NEW BOT Телеграм, страница - 781948393

hackspace

158 subscribers

279 photos

75 videos

23 files

996 links

hackspace

Download Telegram

About

Blog

Apps

Platform

158 subscribers

GitHub - mbadanoiu/CVE-2025-31644: CVE-2025-31644: Command Injection in Appliance mode in F5 BIG-IP
https://github.com/mbadanoiu/CVE-2025-31644

GitHub - mbadanoiu/CVE-2025-31644: CVE-2025-31644: Command Injection in Appliance mode in F5 BIG-IP

CVE-2025-31644: Command Injection in Appliance mode in F5 BIG-IP - mbadanoiu/CVE-2025-31644

67 views08:01

https://decoder.cloud/2025/04/24/from-ntlm-relay-to-kerberos-relay-everything-you-need-to-know/?s=35

From NTLM relay to Kerberos relay: Everything you need to know

While I was reading Elad Shamir recent excellent post about NTLM relay attacks, I decided to contribute a companion piece that dives into the mechanics of Kerberos relays, offering an analysis and …

62 views09:22

Multiple Chinese 🇨🇳 nation-state APT groups have gained initial access to critical infrastructure networks through SAP NetWeaver intrusions, aiming to conduct cyber-enabled espionage and maintain persistent remote access.

https://blog.eclecticiq.com/china-nexus-nation-state-actors-exploit-sap-netweaver-cve-2025-31324-to-target-critical-infrastructures

China-Nexus Nation State Actors Exploit SAP NetWeaver (CVE-2025-31324) to Target Critical Infrastructures

EclecticIQ analysts assess with high confidence that, in April 2025, China-nexus nation-state APTs (advanced persistent threat) launched high-temp exploitation campaigns against critical infrastructure networks by targeting SAP NetWeaver Visual Composer.

80 views09:26

https://github.com/ly4k/Certipy/wiki

Tool for Active Directory Certificate Services enumeration and abuse - ly4k/Certipy

82 viewsedited 05:01

Media is too big

VIEW IN TELEGRAM

👍1

102 views16:18

https://www.akamai.com/blog/security-research/abusing-dmsa-for-privilege-escalation-in-active-directory

BadSuccessor: Abusing dMSA to Escalate Privileges in Active Directory

Akamai researchers found a privilege escalation vulnerability in Windows Server 2025 that allows attackers to compromise any user in Active Directory.

66 views18:38

https://blog.eclecticiq.com/china-nexus-threat-actor-actively-exploiting-ivanti-endpoint-manager-mobile-cve-2025-4428-vulnerability?s=35

China-Nexus Threat Actor Actively Exploiting Ivanti Endpoint Manager Mobile (CVE-2025-4428) Vulnerability

On Thursday, May 15, 2025, Ivanti disclosed two critical vulnerabilities - CVE-2025-4427 and CVE-2025-4428 - affecting Ivanti Endpoint Manager Mobile (EPMM) version 12.5.0.0 and earlier.

83 views22:40

This media is not supported in your browser

VIEW IN TELEGRAM

😁3

71 views23:07

https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/

Sean Heelan's Blog

How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation

In this post I’ll show you how I found a zeroday vulnerability in the Linux kernel using OpenAI’s o3 model. I found the vulnerability with nothing more complicated than the o3 API &#821…

80 views06:00

84 views17:40

70 views21:33

This media is not supported in your browser

VIEW IN TELEGRAM

🔥3

73 views22:47

https://syst3mfailure.io/two-bytes-of-madness/

[CVE-2025-37752] Two Bytes Of Madness: Pwning The Linux Kernel With A 0x0000 Written 262636 Bytes Out-Of-Bounds

CVE-2025-37752 is an Array-Out-Of-Bounds vulnerability in the Linux network packet scheduler, specifically in the SFQ queuing discipline. An invalid SFQ limit and a series of interactions between SFQ and the TBF Qdisc can lead to a 0x0000 being written approximately…

77 views16:39

https://youtu.be/WHHs1CGwI0I

HACKRF DRONE DETECTION SYSTEM REV1

HackRF Drone Detection System is a system designed to detect the presence of drones using a combination of radio frequency (RF) technology based on HackRF One and additional sensors.
1. Main Functions of the System
RF Drone Detection:
Analyzes radio frequency…

97 views10:50

https://hiddenlayer.com/innovation-hub/the-tokenbreak-attack/

HiddenLayer | Security for AI

The TokenBreak Attack

Discover TokenBreak, a novel attack technique that bypasses LLM protection models by exploiting tokenizer vulnerabilities utilizing model-level weaknesses in spam, toxicity, and prompt injection detection.

110 views17:07

https://github.com/DevBuiHieu/CVE-2025-33053-Proof-Of-Concept

GitHub - DevBuiHieu/CVE-2025-33053-Proof-Of-Concept: CVE-2025-33053 Proof Of Concept (PoC)

CVE-2025-33053 Proof Of Concept (PoC). Contribute to DevBuiHieu/CVE-2025-33053-Proof-Of-Concept development by creating an account on GitHub.

98 views00:09

👽

🔥1😁1

57 views06:10

GitHub - skraft9/pfsense-security-research
https://github.com/skraft9/pfsense-security-research

GitHub - skraft9/pfsense-security-research

Contribute to skraft9/pfsense-security-research development by creating an account on GitHub.

46 views08:31

https://hackers-arise.com/bypassing-next-generation-firewalls-with-fragtunnel/

60 views08:31

54 views08:31

55 views13:38