Published a new writeup:

"HackTheBox - White Rabbit"

hg8.sh/posts/whiter...
#hackthebox #ctf #writeup

"CVE-2025-32463: sudo local privilege escalation via chroot option"

An attacker can leverage sudo's -R (--chroot) option to run
arbitrary commands as root, even if they are not listed in the sudoers file.

Sudo versions 1.9.14 to 1.9.17 affected.

www.openwall.com/lists/oss-se... #infosec #cve

TensorFlow Remote Code Execution with Malicious Model | CyberBlog The purpose of this article is to show how to get RCE when a crafted malicious Tensorflow model is loaded. Remember all of this is for educational purposes only! Don't be mean!

"TensorFlow Remote Code Execution with Malicious Model"

Old technique but good writeup

splint.gitbook.io/cyberblog/se... #ctf #tensorflow #ai #infosec

"Funky chunks: abusing ambiguous chunk line terminators for request smuggling"

w4ke.info/2025/06/18/f... #infosec

"Getting RCE on Monero forums with wrapwrap"

Cool finding. This would make a cool CTF challenge 👍

swap.gs/posts/monero... #rce #ctf

"Riding The Time Machine: Journey Through An Old vBulletin PHP Object Injection"

Another good potential for a CTF challenge! 👀

karmainsecurity.com/riding-the-t... #infosec #rce #ctf

Weaponizing Dependabot: Pwn Request at its finest Learn how Dependabot can be co-opted to exploit some sensitive workflows, through the Confused Deputy Problem and branch name injections.

"Weaponizing Dependabot: Pwn Request at its finest"

TL;DR: Through "Confused Deputy" attacks Dependabot (and other GitHub bots), can be tricked into merging malicious code. It can escalate to full command injection via crafted branch names.

boostsecurity.io/blog/weaponi... #infosec

"Root Shell on Credit Card Terminal"

stefan-gloor.ch/yomani-hack #infosec #re #reverseengineering

"From Reverse Engineering to Cheat Development: Internal Game Hacks with AssaultCube"

Bit outdated (DirectX9) but still some very valuable info and a great writeup 👍

adminions.ca/books/articl... #infosec #re

cve-2025-26817 netwrix rce Authenticated Remote Code Execution Vulnerability in Netwrix Password Secure

"Authenticated Remote Code Execution in Netwrix Password Secure (CVE-2025-26817)"

That will make a nice CTF challenge ^

www.8com.de/cyber-securi... #infosec #cve #rce

GitHub MCP Exploited: Accessing private repositories via MCP We showcase a critical vulnerability with the official GitHub MCP server, allowing attackers to access private repository data. The vulnerability is among the first discovered by Invariant's security ...

"GitHub MCP Exploited: Accessing private repositories via Model Context Protocol"

invariantlabs.ai/blog/mcp-git...

Uncovering a crazy privilege escalation from Chrome extensions What's the worst thing a Chrome extension could do to you?

"Uncovering a crazy privilege escalation from Chrome extensions - CVE-2023-4369" (2023)

0x44.xyz/blog/cve-202... #infosec #cve #privesc

Fixing Security Vulnerabilities with AI in OSS-Fuzz Critical open source software systems undergo significant validation in the form of lengthy fuzz campaigns. The fuzz campaigns typically conduct a biased random search over the domain of program input...

"Fixing Security Vulnerabilities with AI in OSS-Fuzz"

arxiv.org/abs/2411.03346 #infosec #ai #fuzzing #oss-fuzz

"One-Click RCE in ASUS’s Preinstalled Driver Software"

mrbruh.com/asusdriverhub/ #infosec #re

"Don't Call That "Protected" Method: Dissecting an N-Day vBulletin RCE"

karmainsecurity.com/dont-call-th... #infosec #rce #vbulletin

GitHub - ZathuraDbg/ZathuraDbg: An emulation based tool for learning and debugging assembly. An emulation based tool for learning and debugging assembly. - ZathuraDbg/ZathuraDbg

ZathuraDbg: An emulation based tool for learning and debugging assembly.

github.com/ZathuraDbg/Z... #infosec

"Compromising Real-WorldLLM-Integrated Applications with Indirect Prompt Injection"

arxiv.org/pdf/2302.12173

Google's Approach for Secure AI Agents

"An Introduction to Google's Approach for Secure AI Agents"

research.google/pubs/an-intr... #infosec

What a Binance CAPTCHA solver tells us about today’s bot threats In this post, we analyze an open-source CAPTCHA solver designed to bypass a custom challenge deployed on Binance, one of the most popular crypto platforms. While the solver is publicly available, we’v...

"What a Binance CAPTCHA solver tells us about today’s bot threats"

blog.castle.io/what-a-binan... #infosec #captcha

Go Cryptography Security Audit Go's cryptography libraries underwent an audit by Trail of Bits. Read more about the scope and results.

Three Trail of Bits engineers audited core Go cryptography for a month and found only one low-sev security issue... in unsupported Go+BoringCrypto! 🍾

Years of efforts on testing, limiting complexity, safe APIs, and readability have paid off! ✨

Yes I am taking a victory lap. No I am not sorry. 🏆

DDoSecrets publishes 410 GB of heap dumps, hacked from TeleMessage's archive server This morning, Distributed Denial of Secrets published 410 GB of data hacked from TeleMessage, the Israeli firm that makes modified versions of Signal, WhatsApp, Telegram, and WeChat that centrally arc...

"DDoSecrets publishes 410 GB of heap dumps, hacked from TeleMessage's archive server"

micahflee.com/ddosecrets-p...

"Dolla dolla bill, y'all" - Reverse engineering a banknote validator.

something.fromnothing.blog/posts/dolla-... #infosec #reverseengineering

"Statistical Analysis to Detect Uncommon Code (2023)"

synthesis.to/2023/01/26/u...

"Skitnet(Bossnet) Malware Analysis"

catalyst.prodaft.com/public/repor... #infosec #malware

Commit Stomping Manipulating Git Histories to Obscure the Truth

"Commit Stomping: Manipulating Git Histories to Obscure the Truth"

blog.zsec.uk/commit-stomp... #infosec #redteam

Stateful Connection With Spoofed Source IP — NetImpostor Overview

"Stateful Connection With Spoofed Source IP — NetImpostor"

Tl;Dr: Writeup reviews the technique for establishing a full stateful TCP connection with a spoofed source IP address from the same subnet using ARP poisoning.

tastypepperoni.medium.com/stateful-con... #infosec

CVE-2024-11477- 7-Zip ZSTD Buffer Overflow Vulnerability - Crowdfense CVE-2024-11477, a buffer overflow vulnerability in 7-Zip's ZSTD decompression algorithm; explore the technical details.

7-Zip ZSTD Buffer Overflow Vulnerability (CVE-2024-11477)

www.crowdfense.com/cve-2024-114... #infosec #cve

Full write-up: github.com/TheN00bBuild...

"One-Click RCE in ASUS’s Preinstalled Driver Software"

mrbruh.com/asusdriverhub/ #infosec #rce

DarkWidow: Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+BlockDll) mitigation policy on spawned process

github.com/reveng007/Da... #infosec

"Drag and Pwnd: Leverage ASCII characters to exploit VS Code"

portswigger.net/research/dra...