This tool generates gopher link for exploiting SSRF and gaining RCE in various servers - tarunkant/Gopherus

CVE-2018-13417 was released this August that disclosed an out-of-band XXE vulnerability in the SSDP/UPnP functionality of the XML parsing engine in the popular Vuze Bittorrent client

State of the art security for the most valuable secrets

Complete step-by-step technical tutorial for WordPress malware removal. Remove WordPress malware, backdoors, SEO Injection, htaccess hack and learn how to remove WordPress site from google blacklist. Extra tips for making the site secure! Everything in one…

It's been a few weeks since we released A cr4cking g00d time and we'd first like to thank everyone who gave it a go. We've received great feedback and are very pleased to hear that people have attained new levels of password cracking-fu in the process

On Trello, a project management site, the governments posted credentials for servers and domain names and even some emails and code.

Down to the Wire is a collaborative project hosted by a group of students across the country. Topics range from hardware to software to security.

Database protection tool for detection of suspicious behaviour created by Cossack Labs

2 votes and 0 comments so far on Reddit

Modern key management in a large organization is primarily described by bureaucratic procedures and compliance requirements due to...

Hopefully a 'All you need to know about Open Redirects' post

Denoscription of how the vulnerability was found and a few indications about its explotability

From leaked kernel-mode process handle to SYSTEM XIGNCODE3 is a popular anti-cheat solution provided on a B2B2C basis, predominantly found in online games. This class of software is known for its invasive nature, effectively acting as user-mode rootkits on…

Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"