DNSArchive is a domain, DNS, RDNS and IP intelligence feed and DNS repository. We have over 220 million domains archived.

🧠 What You’ll Learn

Before you dive into our latest diatribe, indulge us and join us on a journey.

Sit in your chair, stand at your desk, lick your phone screen - close your eyes and imagine a world in which things are great. It’s sunny outside, the birds are chirping, and…

A detailed walkthrough of the 'Yet Another ZIP Trick' challenge from HackArcana, covering schizophrenic ZIP file creation and binary exploitation techniques.

A Linux researcher at ERNW has demonstrated how attackers can bypass Secure Boot protections by modifying an unsigned initramfs. But a few kernel tweaks are all it takes to lock things down.

Découvrez comment étendre un accès après une attaque de phishing Azure via le PRT, jusqu’à générer une persistance avec Windows Hello.

Explore the CVE-2025-5777 vulnerability in Citrix, dubbed CitrixBleed 2. Learn how it works, attack details, and defensive steps from Horizon3.ai experts.

A beginner's journey into secure code review, and how I accidentally rediscovered an 11-year-old vulnerability in libpng.

Note on Paid Data Removal ServicesServices like DeleteMe, PrivacyBee, and Mozilla Monitor offer automated data removal from broker sites and people-search

Executive Summary

A pre-authentication vulnerability exists within DotNetNuke versions 6.0 to 10.0.1, assigned CVE-2025-52488, that allows attackers to steal NTLM hashes.

This is the personal website of Egidio Romano, a very curious guy from Sicily, Italy. He's a computer security enthusiast, particularly addicted to webapp security.

Transform CVSS scores into accurate risk assessments. Calculate real vulnerability risk based on your system's security posture.

Posted by ctflfg - 6 votes and 0 comments

This blog post revisits Cross Session Activation attacks