Google Spoofed Via DKIM Replay Attack | ⁦EasyDMARC⁩ #phishing #Dkim easydmarc.com/blog/google-sp…

Solidity语言速通一图流 如果所有知识点都知道，恭喜你，基础的solidity你已经完全掌握

We just posted last two DEFCON 33 CTF write-ups on our blog! Check their creative insight! 🦾 Junhyun Song (KU, 4th year) wrote dialects (pwn) - 🔗 blog.cykor.kr/2025/04/DEFCON… 🚩 Seohyun Jang (KU, 3rd year) wrote im‑pio‑sible (misc) - 🔗 blog.cykor.kr/2025/04/DEFCON… #CTF #DEFCON #CyKor

Starship: Instantly Transform and Brighten Up Your Terminal! youtu.be/N2jYs0ZS9ng?si… via YouTube

BTC 是把钱从不耐心的人转移到有耐心的人的工具。

Storytelling

New #PEbear : 0.7.1: github.com/hasherezade/pe… - is out! Updated with some important fixes.

JNI Helper Find JNI function signatures in APK and apply to reverse tools. github.com/evilpan/jni_he… A awesome tool created by evilpan 🫡

The HackTheBox Vintage video is now up! This was a Hard Assumed Breach Box that was almost 100% Active Directory, the only piece that isn't technically AD is decrypting the DPAPI Credential Store. Definitely a fun one for those AD Lovers youtube.com/watch?v=-JM--K…

🚀 New Features Just Dropped in DeFIHackLabs Incident Explorer The latest update to our platform includes: 1️⃣ DeFi Incident Analytics (at the bottom of the page) 2️⃣ Multi-currency display (10+ currencies) 3️⃣ Visual effects toggle 4️⃣ Light mode support 🌞 #DeFi #Web3Security

In 2024, attackers exploited 75 zero-days across end-user platforms and enterprise tech. Google’s latest report unpacks what this trend says about evolving threat priorities. Full analysis here: bit.ly/4cTQzMI

我是Mirror Tang，在Crypto创业这几年，我越来越确认一件事：再牛逼的技术、再聪明的人，如果团队协作不透明，增长就是错觉. 前阵子我在团队内部看到一种典型的热情假象——表面大家都很积极，私下沟通不断，仿佛每个人都在高效推进.

nice plugin!

Snapshot first, ask questions later. DO NOT TERMINATE. If you're investigating an EC2 instance — snapshot volumes before you do anything else, and then isolate it on an island. Evidence disappears fast in the cloud - turning the EC2 off destroys what you need.

New blog: Be careful of Your UDP Service: Preauth DoS on Windows Deployment Service (remote, 0-click) sites.google.com/site/zhiniangp…

Today we unveil BadSuccessor - a new no-fix Active Directory privilege escalation technique. We will explore the recently introduced dMSA feature, and show how it enables turning a very common, seemingly benign permission, into a full domain take over. akamai.com/blog/security-…

世界上最有钱和最有权的人都尚且如此放飞自我，我又有多少观众呢？

给想办法多赚点钱

会就是会，不会就是不会，约会是什么意思？🤔

Satya Nadella (Microsoft CEO)'s prompts are actually genius