OSCP+ Repos oscpdb.vercel.app

Sysmon Config Creation for The LOLRMM Framework dodgethissecurity.com/2025/11/30/sys…

Oggi laboratorio. Volevo spiegare bene come funziona una vulnerabilita' web, non in teoria ma facendola vedere. Ho montato un server, l'ho bucato con un comando, e poi ho aperto tutto per capire cosa succede dentro e come si chiude il buco. Se vi interessa la sicurezza

🚨 Holy shit... this Python library bypasses Cloudflare automatically and nobody's talking about it. It's called Scrapling and it just killed every scraping tool you're currently using. While everyone's duct-taping Selenium + BeautifulSoup + proxy services together and spending

🚨BREAKING: Someone just opensource'd a platform that replaces your entire DevOps monitoring stack. It's called xyOps. Job scheduling + workflow automation + server monitoring + alerting + incident response -- one self-hosted dashboard. When an alert fires, it auto-attaches

Proxmox VE 9.1 can pull container images straight from Docker Hub, and it changes everything bit.ly/4stHjVX

One of the biggest pain points for macOS-based DFIR analysts: "I have a raw Master File Table ($MFT) or USN Journal ($J), but I need a Windows VM just to parse it." Not anymore. IRFlow Timeline now imports raw $MFT and $J files directly: a two-pass binary parser extracts 22

Kali & LLM: Completely local with Ollama & 5ire: We are extending our LLM-driven Kali series, where natural language replaces manual command input. This time however, we are doing everything locally and offline. We are using our own hardware and not… kali.org/blog/kali-llm-…

Security hardening in #Proxmox? #CVE scanning…? #PegaProx might be your way! gyptazy.com/blog/pegaprox-…

5 SIEM rules I actually use every day in production (and why they work) I triage 200+ alerts daily in my remote SOC role. These 5 rules have cut my false positives by ~40% and caught real threats. Thread 👇 #SOC #BlueTeam #SIEM

enrica bonaccorti sarai per sempre la regina smascheratrice di truffe 💔 #enricabonaccorti

This could be quite interesting and useful for #DFIR, locally on your PC. Maybe Defender timeline downloader + this? 🤔 medium.com/@gribanov.vlad…

Ricordo quella volta che scrissi “Mac è tipo Linux”. Nei commenti qualcuno spiegò cos’è GNU/Linux a una giornalista.... e a me :) pinperepette.github.io/signal.pirate/…

‼️ China's biggest cybersecurity company, Qihoo 360 (461M users), just leaked their own wildcard SSL private key inside the public installer for their new AI assistant "360 Security Claw." The private key for *.myclaw.360.cn was bundled directly in the download package under

What’s next for enterprise #DigitalInvestigations? Join us on March 18 for a webinar that breaks down our new State of #EnterpriseDFIR 2026 Report, including key findings and what they mean for your organization in the year ahead: ow.ly/8aBp50YuN1F #DFIR

From pixels to pavement: Testing the new Porsche 911 Cup in iRacing and IRL arstechnica.com/cars/2026/03/f…

Just migrated our entire production stack from @DigitalOcean to Hetzner in just 24 hours — $1,432 → $233/month. Zero downtime. 30 MySQL DBs (248GB), 34 Nginx sites, GitLab EE, Neo4j. All automated with Python scripts. Full write-up on my blog 👇 isayeter.com/posts/digitalo…

💡 Threat Hunting in Splunk with Hunt's C2 Intelligence hunt.io/glossary/splun… Threat hunting in Splunk works best when logs are enriched with reliable intelligence, and using our Splunk Addon brings live C2 infrastructure and enriched IOC feeds directly into Splunk

ConnectWise patches new flaw allowing ScreenConnect hijacking bleepingcomputer.com/news/security/… bleepingcomputer.com/news/security/…

🚨 A new ransomware operation, #TheGentlemen, has emerged following an affiliate split revealing how #threatactors evolve from partners to independent operators while retaining advanced tooling, infrastructure, and access pipelines. Our latest analysis explores how this group is