🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Outlook for Windows can be tricked into displaying a fake domain, but open another one. Add a <base> tag with a fake domain + left-to-right mark (U+200E) Links in <a> tags will show the fake domain, but open the real domain. No need to buy .zip! :) Convincing #phishing #redteam

Here is the full Philips Sonicare Head NFC Password Calculation 🥳 How I got there you can find in this Thread. 1/N

Cada día más cerca de convertirme en Jovani Vázquez

Pulling SYSTEM out of Windows GINA 🪟: a 0day vuln giving pre-auth SYSTEM shell on domain computers managed by ManageEngine ADSelfService Plus

🤣🤣🤣🤣

The video on setting up an Android VM, Installing the Burp Certificate in the System Store, and proxying application traffic through BurpSuite is live now! Additionally, I go over using Frida to defeat certificate pinning. youtu.be/xp8ufidc514

Oh, no!

tutanota.com/blog/chat-cont…

The $5 Membership sale is now live! The sale lasts until July 17 23:59 UTC: account.shodan.io/billing/member

Recently, I've been playing around with Rust and I decided to take on the challenge of porting some of #mimikatz functionality to understand how it does its magic ✨ I've written an entry-level post about how the Minesweeper module works. Check it out! zodi4cx.github.io/posts/breaking…

Our deepest condolences to the friends, family, and colleagues of Mr. Kevin Mitnick. dignitymemorial.com/obituaries/las…

Want to leak your password through a mispredicted ASM routine? Run this on a Zen 2 Processor: vcvtsi2s{s,d} xmm, xmm, r64 vmovdqa ymm, ymm jcc overzero vzeroupper overzero: nop Tavis Ormandy uncovered a flaw "Zenbleed" (CVE-2023-20593) in

With Web Environment Integrity in Chromium (Chrome, Opera, Edge) it'll allow websites to determine whether a visitor is a human or a robot based off of hardware fingerprinting. It is designed to enhance ad delivery capabilities.

Mashing Enter to bypass full disk encryption with TPM, Clevis, dracut and systemd pulsesecurity.co.nz/advisories/tpm…

🚨🚨WE URGE EVERYONE TO UPDATE THEIR APPLE DEVICES AS SOON AS POSSIBLE. We have found an actively exploited #zero #click vulnerability that was used to deliver #NSO group’s #Pegasus #spyware. citizenlab.ca/2023/09/blastp…

El primer taller del Laboratorio Virtual, Conecta Cienci@ULL es sobre computación cuántica y es impartido por los investigadores José Daniel Escánez y Javier Correa 🧪🖥️👨‍🔬

Found a user-level persistence opportunity when Steam.exe (the game platform) is installed. On boot, it runs "vulkandriverquery64.exe" which tries to load a missing DLL that can be placed in a user-writable location within %PATH%. #redteam #malware #cybersecurity #pentesting