mandrake

Sci-Hub is an evil website that pirated 85M+ research papers and made them freely available And now they've added AI to their database to make Sci-Bot. It answers your questions using latest, full-text articles. But DO NOT use it. We should all try to make billion-dollar academic publishers richer. I'm putting the link below so you know how to avoid it.

Anemia ferropénica sin causa clara. Diagnóstico diferencial largo y poco tiempo para revisar la literatura. OpenEvidence ofrece respuestas con fuentes en segundos. Gratis.

EMAIL OSINT - The Digital Footprint I have recently added a new phase to the D4rk_Intel Investigative Toolkit - Email OSINT: > Pre-Investigation Framework > Email Validity Check > Search Engine Techniques > Forgot Password Technique > Proton API Quick Lookup Among others!

Lets write an 1-day Zero Click #exploit ! for CVE-2026-34159 llama.cpp and hack into #AI infrastructure ! blog post : pwntricks.com/ZeroClick-RCE-… exploit github.com/casp3r0x0/CVE-… #Cyber #Security #OSCP #ExploitDevelopment

🚨ÚLTIMA HORA: Nuevo fármaco en estudio resuelve el problema más sucio de los GLP-1: la pérdida ósea. Douros J, et al. ADA 2026, póster 2839-LB.

¿Sabías que puedes saber qué arteria “se tapó” solo con ver cómo se mueve el paciente? 🧐 ¡Es simple neuroanatomía pura! Hoy vamos a desglosar la relación entre la irrigación cerebral, las áreas de Brodmann y los síntomas del EVC🧠

Tools the internet doesn't want you to find 🔍 1. Shodan A search engine for internet-connected devices. You can find cameras, servers, and routers exposed online. 2. Archive. ph Saves a permanent snapshot of any webpage. Useful when articles go behind paywalls. 3. Similarsites Enter any website and instantly find dozens of similar ones. Great for discovering alternatives. 4. Mailtrack Shows you when someone opens your email. You see the exact time it was read. 5. Hunter. io Type in a company name and it finds employee email addresses linked to that domain. 6. Photopea A free Photoshop that runs entirely in your browser. No download needed. 7. 12ft .io Removes paywalls from most news articles. Just paste the link and read for free. 8. Carbon Turns your code into beautiful shareable images. Popular among developers. 9. Explainshell Paste any Linux command and it explains exactly what every part does. 10. Tineye Reverse image search that shows where a photo has appeared on the internet. 11. Namecheckr Check if a username is available across all social media platforms at once. 12. Untools A collection of thinking frameworks and mental models to help you make better decisions. 13. BuiltWith Shows the exact technologies, tools, and software any website is built with. 14. GeoGuessr Drops you anywhere in the world on Google Street View. You guess the location. 15. Virustotal Upload any file or paste any link and it scans it with over 70 antivirus engines instantly.

So here is new local privilege escalation zero-day I discovered, not patched yet too :). In simple terms, if you have a service like RDP that exposes an RPC server, there many system services running as SYSTEM connect to it as RPC clients. If that service is turned off (RDP is off by default), it seems that any other process in Windows can expose the same RPC server using the same endpoint. Now all the RPC calls from that SYSTEM processes will come to this fake server and If the process that deployed the server has SeImpersonatePrivilege, it can escalate to SYSTEM by impersonate the RPC client. In the white paper below, I describe five exploit paths you can abuse. However it's architecture problem and maybe there are more. It's Not A Potato securelist.com/phantomrpc-rpc…

Here’s a solid list of top 5 underrated cybersecurity websites that most people sleep on, even though they deliver serious value for everyday security work, OSINT, threat hunting, and recon. - pulsedive.com - greynoise.io - leakix.net - abuseipdb.com - bazaar.abuse.ch

PowerShell-Based Active Directory Lab Setup 🚨 🔥 Telegram: t.me/hackinarticles ✴ Twitter: x.com/hackinarticles Automate your Active Directory lab using PowerShell and build a vulnerable environment for real-world penetration testing practice—fast, scalable, and efficient. ⚡ Lab Highlights 💻 Automate Domain Controller setup via PowerShell 🌐 Install & configure AD DS + DNS 🛠️ Promote server to Domain Controller ⚙️ Configure domain, users & OUs automatically 🚀 PowerShell Capabilities 📡 Install AD DS role using commands 🔐 Create domain (forest) via script 👤 Automate user & OU creation 🔥 Configure services & policies quickly 💡 PowerShell simplifies repetitive AD lab tasks and allows rapid deployment of test environments—ideal for red teamers and OSCP prep. 📖 Article: hackingarticles.in/active-directo… #ActiveDirectory #PowerShell #CyberSecurity #Pentesting #RedTeam #EthicalHacking #Automation

The Huntress SOC is observing the use of Nightmare-Eclipse's BlueHammer, RedSun, and UnDefend exploitation techniques. Investigation by: @wbmmfq, @Curity4201, + @_JohnHammond 🧵👇

Fyi. Im still looking for work. CVEs are below (Dont report bugs anymore after what happened in 2023 at msft). Cant travel to the US. Prefer fulltime or contract work but worst case, a buyer for my work at competitive pricing would be great too. big_polar_bear1@proton.me

In this article I show a way to modify Mimikatz to evade Defender @luisgerardomoret_69654/modifying-mimikatz-to-evade-defender-2026-dc701000289d" target="_blank" rel="nofollow noopener">medium.com/@luisgerardomo… #penetrationtesting #redteaming

We're hiring Junior Software Engineers.

More Vintage Computing museums should rent out cloud access to their rare hardware. SDF (Super Dimension Fortress) does it, and it’s freaking awesome. I’m literally logged into a Sun SPARCstation…anyone can do this for free, right now. Just SSH in.

gopacket is live! Check it out, it is intended to be a full reimplementation of Impacket in Go (it is in beta please send me bug reports) github.com/mandiant/gopac…

Just pushed a minor update to #mimikatz 2 🥝(no - it's *NOT* the version 3) to support specific GMSA DPAPI passwords in LSA secrets to be able to to decrypt Masterkeys > #diff-164eabd1e5eb6fcdc4a56c9b68cf74d64ed26829feb90913b2c208a7d5d775be" target="_blank" rel="nofollow noopener">github.com/gentilkiwi/mim… Only for @topotam77 convenience ;)

🚨 ¡ATENCIÓN, MÉXICO! 🚨 Se viene una noticia gigante que cambiará el futuro del trabajo. 🚀🇲🇽 Nuestro nuevo Certificado Profesional en IA ya está revolucionando la región, pero muy pronto compartiremos un anuncio importantísimo para el país. ¿Estás listo para ir más allá de lo básico y convertir la tecnología en tu mayor ventaja profesional? 💼✨ La cuenta regresiva para abrir las puertas y que domines las habilidades que las empresas buscan hoy mismo, ¡empieza ahora! 👀⏳.