Our team hacks space heater firmware updates over wifi in the latest Include Security blog post. We break down, literally and figuratively, each step of the attack to demonstrate how anonymous users on the same wireless network as an affected space heater…

Trigger warning: incredibly wonky theoretical cryptography post (written by a non-theorist)! Also, this will be in two parts. I plan to be back with some more thoughts on practical stuff, like clou…

Trigger warning: incredibly wonky theoretical cryptography post (written by a non-theorist)! Also, this will be in two parts. I plan to be back with some more thoughts on practical stuff, like clou…

Generate obfuscated command-line arguments for common system-native executables now with ArgFuscator.

This is the second part of a two three four-part series, which covers some recent results on “verifiable computation” and possible pitfalls that could occur there. This post won’t…

Information Security Services. Offensive Security, Penetration Testing, Mobile and Application, Purple Team, Red Team

Introduction At the start of 2025, on Jan­u­ary 14th, Mi­crosoft re­leased over 20+ CVEs ad­dress­ing Re­mote Code Ex­e­cu­tion (RCE) vul­ner­a­bil­i­ties in Mi­crosoft Tele­pho­ny Ser­vices,...

🔐 A CLI tool to extract server certificates. Contribute to Hakky54/certificate-ripper development by creating an account on GitHub.

Interactive results explorer and annotation tool for Nosey Parker - praetorian-inc/noseyparker-explorer

Introduction A counterintuitive truth is that great products are defined by both the features they include, as well as those they don’t. We spend a lot of time pondering potential new features for …

International Journal of Information Security - Wi-Fi Easy Connect is a protocol introduced by the Wi-Fi Alliance, as the core replacement of the Wi-Fi Protected Setup (WPS). It aims to facilitate...

A raw, no-bullshit guide to hacking—from anonymity to exploitation. Learn how real hackers think, break systems, and stay untouchable. Are you ready?

NanoCore is a well-known Remote Access Trojan (RAT) used by threat actors for espionage, data theft, and system control. In this post, I will analyze a NanoCore RAT sample with the hash 18B476D3724…

Jooki was a dream come true for parents—an intuitive, screen-free audio player that let kids enjoy music and stories with the tap of a token. But that dream turned into frustration when the company behind Jooki went bankrupt, leaving countless devices bricked…

Posted by RandomReema - 0 votes and 6 comments

This tool expands your smartphone’s capabilities, allowing you to dive into RF analysis, penetration testing, and signal manipulation—bringing mobile hacking to a whole new level.

TL;DR:

Intro In our previous article Fault […]