VBAnimal
@VBAnimal
Dev... this account may thus behave strangely for testing ! #Python #PHP #JS #HTML #VBA
You might like
I made a human-readable CSV lookup file that maps coordinates to their country code. This one has an accuracy of 30km
The *full* Python Documentary will be released this Thursday (Aug 28) at 10am PDT / 19:00 CET. More at discuss.python.org/t/python-docum… Don't miss the online release party / chat! @TECHDOCU
A new attack on Linux is challenging everything we thought we knew. We found malware hidden not in the content, but in the filename itself. Read the full analysis. bit.ly/45sxajN
Finally, with @hw16, we managed to bypass the @Cloudflare mTLS protection after around 5 days of work. I'd like to share a few golden tips for bug bounty hunters who might face something similar in the future. But first, here's a quick summary: The target was a banking app with…
Did @Cloudflare just defeat @Burp_Suite and @CaidoIO? Cloudflare protection is becoming very common. This is the third app I’ve seen using it. Changing the user agent doesn’t help, and Burp TLS-fingerprint bypass plugin didn’t work. The app blocks any request when it detects…
Good read : Exploring Javascript events & Bypassing WAFs via character normalization 0x999.net/blog/exploring…
Today, we're announcing our first hosted infrastructure product: pyx, a Python-native package registry. We think of pyx as an optimized backend for uv: it’s a package registry, but it also solves problems that go beyond the scope of a traditional "package registry".
Still my favorite set of redirects. So many "hackers" probe these basic wordpress routes. Always nice to give them a pleasant distraction 😄
You didn’t click, but your password challenge is leaked. I’m excited to share my latest research: CVE-2025-50154, a high severity NTLM hash disclosure vulnerability in the explorer.exe process, exploitable without any user interaction. cymulate.com/blog/zero-clic…
we got a persistent 0click on ChatGPT by sharing a doc that allowed us to exfiltrate sensitive data and creds from your connectors (google drive, sharepoint, ..) + chat history + future conversations it gets worse. we deploy a memory implant #DEFCON #BHUSA @tamirishaysh
We (+@ronenshh) hacked NVIDIA's Triton AI server by abusing a single error message🚨 The result is unauthenticated RCE allowing attackers to compromise the server and steal proprietary AI models🤯 For more details & mitigations check out our blog @wiz_io wiz.io/blog/nvidia-tr…
hashcat v7.0.0 released! After nearly 3 years of development and over 900,000 lines of code changed, this is easily the largest release we have ever had. Detailed writeup is available here: hashcat.net/forum/thread-1…
Je sais que la procédure civile, c'est pas sexy, ça n'intéresse personne hormis les professionnels et la presse spécialisée. Sachez juste que le gouvernement va permettre, dans tous les litiges civils à partir du 1er septembre, …
We found a new container escape affecting all container runtimes using @NVIDIA GPUs. The crazy part? The exploit is just three lines long 🤯 This is the story of #NVIDIAScape 🧵👇
Nuxt 4.0 is here at last … and it's all about DX ✨ 🗂️ app/ directory for better organisation 🔄 smarter data fetching ⚡️ a faster CLI with socket communication 🔧 improved TypeScript integration ... and a smooth upgrade experience. 💚 nuxt.com/blog/v4
Google has just used AI and threat intel to foil a zeroday before it could launch. Working from artifacts gathered by GTIG, Big Sleep was used to identify a vuln before actors could ramp up exploitation. It doesn’t get much better than this in intel. blog.google/technology/saf…
Turns out you can just hack any train in the USA and take control over the brakes. This is CVE-2025-1727 and it took me 12 years to get this published. This vulnerability is still not patched. Here's the story:
Perhaps one of the most badass CVE's I've ever seen from @midwestneil 💪😤 cisa.gov/news-events/ic…
some guy at Mastercard prompt injected a job posting and just days later it tricked somebody’s ai 😂
How Anthropic built its multi-agents system. Interesting read. anthropic.com/engineering/bu…
>changes their EULA to allow spyware >makes their best game free on steam >people realize its spyware and review bomb it Masterful gambit Mr. Gearbox and Take Two
Drama++ The United States government is using a fork of Signal called "TM SGNL". TM SGNL is (likely) produced by an Israeli firm (Smarsh) which is (or related to in some capacity) the Israel Defense Forces' Intelligence unit. Although these claims are based on self-described…
United States Trends
- 1. Klay 21.6K posts
- 2. McLaren 77.3K posts
- 3. #AEWFullGear 71.2K posts
- 4. Lando 121K posts
- 5. #LasVegasGP 210K posts
- 6. Oscar 112K posts
- 7. Ja Morant 9,592 posts
- 8. Piastri 53K posts
- 9. Max Verstappen 58.9K posts
- 10. Samoa Joe 5,055 posts
- 11. Hangman 10.2K posts
- 12. gambino 2,763 posts
- 13. LAFC 16K posts
- 14. Swerve 6,512 posts
- 15. Kimi 47.5K posts
- 16. #Toonami 2,845 posts
- 17. Tottenham 32.5K posts
- 18. Arsenal 146K posts
- 19. South Asia 35.4K posts
- 20. Fresno State 1,016 posts
Something went wrong.
Something went wrong.