This post was authored by Taqi and Rosamira

how to hack timing on hack the box

Disclaimer: as many other security researchers […]

TL;DR: Al Capwn goes international! We won the second prize hacking hardware with our 15$ (1000 INR) SDR and Logic Analyzer in Doha, Qatar! In October 2019, Members of Al Capwn flew from New Delhi, India to Doha, Qatar to attend Qatar International Cybersecurity…

Recursive MMIO VM Escape PoC. Contribute to QiuhaoLi/CVE-2021-3929-3947 development by creating an account on GitHub.

Cutting-edge cyber security research from NCC Group. Find public reports, technical advisories, analyses, & other novel insights from our global experts.

connmap is an X11 desktop widget that shows location of your current network peers on a world map - GitHub - jafarlihi/connmap: connmap is an X11 desktop widget that shows location of your current ...

Dealing with Virtualization-Based Security (VBS), Hypervisor-Protected Code Integrity (HVCI), and Kernel Control Flow Guard (kCFG).

In this blog post, we will be operating under the assumption that you have retrieved a Windows kernel rootkit sample and want to breakpoint…

mx-takeover focuses DNS MX records and detects misconfigured MX records. - GitHub - musana/mx-takeover: mx-takeover focuses DNS MX records and detects misconfigured MX records.

My new friend Gundiuc Oleg reached out to me regarding an older blog post I wrote about permanently changing MAC addresses on NICs. Gundiuc was targeting the AX88772B chipset on USB ethernet adapters. If you’re interested in following along, I used this USB…

The Mosque-Cathedral of Córdoba is a chronicle of

This article looks at modifying Tailscale clients to disable inbound firewalling, and an interesting environment variable leakage through a built in API.

A vulnerability in the health check RPM of Cisco IOS XR Software could allow an unauthenticated, remote attacker to access the Redis instance that is running within the NOSi container.
This vulnerability exists because the health check RPM opens TCP port…

Check if your provider is blocking you! Contribute to Peco602/findwall development by creating an account on GitHub.

Bonita Web 2021.2 is affected by an authentication/authorization bypass vulnerability in the API authorization filters.

Take domains on stdin and output them on stdout if they get resolved - thelicato/fire

Finding vulnerabilities in Windows drivers was always a highly sought-after prize by sophisticated threat actors, game cheat writers and red teamers. As you probably know, every bug in a driver...

Network printers have been featured for the first time at Pwn2Own competition in Austin 2021.