On August 8th 2023, the .NET community was made aware that the testing library called Moq exfiltrates developers emails from their development machine, and sends them off to third-party remote servers.

In this report, we analyze the Windows, Android, and iOS versions of Tencent’s Sogou Input Method, the most popular Chinese-language input method in China. Our analysis found serious vulnerabilities in the app’s custom encryption system and how it encrypts…

A few months ago, I embarked on a security bug hunt within the scope of a private program available through the Intigriti platform. During this endeavor, I encountered an intriguing anomaly while analyzing the redirect from HTTP to HTTPS traffic on a particular…

Introduction In December 2022, we competed at our first pwn2own. We were able to successfully exploit the Lexmark MC3224i using a command injection 0-day. This post will detail the process we used to discover, weaponize, and have some fun with this vulnerability.…

Claroty unveils a unique attack technique that could allow an attacker to impersonate Western Digital (WD) network-attached storage (NAS) devices. Learn more.

VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF - GitHub - hardenedvault/ved-ebpf: VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF

Teams across Google are working hard to prepare the web for the migration to quantum-resistant cryptography. Continuing with our strategy f...

Conference slides. Contribute to onhexgroup/Conferences development by creating an account on GitHub.

In my previous post post, I began writing about how I was designing a port and service scanner for large-scale networks by combining port-scanning tools like masscan/zmap and service scanning tools like nmap. In this post, I’m going to dive into some of the…

How to get started in bug bounty? What technical skills are required? If you are a bug bounty beginner, check this out!

Why XProtect Remediator scans can report BadPluginServiceSignature status_code 31 and abort, and why you don’t need to do anything about it.

RedRays' comprehensive SAP security analysis reveals critical vulnerabilities across 10,000 public IP addresses. Discover the severity distribution, insights into the most pressing vulnerabilities, and RedRays' innovative, accessible solutions for SAP security.

The Underground ransomware is the successor of the Industrial Spy ransomware and was deployed by a threat actor called Storm-0978.

As mentioned in a  recent blog post , our team is once again offering in-person training, and we have substantially updated our course for t...

As mentioned in a  recent blog post , our team is once again offering in-person training, and we have substantially updated our course for t...

Gadget IoC removal from HAK5's BashBunny. Contribute to emptynebuli/StealthBunny development by creating an account on GitHub.

Preface This is a brief story about a phishing attempt made by a user that turned out into a little research.
The initial contact The first contact I had was with a profile named Abigail🌻 who sent me a friend invite on steam.
After a few minutes I received…

Note: I've gone ahead and updated the featured image, so it doesn't seem like this has something to do with Discord "directly". It was not my intention to

Veilid is an open-source, distributed application framework.

Introduction - Educational Malware Development I