Video Surveillance

SSH Passphrase Phishing (PoC)

Only 20 days left for the CFP/CFT/CFW for Threat CON 2019 happening in Kathmandu, Nepal on 29-31 August. Submit your paper, tool and workshop proposals soon. Also, the early bird passes along with passes for workshop by Dr. Mario Heiderich are up for grabs.

Week in security with Tony Anscombe

6 tips for choosing the right VPN for personal use

Nginx security tips: TLS/SSL HTTPS Improved security and TTFB

GDPR one year on: Most Europeans know at least some of their rights

Better Cybersecurity Research Requires More Data Sharing

How spending our Saturday hacking earned us 20k

AESDDoS Botnet Malware Infiltrates Containers via Exposed Docker APIs

Video Surveillance by Computer

Sensory Overload: Filtering Out Cybersecurity's Noise

Eclipse attacks on IoT devices

Cybersecurity Supply And Demand Heat Map

~ 13 Jun 2019 ~

News crawler, Clean Text Extraction & ML Training automation