Security Feed

Live posts from mastodon.social on HTTP client vulnerabilities, botnets, JA4 fingerprinting, and network security research.

Sourced from the Mastodon public API - no account required. Cached 1 hour.
Library Radar
Library Version CVEs mentioned Collector Source
requests 2.34.2 CVE-2017-9841 runner exists 🌍 Pew Pew CH (Infomaniak) — Honeypot · @Bobe_bot@mastobot.ping.moi
axios 0.30.4 - runner exists Threat Brief: Widespread Impact of the Axios Supply Chain At… · @orlysec@swecyb.com
LevelBlue - Open Threat Exchange · @techbot@social.raytec.co
axios 1.14.1 - runner exists Threat Brief: Widespread Impact of the Axios Supply Chain At… · @orlysec@swecyb.com
LevelBlue - Open Threat Exchange · @techbot@social.raytec.co
all #ja4 #tlsfingerprinting #networkfingerprinting #botnet #malware #infosec #cybersecurity #vulnerability #cve #threatintel #networksecurity #scraping #webscraping
lang all en de es fr it pl pt ro ru zh-CN
Showing 86 posts · cached 35 min ago · refresh
Cloud 🤖
@cloud@infosec.exchange
#infosec fr
🤖 7-Zip 26.02 corrige une vulnérabilité RCE critique exploitable via des archives malveillantes. Mettez à jour immédiatement pour éviter l'exécution de code. 🔗 https://www. bleepingcomputer.com/news/secu rity/update-now-7-zip-fixes-rce-flaw-exploitable-with-malicious-archives/ # CVE # InfoSec # Cybe
0 1 2026-07-19 view →
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕™
@kubikpixel@chaos.social
#cybersecurity de
«Missing Link: Was ist eigentlich aus Cryptopartys geworden? Cryptopartys waren die Antwort auf die Snowden-Enthüllungen. Doch was ist aus der Bewegung geworden und wie hat sich der Kampf für digitale Freiheit gewandelt?» Und an den anfangs 2020ern musste man dann auch noch einigen Leichtgläubigen e
0 1 2026-07-19 view →
BeyondMachines :verified:
@beyondmachines1@infosec.exchange
#infosec en
Ecopetrol Reports Ransomware Attempt, Confirms Data Theft of 3,300 Accounts Ecopetrol, Colombia's largest energy producer, prevented a ransomware attack but confirmed that an unidentified hacker stole data from 3,300 accounts across 15 subsidiaries. The company has reported the incident to national
0 1 2026-07-19 view →
TheHackerWire
@thehackerwire
#infosec en
🔴 CVE-2026-54496 - Critical (9.3) ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad 5.0.0, halo2_gadgets 0.5.0, orchard 0.14.0, zcash_primitives 0.28.0, and zcashd 6.20.0, the variable-base scalar multiplication gadget in halo2_gadgets/src/ecc/chip/mul/incomplete.rs ... 🔗 https://www.
0 0 2026-07-19 view →
TheHackerWire
@thehackerwire
#infosec en
🔴 CVE-2026-8297 - Critical (9.8) Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Gis Informatics Engineering Consulting Laboratory R&D and Software Services Inc. GisLab Laboratory Management System allows SQL Injection. This ... 🔗 htt
0 0 2026-07-19 view →
TheHackerWire
@thehackerwire
#infosec en
🟠 CVE-2026-63101 - High (7.5) Open Event Server through 1.19.1 contains a missing authentication vulnerability that allows unauthenticated attackers to export the complete member roster of any group, including email addresses, names, join dates, and roles, by submitting reques... 🔗 https://www. theh
0 0 2026-07-19 view →
EUVD Bot
@EUVD_Bot
#infosec en
🚨 EUVD-2026-45430 📊 Score: 5.3/10 (CVSS v3.1) 📦 Product: CMS, CMS, CMS (+5 more) 🏢 Vendor: Croogo 📅 Updated: 2026-07-19 📝 A flaw has been found in Croogo CMS up to 4.0.7. This affects the function FileManager::isEditable of the file FileManager/src/Utility/FileManager.php of the component Admin File
0 0 2026-07-19 view →
urlDNA.io :verified:
@urldna@infosec.exchange
#infosec en
Possible Phishing 🎣 on: ⚠️hxxps[:]//ouew[.]webflow[.]io 🧬 Analysis at: https:// urldna.io/scan/6a5c7db83b77500 007bb2dfc # cybersecurity # phishing # infosec # urldna # scam # infosec
0 0 2026-07-19 view →
EUVD Bot
@EUVD_Bot
#infosec en
🚨 EUVD-2026-45431 📊 Score: 5.3/10 (CVSS v3.1) 📦 Product: Online Examination System 🏢 Vendor: code-projects 📅 Updated: 2026-07-19 📝 A vulnerability has been found in code-projects Online Examination System 1.0. This vulnerability affects unknown code of the file /account.php?q=quiz. Such manipulation
0 0 2026-07-19 view →
Shodan Safari
@shodansafari@infosec.exchange
#infosec en
ASN: AS31726 Location: Hovden, NO Added: 2026-07-09T16:05 # shodansafari # infosec
0 0 2026-07-19 view →
CyberIntel News
@cyberintelnews
#cybersecurity en
New CyberIntel brief: Destructive Windows Backdoor Packages Wipers and Ransomware Code https:// cyberintelnews.com/ # Ransomware # Cybersecurity # ThreatIntel # IncidentResponse
0 0 2026-07-19 view →
TechWire ⚡
@techwire@gamefan.net
#cybersecurity en
TSMC says it may build 12 Arizona chip plants in total, but be skeptical Apple chipmaker TSMC had already said that it would build a total of eight plants in Arizona, and has now announced an investment boost that could see that number increased to 12. This could potentially see more chips f… https:
0 1 2026-07-19 view →
Threadlinqs
@threadlinqs
#threatintel en
UNC5142 stashes its malware loader on the BNB blockchain - immutable and impossible to take down. 9 detections, 42 IOCs. Full analysis + IOCs: https:// intel.threadlinqs.com/threat/T L-2026-1512 # ThreatIntel # Vidar # LUMMACV2 # RADTHIEF # EtherHiding # UNC5142
0 0 2026-07-19 view →
PhishDestroy Alert
@phishdestroy
#malware en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: tr[.]celtabet-ortagiris[.]cam 🔍 Analysis at: https:// phishdestroy.io/domain/tr.celt abet-ortagiris.cam/ # DigitalFraud # malware # BlockchainSafety # scamalert
0 0 2026-07-19 view →
Threadlinqs
@threadlinqs
#threatintel en
North Korea now hides malware inside blockchain smart contracts - unseizable C2 you cannot take down. 9 detections, 23 IOCs. Full analysis + IOCs: https:// intel.threadlinqs.com/threat/T L-2026-1511 # ThreatIntel # JADESNOW # BeaverTail # InvisibleFerret # UNC5342 # npm
0 0 2026-07-19 view →
OffSequence
@offseq@infosec.exchange
#threatintel en
703+ Chrome wallpaper extensions, linked to Ovkas, Gameograf & Kidswallpapers/Owhit, are active in a MEDIUM severity adware campaign — ad fraud, IndexedDB deletion, popup injection. Manual removal advised. Details: https:// radar.offseq.com/threat/from-5 0-to-703-expanding-unit-42s-gameograf-adw
0 0 2026-07-19 view →
urlDNA.io :verified:
@urldna@infosec.exchange
#infosec en
Possible Phishing 🎣 on: ⚠️hxxps[:]//sfrpanel[.]lws[.]fr/ 🧬 Analysis at: https:// urldna.io/scan/6a5c04793b77500 00987c799 # cybersecurity # phishing # infosec # urldna # scam # infosec
0 0 2026-07-19 view →
PhishDestroy Alert
@phishdestroy
#malware en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: twcard[.]co 🔍 Analysis at: https:// phishdestroy.io/domain/twcard. co/ # malware # Web3Security # PhishingScam
0 0 2026-07-19 view →
Threadlinqs
@threadlinqs
#threatintel en
COLDRIVER re-tooled within days of LOSTKEYS - a fake CAPTCHA now drops its NOROBOT ClickFix chain. 9 detections, 54 IOCs. Full analysis + IOCs: https:// intel.threadlinqs.com/threat/T L-2026-1510 # ThreatIntel # NOROBOT # YESROBOT # MAYBEROBOT # COLDRIVER # StarBlizzard
0 0 2026-07-19 view →
PhishDestroy Alert
@phishdestroy
#malware en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: steady-move[.]icu 🔍 Analysis at: https:// phishdestroy.io/domain/steady- move.icu/ # AntiPhishing # NFT # WalletDrainers # Web3Hacking # BlockchainFraud # WalletHackers # malware
0 0 2026-07-19 view →
TheHackerWire
@thehackerwire
#vulnerability en
🟠 CVE-2026-50273 - High (7.5) Datadog .NET Tracer is a client library for Datadog APM for .NET applications. Prior to 3.43.0, Datadog tracing libraries that implement W3C baggage propagation parse incoming baggage HTTP headers without enforcing DD_TRACE_BAGGAGE_MAX_ITEMS or DD... 🔗 https://www. theh
0 0 2026-07-19 view →
EUVD Bot
@EUVD_Bot
#vulnerability en
🚨 EUVD-2026-45427 📊 Score: 5.3/10 (CVSS v3.1) 📦 Product: django-jet, django-jet, django-jet (+6 more) 🏢 Vendor: geex-arts 📅 Updated: 2026-07-19 📝 A weakness has been identified in geex-arts django-jet up to 1.0.8. Affected is an unknown function of the component OAuth Handler. Executing a manipulati
0 0 2026-07-19 view →
EUVD Bot
@EUVD_Bot
#vulnerability en
🚨 EUVD-2026-45428 📊 Score: 5.3/10 (CVSS v3.1) 📦 Product: adminset, adminset, adminset (+58 more) 🏢 Vendor: guohongze 📅 Updated: 2026-07-19 📝 A security vulnerability has been detected in guohongze adminset up to 0.61. Affected by this vulnerability is an unknown functionality of the file delivery/de
0 0 2026-07-19 view →
EUVD Bot
@EUVD_Bot
#vulnerability en
🚨 EUVD-2026-45429 📊 Score: 2.1/10 (CVSS v3.1) 📦 Product: devpush, devpush, devpush (+4 more) 🏢 Vendor: hunvreus 📅 Updated: 2026-07-19 📝 A vulnerability was detected in hunvreus devpush up to 0.4.6. Affected by this issue is the function reset_storage of the file app/workers/tasks/storage.py of the c
0 0 2026-07-19 view →
TheHackerWire
@thehackerwire
#vulnerability en
🟠 CVE-2026-9762 - High (7.8) IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to remote code execution when jdbc url is under user control. 🔗 https://www. thehackerwire.com/vulnerabilit y/CVE-2026-9762/ # CVE # vulnerability # infosec # cybersecurity # security # Tenda # patchs
0 0 2026-07-19 view →
Threadlinqs
@threadlinqs
#threatintel en
Fake job offers are the lure: UNC6229 drops RATs and relays Okta/M365 tokens to hijack ad accounts. 9 detections, 15 IOCs. Full analysis + IOCs: https:// intel.threadlinqs.com/threat/T L-2026-1509 # ThreatIntel # Generic # Fake # UNC6229 # FakeJobLure # Okta
0 0 2026-07-19 view →
Threadlinqs
@threadlinqs
#threatintel en
State malware now calls LLMs mid-run to rewrite its own code and generate attack commands on the fly. 9 detections, 21 IOCs. Full analysis + IOCs: https:// intel.threadlinqs.com/threat/T L-2026-1508 # ThreatIntel # PROMPTFLUX # LAMEHUG # PromptLock # APT28 # Sofacy
0 0 2026-07-19 view →
RedPacket Security
@RedPacketSecurity
#threatintel en
Sliver C2 Detected - 46[.]225[.]180[.]111:31337 - https://www. redpacketsecurity.com/sliver-c 2-detected-46-225-180-111-port-31337/ # SliverC2 # OSINT # ThreatIntel
0 0 2026-07-19 view →
Threadlinqs
@threadlinqs
#threatintel en
A spoofed 'localhost' Host header turns Triofox admin setup into unauthenticated SYSTEM RCE. 9 detections, 24 IOCs. Full analysis + IOCs: https:// intel.threadlinqs.com/threat/T L-2026-1507 # ThreatIntel # CVE_2025_12480 # Plink # Zoho # AnyDesk # Triofox
0 0 2026-07-19 view →
Beacon Beagle
@beaconbeagle@social.circl.lu
#threatintel fr
New beacon found at 49.235.52.47 on port 8083. Please check it at https://www. beaconbeagle.com/beacons/49.23 5.52.47/x64 . # ThreatIntel # CobaltStrike # Beacon
0 0 2026-07-19 view →
CyberIntel News
@cyberintelnews
#malware en
From the CyberIntel archive: War Game Simulates Catastrophic Cyberattack on US Water Supply, Linking Threat to China https:// cyberintelnews.com/ # Malware # ThreatIntel # Cybersecurity # Infosec
0 0 2026-07-19 view →
PhishDestroy Alert
@phishdestroy
#malware en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: krypttex-login[.]com 🔍 Analysis at: https:// phishdestroy.io/domain/kryptte x-login.com/ # ScamDetection # malware # ScamPrevention # cybersec # Web3Awareness # NFT # PhishingWarning
0 0 2026-07-19 view →
PhishDestroy Alert
@phishdestroy
#malware en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: crypttex-cabinet[.]com 🔍 Analysis at: https:// phishdestroy.io/domain/cryptte x-cabinet.com/ # scam # WalletDrainers # malware # CyberFraud # PhishingWarning # fake
0 0 2026-07-19 view →
PhishDestroy Alert
@phishdestroy
#malware en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: zh-metamask[.]com[.]cn 🔍 Analysis at: https:// phishdestroy.io/domain/zh-meta mask.com.cn/ # malware # ScamPrevention # BlockchainFraud # CyberFraud
0 0 2026-07-19 view →
PhishDestroy Alert
@phishdestroy
#malware en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: theblackhouse[.]solclaim[.]fun 🔍 Analysis at: https:// phishdestroy.io/domain/theblac khouse.solclaim.fun/ # ProtectCrypto # BlockchainSafety # CryptoDrainers # ScamDetection # malware # CryptoAwareness
0 0 2026-07-19 view →
PhishDestroy Alert
@phishdestroy
#malware en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: ai-openclaw[.]digital 🔍 Analysis at: https:// phishdestroy.io/domain/ai-open claw.digital/ # CryptoSafety # CyberFraud # WalletSecurity # CryptoAwareness # malware # WalletHackers
0 0 2026-07-19 view →
PhishDestroy Alert
@phishdestroy
#malware en
🚨 PHISHING DETECTED 🚨 🔗 Suspicious URL: df4dsf[.]shop 🔍 Analysis at: https:// phishdestroy.io/domain/df4dsf. shop/ # scamalert # scam # PhishingScam # fake # malware
0 0 2026-07-19 view →
Threadlinqs
@threadlinqs
#botnet en
Prometei is back: a UPX-packed Linux botnet that mines Monero, steals creds, and worms over SMB with EternalBlue. 9 detections, 28 IOCs. Full analysis + IOCs: https:// intel.threadlinqs.com/threat/T L-2026-1490 # ThreatIntel # Prometei # Linux # XMRig # Botnet # EternalBlue
0 0 2026-07-18 view →
Agnieszka Serafinowicz
@agnieszkaserafinowicz@imagazine.pl
#botnet pl
Twój domowy router na celowniku rosyjskich hakerów. Służby ostrzegają przed kampanią FSB Agencje cyberbezpieczeństwa z całego świata, w tym amerykańska CISA oraz służby z Wielkiej Brytanii, Australii i Nowej Zelandii, wydały pilne ostrzeżenie dla użytkowników
0 0 2026-07-18 view →
ResearchBuzz: Firehose
@researchbuzz_firehose@rbfirehose.com
#webscraping en
Mixfont: Decoy Font. “Decoy font is a font that prints a decoy for every letter, making it more difficult for AI to read what you type. The font works by using separate spatial frequencies to communicate two different letters in the same space.” https://rbfirehose.com/2026/07/18/mixfont-decoy-font/
0 0 2026-07-18 view →
OTX Bot
@techbot@social.raytec.co
#botnet en
Botnet Analysis: A Product-Grade Threat for the AI Service Era NadMesh is an industrial-grade Go-based botnet observed in July 2026 that autonomously scans and exploits AI infrastructure and cloud services. The botnet integrates scanning, exploitation, and intelligence harvesting into a single platf
0 1 2026-07-17 view →
Kevin Russell
@kevinrns@mstdn.social
#scraping en
@ Sarahp Doesnt go far enough, follow the scrapers back to their lair and disable the scraping. # ai # scrape # scraping # DisableScraping # honeyPotsOfPoisonForAI # poisonAI
0 0 2026-07-17 view →
Analyst207
@Analyst207
#botnet en
NadMesh Botnet Targets Exposed AI Services for Cloud Credentials Meet NadMesh, a sneaky botnet on the hunt for cloud credentials, with its operators claiming to have already amassed 3,811 unique AWS keys; but is its reported success just a facade? https:// osintsights.com/nadmesh-botnet -targets-exp
0 0 2026-07-17 view →
Byteful
@byteful
#webscraping en
Every ban has a fingerprint. The five mistakes that get scrapers banned most often, in our experience: 5. Hitting the same URL pattern repeatedly looks scripted. Randomise the order. 4. TCP fingerprints that contradict your headers. If the user agent says iPhone and the handshake says Linux, that&#3
0 0 2026-07-17 view →
unattributed 𓂃✍︎
@unattributed@gotosocial.social
#scraping en
Okay this is pretty cool—a font that can confuse # bots , but is readable by humans. https://www.mixfont.com/experiments/decoy-font # ai # antiai # scrapingbots # scraping
0 1 2026-07-17 view →
linuxwebzine
@linuxwebzine@mstdn.ro
#networksecurity ro
🛡️🌐 OPNsense 26.7 „Xenial Xenops” a fost lansat: Trecere istorică la FreeBSD 15.1 și API-uri complet reproiectateOPNsense, una dintre cele mai populare și de încredere platforme open-source de tip firewall și routing din lume, a lansat oficial versiunea OPNsense 26.7, purtând numele de cod „Xenial X
0 0 2026-07-16 view →
The Zeek Network Security Monitor
@zeek@infosec.exchange
#networksecurity en
We launched a new Contribution Guide earlier this month to fix the biggest hurdle from last year's community survey: "I don't know where to start." What should we fix next? Tell us in the 2026 survey (open until August 14): https:// zeek.org/survey # Zeek # OpenSource # NetworkSecurity
0 1 2026-07-16 view →
The New Oil
@thenewoil@mastodon.thenewoil.org
#botnet en
# Google # Gemini CLI abused as a hacking agent, # malware # botnet operator https://www. bleepingcomputer.com/news/secu rity/google-gemini-cli-abused-as-a-hacking-agent-malware-botnet-operator/ # cybersecurity # AI
0 1 2026-07-16 view →
securityaffairs
@securityaffairs@infosec.exchange
#botnet it
# TuxBot v3: The # IoT # Botnet Built With # AI - Bugs, Disclaimers and All https:// securityaffairs.com/195486/ai/ tuxbot-v3-the-iot-botnet-built-with-ai-bugs-disclaimers-and-all.html # securityaffairs # hacking # malware
0 3 2026-07-16 view →
TugaTech 🖥️
@tugatech@masto.pt
#botnet pt
Um hacker russo utilizou a ferramenta de código aberto Gemini CLI da Google para operar uma botnet em uma clínica dentária. A ferramenta de inteligência artificial respondeu aos comandos do atacante e propôs melhorias operacionais em pelo menos 59 ocasiões. 🤖 🔗  https:// tugatech.com.pt/t87501-
0 0 2026-07-16 view →
OTX Bot
@techbot@social.raytec.co
#botnet en
TuxBot v3: Inside an IoT Botnet Framework With LLM-Assisted Development Pulse ID: 6a589f83231e4cad61103a92 Pulse Link: https:// otx.alienvault.com/pulse/6a589 f83231e4cad61103a92 Pulse Author: CyberHunter_NL Created: 2026-07-16 09:08:19 Be advised, this data is unverified and should be considered pr
0 1 2026-07-16 view →
OTX Bot
@techbot@social.raytec.co
#botnet en
Six Minutes to Compromise: How 'Patriot Bait' Actor Used AI to Build and Deploy a C&C Botnet Pulse ID: 6a585d9ff9c385e8e021c1b5 Pulse Link: https:// otx.alienvault.com/pulse/6a585 d9ff9c385e8e021c1b5 Pulse Author: Tr1sa111 Created: 2026-07-16 04:27:11 Be advised, this data is unverified and shou
0 1 2026-07-16 view →
OTX Bot
@techbot@social.raytec.co
#botnet en
Inside an IoT Botnet Framework With LLM-Assisted Development Pulse ID: 6a585dd1af5d4dd0ee2a8178 Pulse Link: https:// otx.alienvault.com/pulse/6a585 dd1af5d4dd0ee2a8178 Pulse Author: Tr1sa111 Created: 2026-07-16 04:28:01 Be advised, this data is unverified and should be considered preliminary. Always
0 1 2026-07-16 view →
thecybersecguru
@thecybersecguru@infosec.exchange
#networksecurity en
🚀 Coming This Week! I'm excited to announce my first educational video series: Foundations of Cybersecurity. Whether you're a complete beginner, a student, or an IT professional looking to build your cybersecurity skills, this course is designed to help you develop a strong foundation through simple
1 0 2026-07-15 view →
Micheal Shallop 🐧
@mshallop@mastodon.llamachile.tube
#networksecurity en
Looking like # patchTuesday broke # nfs in # wsl for July 15, 2026 No # NSA security warning yet, over the patch, so we got that going for us 👍️ # Win11 , # Windows , # NFS , # WSL , # PatchTuesday , # WSL2 , # KernelUpdate , # SyscallRejection , # VMP , # NetworkSecurity , # AccessDenied , # Kernel
1 0 2026-07-15 view →
Byteful
@byteful
#webscraping en
Q2 in review. We launched our mobile network in May, and Proxyway's 2026 research clocked it as the fastest mobile response time in the world at 0.48s, with our UK pool at 0.40s. It runs 6M+ monthly IPs across 650+ carriers and 1,500+ cities in 190+ countries, and the data you buy never expires.
0 0 2026-07-15 view →
TalorData SERP API
@talordata_serp_api
#webscraping zh-CN
🚀 TalorData SERP API is now live! One API. Four search engines. Sub-second latency. Google · Bing · Yandex · DuckDuckGo Built for AI agents, RAG pipelines, and SEO automation. Structured JSON output. Pay only for successful requests — failed requests are free. 💡 Why TalorData? P90 latency < 1 sec
0 0 2026-07-15 view →
The Zeek Network Security Monitor
@zeek@infosec.exchange
#networksecurity en
How much progress can a parser generator make in a year? We've updated our Spicy vs. Binpac benchmarks for Zeek 8.2. The tl;dr: Key unit cases are up to 1.6x faster, and real-world SSL parsing sees a nice boost too. https:// zeek.org/2026/07/spicy-vs-binp ac-performance-one-year-later/ # Zeek # Netw
0 0 2026-07-14 view →
Graylog
@Graylog@infosec.exchange
#networksecurity en
Suricata produces rich network telemetry, alerts, anomalies, flow data, DNS, TLS, SSH, Kerberos, and more, but raw EVE JSON isn't investigation ready on its own. The Suricata IDS/IPS Content Pack for Graylog parses, enriches, and maps that data to the Graylog Information Model, with a dashboard buil
0 0 2026-07-14 view →
Graylog
@graylog.bsky.social@bsky.brid.gy
#networksecurity en
If you're running Suricata, you already have the data. The question is whether it's usable. Graylog's Suricata IDS/IPS Content Pack parses EVE JSON, normalizes it to GIM, and gives you a ready to use dashboard for alerts and more. graylog.org/post/suricat... #Graylog #Suricata #SIEM #NetworkSecurity
0 0 2026-07-14 view →
Hacker News
@h4ckernews
#networksecurity en
TFTP Honey Pot Results https:// bruceediger.com/posts/tftp-hon eypot-results/ Comments: https:// news.ycombinator.com/item?id=4 8897329 # HackerNews # TFTP # Honey # Pot # Results # cybersecurity # honeypot # networksecurity # dataanalysis # technews
0 0 2026-07-13 view →
Hacker News
@h4ckernews
#scraping en
An Update on the scraper situation https:// lwn.net/SubscriberLink/1080822 /990a8a5e2d379085/ Comments: https:// news.ycombinator.com/item?id=4 8864252 # HackerNews # scraper # situation # update # tech # news # web # scraping # developer # community
0 0 2026-07-10 view →
Hacker News
@hackernews@robot.villas
#scraping
An Update on the scraper situation https://lwn.net/SubscriberLink/1080822/990a8a5e2d379085/ # HackerNews # Tech # Scraping
0 1 2026-07-10 view →
Byteful
@byteful
#webscraping en
Residential or datacenter? One question decides it: does your target site fight back? Datacenter IPs are fast, stable, and cheap, but easy to detect, so sites that care will block them. Residential IPs are real home connections that beat serious bot detection, but they're slower and priced per G
0 0 2026-07-10 view →
Habr
@habr@zhub.link
#scraping ru
Почему любой антидетект на JavaScript спалится. Полгода назад я перестал латать скрапер и полез в C++ Chromium Полгода я жил в одном и том же цикле. Собираешь скрапер, вечером он проходит все страницы, а к обеду следующего дня отдаёт сплошные капчи и 403. Добавляешь puppeteer-stealth, сверху ещё дес
0 0 2026-07-10 view →
N-gated Hacker News
@ngate
#scraping en
🌐🔍 Oh, look! Another # YC -backed # startup that thinks it’ll revolutionize the world by letting # AI agents do the # web # scraping you never asked for! 🤖✨ Who knew # JSON schemas and # sitemaps could be *this* exciting? 🙄 But hey, at least your # GitHub repo will look *super* fancy while nobody ca
0 0 2026-07-09 view →
Hacker News
@h4ckernews
#webscraping en
Launch HN: Context.dev (YC S26) – API to get structured data from any website https://www. context.dev Comments: https:// news.ycombinator.com/item?id=4 8847562 # HackerNews # LaunchHN # ContextDev # API # WebScraping # YC # S26
0 0 2026-07-09 view →
Aleksei Aleinikov
@aleksei_aleinikov
#webscraping de
Scraper Studio vs Apify vs DIY: Welcher Web-Scraping-Weg passt 2026 zu Ihrem Team Drei Wege, 2026 einen Web-Scraper zu bauen: eine verwaltete Plattform wie Scraper Studio, ein Actor-Marktplatz wie Apify oder ein DIY-Stack aus Scrapy + Playwright. So vergleichen sie sich wirklich bei Geschwindigkeit,
0 0 2026-07-09 view →
Aleksei Aleinikov
@aleksei_aleinikov
#webscraping en
Scraper Studio vs Apify vs DIY: Which Web Scraping Path Fits Your Team in 2026 Three ways to build a web scraper in 2026: a managed platform like Scraper Studio, an actor marketplace like Apify, or a DIY Scrapy + Playwright stack. Here is how they really compare on speed, ownership, and the part tha
0 0 2026-07-09 view →
Aleksei Aleinikov
@aleksei_aleinikov
#webscraping de
Web Scraping vs. Web Crawling: Der echte Unterschied (2026) Alle verwechseln Web Scraping und Web Crawling. Hier der echte Unterschied in einer Minute, wie beide in eine Pipeline passen, warum beide in Produktion brechen und welche Tools sie im Maßstab am Laufen halten. https://www. alekseialeinikov
0 0 2026-07-08 view →
Aleksei Aleinikov
@aleksei_aleinikov
#webscraping de
Python Web Scraping ohne Proxy-Verwaltung: Bright Data Web Unlocker API (2026) Das Schwierige ist nicht das Parsen von HTML. Es ist das Erhalten einer nutzbaren Antwort von modernen geschützten Websites. Eine Schritt-für-Schritt-Anleitung mit Bright Data Web Unlocker API, Python und BeautifulSoup. h
0 0 2026-07-08 view →
FlohEinstein
@FlohEinstein@chaos.social
#scraping en
Please delete your repository. When we stole your source code to train our LLM, it got dumber! 😆 https:// github.com/Vandivier/ladderly- 3/issues/652 # foss # scraping # instantkarma
128 101 2026-07-07 view →
Santiago 🔭🪐
@santiago@mastodon.uy
#scraping es
El otro día leí acá que hay que usar hardware retro para evitar la IA, tipo evadir usar el hardware que la misma requiere para funcionar. Me quedé pensando en eso. Yo a eso, quiero agregar que, no solo eso, también hay que usar plataformas y servicios que funcionen con anchos de banda en donde la IA
21 9 2026-07-07 view →
Vincent 🐡
@vinishor@bsd.network
#scraping en
Let me be clear on something : I agree that if something public, it might get retrieved by bots and other scraping techniques, but that doesn't mean it's okay to do it! So, for the love of everyone, I ask people to STOP OPT-OUT bots and scraping techniques, and to do OPT-IN bots and scraping techniq
0 0 2026-07-06 view →
Habr
@habr@zhub.link
#ja4 ru
IP, браузер, TLS: три слоя, на которых палится парсер С чего все началось Хотел простую вещь: отслеживать цену на пару товаров, которые ждал со скидкой. Чтобы не заходить руками каждый день, а получить уведомление, когда подешевело. Думал, это вечер работы. requests.get() , выдрать цену, сравнить, о
0 0 2026-07-01 view →
13
@13@2137.social
#scraping pl
Posiadasz telewizor podłączony na stałe do Wi-Fi? Możesz nieświadomie scrapować dane na potrzeby trenowania modeli AI https:// sekurak.pl/posiadasz-telewizor -podlaczony-na-stale-do-wi-fi-mozesz-nieswiadomie-scrapowac-dane-na-potrzeby-trenowania-modeli-ai/ # Wbiegu # Awareness # Proxy # Prywatno # S
0 0 2026-06-30 view →
Habr 25+
@habr25@zhub.link
#ja4 ru
Заморозка по fingerprint: как ТСПУ в июне 2026 ломает соединения по поведению, а не по протоколу Полгода назад я написал здесь разбор «почему VLESS работает» — он собрал 169 тысяч просмотров и под тысячу закладок. Я тогда уверенно заявил: REALITY не отличить от обычного HTTPS, поэтому он держится та
0 0 2026-06-15 view →
Habr
@habr@zhub.link
#ja4 ru
Заморозка по fingerprint: как ТСПУ в июне 2026 ломает соединения по поведению, а не по протоколу Полгода назад я написал здесь разбор «почему VLESS работает» — он собрал 169 тысяч просмотров и под тысячу закладок. Я тогда уверенно заявил: REALITY не отличить от обычного HTTPS, поэтому он держится та
0 0 2026-06-15 view →
Aleksei Aleinikov
@aleksei_aleinikov
#tlsfingerprinting en
"TLS Fingerprinting: the hidden profile of your browser 🚀🔥 Every secure connection reveals more about you than just encryption # security # tlsfingerprinting " https:// medium.datadriveninvestor.com/ what-tls-fingerprinting-is-in-2026-and-why-it-matters-9220e25f2c33
0 0 2026-05-10 view →
Alexandre Dulaunoy
@adulau@infosec.exchange
#ja4 en
I’m still completely lost with logic of JA4+ patent licensing and actual incompatibility with the copyleft-license. So it seems to be a patent-based license and really risky to implement if you want to keep your actual software open source. Did someone explore alternatives to avoid this? and especia
8 7 2026-05-07 view →
Online NBA
@olnba@jforo.com
#ja4 en
https://www. olnba.com/883787/ NIKE Ja4|Ja Morant /ジャ・モラント写真公開!スペック予想&5カラーまとめ # バッシュ # nba # shorts # BasketballShoes # JaMorant # Ja4 # NationalBasketballAssociation # NBA # NBAVideos # NBAバッシュ # NikeBasketball # NIKEJa4 # NikeJa4 # Nikeバッシュ # Shorts # ZoomX # シグネチャーシューズ # ジャモラント # スニーカー # ドロップインミッ
0 0 2026-04-26 view →
Infoblox Threat Intel
@InfobloxThreatIntel@infosec.exchange
#ja4 en
We planned one report on Keitaro abuse, but we ran out of pages before we ran out of cases. So here’s Part 2 of 3, a medley of threats that go well beyond AI‑investment scams. Threat actors abuse Keitaro’s traffic distribution, cloaking, and rule engine to hide malicious landing pages behind geo and
1 1 2026-03-26 view →
Habr 25+
@habr25@zhub.link
#ja4 ru
Анатомия DPI анализа: что происходит с твоим пакетом за первые 16 КБ Пошаговый разбор того, как ТСПУ анализирует трафик — от первого SYN до поведенческого ML. С конкретными числами, реальными алгоритмами и объяснением почему одни протоколы умирают на первом байте, а другие живут месяцами Большинство
0 1 2026-03-14 view →
Habr
@habr@zhub.link
#ja4 ru
Анатомия DPI анализа: что происходит с твоим пакетом за первые 16 КБ Пошаговый разбор того, как ТСПУ анализирует трафик — от первого SYN до поведенческого ML. С конкретными числами, реальными алгоритмами и объяснением почему одни протоколы умирают на первом байте, а другие живут месяцами Большинство
0 0 2026-03-14 view →
Habr 25+
@habr25@zhub.link
#ja4 ru
Как ТСПУ ловит VLESS в 2026 и почему XHTTP — следующий шаг Разбор методов детекции, которые работают прямо сейчас. JA3/JA4-отпечатки, поведенческий анализ и архитектура XHTTP, которая закрывает именно эти дыры Если твой VLESS+Reality сервер лёг в последние месяцы — ты не один. В сообществах фиксирую
0 0 2026-03-12 view →
Habr
@habr@zhub.link
#ja4 ru
Как ТСПУ ловит VLESS в 2026 и почему XHTTP — следующий шаг Разбор методов детекции, которые работают прямо сейчас. JA3/JA4-отпечатки, поведенческий анализ, академическая работа СПбПУ по детекции Reality — и архитектура XHTTP, которая закрывает именно эти дыры Если твой VLESS+Reality сервер лёг в пос
0 0 2026-03-12 view →