CVE-2025-37752 is an Array-Out-Of-Bounds vulnerability in the Linux network packet scheduler, specifically in the SFQ queuing discipline. An invalid SFQ limit and a series of interactions between SFQ and the TBF Qdisc can lead to a 0x0000 being written approximately…

HackRF Drone Detection System is a system designed to detect the presence of drones using a combination of radio frequency (RF) technology based on HackRF One and additional sensors.
1. Main Functions of the System
RF Drone Detection:
Analyzes radio frequency…

Discover TokenBreak, a novel attack technique that bypasses LLM protection models by exploiting tokenizer vulnerabilities utilizing model-level weaknesses in spam, toxicity, and prompt injection detection.

CVE-2025-33053 Proof Of Concept (PoC). Contribute to DevBuiHieu/CVE-2025-33053-Proof-Of-Concept development by creating an account on GitHub.

Contribute to skraft9/pfsense-security-research development by creating an account on GitHub.

Straiker reveals how zero-click exploits can hijack AI agents to exfiltrate Google Drive data, no user interaction needed. See how attack chains form, why autonomy is dangerous, and how runtime guardrails catch what others miss.

Certify 2.0 features a suite of new capabilities and usability enhancements. This blogpost introduces changes and features additions.

Learn about CVE-2025-50154 and its risk of NTLM attacks and RCE even after Microsoft’s fix for CVE-2025-24054.

Data flow in the Tor network

A new Active Directory flaw, BadSuccessor, allows low-privileged users to become Domain Admins. Akamai researchers warn that the technique remains a threat even after patching.

Nuclei-AI-Prompts. Contribute to reewardius/Nuclei-AI-Prompts development by creating an account on GitHub.

Fluffy is an assume-breach Windows Active Directory challenge. I’ll start by exploiting CVE-2025-24071 / CVE-2025-24055, a vulnerability in how Windows handles library-ms files in zip archives, leading to authentication attempts to the attacker. I’ll get…