A network virtual appliance (NVA) is a virtual appliance primarily focused on network functions virtualization. A typical network virtual appliance involves various layers of four to seven function…

Quick Summary Hey guys today Ypuffy retired and this is my write-up. This box is a little different from the other boxes. It’s not windows or linux , it’s running openbsd which is a unix-like system. I really liked the privilege escalation in this box because…

Gorsair hacks its way into remote docker containers that expose their APIs. - Ullaakut/Gorsair

Personal blog of Christian Haschek

A step-by-step guide to learn how to hack WiFi passwords (WEP/ WPA2/ WPS) in plain-text using the Evil Twin attack method

Security analysis toolkit for proprietary car protocols - schutzwerk/CANalyzat0r

Lessons I’ve learned from software engineering are uniformly cynical:

The first Android Trojan Clipper - that exchanges cryptocurrency address in copied clipboard - was discovered on Google Play.

It’s National Clean Out Your Computer Day, and I want to help you celebrate it by rolling up your sleeves and getting to work. It’s a…

1 vote and 0 comments so far on Reddit

by Mitja Kolsek, the 0patch Team Today we'll look at a fairly simple vulnerability in Adobe Reader DC that allows a PDF document automati...

Like a scene from a James Bond or Mission Impossible movie, a new offensive USB cable plugged into a computer could allow attackers to execute commands over WiFi as if they were using the computer's keyboard. 

Russia may briefly disconnect from the internet as part of a test of its cyber-defences.

Abusing SUDO Advance for Linux Privilege Escalation If you have a limited shell that has access to some programs using thesudocommand you might be able to escalate your privileges. here I show some of the binary which helps you to escalate privilege using…

Post Exploitation, Domain Exploitation, Meterpreter, Crackmapexec, Empire, Local Privilege Escalation, Persistence, Pivoting

2019 commence par un record battu ! Des compilations de plusieurs centaines de Giga sont apparues, d’abord en vente sur le darknet puis échangées par torrents à partir de plusieurs forums, sous les noms :« Collection #1 à 5 » ou « bigDB ». Essayons de voir…

It is particularly on IoT security.. please ask your question and share your knowledge

WebARX researcher found a vulnerability in popular WordPress plugin Simple Social Buttons. Read more to find out what vulnerability allows.