use the following search parameters to narrow your results:
e.g. subreddit:aww site:imgur.com dog
subreddit:aww site:imgur.com dog
see the search faq for details.
advanced search: by author, subreddit...
~92 users here now
A community for technical news and discussion of information security and closely related topics.
"Give me root, it's a trust exercise"
Always link to the original source.
Questions belong in the monthly discussion thread.
No curated lists.
Titles should provide context.
Content should focus on the "how."
Check the new queue for duplicates.
No content behind a paywall/regwall.
Commercial advertisement is discouraged. (details)
All hiring posts go in the quarterly hiring thread.
Use /r/privacy for privacy related posts.
Use /r/pwned for compromises.
Use /r/Malware for malware write-ups.
No requests for tech support.
/r/netsec is not a forum for full-disclosure.
» Our fulltext content guidelines
Don't create unnecessary conflict.
Keep the discussion on topic.
Limit the use of jokes & memes.
Don't complain about content being a PDF.
Follow all reddit rules and obey reddiquette.
» Our fulltext discussion guidelines
Q1 2017 InfoSec Hiring Thread
Getting Started in Information Security
Join us on IRC: #r_netsec on freenode
We're also on: Twitter, Facebook, & Google+
/r/blackhat - Hackers on Steroids
/r/computerforensics - IR Archaeologists
/r/crypto - Cryptography news and discussion
/r/Cyberpunk - High-Tech Low-Lifes
/r/HackBloc - Hacktivism & Crypto-anarchy
/r/lockpicking - Popular Hacker Hobby
/r/Malware - Malware reports and information
/r/netsecstudents - netsec for noobs students
/r/onions - Things That Make You Cry
/r/privacy - Orwell Was Right
/r/pwned - "What Security?"
/r/REMath - Math behind reverse engineering
/r/ReverseEngineering - Binary Reversing
/r/rootkit - Software and hardware rootkits
/r/securityCTF - CTF new and write-ups
/r/SocialEngineering - Free Candy
/r/sysadmin - Overworked Crushed Souls
/r/vrd - Vulnerability Research and Development
/r/xss - Cross Site Scripting
Hiring Thread/r/netsec's Q1 2017 Information Security Hiring Thread (self.netsec)
submitted 1 month ago by ranokTrusted Contributor[M] - announcement
discussionThe /r/netsec Weekly Discussion Thread - February 13, 2017 (self.netsec)
submitted 10 days ago by AutoModerator[M] - announcement
Linux kernel: CVE-2017-6074: DCCP double-free vulnerability (local root) (seclists.org)
submitted 14 hours ago by Extremite
JudasDNS: Nameserver DNS poisoning attacks made easy (github.com)
submitted 14 hours ago by pimterry
Cleaning your org's code bases of secrets with truffleHog and git-secrets (blog.threatstack.com)
submitted 14 hours ago by tmclaugh
j00ru//vx tech blog : Windows Kernel Local Denial-of-Service #1: win32k!NtUserThunkedMenuItemInfo (Windows 7-10) (j00ru.vexillium.org)
submitted 7 hours ago by bool101Trusted Contributor
Hacking Android phone, How deep the rabbit hole goes. (medium.com)
submitted 1 day ago by In7rud3R
Fingerprinting Firefox users with cached intermediate CA certificates (shiftordie.de)
submitted 1 day ago by xtantin
Revisiting Windows Security Hardening Through Kernel Address Protection (samdb.xyz)
submitted 23 hours ago by secaggr
Hunting with YARA rules and ClamAV (blog.nviso.be)
submitted 1 day ago by maldocker
Advisory: Java/Python FTP Injections Allow for Firewall Bypass (blog.blindspotsecurity.com)
submitted 1 day ago by 0v3rl04d
Flipping Bits and Opening Doors: Reverse Engineering the Linear Wireless Security DX Protocol (duo.com)
submitted 2 days ago by jwcruxTrusted Contributor
RSA 2017 Videos Playlist (youtube.com)
submitted 1 day ago by crosssitepotato
IE11 - The Attack of the Alerts and the Zombie Script - Broken Browser (persistent code that continues running even after you leave the main page) (brokenbrowser.com)
submitted 2 days ago by magicmac
MySQL Out-of-Band Hacking (osandamalith.com)
submitted 2 days ago by In7rud3R
Tool for easily generating sketches for Arduinos to deliver HID attacks via keyboard emulation (github.com)
submitted 2 days ago by linuxbman
Privilege Escalation in CA Common Services casrvc due to Arbitrary Write (nccgroup.trust)
submitted 3 days ago by craigsblackie
SQL injection in an UPDATE query - a bug bounty story! (zombiehelp54.blogspot.ro)
submitted 3 days ago by xtantin
SMTP over XXE − how to send emails using Java's XML parser (shiftordie.de)
submitted 4 days ago by albinowax
Penetration Testing Tools Cheat Sheet (highon.coffee)
submitted 5 days ago by HighOnCoffee
Weaponizing PostScript (lamehackersguide.blogspot.com)
submitted 4 days ago by theM4ce
Mercure - Python open-source phishing framework (github.com)
submitted 4 days ago by y0no
Not so unique snowflakes: a new Burp plugin for detecting insecure UUIDs (blog.silentsignal.eu)
submitted 5 days ago by dn3t
How to Go From Responding to Hunting with Sysinternals Sysmon (onedrive.live.com)
submitted 5 days ago by Extremite
Part 2 of the Wifi-Cloud Hub research - showing off various other security issue (youtube.com)
submitted 5 days ago by LiveOverflow
malboxes: open source tool that automates the setup of virtual machines for malware analysis (gosecure.net)
submitted 6 days ago by obilodeau
Attacking the OAuth Protocol (dhavalkapil.com)
submitted 5 days ago by dhavalkapil
REDDIT and the ALIEN Logo are registered trademarks of reddit inc.
Advertise - technology
π Rendered by PID 21939 on app-745 at 2017-02-23 07:23:08.502812+00:00 running 29ef5f6 country code: RO.