Had a bunch of these show up on my @GoogleCalendar today. No my calendar isn't public, No I can't find an email with the same text anywhere in my inbox or spam or other folder, Yes things in my inbox do show up on my calendar, but again nothing was in my email. Gmail ?

August: always the best month of my year in years.

macOS Kernel Exploit for CVE-????-???? (currently a 0day). github.com/A2nkF/macOS-Ke…

@someinfosecguy javascript jesus is Docker Dre Crackunetix

Profit. H2HC RTFM

What aaaaaaaa 😷

some days start better than others how ya end them is what counts

Adding the following payload on $HOME/.lein/profiles.clj map makes Leiningen (leiningen.org) work as a post exploitation persistence. gist.github.com/mthbernardes/e…

Ontem (13/5) fizemos mais uma live conversando sobre Bug Bounty. Falamos um pouco sobre automatização e reconhecimento. Inclusive peguei umas dicas através da participação do Márcio Almeida, Amir, skate_forever e J youtube.com/watch?v=DelYm5…

Thanks #google #bugbounty - the type of issue that is not that bad but allows some type of bypass 😄

Just trying harder tbh

5G ciphered NAS decipher tool ：A python tool to decipher/decrypt 5G ciphered NAS message and export plain 5G NAS into wireshark pcap file github.com/jimtangshfx/5G…

Want to learn and have fun this summer? Join us for Pros V Joes at BSidesLV! prosversusjoes.net/bslv2021joereg prosversusjoes.net/bslv2021proreg Thanks to Gigamon for their sponsorship! We'll deploy their ThreatINSIGHT product to help the Joes and Gigamon | Security will support the players!

Happy 37th birthday to Phrack

RE riddle: what does this function do?

⚠️ Cleafy TIR team tracked a new Android banking trojan that actively targets Brazilian citizens. Since the lack of information and the absence of a proper nomenclature of this malware family, we decided to dub it #PixPirate, and start tracking this family.

This is crazy. An iOS KeePass app was sending the clipboard contents *unencrypted via UDP* to a server. The developer "fixed" it by still sending it via UDP, but this time with fixed key and IV. 🤦‍♂️ The app is simply a credential stealer and probably in violation of some laws.

System > updated.