Read “Windows Internals: Thread Management — Part 1“ by OS Dev on Medium: This article discusses about ETHREAD, KTHREAD kernel objects & windows scheduler - how it schedules a thread. medium.com/windows-os-int…

Good morning! Just published a blog post diving into Windows Kernel Pool internals: basics, memory allocation functions, internal structures, and how Segment Heap, LFH, and VS work. r0keb.github.io/posts/Windows-…

Old v8ctf chall but i had fun solving it while listening to tik tok and getting RCE'd inside my box

From Zero to 0-day. Introduction to Fuzzing blog.78researchlab.com/23adb461-3e5b-…

Intro to x86 Assembly Language

Return Oriented Programming (ROP) Explanation Return Oriented Programming (ROP) is an advanced exploitation technique used to bypass non executable stack protections (NX/DEP). Instead of injecting new code, ROP chains together existing code snippets (“gadgets”) ending in ret

The Stack: Intel Assembly Att Detailed series of videos on intel assembly

📢 Lateral Movement via BitLocker 📖 1x Playbook 🏹 4x Threat Hunting Queries ⚙️ 2x SIGMA Rules #purpleteam #iPurpleTeam #sigma #detectionengineering #threathunting ipurple.team/2025/08/04/lat…

Understanding Pointers in C.

Hello, i wrote a blog on one of the modern persistence techniques in Linux using the unshare syscall. Enjoy reading hackmd.io/@0xmadvise/rJP…

CS 162: Operating Systems and Systems Programming - Berkeley

if your understanding of pointers is rusty, here is a great read for you

Zero Click, One NTLM: Microsoft Security Patch Bypass (CVE-2025-50154) cymulate.com/blog/zero-clic…

كيف قدرت اكتشف ثغرتين حرجة في احد الشركات 🔴 بالبداية لازم نفهم logic الموقع كيف يشتغل, الموقع كان يعمل على الGraphQL طيب راكان وش هي الGraphql اصلا ؟ هي بكل بساطة لغة استعلام الغرض الاساسي منه هو يسمح للclient يطلب بالضبط البيانات اللي يحتاجها

Yet another max score vuln 🥹 🟥 CVE-2025-20265, CVSS: 10.0 (#Critical, #Highest) Cisco Secure Firewall Management Center (FMC) Software A critical vulnerability in the RADIUS subsystem. Unauthenticated remote attackers can inject arbitrary shell commands due to improper user

ثريد: Unintended Gadgets واحد من امتع مواضيع الBinary exploitation

⭕️ CTF : المستوى - متوسط الرابط - http://148.230.118.230:5000 نوعه - Web الهدف انك توصل ل ملف Flag.txt/ (((ما يحتاج Fuzzing ))) بس يحتاج تفسر و تستنتج نوعا ما

📌Active Directory (AD) Penetration Testing Guide github.com/ZishanAdThanda…

The new Bloodhound version has some genuinely crazy cool new features -- OpenGraph really blows the doors off the potential for Bloodhound to not just map attack paths within Microsoft Active Directory or Entra ID tenants, but now... ANYTHING 🤩 youtu.be/kVOjXGbm_Ro

نزلت التحدي النوع : web الرابط : 91426f1ef2c9.ngrok-free.app Let’s see who gets First Blood! شاركوني ارائكم بالتحدي👍🏻 #CTF #BugBounty #cybersecuritytips