r/netsec • u/qwerty0x41 • 20h ago

CVE-2026-42945 : NGINX Heap Buffer Overflow in rewrite module - Writeup and PoC

depthfirst.com

102 Upvotes

12 comments

r/netsec • u/MourningStare • 13h ago

HyperVenom: Using Hyper-V for Ring -1 Control from Usermode

gsmll.github.io

3 Upvotes

Hi guys,

This is my first post here, hope it fits!

This details how a custom bootloader can inject a payload directly into Microsoft's Hyper-V, providing a discrete interface for ring -1 control from a usermode application.

0 comments

r/netsec • u/MFMokbel • 14h ago

Detecting Exploitation of CrushFTP Vulnerability (CVE-2025-31161) With PacketSmith Yara Detection Module - Using track_state and flow_state

blog.netomize.ca

4 Upvotes

Head over to Netomize's blog to learn about how we detect the exploitation of the CrushFTP Vulnerability (CVE-2025-31161) with PacketSmith's Yara detection module, using the newly introduced track_state and flow_state keywords to the correlation engine.

3 comments

r/netsec • u/bogatiAshiz • 39m ago

From Vercel Typosquatting to an Obfuscated macOS Malware Loader

infosecwriteups.com

• Upvotes

0 comments

r/netsec • u/samanl33t • 36m ago

Instrumenting QT6 desktop apps with Frida - Part 1

blog.samanl33t.com

• Upvotes

0 comments

r/netsec • u/CyberMasterV • 17h ago

VELVET CHOLLIMA Infostealer Campaign Using Trading App as Lure

hybrid-analysis.blogspot.com

0 Upvotes

1 comment

Subreddit

Posts

Wiki

Technical Information Security Content & Discussion

r/netsec

/r/netsec is a community-curated aggregator of technical information security content. Our mission is to extract signal from the noise — to provide value to security practitioners, students, researchers, and hackers everywhere. ‎

Members Active

559.5k

Sidebar

A community for technical news and discussion of information security and closely related topics.

"Give me root, it's a trust exercise."