🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

🚨Today, we have issued an advisory exposing Russia’s military intelligence service for a campaign of malicious cyber activity against Western logistics and technology firms, including those involved in delivering support to Ukraine⬇️ ncsc.gov.uk/news/uk-partne…

I wrote-up how I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation. Link to the blog post below 👇

We've heard feedback suggesting we should have waited to release details about BadSuccessor until Microsoft issued a patch. We want to explain why we made the decision to go public immediately.

Meet our new buddy, Argusee — an AI-powered, automated vulnerability hunter that has already discovered 15+ vulnerabilities across projects, including a previously unknown Linux kernel flaw (CVE-2025-37891) enabling LPE. Demo and details: darknavy.org/blog/argusee_a…

Without its international students, Harvard is not Harvard. hrvd.me/IntStudents25t

conda update conda 🤯 lmao

📢 Hackyboiz Open Seminar Recap 📢 On Saturday, May 24th, Hackyboiz successfully hosted its first-ever Open Seminar with great interest and support! ✨ It was a meaningful opportunity for us to meet and connect in person with those who have always supported Hackyboiz. If you

Pwning basebands is often seen as black magic, but it’s surprisingly easy to start... if you know how 😁 Practical Baseband Exploitation teaches you to reverse engineer basebands, find vulnerabilities, and program BTS to exploit them over-the-air. This year, the course is at

Launching a student-only free workshop: ".NET Exploitation Basics" 🪲 If you're a student (or know one), let's write some deserialization exploits, Manchester, July 12. 10 seats. summoning.team/free-training-…

Looks like BlueHat IL talks are online now, so here’s my talk for anyone who wanted to learn about the latest episode of KASLR and couldn’t make it: youtu.be/Dk2rLO2LC6I

[1day1line] CVE-2025-32756: Stack-based Buffer Overflow in Fortinet Admin API hackyboiz.github.io/2025/05/29/cla… Today’s 1day1line post covers the RCE vulnerability (CVE-2025-32756) found in Fortinet products. This vulnerability stems from a lack of input length validation within a

Circuits at home! (but it’s actually really good) Big win from the Anthropic Fellows program and open source interp collaborators

"Why is my exploit taking 10 minutes?" *checks logs* *sees 10,000 kernel warnings* "...oh" 💡 Fresh Friday night read: our intern, Tan Ze Jian, on Mali exploitation - sometimes the fix is simpler than you think! starlabs.sg/blog/2025/05-g…

😌🍹

crash always hits harder in pink imo 💁🏻‍♀️

博客好久没更新了，发一篇笔记 Postgresql JDBC Attack and Stuff su18.org/post/postgresq…

Have you ever wondered what are the main sources of Windows vulns in kernel mode. I went through Microsoft's CVE portal over the past three years to find out which Windows km components have been patched most frequently - consuming company's resources. aibaranov.github.io/windrivers/

[1day1line] CVE-2025-27363: FreeType- Out-of-Bounds Write Today's 1day1line is about an Out-of-Bounds Write vulnerability that occurred while processing subglyphs within a font in FreeType, an open source font rendering library! For more details, please check out the blog!👇

The OffensiveX 2025 Agenda Is Live. On June 18–19, we’re bringing the sharpest minds in offensive security to Athens to drop real research, real tools, and real tactics. You’ve seen who’s speaking. Now it’s time to see what they’re dropping. 🔗 Check the full agenda: