While Apex Legends still uses EasyAntiCheat lol

I put a BOF loader in a BOF so that you can run BOFs from a BOF. If you've had issues getting a BOF to work with CS's BOF loader in the past, you now have a drop-in way to get a little bit more compatibility. github.com/0xTriboulet/In…

A new Zero-Click NTLM leak bypasses Microsoft's LNK patch, allowing unauthenticated NTLM hash theft on patched systems. The PoC works by exploiting UNC paths and the default shell32.dll icon reference. #NTLMleak #ZeroClick #LNKattack #Cybersecurity securityonline.info/zero-click-ntl…

🚨 Multiple cybercriminals were arrested during Operation SIMCARTEL. Europol and Latvian law enforcement dismantled five servers, seized 1,200 SIM box devices and 40,000 active SIM cards. The criminals were linked to over 1,700 cyber fraud cases in Austria and 1,500 in Latvia,

Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does github.com/outflanknl/reg…

We implemented an exploit for RediShell (CVE-2025-49844). While doing so, we discovered that the publicly available PoC incorrectly uses loadstring to trigger the Redis UAF. Kudos to Wiz for the interesting findings!

A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory. github.com/ofasgard/execu…

Why everyone just can’t hear any voice note I send? ▶︎•|၊|။||||။၊|။|||။|||။ 1:06

Wrote a little tracer I found helpful when analyzing obfuscated .NET - might be useful for you, might be not. Have fun :3 github.com/eversinc33/Net…

Excited to announce that TigerBeetle and Synadia have pledged $512,000 to the Zig Software Foundation. tigerbeetle.com/blog/2025-10-2…

Redirect any Windows TCP and UDP traffic to HTTP/Socks5 proxy github.com/InterceptSuite…

🚨Russian authorities, led by the Ministry of Internal Affairs (MVD) & supported by Rosgvardia, have detained three individuals in the Moscow region. The suspects, described as young IT specialists, are accused of developing & distributing the Meduza Stealer infostealer malware.

Another Nim C2-Framework developed by Jakob. Can't believe you actually wrote the whole client in Nim as well 😂 Nice one! github.com/jakobfriedl/co… Including a Blog for parts of it: jakobfriedl.github.io/blog/nim-c2-tr…

''Let’s Create Some Polymorphic PIC Shellcode!'' #infosec #pentest #redteam #blueteam g3tsyst3m.com/shellcode/pic/…

SANS scrubbing that shit from their profile page xD web.archive.org/web/2025051521…

Venom C2 tool drop! 🐍 During a recent red team engagement we needed a simple python agent that needs no dependencies to setup persistence on some exotic boxes we landed on. Some had EDR so we didn't want anything off-the-shelf. The server, agent, and client were made

Reversing Microsoft Defender's signatures for evasion. Deep dive into VDM guts - a gzip-compressed files with no encryption to evade entire signatures with just 1 byte change. A research by RETooling crew (Ch40s 🏴‍☠️ && tonvi). Nicely done, chaps! Post: retooling.io/blog/an-unexpe…

Rumors are spreading about a mayor #LawEnforcement operation against #Rhadamanthys #Stealer. Who said what? and me have been monitoring the situation closely. -Rhada domains under active law enforcement control - Customers are adviced to delete all servers Image via club1337