My exploit for sudo CVE-2021-3156 that ACTUALLY works. Tested on ubuntu 18.04 and 20.04. github.com/r4j0x00/exploi…

can we just stop calling everything 0day - RCE please. ty

This year, I prepared the web category for #STMCTF 2021. Here are the writeups, hope you enjoyed 🙏 morph3sec.com/Writeups/STMCT…

We played #metasploitctf 2021 with jkr Jack Martin Mielke macz Snowscan 고요 imth Ignis Tamas H and won🥇🥳. Thank you for the amazing ctf Metasploit Project

Updated the Object post with successful Kerberoasting (successful == get the hash, still failed to crack it). Thanks to morph3 and Yb1 for help getting that sorted. Just to the updated section with this link: 0xdf.gitlab.io/2022/02/28/htb…

Awesome community! Synack Red Team

🏆🥳🎉 Ignis Noi 고요

HackerOne Jobert Abma Mårten Mickos As I know each year #hackforgood destination changes, first it was for COVID-19 then for supporting Ukraine. As you know one of biggest earthquakes recently happened in Türkiye, per this tweet more than 17K lost their lives.

My first time offensivecon super excited 🤩 #OffensiveCon

Thanks everyone for organizing such an amazing event. I had a wonderful time. See you next year ! offensivecon

I'm starting a new series of blogposts where I will study old CVEs. First one is CVE-2021-26084. Confluence OGNL injection preauth RCE. It was easy to catch but was tricky to understand what's going on. Enjoy ! morph3.blog/posts/Studying…

Want to win a Learn One subscription or a course & cert bundle? Join our End-of-Year CTF, starting tomorrow! ➡️ CTF info: offs.ec/3RFpvHQ ➡️ Join our CTF box walkthrough tomorrow: offs.ec/3GM64Xy

Maybe it wasn't the best idea to have custom lock sounds 😂

happy new year all 🎈🥳

türkçe olarak sanırım artık bu hesaptan saçmalayacağım morpheus merak ederseniz

Ayrıca 0day yakıp üstüne fingerprinting / targeted attack için tekrar 1 click 0day yakmak da bu atağın çok büyük bir ihtimalle agency veya government backed bir atak olduğunu gösteriyo