⤷ Title: CeWL vs Crunch: How to Build Smart Wordlists for Bug Bounty Recon
════════════════════════
𐀪 Author: ghostyjoe
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 06:27:07 GMT
════════════════════════
⌗ Tags: #hacking #security #bug_bounty #linux #cybersecurity
════════════════════════
𐀪 Author: ghostyjoe
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 06:27:07 GMT
════════════════════════
⌗ Tags: #hacking #security #bug_bounty #linux #cybersecurity
Medium
CeWL vs Crunch: How to Build Smart Wordlists for Bug Bounty Recon
🧠 Building Smarter Wordlists with CeWL & Crunch
⤷ Title: The Easiest RCE? How One Node.js Variable Creates Chaos
════════════════════════
𐀪 Author: Krishna Kumar
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 05:34:09 GMT
════════════════════════
⌗ Tags: #cybersecurity #hacking #bug_bounty #bug_bounty_tips #bug_bounty_writeup
════════════════════════
𐀪 Author: Krishna Kumar
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 05:34:09 GMT
════════════════════════
⌗ Tags: #cybersecurity #hacking #bug_bounty #bug_bounty_tips #bug_bounty_writeup
Medium
🔥 The Easiest RCE? How One Node.js Variable Creates Chaos
Based on “The Easiest Remote Code Execution Vulnerability?” by LiveOverflow
⤷ Title: Web Application Security: Hands-On Practice (Chapter 13 from The Web Application Hacker’s Handbook)
════════════════════════
𐀪 Author: Aditya Kumar
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 06:34:28 GMT
════════════════════════
⌗ Tags: #hacking #cybersecurity #notes #web_application_security #chapter_13
════════════════════════
𐀪 Author: Aditya Kumar
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 06:34:28 GMT
════════════════════════
⌗ Tags: #hacking #cybersecurity #notes #web_application_security #chapter_13
Medium
Web Application Security: Hands-On Practice (Chapter 13 from The Web Application Hacker’s Handbook)
Note: This write-up reflects my learning and hands-on practice based on the book The Web Application Hacker’s Handbook: Discovering and…
⤷ Title: How Hackers Attack Websites
════════════════════════
𐀪 Author: Saiful Gazi
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 06:27:09 GMT
════════════════════════
⌗ Tags: #web_security #wordpress #cybersecurity #hacking #security
════════════════════════
𐀪 Author: Saiful Gazi
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 06:27:09 GMT
════════════════════════
⌗ Tags: #web_security #wordpress #cybersecurity #hacking #security
Medium
How Hackers Attack Websites
Most website owners think “My site is small, no one will hack it.”
But hackers don’t target size — they target weakness.
But hackers don’t target size — they target weakness.
⤷ Title: The 3-Day Fast: My Body Ate Itself, and My Focus Spiked 40%
════════════════════════
𐀪 Author: Adi Insights and Innovations
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 06:19:24 GMT
════════════════════════
⌗ Tags: #fasting #personal_development #health #hacking #biohacking
════════════════════════
𐀪 Author: Adi Insights and Innovations
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 06:19:24 GMT
════════════════════════
⌗ Tags: #fasting #personal_development #health #hacking #biohacking
Medium
The 3-Day Fast: My Body Ate Itself, and My Focus Spiked 40%
Quantifying the trade-off between acute misery and long-term cellular repair.
⤷ Title: Proven Success with Ethical Hacking Course in Trivandrum Training Center
════════════════════════
𐀪 Author: Niranjandotnot
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 05:56:06 GMT
════════════════════════
⌗ Tags: #hacking
════════════════════════
𐀪 Author: Niranjandotnot
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 05:56:06 GMT
════════════════════════
⌗ Tags: #hacking
Medium
Proven Success with Ethical Hacking Course in Trivandrum Training Center
Join hundreds of successful alumni who started with an Ethical Hacking Course in Trivandrum at our academy.
⤷ Title: Proving Grounds — Practice — Flimsy
════════════════════════
𐀪 Author: Makoyi
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 05:00:42 GMT
════════════════════════
⌗ Tags: #oscp #penetration_testing #ctf #ethical_hacking
════════════════════════
𐀪 Author: Makoyi
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 05:00:42 GMT
════════════════════════
⌗ Tags: #oscp #penetration_testing #ctf #ethical_hacking
Medium
Proving Grounds — Practice — Flimsy
Flimsy is rated easy by offsec, but rated intermediate by the community. I found the machine straightforward and on the easier side. The…
❤1
⤷ Title: TryHackMe Monitoring AWS Services writeup
════════════════════════
𐀪 Author: ayed djalil
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 06:26:44 GMT
════════════════════════
⌗ Tags: #tryhackme_writeup #tryhackme #tryhackme_walkthrough
════════════════════════
𐀪 Author: ayed djalil
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 06:26:44 GMT
════════════════════════
⌗ Tags: #tryhackme_writeup #tryhackme #tryhackme_walkthrough
Medium
TryHackMe Monitoring AWS Services writeup
🦊 Discover common attacks on AWS services and learn how to protect against them.
⤷ Title: Screaming Into the Void Taught Me to Think
════════════════════════
𐀪 Author: Shivani
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 04:57:12 GMT
════════════════════════
⌗ Tags: #twitter #xs #void #critical_thinking #thought_leadership
════════════════════════
𐀪 Author: Shivani
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 04:57:12 GMT
════════════════════════
⌗ Tags: #twitter #xs #void #critical_thinking #thought_leadership
Medium
Screaming Into the Void Taught Me to Think
Having an opinion is intelligent. Holding and defending one is a skill. It demonstrates research, knowledge, and a practiced moral compass…
⤷ Title: APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2
════════════════════════
𐀪 Author: Unknown
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 13:44:00 +0530
════════════════════════
⌗ Tags: No_Tags
════════════════════════
𐀪 Author: Unknown
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 13:44:00 +0530
════════════════════════
⌗ Tags: No_Tags
⤷ Title: Digital Phantoms: Unmasking the Iranian Cyber Syndicates Fueling the 2026 Middle East Conflict
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:19:35 +0000
════════════════════════
⌗ Tags: #Cyber Security #Check Point Research #Cotton Sandstorm #Educated Manticore #Handala Hack Team #IRGC cyber #Middle East cyberwar 2026 #MOIS #MuddyWater #WezRat #WhiteLock ransomware
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:19:35 +0000
════════════════════════
⌗ Tags: #Cyber Security #Check Point Research #Cotton Sandstorm #Educated Manticore #Handala Hack Team #IRGC cyber #Middle East cyberwar 2026 #MOIS #MuddyWater #WezRat #WhiteLock ransomware
Penetration Testing Tools
Digital Phantoms: Unmasking the Iranian Cyber Syndicates Fueling the 2026 Middle East Conflict
Cyberspace has long served as a collateral theater of war within the Middle Eastern conflict. Amidst the latest
⤷ Title: The invisible Splinter: How a Hidden Node.js Flaw Bypasses 160 Million Weekly Security Guards
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:18:32 +0000
════════════════════════
⌗ Tags: #Vulnerability #ClientRequest #CVE_2018_12116 #HackerOne #HTTP request splitting #http_proxy_middleware #Node.js #r3verii #superagent #Tech News 2026 #TOCTOU #Vulnerability Research #web security
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:18:32 +0000
════════════════════════
⌗ Tags: #Vulnerability #ClientRequest #CVE_2018_12116 #HackerOne #HTTP request splitting #http_proxy_middleware #Node.js #r3verii #superagent #Tech News 2026 #TOCTOU #Vulnerability Research #web security
Penetration Testing Tools
The invisible Splinter: How a Hidden Node.js Flaw Bypasses 160 Million Weekly Security Guards
Within the Node.js ecosystem, a vulnerability has been unearthed pertaining to the foundational logic of the HTTP client,
⤷ Title: Predictable Secrets: The “Null Key” Flaw in Matrix’s Vodozemac Library That Could Expose Conversational History
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:17:02 +0000
════════════════════════
⌗ Tags: #Vulnerability #cryptographic audit #end_to_end encryption #Matrix #null key attack #Olm #protocol downgrade #Rust security #Soatok #Tech News 2026 #Vodozemac #X25519
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:17:02 +0000
════════════════════════
⌗ Tags: #Vulnerability #cryptographic audit #end_to_end encryption #Matrix #null key attack #Olm #protocol downgrade #Rust security #Soatok #Tech News 2026 #Vodozemac #X25519
Penetration Testing Tools
Predictable Secrets: The "Null Key" Flaw in Matrix’s Vodozemac Library That Could Expose Conversational History
The proprietor of the Soatok weblog has promulgated an exhaustive exposition detailing the vulnerabilities within Vodozemac, the Rust-based
⤷ Title: The Trust Trap: How Hackers Weaponize Legitimate Google and Microsoft Login Pages via OAuth Redirection
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:15:05 +0000
════════════════════════
⌗ Tags: #Cybercriminals #Credential Theft #DLL Sideloading #EvilProxy #Google Accounts #Microsoft Defender #Microsoft Entra ID #OAuth redirection #phishing 2026 #RFC 6749 #Tech News 2026
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:15:05 +0000
════════════════════════
⌗ Tags: #Cybercriminals #Credential Theft #DLL Sideloading #EvilProxy #Google Accounts #Microsoft Defender #Microsoft Entra ID #OAuth redirection #phishing 2026 #RFC 6749 #Tech News 2026
Penetration Testing Tools
The Trust Trap: How Hackers Weaponize Legitimate Google and Microsoft Login Pages via OAuth Redirection
An electronic missive imploring the recipient to “sign a document” or “authenticate an account” may not invariably lead
⤷ Title: The Unstoppable Hive: Aeternum C2 Abandons Servers to Command Botnets via the Polygon Blockchain
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:12:57 +0000
════════════════════════
⌗ Tags: #Malware #Aeternum C2 #Anti_Virtualization #BOTNET #C2 Infrastructure #cybersecurity #decentralization #Kleenscan #Polygon Blockchain #Qrator Labs #smart contracts #Tech News 2026
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:12:57 +0000
════════════════════════
⌗ Tags: #Malware #Aeternum C2 #Anti_Virtualization #BOTNET #C2 Infrastructure #cybersecurity #decentralization #Kleenscan #Polygon Blockchain #Qrator Labs #smart contracts #Tech News 2026
Penetration Testing Tools
The Unstoppable Hive: Aeternum C2 Abandons Servers to Command Botnets via the Polygon Blockchain
Qrator Labs has heralded the emergence of a novel botnet, dubbed Aeternum C2, which seamlessly transposes the orchestration
⤷ Title: Man’s Best Friend or Trojan Horse? Critical “Root” Flaws Unmasked in Unitree Robotic Canines
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:10:23 +0000
════════════════════════
⌗ Tags: #Vulnerability #CVE_2026_27509 #CVE_2026_27510 #Eclipse CycloneDDS #hardware hacking #IoT vulnerabilities #Python injection #remote code execution #robotic security #Tech News 2026 #Unitree Go2
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:10:23 +0000
════════════════════════
⌗ Tags: #Vulnerability #CVE_2026_27509 #CVE_2026_27510 #Eclipse CycloneDDS #hardware hacking #IoT vulnerabilities #Python injection #remote code execution #robotic security #Tech News 2026 #Unitree Go2
Penetration Testing Tools
Man's Best Friend or Trojan Horse? Critical "Root" Flaws Unmasked in Unitree Robotic Canines
A domestic robotic canine can swiftly transmute into a veritable Trojan horse should an individual wielding a laptop
⤷ Title: The Skeleton Key: How Google’s “Safe” Maps Keys Silently Became Gemini Credentials
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:09:01 +0000
════════════════════════
⌗ Tags: #Data Leak #AIStudio #API key security #cybersecurity research #Data Breach 2026 #firebase #Gemini API #google cloud #privilege escalation #Tech News 2026 #Truffle Security
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:09:01 +0000
════════════════════════
⌗ Tags: #Data Leak #AIStudio #API key security #cybersecurity research #Data Breach 2026 #firebase #Gemini API #google cloud #privilege escalation #Tech News 2026 #Truffle Security
Penetration Testing Tools
The Skeleton Key: How Google’s "Safe" Maps Keys Silently Became Gemini Credentials
For years, Google reassured developers that its API keys could be safely left in plain sight, embedded directly
⤷ Title: Jumping the Gap: APT37’s “Ruby Jumper” Campaign Weaponizes Cloud Storage and USBs to Breach Isolated Networks
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:01:03 +0000
════════════════════════
⌗ Tags: #Cybercriminals #air_gapped network #APT37 #Cybersecurity 2026 #RESTLEAF #Ruby Jumper #ScarCruft #SNAKEDROPPER #THUMBSBD #USB Malware #Velvet Chollima #VIRUSTASK #Zoho WorkDrive #Zscaler ThreatLabz
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:01:03 +0000
════════════════════════
⌗ Tags: #Cybercriminals #air_gapped network #APT37 #Cybersecurity 2026 #RESTLEAF #Ruby Jumper #ScarCruft #SNAKEDROPPER #THUMBSBD #USB Malware #Velvet Chollima #VIRUSTASK #Zoho WorkDrive #Zscaler ThreatLabz
Penetration Testing Tools
Jumping the Gap: APT37’s "Ruby Jumper" Campaign Weaponizes Cloud Storage and USBs to Breach Isolated Networks
The DPRK-affiliated syndicate APT37 has augmented its arsenal dedicated to breaching air-gapped networks. The Zscaler ThreatLabz vanguard has
⤷ Title: Context Is Everything: A Practical Guide to XSS
════════════════════════
𐀪 Author: Marduk I Am
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 08:33:05 GMT
════════════════════════
⌗ Tags: #web_security #cross_site_noscripting #cybersecurity #ethical_hacking #bug_bounty
════════════════════════
𐀪 Author: Marduk I Am
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 08:33:05 GMT
════════════════════════
⌗ Tags: #web_security #cross_site_noscripting #cybersecurity #ethical_hacking #bug_bounty
Medium
Context Is Everything: A Practical Guide to XSS
Understanding XSS Using Five Portwigger Labs.
⤷ Title: Building an Enterprise .NET 10 API — Part 2: Security & Authentication
════════════════════════
𐀪 Author: Marc Kenneth Lomio & Melrose Mejidana
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:55:40 GMT
════════════════════════
⌗ Tags: #user_authorization #user_authentication #application_security
════════════════════════
𐀪 Author: Marc Kenneth Lomio & Melrose Mejidana
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:55:40 GMT
════════════════════════
⌗ Tags: #user_authorization #user_authentication #application_security
Medium
Building an Enterprise .NET 10 API — Part 2: Security & Authentication
Adding JWT authentication, refresh tokens, brute-force protection, and role-based authorization — without changing a single existing…
⤷ Title: Achieving Application Environment Isolation
════════════════════════
𐀪 Author: Robert Broeckelmann
════════════════════════
ⴵ Time: Sun, 01 Mar 2026 14:04:57 GMT
════════════════════════
⌗ Tags: #isolation #software_architecture #application_security #environment_isolation #security
════════════════════════
𐀪 Author: Robert Broeckelmann
════════════════════════
ⴵ Time: Sun, 01 Mar 2026 14:04:57 GMT
════════════════════════
⌗ Tags: #isolation #software_architecture #application_security #environment_isolation #security
Medium
Application Environment Isolation
Your production environment should be isolated from your non-production environments. In fact, every application environment should be…