BaitRoute is a web honeypot project that serves realistic, vulnerable-looking endpoints to detect vulnerability scans and mislead attackers by providing false positive results.

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gatewa…

Binary Security found three SSRF vulnerabilities in Azure DevOps that we reported to Microsoft. This blog post outlines the way we identified these vulnerabilities, and demonstrates exploitation techniques using DNS rebinding and CRLF injection.

oddlama's personal web page and blog

Breaking up-to-date Windows 11 BitLocker encryption -- on-device but software-only

Recently I came across a fantastic new paper by a group of NYU and Cornell researchers ennoscriptd “How to think about end-to-end encryption and AI.” I’m extremely grateful to see th…

Technical blog by Stephan Berger (@malmoeb)

Cybercriminals continue to exploit unsuspecting users through cleverly crafted phishing campaigns. Recently, I encountered a forwarded message in a WhatsApp group that immediately raised suspicion.…

This week, we identified an intriguing use case involving the WP3[.]XYZ attack (link to our blog post). It sparked interest across the community and led to better detection rates on platforms like VirusTotal (VirusTotal link).

While most appreciated our…

Posted by stan_frbd - 5 votes and 0 comments

I’ve been reversing Black Ops Cold War for a while now, and I’ve finally decided to share my research regarding the user-mode anti-cheat inside the game. It’s not my intention to shame or promote cheating/bypassing of the anti-cheat, so I’ve redacted a few…

Because we can!

Floats in C are weird. Floating point number rounding and NaN shenanigans to bypass security protections.

Azure DevOps is important to many organizations. Pivoting from a stolen session to DevOps access is closer than you think.

promptmap2 is a vulnerability scanning tool that automatically tests prompt injection attacks on your custom LLM applications

In this post, I will introduce the "cookie sandwich" technique which lets you bypass the HttpOnly flag on certain servers. This research follows on from Bypassing WAFs with the phantom $Version cookie

Learn how specially crafted artifacts can be used to attack Maven repository managers. This post describes PoC exploits that can lead to pre-auth remote code execution and poisoning of the local artifacts in Sonatype Nexus and JFrog Artifactory.