🎉 Excited to share our top 10 best-rated CTF points on CTFtime in 2024! 🏆💻 🌟 Overall Global Ranking: 218 💯 Rating: 181.115 pts Huge thanks to our team & the CTF community for an epic 2024! 🚀 Here's to an even bigger 2025! 🥂 #ctf2024 #CTFtime #CyberSecurity #hackasec

🎁Monthly Giveaway🎁 Hack The Box 1-year VIP+ & 3-month Prolab - Follow, Like, and Retweet to join! - Winners will be picked randomly on 11 Feb. #hackthebox #giveaway #projectsekaictf

Proud to share our team’s amazing performance at IrisCTF 2025!. It’s just the start of bigger things in 2025! 💪 #irisctf2025 #ctf IrisSec #teamhackasec #CyberSecurity #togetherwehitharder

I'm very happy to finally share the second part of my DOMPurify security research 🔥 This article mostly focuses on DOMPurify misconfigurations, especially hooks, that downgrade the sanitizer's protection (even in the latest version)! Link 👇 mizu.re/post/exploring… 1/2

This is a great infoleak exploit chain targeting YouTube by skull. Love the use of a DoS flaw to make the attack stealthier! brutecat.com/articles/leaki…

New HackerNotes just dropped! We've compiled DOMPurify insights from the pod, so you can get the most out of Kévin GERVOT (Mizu)’s research too. Hope y’all like it! blog.criticalthinkingpodcast.io/p/hackernotes-…

I'm a hacker and AI researcher who has reported vulnerabilities to OpenAI, Google, and others. I wrote this guide as a reference of all of the ways that you can hack AI. It has saved me hours. Bookmark this if you need a reference for what all to try (AND includes mitigations).

🎁Monthly Giveaway🎁 Hack The Box 1-year VIP+ & 3-month Prolab - Follow, Like, and Retweet to join! - Winners will be picked randomly on 18 Mar. #hackthebox #giveaway #projectsekaictf

Unstoppable Sprint into 2025! 🚀 Team Hack@Sec Official just hit a HISTORIC milestone—crossing 200+ rating points on CTFtime! 🔥 Huge shoutout to our incredible team members! 💪💙

🎁Monthly Giveaway🎁 Hack The Box 1-month Prolab - Follow, Like, and Retweet to join! - Winners will be picked randomly on 23 Apr. We will be announcing some big giveaways next month. Stay tuned! #hackthebox #giveaway #projectsekaictf

We’re excited to share that our team Hack@Sec Official has qualified for the Finals of 5th edition Midnight Flag CTF 2025. The finals will take place on June 21st at ESNA de Bretagne, France. We're open to sponsors collab to make the most of this journey. #CTF #teamhackasec #CyberSecurity

🚨Call for Bug Bounty Hunters in Nepal🚨 We are hosting the first-ever Live Hacking Meetup for Nepal's bug bounty hunters. Join us for exciting hacking and collaboration from May 10th to May 17th!! DM me for the Discord server invitation. h1.community/events/details…

Amazing event 🤩 Excited to participate again in the future.

Secured 2nd place at SAS CTF Quals with r3kapig this weekend🎉Thanks to TheSAS2025 for organizing the event and look forward to the finals in Thailand!

Do you remember when you joined X? I don't but X did remind me 😂! #MyXAnniversary

Google CTF is over! One of the challenges was about CVE-2025-5263 I recently discovered in Firefox (and Chrome). See the writeup at gist.github.com/terjanq/4cb406…

community.brave.com/t/bug-brave-un… yikes, Brave's HTML serialization seems really broken <div id=x><span x="aaa&gt;&bbb"></div> <script> x.innerHTML=x.innerHTML; alert(x.innerHTML)// <span x="" aaa="">&amp;bbb"&gt;</span> </script>

Another challenge that I prepared for justCTF2025 was about a neat Prototype Pollution variation that bypasses commong mitigation strategies and which isn't commonly known, even in the infosec community! Checkout the writeup! gist.github.com/terjanq/fa6f19…

Hack@Sec Official rises to #Top 11 with 6775 points. We're proud to stand strong in the Black Hat x bugcrowd USA 2025 CTF competition. Every flag we capture is a statement: we're here to push harder, learn faster, and outsmart expectations. #BlackHatCTF #HackAtSec #CTF2025

DEFCON is fun, but how about finding a v8 bug during DEFCON? We forgot to report it and this is fixed right now, since this should not affect stable released version of Chrome, here is a brief analysis. The bug was found with @101010zyl and @Reset816. xia0.sh/blog/maglev-de…