Efrain Torres

Claude users right now

Lets write an 1-day Zero Click #exploit ! for CVE-2026-34159 llama.cpp and hack into #AI infrastructure ! blog post : pwntricks.com/ZeroClick-RCE-… exploit github.com/casp3r0x0/CVE-… #Cyber #Security #OSCP #ExploitDevelopment

いいツールだ。Azureペンテスト捗る。 github.com/Waariss/Oblivi…

Hacker’s intro to maritime cybersecurity: AIS communication protocol, tech details, & security flaws. 🛳️🛰️🚢၊၊||၊👩🏻‍💻 More details: LinkedIn: linkedin.com/posts/dlaskov_… Substack: it4sec.substack.com/p/hackers-intr…

Cool exploit with @_0x999: He found that \x7F breaks Chrome's "Copy as cURL (cmd)" command parsing in Windows Console Host. In combination with a ", it allowed you to add any arguments to curl. With -o writing files is easy, but we need the username for the startup path... (1/2)

CVE -> exploitation in 2021 took 1 year. Now it takes 1 hour on average, it'll be 60 seconds by the end of the year. Big changes coming. If we ignore it, we're cooked. Check zerodayclock.com for the stats.

Pwning PostgreSQL was quite fun, excited to share our research at OffensiveCon! offensivecon.org/speakers/2026/…

A Rust dev just killed Headless Chrome. It's called Obscura. The open-source headless browser purpose-built for AI agents and scrapers at scale. Chrome vs Obscura: - Memory: 200MB+ → 30MB - Binary: 300MB+ → 70MB - Page load: 500ms → 85ms - Startup: 2s → Instant - Anti-detect: None → Built-in Single binary. No Node, no Chrome, no dependencies. Stealth mode is brutal: → Per-session fingerprint randomization (GPU, canvas, audio, battery) → 3,520 tracker domains blocked by default → navigator.webdriver masked to match real Chrome → Native function masking so detectors can't sniff it out Drop-in replacement for Puppeteer and Playwright over CDP. Zero code changes. If you run agents or serious scraping at scale, this repo prints money. 100% Opensource.

A pre-auth attacker can open a single WebSocket connection and obtain a fully interactive root shell. Due to missing auth checks in the handler, marimo exposes RCE without tokens or user interaction, even when auth is enabled. CVE-2026-39987

@IvanCepedaCast Esa verdad que promete no se vio ni la dijo con los casos constantes, claros y cronicos de corrupcion del gobierno actual del que usted hace parte.

COMUNICADO Iván Cepeda responde con el poder de la verdad a la estrategia de la mentira El candidato presidencial del Pacto Histórico y la Alianza por la Vida, Iván Cepeda Castro, reafirmó desde el corazón del Eje Cafetero su compromiso con la verdad como principio de su campaña electoral. Además, hizo un llamado al diálogo a los directores de medios de comunicación. “Lo mío es decir la verdad, estar junto al pueblo, defender sus intereses y sus derechos”, señaló.

Running LLMs local vs Cloud services. Lot of hype and clickbait out there around both sides. They both have their use case but users setting up need to be realistic what they can actually host, what self hosted can do

MICROSOFT OPEN-SOURCED THEIR ENTIRE SENTINEL SECURITY TOOLKIT most teams building on azure figure out threat detection the hard way trial and error, custom KQL, dashboards built from nothing, playbooks written by hand nobody told them it was already done the sentinel github repo has: ▫️ 1000+ pre-built threat detection rules ▫️ hunting queries for active threat investigation ▫️ automated response playbooks ▫️ security workbooks + dashboards ▫️ data connectors for 100s of sources the hard part was already done github.com/Azure/Azure-Se…

Andrej Karpathy could have charged $10,000 for this course. He put it on YouTube. The man who built Tesla Autopilot from scratch. Co-founded OpenAI. Understands AI at a level most engineers at Google and Meta never reach. Sat down. Recorded 2 hours. No frameworks. No libraries. No shortcuts. Then dropped it for free. The gap between people who watch it this week and those who save it for later is not 2 hours. It is everything those 2 hours quietly unlock for the rest of your career.

So here is new local privilege escalation zero-day I discovered, not patched yet too :). In simple terms, if you have a service like RDP that exposes an RPC server, there many system services running as SYSTEM connect to it as RPC clients. If that service is turned off (RDP is off by default), it seems that any other process in Windows can expose the same RPC server using the same endpoint. Now all the RPC calls from that SYSTEM processes will come to this fake server and If the process that deployed the server has SeImpersonatePrivilege, it can escalate to SYSTEM by impersonate the RPC client. In the white paper below, I describe five exploit paths you can abuse. However it's architecture problem and maybe there are more. It's Not A Potato securelist.com/phantomrpc-rpc…

The name ‘fast16’ is referenced in the infamous ShadowBrokers’ leak of NSA’s ‘Territorial Dispute’ components. fast16.sys selectively targets high-precision calculation software, patching code in memory to tamper with results. By combining this payload with self-propagation mechanisms, the attackers aim to produce equivalent inaccurate calculations across an entire facility. sentinelone.com/labs/fast16-my… wired.com/story/fast16-m…

Remote EDR Discovery. Methods for detecting remote EDR deployments without local agent presence, a post by Jonathan Johnson (@JonnyJohnson_ ) Source: jonny-johnson.medium.com/no-agent-no-pr… #redteam #blueteam #maldev #malwaredevelopment

Researchers from the University of California San Diego and the University of Maryland spent three years scanning traffic from 39 GEO satellites visible from California. Their analysis showed that roughly half of the observed signals carried cleartext IP traffic. The recovered traffic covered an extraordinary range of sectors. They observed voice calls, SMS messages, in-flight passenger Wi-Fi traffic, utility infrastructure communications, oil and gas platform data, corporate internal messages, retail inventory records, ATM networking data and even military and law-enforcement communications. In our article we covered their research, showing you the hardware and software they used. hackers-arise.com/satellite-hack…

Mozilla says Mythos helped identify 271 vulnerabilities in Firefox 150. I went through the commits, CVEs, and bug links to see what that number really means. My takeaway: relax folks. xark.es/b/mythos-firef…

@IreneVelezT @petrogustavo Gracias Duque.

Se llama descarbonización, la lideró el Gobierno del Presidente @petrogustavo y sí se puede. Negar la urgencia de la transición energética es volver al pasado.

Attacks on the LLM Supply Chain, Part 1 Many people depend on tools like OpenRouter or LiteLLM. However, keep in mind that before your prompt reaches its intended recipient, it may be intercepted or altered by third parties. hackers-arise.com/artificial-int…