Goby is a new generation network security assessment tool. It can efficiently and practically scan vulnerabilities while sorting out the most complete attack surface information for a target enterprise. github.com/gobysec/Goby

A series on Linux kernel exploit development reddit.com/r/ReverseEngin…

For WordPress wp-config file, if the main endpoint is forbidden we can also check for the backup file Rat racer redacted[.]com/wp-config.php => 403 Forbidden redacted[.]com/wp-config.php_orig => 200 OK #bugbountytips #cybersecurity

Windows application exploitation series PART 1 — Leaky Handles infosecwriteups.com/windows-applic…

Project Ares is a PoC loader written in C/C++ based on the Transacted Hollowing technique. It features: * PPID spoofing * Dynamic function resolution with API hashing * NTDLL unhooking * AES256 CBC Encryption and more! github.com/Cerbersec/Ares

🗡️🛡️A data set of Ethereum smart contract bugs github.com/xf97/JiuZhou #solidity #ethereum #cybersecurity

#Learn365 - Day 17: ☑️ How to find new/more domains of a company? : Recon Stuff - Writeup Link : cyberick.com/post/how-to-fi…

Windows 10 : Security Vulnerabilities github.com/nu11secur1ty/W…

Project Zero: Zooming in on Zero-click Exploits googleprojectzero.blogspot.com/2022/01/zoomin…

Good news ! CrackMapExec v5.2.2 is now available through Kali Linux 🎉 Lot of juicy features available : ➡️ LAPS support ➡️ BloodHound integration ➡️ no more CTRL-C ➡️ lot of new modules ➡️ LDAP support improvement Update your Kali ⬇️ apt update && apt install crackmapexec

😎 We just published a new article in our RampUp series! Learn how to bypass jailbreak detection, setup a proxy and bypass SSL pinning. ➡ Getting Started with iOS Penetration Testing (Part 1) 👇 #BugBounty #YesWeRHackers blog.yeswehack.com/yeswerhackers/…

While monitoring threats related to the Log4j 2 vulnerabilities, we saw attacks being propagated via an input validation flaw in the SolarWinds Serv-U software. We reported our discovery to SolarWinds, and security updates have been released. More info: msft.it/6013ZIZzF

#BlueTeam #infosec 1. Blueteam operational triage registry hunting/forensic tool github.com/theflakes/reg_… 2. Check for LDAP protections regarding the relay of NTLM authentication github.com/zyn3rgy/LdapRe…

haxx.in/files/blasty-v… enjoy, my fellow scriptkiddies

Good collection of #Pentesting resources and #pentest pentestbook.six2dez.com/others/web-che… #bugbounty #cybersecurity #infosec

Reverse-Engineering & Exploitation Fundamentals : omu.rce.so/gcc-2022/ Linux basics : omu.rce.so/lessons/linux-… ASM (x86-64) : omu.rce.so/lessons/asm-x8…

⚔️ Checklist for container security - DevSecOps practices github.com/krol3/containe… #cybersecurity #hacking #containers #bughunting #devops #devsecops

Introducing nrich: a tool to quickly find the open ports and vulnerabilities for a list of IPs - gitlab.com/shodan-public/…