SHAD0W, covert modular C2 framework labs.jumpsec.com/2020/06/03/sha… #C2 #redteam #infosec

The new blog post by dylan is now live. Say goodbye to your event logs 😉 labs.jumpsec.com/2020/09/04/pwn… #RedTeam #PenTest #Hacking #BlueTeam #WhereAreMyLogs

Advisory CVE-2020-13774 – Ivanti Unified Endpoint Manager authenticated RCE via file upload labs.jumpsec.com/advisory-cve-2… #ivanti #landesk #rce #cve

Advisory CVE-2020-13769 – Ivanti Unified Endpoint Manager SQL injection labs.jumpsec.com/advisory-cve-2… #ivanti #landesk #cve #sqli

Detecting known DLL hijacking and named pipe token impersonation attacks with Sysmon labs.jumpsec.com/detecting-know… #sysmon #blueteam #privesc #detection

☀️ Summer Solstice philanthropy: I am making this mini-class available for free! 4 hours of deeply systematical theory & practice introduction on hypervisor vulns and how to find them, taught by a specialist researcher, bug hunter and pwner 🔥 How to claim your seat, thread 👉🏻

#PrintNightmare #0Day

We've put out some guidance around securing AD environments from certificate abuse. labs.jumpsec.com/securing-again…

I published the writeup of "Exploiting Hibernate Injection (HQL) in "Order by" Clause (Oracle database)" which we found during an assessment. mannulinux.org/2023/03/exploi… Special Thanks to: Soroush Dalili sir and Noman Riffat bhai ji #injection #websecurity #bugbountytips #Pentesting

Nicolas Krassas This project is backdoored and fake. DO NOT RUN THIS POC! For an example, here is their exploit for CVE-2023-20871: github.com/ChriSanders22/… That code looks very similar hmm....

🔥🔥🚒🚨

Life does things

Harry Potter sacré pervers pic.x.com/lydfhPKVDO

The Linux user experience.

@johnregehr hey, many links to papers on your website are not redirecting anywhere...

@johnregehr uhm, some of them work, others doesn't, at least for me. I'm trying to access to intger overflow in C/C++ but get /#pubstosem14.

@johnregehr oh, right, i'll try it. Thank you 😁