Flipper Zero eBook

Flipper Zero eBook Beginner → advanced made simple  Available at Amazon, Apple and Kobo amazon.com/Hack-Like-Pro-… #FlipperZero #Pentesting #Hacking

@ESETresearch @cyb3rops The move from Linux-only tooling to Windows variants shows how quickly threat ecosystems evolve.

#ESETresearch discovered two as-yet undocumented Windows variants of #SprySOCKS, a previously Linux-only backdoor reportedly used by #FishMonger. We attribute the new Windows variants to #FishMonger with high confidence. welivesecurity.com/en/eset-resear… 1/4

@malmoeb Great research. The use of trusted runtimes can make detection significantly more difficult.

We recently analyzed an interesting piece of malware that utilizes the legitimate JavaScript runtime, Deno. The malware was used as a first-stage implant after the user was tricked into downloading and running the malware. Read the full article here: labs.infoguard.ch/posts/anatomy_…

@James_inthe_box Good catch. Open directories continue to reveal valuable threat intelligence. 🔍

#reverseloader #xworm #opendir at: http://172.245.209\.253/203/ c2: 172.245.106\.54:3333

@0x0SojalSec SSRF continues to prove that seemingly simple vulnerabilities can have serious consequences. 🔥

The entry point to a full RCE chain. It’s not just another SSRF. The real story behind the CVE-2026-35273 chaos: Critical Alert: CVE-2026-35273 (CVSS 9.8) Unauthenticated RCE via SSRF in Oracle PeopleSoft PeopleTools 8.61 & 8.62. If you run PeopleTools 8.61 or 8.62 to check for the emergency patch immediately , CVSS 9.8. Already exploited in the wild before disclosure, Oracle dropped an out-of-band patch.

@GithubProjects Interesting project. DPI has been a major topic in internet freedom and network engineering discussions for years.

SpoofDPI is a proxy tool designed to bypass internet censorship by neutralizing Deep Packet Inspection. - Simple proxy tool for neutralizing DPI techniques - Available through GitHub and official package managers - Inspired by Green Tunnel and GoodbyeDPI - Kernel based circumvention alternative available via DPIBreak Explore it here: osp.fyi/spoofdpi

@Officialwhyte22 Every malware sample teaches something new about attacker techniques and persistence.

Another day to on Malware Analysis Labs

@AbrahamOkah2 Cybersecurity rewards curiosity and continuous learning.

Platforms to Learn Cybersecurity For FREE 1. Cybrary Training cybrary.it 2. AttackIQ Mitre Att&ck lnkd.in/dcfmSPEJ 3. Splunk Courses lnkd.in/d_dZNdu?_l=en_… 4. CSILinux Forensics Training lnkd.in/dhjwx_5h 5. Fortinent Courses lnkd.in/dmmkZ-tH 6. OSINT Courses lnkd.in/dTCaCf-u 7. TryHackMe tryhackme.com 8. Bugcrowd University lnkd.in/djaaDNSa

@davidbombal @Rhynorater IDOR remains one of the most impactful yet overlooked vulnerabilities in modern applications. 🔒

What is an IDOR? Google and Uber got hacked this way. Discover how a simple IDOR vulnerability can dump an entire database. Learn why this basic API bug still earns massive bug bounty payouts in 2026 from tech giants like Google and Meta. This video is sponsored by @ThreatLocker

@h4x0r_dz Great example of how similar vulnerability patterns can appear across completely different applications. 🔍

Good find, it is the same bug I found on Signal while ago @h4x0r_dz/signal-desktop-path-traversal-vulnerability-in-attachment-saving-e9de7806767e" target="_blank" rel="nofollow noopener">medium.com/@h4x0r_dz/sign…

@the_yellow_fall A reminder that timely patching remains one of the most effective security controls. 🔒

A critical phpBB authentication bypass (CVE-2026-48611) lets attackers hijack any account on thousands of forums. Update to 3.3.17 now. #phpBB #CVE202648611 #AuthenticationBypass #AccountTakeover #InfoSec securityonline.info/phpbb-authenti…

@0x534c Prompt injection is becoming one of the most important AI security challenges. 🤖🔒

🚨 Detecting External Copilot Prompt Attacks 🚨 Varonis’ latest SearchLeak research shows how attackers can chain P2P injection, HTML injection, and SSRF to coerce enterprise Copilot into leaking sensitive data. varonis.com/blog/searchleak Although Microsoft has patched CVE‑2026‑42824, defenders now face a new reality: knowing the URL format that can trigger Copilot prompts means adversaries can weaponize links in email, Teams, and Office documents to break guardrails and exfiltrate data. To counter this, defenders must monitor for suspicious link activity that could coerce users into executing external Copilot prompts. Below is a KQL detection designed to surface potential external threats where attackers attempt to force Copilot into unsafe prompting behavior. github.com/SlimKQL/Detect… #Cybersecurity #CopilotPrompt #DataExfiltration

@Code4_CyberSec Open-source security tools continue to be some of the most valuable resources for defenders.

Top 5 Free Tools Every Threat Hunter Should Have - Velociraptor - Sigma - Atomic Red Team - Loki - OSQuery </CODE4> #DFIR #SOC #L1 #L2

@TheHackersNews Attackers are increasingly targeting trust relationships rather than technical vulnerabilities.

⚡ Developers are being targeted where they work: GitHub repos VS Code projects npm packages Packagist Crypto/Web3 lures Researchers say North Korea-linked activity sent 250+ phishing emails to targets at nearly 100 organizations, aiming to steal credentials, wallet data, keys, and access. Read ➝ thehackernews.com/2026/06/north-…

@Anastasis_King It's amazing how much Linux functionality can fit in your pocket these days.

📱💀 Your Phone Can Become a Cybersecurity Lab… Most people use Termux for basic commands… but few realize how powerful it can become. 👀 In this guide, I’m sharing 15 useful Termux tools that can help cybersecurity enthusiasts better understand networking, web security, automation, recon, and mobile learning workflows — all from a phone. ⚡ 🧠 Your smartphone might be more powerful than you think. ⚠️ Educational & authorized lab environments only. 💬 Comment “TERMUX” for the full list. #Termux #CyberSecurity #Android #Linux #InfoSec

@yeswehack SSRF remains one of the most underestimated web vulnerabilities. 🎯

💡 SSRF hides where devs don't expect outbound requests - Referer headers, SVG uploads, XML parsers. These sinks survive in production because nobody thought to protect them. We mapped them all 👇 yeswehack.com/learn-bug-boun…

@tom_doerr OSINT and digital footprint analysis continue to be invaluable for both security professionals and researchers.

GoSearch scans 300+ websites for digital footprints github.com/ibnaleem/gosea…

@three_cube Reconnaissance is usually the first step. Understanding what information is exposed is key to defending it.

Mobile Network Hacking: Reconnaissance on Your Local Mobile Network Hackers can gather information on your local mobile network to: 1. Intercept Your Mobile Traffic 2. Track Your Location 3. Deny Use Access to the Mobile Network (DoS)

@Mandiant The most dangerous intrusions are often the ones that blend into normal administrative activity.

PRC-nexus actor UNC6508 targeted North American research, exploiting REDCap servers to deploy INFINITERED malware. The actor remained undetected for over a year and abused enterprise admin tools for covert data exfil. Analysis, guidance and IOCs ➔ cloud.google.com/blog/topics/th…

@nextronresearch WHQL-signed drivers being used this way highlights the limits of trust-based security.

We found a WHQL-signed kernel module that abuses Windows firmware table registration as a covert kernel↔user communication channel. Instead of exposing a device object and IOCTL interface, it registers a custom firmware provider ("BSBS"), allowing userland interaction through standard Windows firmware table APIs. The implementation is compact and stealthy, supporting memory allocation, memory copy operations, and indirect function dispatch from user mode into kernel context. An unusual example of firmware table registration being repurposed as a hidden ring3↔ring0 communication mechanism. Name: NewDriverMMM SHA256: 1d9224a72e64bb2aad289edc81ea0720c764511c3e2b5beb5d0d5ce82a719abd fdb3907ddda9ff9bd9ec4f8bd29aad823da77b5b3bf599813fecd034b0221189 SpcSpOpusInfo: 深圳市奥联信息安全技术有限公司 Telemetry: China 🇨🇳, Japan 🇯🇵

@co11ateral The most dangerous findings are often the small ones that can be chained together.

Speeding up AD Pentests with ADScan and ADPulse Active Directory pentesting often starts with the same repetitive checks, but ADScan and ADPulse can help you automate them. The pentest does not always end with full domain compromise. Success is not measured by whether you obtain Domain Admin privileges, but by how well you identify and communicate risks that could impact the organization. Sometimes the most critical findings involve exposed data, weak configurations, or small mistakes that could later be chained into larger attacks. hackers-arise.com/offensive-secu… @three_cube @_aircorridor #pentesting #redteam