blueteamsec

629 readers
35 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago
MODERATORS
digicat
listing: all - local
851
9
Small numbers of Notepad++ users reporting security woes (doublepulsar.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
852
3
SVG Filters - Clickjacking 2.0 (lyra.horse)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
853
1
Chinese-linked hackers use back door for potential 'sabotage,' US and Canada say (www.reuters.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
854
2
Stillepost - Or: How to Proxy your C2s HTTP-Traffic through Chromium (x90x90.dev)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
855
4
Adversaries Modify the Registry to Disable Two Core Windows Security Mechanisms (www.knowyouradversary.ru)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
856
3
Early Warning Detection for Credential Theft (deceptiq.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
857
7
EvilMist: EvilMist is a collection of scripts and utilities designed to support cloud penetration testing & red teaming. The toolkit helps identify misconfigurations, assess privilege-escalation paths (github.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
858
3
Sysmon Config Creation for The LOLRMM Framework (www.dodgethissecurity.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
859
5
AI Malware: Hype vs. Reality (www.recordedfuture.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
860
2
Public Disclosure: Backdooring Managed Identities via Azure API Management (dazesecurity.io)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
861
8
North Korean hackers are pushing fake "Microsoft Teams Update" to macOS (archive.md)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
862
6
Exclusive Look Inside a Compromised North Korean APT Machine Linked to The Biggest Heist in History (www.hudsonrock.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
863
2
CLRaptor: Hunting reflected assemblies with Velociraptor (labs.infoguard.ch)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
864
3
A Descriptive Model for Modelling Attacker Decision-Making in Cyber-Deception (arxiv.org)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
865
0
ASTRIDE: A Security Threat Modeling Platform for Agentic-AI Applications (arxiv.org)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
866
0
Bridging the Gap: A Look at rpi-image-gen & rpi-sb-provisioner (www.thegoodpenguin.co.uk)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
867
2
High Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478) (slcyber.io)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
868
3
Array Networks Array AGシリーズにおけるコマンドインジェクションの脆弱性に関する注意喚起 - Array Networks Array AG Series vulnerable to command injection (www.jpcert.or.jp)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
869
3
APT-C-53 (Gamaredon) uses CVE-2025-8088 to conduct phishing attacks. (mp.weixin.qq.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
870
3
K7 Antivirus: Named pipe abuse, registry manipulation and privilege escalation (blog.quarkslab.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
871
4
CVE-2025-55182 (React2Shell) Opportunistic Exploitation In The Wild (www.greynoise.io)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
872
4
CTO at NCSC Summary: week ending December 7th (ctoatncsc.substack.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
873
4
Rep. Pfluger Introduces Bill to Protect America's Critical Infrastructure (pfluger.house.gov)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
874
1
The Webshell Underground: Student Hacker Selling PHP Backdoors To Asia-Based Threat Actors To Pay for School (www.cyderes.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
875
2
React2Shell-CVE-2025-55182-original-poc: Original Proof-of-Concept's for React2Shell CVE-2025-55182 (github.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
view more: ‹ prev next ›