#Malware_analysis 1. Google Tag Manager Skimmer 2. Origins of a logger - Agent Tesla ]->

#exploit 1. CVE-2025-22783: SQLi in WP SEO Plugin 2. Messenger Group Call DoS for iOS

#Kernel_Security "SysBumps: Exploiting Speculative Execution in System Calls for Breaking KASLR in macOS for Apple Silicon", 2024. ]->

#Fuzzing Fuzzing embedded systems Part 1 - Introduction - Part 2 - Writing a fuzzer with LibAFL -

#Research #Sec_code_review "TYPEPULSE: Detecting Type Confusion Bugs in Rust Programs", 2025. ]->

#exploit 1. CVE-2024-0012/CVE-2024-9474: Auth Bypass in PAN-OS Web Interface 2. CVE-2025-23369: GitHub Entreprise Server SAML auth bypass 3. CVE-2022-45460: ROPing our way to RCE

#Red_Team_Tactics 1. SiphonDNS: covert data exfiltration via DNS 2. Bypassing WAF with Hex Overflow

#AppSec Introduction to Fuzzing Android Native Components: Strategies for Harness Creation ]-> The Art of Fuzzing: Harnessing Libraries for Effective Fuzzing-

@kanyewest S.E.X

#Whitepaper "Evaluating Modern Network Protocol Fingerprinting: Defending Bastion Hosts in Hostile Networks", 2025. ]-> Network Protocol Fingerprinting with HASSH/JA4+SSH -

#Offensive_security 1. form-action Content-Security-Policy Bypass and other tactics for dealing with the CSP 2. Root Detection & SSL Bypass Script 3. Bypass Cloudflare's /h/b/jsd challenge using 100% python

#Malware_analysis 1. BADBOX Botnet 2. Malicious SVG links 3. AiTM/MFA phishing attacks in combination with "new" Microsoft protections

#tools #Malware_analysis "ClarAVy: A Tool for Scalable and Accurate Malware Family Labeling", 2025. ]->

#exploit 1. CVE-2024-38143: Windows WLAN AutoConfig Service EoP 2. CVE-2024-36972: Linux kernel NULL Pointer Dereference

#Kernel_Security Exploit Development: Investigating Kernel Mode Shadow Stacks on Windows

#Blue_Team_Techniques "Rule-ATT&CK Mapper (RAM): Mapping SIEM Rules to TTPs Using LLMs", 2025. ]->

#Threat_Research 1. HTB: Trickster (CVE-2024-34716, CVE-2024-32651) 2. Windows Sockets: From Registered I/O to SYSTEM Privileges (CVE-2024-38193)

#WebApp_Security #Red_Team_Tactics Top 10 web hacking techniques of 2024 ]-> Top 10 Web Hacking Techniques 2007-2023 -

#Whitepaper #Threat_Research "Security considerations for edge devices (ITSM.80.101)", 2025. ]-> Digital forensics and protective monitoring specifications for producers of network devices and appliances - ]-> Mitigation strategies for edge devices: Executive guidance - ]-> Mitigation strategies for edge devices: Practitioner guidance -

#tools #Blue_Team_Techniques 1. CortexCanary - Tooling related to discovery of Cortex XDR canary files to avoid 2. YaraMonitor - tool to continuously ingest, analyze, and alert on malware samples given a set of yara rules