Booleanaire

Awesome Large Language Models for Vulnerability Detection github.com/huhusmang/Awes…

A curated collection of 86+ Nuclei templates focusing exclusively on zero-day and actively exploited vulnerabilities in the wild. Templates use passive detection techniques (version/date matching) and are organized by year for easy navigation. github.com/rxerium/rxeriu…

Several ways to enumerate links & URLs (including some cool recon techniques!) 👇 > Crawling (with separate UAs) > Content discovery (with different HTTP methods & content types) > Web archives (Internet Archive + URL shortener archives) > Google & Github/GitLab dorking > Analyzing JavaScript files (including previous, archived versions) > Scraping API & product docs > Mobile app analysis (static & dynamic!) > Third-party integrations (Postman, Insomnia, etc.)

This can't be real, the irony.

This week in security: - LiteLLM, backdoored release exfiltrating secrets - Axios, supply chain malware via dependency - Railway, CDN caching leaked user data - OpenAI Codex, command injection via GitHub branch names - Mercor 1TB data leak - Delve, data leak + compliance risk infra is the attack surface now

Claude Code leaked their source map, effectively giving you a look into the codebase. I immediately went for the one thing that mattered: spinner verbs There are 187

Claude code source code has been leaked via a map file in their npm registry! Code: …a8527898604c1bbb12468b1581d95e.r2.dev/src.zip

pentest-ai - 6 Claude Code subagents for offensive security research (engagement planning, recon analysis, exploit methodology, detection engineering, STIG compliance, report writing) 0xsteph.github.io/pentest-ai/

@ICICILombard @AmericanExpress is the agent in this. Both of your teams have been useless

renewed unless I pay today. Email only pushed me to a chatbot. Need urgent human intervention and confirmation of renewal.

@ICICILombard @ICICIBank_Care Very poor customer support from ICICI Lombard. Renewal payment was successfully made 2 days ago through the payment link shared by your team, but no renewal document has been issued yet. I am still receiving messages saying my policy will not be

We announced the Critical Research Lab this week. And for our FIRST post, we got @J0R1AN's: - Exploiting Web Worker XSS with Blobs Go check it out! lab.ctbb.show/research/Explo…

The @GoogleVRP blog has this amazing table. It's perfect for understanding some security boundaries and defenses and a good checklist to use for testing targets. bughunters.google.com/blog/664431627…

@GreeksLive @grok what does this say about PA expectations?

📢 Weekly Trading Update 📈 For the period of September 8th to September 14th, Greeks.Live has achieved a notional trading volume of $367,904,458 ($367.9 million) through block trade, with $280.9 million on Deribit and $87.0 million on OKX. A recap of the top 5 block trades via greeks.live last week. Thank you for the support.

@ShardiB2 @grok illustrate?

Happy Sunday Or is it? $BTC needs this to be a test and pull up today so we don't validate that DAILY reversal candle

Key Events This Week: 1. August Retail Sales data - Tuesday 2. Fed Interest Rate Decision - Wednesday 3. FOMC Press Conference - Wednesday 4. Fed Dot-Plot Projections - Wednesday 5. Philadelphia Fed Manufacturing Index - Thursday 6. Initial Jobless Claims data - Thursday The first Fed rate cut of 2025 is coming this week.

A next-generation HTTP stealth proxy which perfectly cloaks requests as the Chrome browser across all layers of the stack. github.com/mandatoryprogr…