⌛ Kwalifikacje krajowe do European Cybersecurity Challenge już za nami! 🏆 Gratulujemy wszystkim uczestnikom - tegoroczna frekwencja okazała się najwyższą w historii konkursu, a rywalizacja była zacięta jak nigdy! 👏🏻 Szczególne brawa dla sześciu osób, które poradziły sobie ze

Lots of good write ups (like Citrix Bleed 2) but my favorite was seeing how 🏟️ Ludus.cloud helped Cameron Stish of Guidepoint Security find "LoopyTicket" (CVE-2025-33073). blog.badsectorlabs.com/last-week-in-s…

🔥 Modern Initial Access 2.0 is here🔥 Long-awaited class finally opens for registration, but only three live classes & then it's gone ✅ Modern Phishing Tactics ✅ Proven Payloads ✅ Effective Shellcode Loaders ☢️Snatch your seat today: binary-offensive.com/initial-access… So excited! 🔥

6 months after moving my gitbook to my own domain (book.cryptocat.me), Google still refuses to index it or *any* of the hundreds of writeups I've published over the past ~5 years 😞

For this year Google CTF I created yet another Postviewer challenge called Postviewer v5². The challenge featured a seemingly impossible race-condition. Client-side race-conditions are an under-researched problem and could yield amazing real world bugs! gist.github.com/terjanq/e66c28…

🎯 JustCTF 2025 - 37h of top-tier online jeopardy CTF action! 🗓️ Starts Aug 2, 0600 UTC 💰 $8,628 prize pool + IDA Pro licenses + swag Big thanks to our sponsors! Trail of Bits OtterSec Hex-Rays SA Zellic 2025.justctf.team | discord.gg/BZqZ7zqC6T #CTF #CyberSecurity

JustCTF 2025 is live! 🚀 Check the challenges at 2025.justctf.team

Less than 23 hours to go, and 3 challenges still unsolved! Check 2025.justctf.team Shout-out to our sponsors! Trail of Bits OtterSec Hex-Rays SA Zellic

The 2025 edition of the CTF is over! Thanks everyone for playing. Congrats to the first three places: #1 r3kapig + Project Sekai CTF #2 Infobahn #3 Kalmarunionen And also big thanks to our sponsors Trail of Bits OtterSec Hex-Rays SA Zellic

Turns out my #PHRACK article is live! 🔥 > The Art of PHP — My CTF Journey and Untold Stories! Kinda a love letter to those CTF players & PHP nerds! Hope all the credit goes to the right ppl. Also huge thanks to [email protected] for not forgetting me, TMZ for the edits, and the

We published a blogpost about SafeContentFrame - a library for rendering untrusted content inside an iframe. The library is a big party of what I've been up to in the few last years! Check out the blog and take a slice of my birthday cake 🎂! bughunters.google.com/blog/671552987…

Auditing 2.5k implicit conversions in C? This is how you do it: blog.trailofbits.com/2025/09/25/tam… ;)

pagedout.institute ← we've just released Paged Out! zine Issue #7 pagedout.institute/download/Paged… ← direct link lulu.com/search?page=1&… ← prints for zine collectors pagedout.institute/download/Paged… ← issue wallpaper Enjoy! Please please please RT to spread the news - thank you!

Shop is closed! We hope you had a lot of fun playing this year’s Hack.​lu CTF! Congratulations to everybody who solved challenges and especially the winners: 🥳 Congrats to the winners! 🎉 💪 🥇 Kalmarunionen 🥈 justCatTheFish 🥉 organizers flu.xxx

Shops were open this weekend, and we spent $4298 finishing 🥈! Congrats to FluxFingers for an amazing event.

We are thrilled to announce our first group of sponsored CTF Teams! Top-Tier Teams 💎 justCatTheFish 💎 Kalmarunionen 💎 r3kapig Rising Star Team 🌟 PwnSec Learn more about our partnership and the teams here: hex-rays.com/blog/2025-spon…

I try to be eventually consistent so here it is: jdsec.cloud/posts/2026-01-… This educational writeup goes over a Service Account impersonation chain leading to vertical privilege escalation within Google SecOps SOAR Kudos to Google VRP (Google Bug Hunters) for enabling this kind of research!

For the full disclosure and breakdown please refer to the disclosure. grahamhelton.com/blog/nodes-pro…

‼️At the end of last year, there was a series of coordinated attacks in Polish cyberspace. 📌Today, our team is publishing a report describing the technical analysis of these events. We show the scheme of operation and the tools used by the attackers. ➡️cert.pl/uploads/docs/C…

Here it is, our biggest issue to date, Issue #8! Read, share, enjoy! pagedout.institute/?page=issues.p… Get prints here - lulu.com/search?page=1&… And with that CFP for #9 is open - deadline 30 April 2026