🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Nice!

chocapikk.com/posts/2025/per…

Translation: They were breached? Why reset all users' passwords in this case? it looks very sus

¯\_(ツ)_/¯ Just a security measure after this I guess x.com/DarkWebInforme…

WPProbe is a fast and efficient WordPress plugin scanner that leverages REST API enumeration (?rest_route) to detect installed plugins without brute-force meterpreter.org/wpprobe-a-fast…

🚨 New plugin for CrushFTP's CVE-2025-2825/CVE-2025-31161 is up. While enumerating users to validate vulnerable instances we noticed a pattern. It's on all instances we scanned for, can you see it? What do you make of it?

🚨 New plugin for ViteJS's CVE-2025-30208 is up. It's dev, nothing wrong can happen right? Have fun. Source: x.com/phithon_xg/sta… Thx: ¯\_(ツ)_/¯

All important wishlist link: store.steampowered.com/app/3401490/Re…

Hello guys, I've already talked about WPProbe, my tool to fingerprint WordPress through its REST API. This time, I'm sharing some behind-the-scenes: the idea behind it, and a few struggles I had along the way. Not that complex, but worth the effort. 📝 chocapikk.com/posts/2025/wpp…

Real cypherpunks are also not on Twitter. It's not because they're not heard in Web3 that they are not doing anything. Have you been to FOSDEM @[email protected]? Have you been to any real FOSS conferences? Have you been building projects without money in mind first? Have you been to conferences

🚨 Two XSS vulnerabilities found in Vembu BDRSuite ≤ 7.5.0.1 I've just published a short write-up about two XSS bugs I discovered in Vembu BDRSuite. They were acknowledged and patched in version 7.6.0, following my report. 📝 Read the write-up: 👉 chocapikk.com/posts/2025/bdr…

How I Got Hacked: A Warning about Malicious PoCs - ¯\_(ツ)_/¯ chocapikk.com/posts/2025/s1n…

🚩 Direction le Cyber Ninja CTF organisé par Oteria Cyber School pour les lycéens ! Dans la vidéo : 🔍 Le déroulé du CTF 🧩 Les types de défis 🛠️ Et 3 challenges que j’ai créés (avec solution 👀) 📺 youtu.be/wgxBbmK9PDg

Hâte de me barrer 🫡

Approximately 50 people got duplicated to his report and man said noobs 😭😭😭😭 hackerone.com/reports/2014955

Critical RCE Vulnerability in Erlang/OTP SSH Server Impacts Multiple Cisco Products Critical RCE vulnerability (CVE-2025-32433) in Erlang/OTP affects Cisco products. Unauthenticated attackers can execute code remotely. Patch now! securityonline.info/critical-rce-v…

Exploit for CVE-2025-30406(Gladinet CentreStack & Triofox) github.com/W01fh4cker/CVE…

I'm back! 🤘 Just reproduced CVE-2025-32432 and submitted a Metasploit module for it. This one targets Craft CMS RCE in versions 3.x, 4.x, and 5.x < 5.6.17. Check out the PR! 🚀 🔗 github.com/rapid7/metaspl…

CraftCMS RCE CVE-2025-32432 POC / EXP- github.com/Sachinart/CVE-… Netlas.io 63K websites using craftcms nt.ls/eiOCw (one click download). MY POC has less impact , further can exploit can try -> x.com/Chocapikk_/sta… ¯\_(ツ)_/¯ 's / github.com/Chocapikk/CVE-… POC .