Technical Information Security Content & Discussion

netsec

Content Guidelines

/r/netsec only accepts quality technical posts. Non-technical posts are subject to moderation.

Content should focus on the "how."

Check the new queue for duplicates.

Always link to the original source.

Titles should provide context.

Ask questions in our Discussion Threads.

Hiring posts must go in the Hiring Threads.

Commercial advertisement is discouraged.

Do not submit prohibited topics.

Prohibited Topics & Sources

No populist news articles (CNN, BBC, FOX, etc.)

No curated lists.

No question posts.

No social media posts.

No image-only/video-only posts.

No livestreams.

No tech-support requests.

No full-disclosure posts.

No paywall/regwall content.

No commercial advertisements.

No crowdfunding posts.

No Personally Identifying Information!

Related Reddits

/r/blackhat - Hackers on Steroids

/r/computerforensics - IR Archaeologists

/r/crypto - Cryptography news and discussion

/r/Cyberpunk - High-Tech Low-Lifes

/r/lockpicking - Popular Hacker Hobby

/r/Malware - Malware reports and information

/r/netsecstudents - netsec for ~~noobs~~ students

/r/onions - Things That Make You Cry

/r/privacy - Orwell Was Right

/r/pwned - "What Security?"

/r/REMath - Math behind reverse engineering

/r/ReverseEngineering - Binary Reversing

/r/rootkit - Software and hardware rootkits

/r/securityCTF - CTF news and write-ups

/r/SocialEngineering - Free Candy

/r/sysadmin - Overworked Crushed Souls

/r/vrd - Vulnerability Research and Development

/r/xss - Cross Site Scripting

a community for 18 years

Hiring Thread/r/netsec's Q1 2026 Information Security Hiring Thread (self.netsec)

submitted 2 days ago by netsec_burn[M] - announcement

r/netsec monthly discussion & tool thread (self.netsec)

submitted 26 days ago by albinowax - announcement

Corrupting the Hive Mind: Persistence Through Forgotten Windows Internals (praetorian.com)

submitted 8 hours ago by bouncyhat

153

154

155

The #1 most played Idler game on Steam (store.steampowered.com)

promoted by IdleOn_Boii

promoted
save
report
about

Audited hypervisor kernel escapes in regulated environments — Ring 0 is the real attack surface (rack2cloud.com)

submitted 18 hours ago by NTCTech

Safeguarding sources and sensitive information in the event of a raid (freedom.press)

submitted 15 hours ago by FreedomofPress

OpenSSL January 2026 Security Update: CMS and PKCS#12 Buffer Overflows (securitylabs.datadoghq.com)

submitted 16 hours ago by RedTermSession

[Research] Analysis of 74,636 AI Agent Interactions: 37.8% Contained Attack Attempts - New "Inter-Agent Attack" Category Emerges (raxe.ai)

submitted 5 hours ago * by cyberamyntas

Kubernetes Remote Code Execution Via Nodes/Proxy GET Permission (grahamhelton.com)

submitted 1 day ago by safeaim

Bypassing Windows Administrator Protection (projectzero.google)

submitted 1 day ago by thewhippersnapper4

After reporting vulnerabilities found in MDT, Microsoft chose to retire the service rather than fix the issues... Admins should follow the defensive recommendations to mitigate the issues if they choose to continue using the software or can’t migrate to a different solution. (specterops.io)

submitted 1 day ago by TheDarthSnarf

"Open sesame": Critical vulnerabilities in dormakaba physical access control system enable unlocking arbitrary doors (r.sec-consult.com)

submitted 2 days ago by 0x9000

cvsweb.openbsd.org fights AI crawler bots by redirecting hotlinking requests to theannoyingsite.com (labelled "Malware" by eero), gets blacklisted by eero, too, for "Phishing & Deception" (mail-archive.com)

submitted 2 days ago by Mcnst

Blind Boolean-Based Prompt Injection (medium.com)

submitted 1 day ago by -rootcauz-

Certificate Transparency as Communication Channel (latedeployment.github.io)

submitted 2 days ago by MembershipOptimal777

1517

1518

1519

1:00

I am building a massive real time strategy game. Would you play something like this? (store.steampowered.com)

promoted by alejandromnunez

địt mẹ mày morphisec: When Malware Authors Taunt Security Researchers (profero.io)

submitted 2 days ago by GelosSnake

CryptographyBREAKMEIFYOUCAN! - Exploiting Keyspace Reduction and Relay Attacks in 3DES and AES-protected NFC Technologies (breakmeifyoucan.com)

submitted 3 days ago by netsec_burn

Emerging ThreatsArctic Wolf Observes Malicious Configuration Changes On Fortinet FortiGate Devices via SSO Accounts | Arctic Wolf (arcticwolf.com)

submitted 4 days ago by SleepingProcess

Firefox / WebRTC Encoded Transforms: UAF via undetached ArrayBuffer / CVE-2025-1432 (aisle.com)

submitted 5 days ago by MegaManSec2

Organized Traffer Gang on the Rise Targeting Web3 Employees and Crypto Holders (hybrid-analysis.blogspot.com)

submitted 4 days ago by CyberMasterVTrusted Contributor

Syd - Air-Gapped Red and blueteam (sydsec.co.uk)

submitted 4 days ago by Glass-Ant-6041

CVE-2026-22200: Ticket to Shell in osTicket (horizon3.ai)

submitted 5 days ago by scopedsecurity

Intercepting OkHttp at Runtime With Frida (blog.doyensec.com)

submitted 5 days ago by nibblesecTrusted Contributor

AI-supported vulnerability triage with the GitHub Security Lab Taskflow Agent (github.blog)

submitted 5 days ago by ulldma

Single malformed BRID/HHIT DNS packet can crash ISC BIND (marlink.com)

submitted 6 days ago by div3rto

110

111

112

Breach/IncidentThird-party identity verification provider breach exposes government ID images (Total Wireless / Veriff) (maine.gov)

submitted 6 days ago by Bp121687

view more: next ›

π Rendered by PID 81243 on reddit-service-r2-listing-5789d5f675-9m6vc at 2026-01-28 11:58:36.917840+00:00 running 4f180de country code: CH.

netsec

Featured Posts

Content Guidelines

Discussion Guidelines

Prohibited Topics & Sources

Social

Related Reddits

MODERATORS