watchdog

Helping AI Agent become an awesome practical hacker! github.com/yaklang/hack-s…

Every JWT writeup online covers 2–3 attacks and stops. I got tired of jumping between 40 blog posts, so I wrote the whole thing. All in one place. rmrf.tips/en #infosec #appsec #bugbounty #websec #jwt

Gone are the days of risking a Rubeus monitor run (even via the amazing BOF[.]NET by @_EthicalChaos_ ) in your conquest beacon. @virtualloc is crushing it! github.com/jakobfriedl/tg…

The 13-Stage Scan Pipeline Inside Defender - @HackingLZ A complete reverse engineering breakdown of mpengine.dll — the monolithic engine behind Windows Defender. Every file scanned on a Windows machine flows through this single 14.3 MB binary. hackinglz.github.io/defender_overv…

Thanks to Azox, it is now possible to use psexecsvc (github.com/sensepost/susi…) through a socks proxy like ntlmrelayx allowing executing system commands via a trusted service, as NT System, and evading EDR's. Also thanks to @HackAndDo for his fixes :D

SockTail - connecting target via a Tailscale network Red Team Operators should find it useful. A tool by @Yeeb_ Source: github.com/Yeeb1/SockTail #redteam #blueteam #maldev #malwaredevelopment

MSSQL Silver Tickets and Token Privileges - @xct_de vuln.dev/silver-ticket-…

LOLFSAAS Living off Free SaaS Hundreds of SaaS platforms with free tiers, documenting abuse surface, opsec risks, authent methods, C2 framework mappings, and operational limits. lolfsaas.github.io

@nikhil_mitt I’ve had my eye on your courses a while! Just never found one that works for my schedule.

Giveaway - Our instructor-led advanced bootcamps for sharpening your Red Team skills start this weekend. Attacking and Defending Active Directory - Advanced Edition (CRTE) starts this Friday. Advanced Windows Tradecraft - Evasion Techniques for Red Teams (CETP) starts this Saturday. I am giving away one seat for each of the bootcamps. To participate, please Follow @nikhil_mitt and @AlteredSecurity, Like, Comment and Repost. We will announce the random winners on Wednesday. alteredsecurity.com/bootcamps?utm_… #RedTeam #Evasion

227 tips dedicated to red teaming, OPSEC, infrastructure, payloads, etc. github.com/vysecurity/Red…

Releasing PrivHound — Bloodhound collector to model Windows local Privilege Escalation as a graph. Still early — bugs and PRs welcome. github.com/dazzyddos/Priv…

we at codeant found a bug in pac4j-jwt (auth bypass) codeant.ai/security-resea…

🔥 github.com/epotseluevskay…

Offensive DPAPI With Nemesis - SpecterOps specterops.io/blog/2026/03/0…

When you search for Linux on DuckDuckGo, the logo subtly changes to a penguin.

Elastic EDR Bypass An example of bypassing Elastic EDR that allows to execute your own malware on an endpoint systemweakness.com/lateral-moveme… #threatintel #blueteam #redteam

Endpoint Evasion Techniques (2020–2025): The Evolution of Attacks Bypassing EDR windshock.github.io/en/post/2025-0…

Graham Helton has just published a disclosure of a Kubernetes vulnerability that allows running arbitrary commands in any pod in a cluster using a common "read-only" RBAC permission. And this vulnerability won't be assigned a CVE, meaning Kubernetes won't receive a fix 🤷‍♂️ grahamhelton.com/blog/nodes-pro… But there is a silver lining. Graham prepared a short auxiliary post that focuses specifically on the reproduction, and it's an iximiuz Labs tutorial: labs.iximiuz.com/tutorials/node… 💙 We definitely need more security researchers publishing exploit reproductions as code labs anyone can run and verify!

GitHub - nullsection/chisel-ng: Chisel new generation, written in rust. SSH under WSS with some customization. github.com/nullsection/ch…