Just published a summary of "modern" Windows authentication reflection attacks. Turns out reflection never really died. 😅decoder.cloud/2025/11/24/ref…
During my research into COM/DCOM I stumbled upon a vulnerability that deletes the Boot Configuration Data (BCD) in the registry as low privileged user. For this vulnerability CVE-2025-59253 was assigned by Microsoft. warpnet.nl/blog/deleting-…
Remote management software from a major vendor contains a "built-in" Medium -> System escalation on Windows. Vendor calls it intentional. If you are a red teamer and find this during a pentest, note that escalation is easy. Thinking of a short blog post.
Reported a Local Privilege Escalation (LPE) vuln that was fixed by the CPU-Z developers. My name was mentioned in the official CPU-Z release notes: cpuid.com/softwares/cpu-…
Just got a reward for a high vulnerability submitted on @yeswehack -- Code Injection (CWE-94). 🫡 yeswehack.com/hunters/0x-ali… #YesWeRHackers
#redteam Now, you can dump the #Windows password from the LSASS process with help from the past: WerFaultSecure.exe Github: 2x7EQ13/WSASS Experimental version: Windows 11 24H2 #Blueteam
🚨 CALL 4 PAPERS — Bug Bounty Village @ H2HC 2025 🚨 Caçou um bug insano? Tem case real ou técnica nova? Esse é seu palco! Envie sua proposta pelo form: bit.ly/4n4hXf9 #H2HC #BugBountyVillage #Call4Papers #HackerCulture
I've got an arbitrary file (not folder) delete bug on hand. Anyone know the latest privilege escalation techniques on Windows 24H2, since the changes around ::$INDEX_ALLOCATION?
Yay, I was awarded a $800 bounty on @Hacker0x01! hackerone.com/0x_alibabas #TogetherWeHitHarder
🚀Exciting News! Introducing my latest work: Beyond XSS This series of articles aims to introduce front-end security topics, perfect for frontend devs and those intrigued by frontend security. Suitable for all skill levels from beginners to intermediates aszx87410.github.io/beyond-xss/en/
United States Trends
- 1. Giannis 53.5K posts
- 2. Tosin 61.1K posts
- 3. Spotify 1.5M posts
- 4. Leeds 92.4K posts
- 5. Bucks 34.7K posts
- 6. Maresca 47.4K posts
- 7. Danny Phantom 5,943 posts
- 8. #WhyIChime 1,919 posts
- 9. Milwaukee 16.4K posts
- 10. Wirtz 33.6K posts
- 11. Mark Andrews 1,364 posts
- 12. Sunderland 43.8K posts
- 13. Delap 16.6K posts
- 14. Isaiah Likely N/A
- 15. Purple 52.4K posts
- 16. Chiesa 11.4K posts
- 17. Jack Smith 36.9K posts
- 18. Poison Ivy 1,550 posts
- 19. Merino 38.1K posts
- 20. Cedric Mullins N/A
Something went wrong.
Something went wrong.