CVE-2024-43468 (CVSS 9.8): Microsoft Configuration Manager Exploit Revealed with PoC Code securityonline.info/cve-2024-43468…

I never imagined this concept. #bugbountytips

LDAPWordlistHarvester: generate a wordlist from the information present in LDAP Author: DDOS Source: meterpreter.org/ldapwordlistha…

Broadcom fixes three VMware zero-days exploited in attacks bleepingcomputer.com/news/security/…

"From fault injection to RCE" (CCC presentation slides) fahrplan.events.ccc.de/congress/2024/… #infosec #ccc

CVE-2025-0912: Critical Flaw Exposes Over 100,000 WordPress Donation Sites to RCE securityonline.info/cve-2025-0912-…

Beginners intro to process injection in Linux akamai.com/blog/security-… #infosec #linux

The Essential AI Toolkit for Journalist List of Hugging Face spaces: - Transcribe audio or video files - Scrape websites without coding - Extract information from PDFs, images and handwritten documents - Extract information from charts and more. huggingface.co/spaces/Journal…

CVE-2025-0087: Android Framework Base Package Local Privilege Escalation Vulnerability PoC github.com/SpiralBL0CK/CV…

Intro to Linux kernel fuzzing and vulnerability research Part 1: slavamoskvin.com/hunting-bugs-i… Part 2: slavamoskvin.com/finding-bugs-i… Part 3: slavamoskvin.com/finding-bugs-i… Credits Slava Moskvin | Path Cybersec #Linux #infosec

Automated brute forcing tool leveraged in Black Basta ransomware intrusions scworld.com/brief/automate…

"Kernel-Hack-Drill: Environment For Developing Linux Kernel Exploits" Slides: a13xp0p0v.github.io/img/Alexander_… Repository: github.com/a13xp0p0v/kern… Credits Alexander Popov #Linux #infosec

Hacking Infrastructure, Part 1: Building Your Own Command and Control Server hackers-arise.com/post/command-c…

Live Forensicator: Powershell Script to aid Incidence Response and Live Forensics meterpreter.org/live-forensica…

🚨 Zero-click. Wormable. Network-spreading. New flaws in Apple’s AirPlay protocol (🔓 AirBorne) could let hackers hijack your device without a click—then ride your Wi-Fi into corporate networks. CVE-2025-24252 + CVE-2025-24132 = silent RCE across Macs, TVs, speakers. Just being

Chinese Group TheWizards Exploits IPv6 to Drop WizardNet Backdoor hackread.com/chinese-thewiz…

🚨CVE-2025-32102 & CVE-2025-32103: CrushFTP Server-Side Request Forgery (SSRF) and Directory Traversal FOFA Link: en.fofa.info/result?qbase64… FOFA Query: app="CrushFTP" Results: 342,867 Disclosure: seclists.org/fulldisclosure…

📌 FYI: #CryptersAndTools es un servicio de crypter-as-a-service de origen brasileño 🇧🇷 utilizado por actores como #BlindEagle (APT-C-36), #TA558 y #Aggah entre otros. Anteriormente hubo algo de confusión por el uso compartido de infraestructura, sin embargo, algunos servidores

Exploiting MIDI devices in Linux Kernel (CVE-2020-27786) ii4gsp.github.io/cve-2020-27786/ #Linux #cybersecurity

🚨CVE-2025–4123: Full Read SSRF & Account Takeover in Grafana FOFA Link: en.fofa.info/result?qbase64… FOFA Query: app="Grafana" Results: 694,826 Note: Results will contain patched systems, use a more advanced query such as: app="Grafana" && (body="Grafana v11.6.0")