Hacking y Mas
@hackingymas
La ignorancia esclaviza, el conocimiento nos hace libres, la libertad nos hace felices, la felicidad (y sólo eso) nos hace tener éxito en la vida.
คุณอาจชื่นชอบ
⚠️ Self-Spreading WhatsApp Malware “SORVEPOTEL” Detected thehackernews.com/2025/10/resear… A new malware strain leverages WhatsApp Web on Windows to self-propagate via malicious ZIP attachments, escalating rapidly across contacts without needing heavy user interaction. It embeds via…
#China 🇨🇳 - Huawei Technologies Co., Ltd. has reportedly suffered a data breach, with a threat actor offering to sell company source code and internal tools. dailydarkweb.net/huawei-technol…
📌CVE-2025-32463 -Local Privilege Escalation Vulnerability in Sudo📌 -In the article below, I explained how CVE-2025-32463 can be easily exploited using a vulnerability in the sudo version, along with a POC file. #BugBounty #CyberSecurity
🚨 We've just released multiple in-depth modules in our Android security courses. Learn to reverse JNI bindings, trace native interactions, & fuzz them for vulnerabilities. Perfect for uncovering hidden attack surfaces in Android apps & closed-source components! (More in the…
CVE-2025-10184 is permission bypass that affects multiple #OnePlus devices running OxygenOS 12–15 (NOT FIXED) with PoC. This vulnerability allows any application installed on the device to read SMS/MMS without permission, user interaction, or consent. rapid7.com/blog/post/cve-…
Community Write-Ups from 8kSec Mobile Security Battlegrounds Our free Mobile Security Labs have inspired some excellent technical deep dives. Below is a running list of community write-ups that detail their techniques, tooling, and exploitation steps. 🤖Android Labs @f0rk3b0mb…
🚨Data Breach Alert‼️ 🇲🇽Mexico - Infonavit The threat actor named Sc0rp10nn is selling a full database allegedly stolen from Infonavit, Mexico’s largest housing loan institute. According to the post, the dataset contains over 57 million records. Exposed information includes…
Tell me you are working on C2 agent without telling me you are working on a C2 agent.
''DLL Sideloading for Initial Access – Red Team Operator's Guide'' #infosec #pentest #redteam #blueteam print3m.github.io/blog/dll-sidel…
NEW - Venezuela’s Maduro says he has a Huawei smartphone gifted by Xi, calling it “the best in the world” and immune to U.S. surveillance
The "Critical" Chrome GPU bug (CVE-2025-9478) is suspicious. Background: Google Big Sleep recently patched a bunch of high/critical issues in privileged Chrome GPU (their new AI fuzzer). I looked at the code. All the issues require such an uncommon platform functionality, it's…
Writing exploits for MS-RPC services. An interesting case study of DoS inside Local Session Manager and how an exploit dev process looks like. A great post by Remco van der Meer (@incendiumrockz). Source: incendium.rocks/posts/Exploit-… #redteam #blueteam #maldev #malwaredevelopment
[1day1line] CVE-2025-31200: Remote Code Execution Vulnerability due to Out-of-Bounds Write in Apple CoreAudio Framework hackyboiz.github.io/2025/08/26/ji9… Today's 1day1line covers an RCE vulnerability found in the Apple CoreAudio framework. The Attacker may led to code execution via…
The binary taxonomy chapter from From Day Zero to Zero Day is free to download—and it's exactly the systematic approach most security pros are missing. @spaceraccoonsec shows you how to quickly classify and approach different binary types, from native code to managed memory…
excellent writeup that highlights how many 0-days are simply asking nicely for something.
🚨압축 파일 내 파일 경로를 조작하여, 해제 시 대상 디렉토리 외부에 파일을 생성하거나 기존 파일을 덮어쓰는 Zip Slip 취약점이 최근까지도 발견이 되고 있습니다. 의심스러운 압축 파일을 해제할 때 각별한 주의하시고 프로그램을 최신 상태로 유지하시길 바랍니다. 🔗asec.ahnlab.com/ko/89806/
TrapFlagForSyscalling - Evading userland hooks through indirect tampered syscalls with the Trap Flag. github.com/Maldev-Academy…
CVE-2025-5419 POC Google Chrome heap corruption via a crafted HTML page github.com/mistymntncop/C… #CVE #chrome #infosec by @mistymntncop
Technical Analysis of SAP Exploit Script (Visual Composer “Metadata Uploader” Exploit) CVE-2025–31324 detect.fyi/technical-anal…
United States เทรนด์
- 1. Chiefs 96.5K posts
- 2. Brian Branch 5,999 posts
- 3. Mahomes 28.8K posts
- 4. #TNABoundForGlory 47.3K posts
- 5. #LoveCabin N/A
- 6. LaPorta 9,794 posts
- 7. Goff 13.1K posts
- 8. Bryce Miller 4,038 posts
- 9. #OnePride 6,207 posts
- 10. Kelce 15.1K posts
- 11. Butker 8,183 posts
- 12. #DETvsKC 4,693 posts
- 13. Dan Campbell 2,789 posts
- 14. #ALCS 10.4K posts
- 15. Mariners 47K posts
- 16. Pacheco 4,837 posts
- 17. Gibbs 5,520 posts
- 18. Baker 52.8K posts
- 19. Collinsworth 2,800 posts
- 20. Tyquan Thornton 1,195 posts
Something went wrong.
Something went wrong.