BeaconGate in Cobalt Strike 4.10 enhances evasion with call stack spoofing, countering EDR detection of malicious API calls. Good insights for red teams. Intressting read. cobaltstrike.com/blog/instrumen… #Cybersecurity #RedTeam

Hack The Box (HTB) stands out as the top cybersecurity and cyber range provider in and now solidifying its position with absorbing Vulnlab’s excellent content, enhancing its offerings. Thanks to xct for Vulnlab’s i had really fun while it lasted! I will go back to htb again.

AI in pentesting is accelerating fast. Kali-GPT is another AI tool to add to my growing backlog for testing. 24-hour days just aren’t enough! But how can we secure them all in this pace? xis10cial.com/ai/%F0%9F%90%8… #Cybersecurity #Pentesting

#x33fcon 2 intressting days! I will attend next year for sure.

Do not why chatgpt drew this image. On a question about youtube channels for hacking. But cute.

CVE-2025-2783, Russian targets hit via phishing. Urges update to latest Chrome version. Check details: thehackernews.com/2025/06/google… #Cybersecurity #ChromeSecurity

Breaking into a Cyber Security Career in 2025 x.com/i/broadcasts/1…

Fun project. Will elaborate later

Do you want to trigger shellcode only when: - Certain DNS resolution happens? - Certain servers are reached out to? - When you get a 112 byte long response? ...etc Meet InternetSetStatusCallback() for fine tuning execution (or if you are just bored): gist.github.com/whokilleddb/59…

Would really like if more ppl lift the importance of soft skills in the field and understanding the business side of things. Discussions like: clients may not have infinitive budget for a test, leading into how to handling rabbit holes, and being able to give recommendations

QOL: Introducing NetExec module categories 📚 With NetExec’s rapid growth, the number of modules has increased significantly. To give a clearer overview, I’ve added categories. It’s a “best fit” approach, so not perfect, but should give a better idea of what’s available.

✨ Rome, are you ready for cyber-spaghetti time🍝? On 27 September, our very own Leon Jacobs CTO for SensePost – the ethical hacking arm of Orange Cyberdefense – will take the stage at Cyber Saiyan / RomHack Conference, Training and Camp 2025! 🎤💻 It’s his first #RomHack,

🚨 𝗪𝗲'𝘃𝗲 𝘂𝗻𝗰𝗼𝘃𝗲𝗿𝗲𝗱 𝘁𝗵𝗲 𝗳𝗶𝗿𝘀𝘁 𝗺𝗮𝗹𝗶𝗰𝗶𝗼𝘂𝘀 𝗠𝗖𝗣 𝘀𝗲𝗿𝘃𝗲𝗿 𝗶𝗻 𝘁𝗵𝗲 𝘄𝗶𝗹𝗱. It was only a matter of time. The postmark-mcp npm package (1,500+ weekly downloads) has been backdoored since v1.0.16 - silently BCCing every email to the attacker's

tfw a tweetable PoC can take down yr cloud compute

If u had issues relaying the ADCS server to itself via the NTLM reflection exploit via ntlmrelayx, it's now fixed github.com/fortra/impacke… :)

blacksnufkin.github.io/posts/opsec-of…

THE AIR GAP! (this is not a joke, I have seen multiple companies say they have an air gapped OT environment with this architecture pattern)

mRr3b00t Reminds me of something I read the other day. There's a lot of money to be made in making cyber seem over complicated.

Vortexnode.net