Calling all security engineers, red teams, bug bounty hunters, and anyone who wants to celebrate the power of #OpenSource to make our world more secure. Mark your calendars for April 25 and register for the #HardlyStrictlySecurity Conference for free: buff.ly/3IwLfAn

#FORK, the community-driven #threatmodeling tool using #PASTA. Contribute, collaborate, and secure our digital landscape with FORK. youtu.be/cxn2stQwrak #CyberSecurity #ThreatModeling #FORK #PASTA #TechInnovation

microsoft: Exploit Code Unporoven me: i literally gave you a compiled PoC and also exploit code m$: No exploit code is available, or an exploit is theoretical. me:

🧰 Incidental An open-source incident management platform that integrates with Slack By Sanj github.com/incidentalhq/i…

Malware slipping through Microsoft Security defenses? Yes, it's happening! 🚨 Discover how attackers and read teamers can sneak past SmartScreen & Defender. versprite.com/vs-labs/slippi… #ZeroDay #Microsoft #SecurityAlert #VerSprite #OffensiveSecurity #RedTeam

OWASP Mobile Top 10 Mindmap 🔴⚫️Full HD Image: github.com/Ignitetechnolo… #infosec #cybersecurity #pentesting #redteam #informationsecurity #CyberSec #networking #networksecurity #infosecurity #cyberattacks #security #linux #cybersecurityawareness #bugbounty #bugbountytips

I've landed in Buenos Aires and I'm excited for the 20th edition of Ekoparty | Hacking everything. This will be my first time at the event and I am looking forward to diving into everything it has to offer. If anyone from my network is joining, let me know. Would be great to connect!

The GitHub Security Lab is proud to contribute to the new GitHub Secure Open Source Fund! In addition to our research, CNA, and Advisory Database, we are offering training and office hours for open source maintainers to help secure the software we all depend on. Learn more and

CISA completed a #RedTeam Assessment with a #CriticalInfrastructure partner, simulating real-world cyber threats. The result? 👀 The red team was able to compromise the org’s domain due to insufficient controls. Read more for lessons learned & insights 👉 bit.ly/40ZIX7y

I’m excited to announce a major release of Nuclei Templates focused on Windows Security Hardening and Auditing 🎉 This latest version introduces new templates for conducting security audits specifically tailored for Windows environments. These include checks for password

Another approach to disable EDRs (with anti-tampering). Credit goes to sixtyvividtails for the idea🧙‍♂️ PendingFileRenameOperations and an NTFS junction, we can ask Windows to delete EDR binaries on reboot (with Admin privs) A link to a complete GitHub PoC follows in replies

lil documentary w Ben Sadeghipour BusesCanFly and -1 others Sam Curry ꙅɿɘƚɔɘqꙅ Lil' Red (Sm⬡l but Sw⬡l) STÖK ✌️ André Baptista and me youtu.be/Vtj-RHEQn8M

At this year’s Ekoparty | Hacking everything, I had the opportunity to meet some legends of the bug bounty scene: TomNomNom ,Joona , and STÖK ✌️. I really enjoyed having the opportunity to chat with you guys! Check out their presentations on YouTube! #Ekoparty2024 #CyberSecurity #BugBounty

⚠️ Developers, please be careful when installing Homebrew. Google is serving sponsored links to a Homebrew site clone that has a cURL command to malware. The URL for this site is one letter different than the official site.

BREAKING: Internal #DeepSeek database publicly exposed 🚨 Wiz Research has discovered "DeepLeak" - a publicly accessible ClickHouse database belonging to DeepSeek, exposing highly sensitive information, including secret keys, plain-text chat messages, backend details, and logs.

Introducing a Text-to-API AI ⚙️ Turn any website into an API with Firecrawl 's /extract. Just describe your API in plain text and get an endpoint you can hit. Another great open-source project by Developers Digest !

Excited to share that I'll be speaking at @BSidesBUD this May! If you're into cybersecurity and can make the trip, I highly recommend it. Great people, great talks, and an awesome community vibe. #BSidesBudapest #InfoSec #BSides #CyberSecurity #SecurityConference

Proud to announce VerSprite is speaking at #BSidesBudapest! Join his talk "Navigating Cybersecurity with Nuclei" and discover how this open-source tool revolutionizes vulnerability scanning. 📅 May 21st 🕓 4:15PM, Blue Stage bsidesbud.com #Cybersecurity #Nuclei

**JOB OPENING** Managing Consultant, DevSecOps Join VerSprite as a Managing Consultant for our DevSecOps practice and make a significant impact by leading client engagements and solving real-world security challenges. This role combines technical expertise with client-facing

Prompt Injection Exploitation, CodeGPT Ramiro Molina demonstrated how prompt injection can be weaponized against the CodeGPT extension to extract sensitive credentials. This attack vector bypasses conventional security controls by manipulating model behavior through crafted