This post introduces Vultron, a protocol for multi-party coordinated vulnerability disclosure (MPCVD).

The Memory Process File System. Contribute to ufrisk/MemProcFS development by creating an account on GitHub.

MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash - GitHub - DavidBuchanan314/monomorph: MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash

How can you share data securely via the web browser, using a third-party server? In this article, I explain how I created a end-to-end encrypted note sharing service called Noteshare.space, how the security mechanism works, and how to securely encode decryption…

My dear Bagginses and Boffins, Tooks and Brandybucks, Grubbs, Chubbs, Hornblowers, Bolgers, Bracegirdles and Proudfoots - it is time for some new shit.
We are going to explore the wonderful world of Active Directory Certificate Services, aka ADCS.
If you…

Doyensec's Blog :: Doyensec is an independent security research and development company focused on vulnerability discovery and remediation.

Detecting and Mitigating the GateKeeper User Override on macOS in an Enterprise Environment

dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team! - GitHub - punk-security/dnsReaper: dnsReaper - subdomain takeover tool for attackers, bug bounty hunters an...

In this blog post, the main difference between signature-based and behavior-based Detections are explained. In addition, examples are shown with respective D...

Ken Thompson's "Trusting Trust" compiler Trojan attack was not just a thought experiment. In fact, Usenet poster Jay Ashworth stated that, from personal communications, Thompson really did launch this attack in real life and successfully compromised the Unix…

Enhance your malware detection with WAF + YARA (WAFARAY) - GitHub - alt3kx/wafaray: Enhance your malware detection with WAF + YARA (WAFARAY)

source: https://null2root.github.io/blog/2022/07/21/When-Hypervisor-Met-Snapshot-Fuzzing.html 1. IntroductionHypervisor was known as hard target to fuzz over several years. Even though, lots of prior

Initially discovered by Google and CERT-UA, CredoMap is a stealer developed by the Russian APT28/Sofacy/Fancy Bear that was used to target users in Ukraine in the context of the ongoing war between Russia and Ukraine. Learn more about this malware and how…

connmap is an X11 desktop widget that shows location of your current network peers on a world map - GitHub - jafarlihi/connmap: connmap is an X11 desktop widget that shows location of your current ...

Vuln-dev environment for LuaJIT. Contribute to 0xbigshaq/luajit-pwn development by creating an account on GitHub.

Could AS Requested Service Tickets open new attack paths? Read "New Attack Paths? AS Requested Service Tickets" to learn more.

Every week, almost without fail, I come across one thing that confuses, entertains, or most commonly infuriates me. I’ve decided to keep a…