blueteamsec

632 readers

21 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago

MODERATORS

digicat

1476

Taming 2,500 compiler warnings with CodeQL, an OpenVPN2 case study (blog.trailofbits.com)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1477

GhostSocks: From Initial Access to Residential Proxy (synthient.com)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1478

0day .ICS attack in the wild - details an incident from April 2025 in September 2025 - "a then-zero-day exploit in Zimbra’s Collaboration Suite, CVE-2025-27915" (strikeready.com)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1479

Gepetto: IDA plugin which queries language models to speed up reverse-engineering (github.com)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1480

OntoLogX: Ontology-Guided Knowledge Graph Extraction from Cybersecurity Logs with Large Language Models (arxiv.org)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1481

Update on a Security Incident Involving Third-Party Customer Service | Discord (discord.com)

submitted 4 months ago by digicat to c/blueteamsec

1 comments fedilink

1482

North Korean agents pretending to be IT guys have funneled up to $1 billion into Kim Jong Un’s nuclear program (archive.ph)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1483

shade: PoC shadow SaaS and insecure credential detection system using a browser extension. (github.com)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1484

Secure Microsoft Entra ID: Real-World Strategies (blog.nviso.eu)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1485

C2 Infra on Azure (0xdarkvortex.dev)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1486

Battering RAM Low-Cost Interposer Attacks on Confidential Computing (batteringram.eu)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

**> **

1487

Invisible Ears at Your Fingertips: Acoustic Eavesdropping via Mouse Sensors (arxiv.org)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1488

WireTap: Breaking Server SGX via DRAM Bus Interposition (wiretap.fail)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1489

Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem (faith2dxy.xyz)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1490

Scanning Cisco-ASA-firmware-updates-CVE-2025-20333-CVE-2025-20363-CVE-2025-20362.csv (github.com)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1491

TamperedChef: Malvertising to Credential Theft (labs.withsecure.com)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1492

基于ESXI部署防溯源的攻击环境 – Deploy an anti-traceability attack environment based on ESXI (zgao.top)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1493

A2AS | Agent-to-Agent Security | A2A Security (www.a2as.org)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1494

AI时代重塑安全：深入解析XBOW如何重塑渗透测试[万字长文] - Reshaping Security in the AI Era: An In-Depth Analysis of How XBOW Reshapes Penetration Testing (www.freebuf.com)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1495

CVE-2025-4275 - 不仅仅是基于 Insyde H2O 的 UEFI 固件 SecureBoot 绕过第 2 部分 - CVE-2025-4275 - More Than Insyde H2O Based UEFI Firmware SecureBoot Bypass Part 2 (mp.weixin.qq.com)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1496

Broken Trust: Fixed Supermicro BMC Bug Gains a New Life in Two New Vulnerabilities (www.binarly.io)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1497

ai-captcha-bypass: AI Captcha Bypass (github.com)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1498

gULP v1.0.0 is here! (github.com)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1499

Adversarial Prompts Classification v0.1 (jupyter.securitybreak.io)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink

1500

sekken-enum: adws enumeration bof (github.com)

submitted 4 months ago by digicat to c/blueteamsec

0 comments fedilink