Memory Allocation in Go: nghiant3223.github.io/2025/06/03/m... #cybersecurity #informationsecurity #internals #golang #memory

Fantastic Rootkits: And Where to Find Them: + part_1: www.cyberark.com/resources/al... + part_2: www.cyberark.com/resources/al... + part_3: www.cyberark.com/resources/th... #rootkit #windows #cybersecurity #malware #arm #informationsecurity

Race Against Time in the Kernel’s Clockwork: streypaws.github.io/posts/Race-A... #kernel #vulnerability #linux #cybersecurity #exploitation #informationsecurity #android

Anatomy of a Billion-Download NPM Supply-Chain Attack: jdstaerk.substack.com/p/we-just-fo... github.com/Qix-/node-er... #supplychainattack #npm #cybersecurity #malware #informationsecurity

Secondary Context Path Traversal in Omnissa Workspace ONE UEM: slcyber.io/assetnote-se... #cybersecurity #vulnerability #hacking #securecode #exploitation

A Novel Technique for SQL Injection in PDO’s Prepared Statements: slcyber.io/assetnote-se... #cybersecurity #hacking #websecurity #webapp #pentest #sql

What is a CUDA Device Architecture? modal.com/gpu-glossary... #gpu #hardware #documentation #informationsecurity #cuda

So far, I have already written 15 articles (1045 pages), which have been published on my blog: blog: exploitreversing.com Series: [+] ERS: Exploiting Reversing Series [+] MAS: Malware Analysis Series Enjoy reading and have a great day. #windows #iOS #macOS #chrome #kernel #vulnerability

Malwoverview version 6.2 has been released: github.com/alexandrebor... Read the project page to learn how to adapt the configuration file to the changes. Note: Updating Malwoverview using pip is not enough. #threathunting #dfir #malware #incidentresponse

[CVE-2025-38001] Exploiting All Google kernelCTF Instances And Debian 12 With A 0-Day For $82k: A RBTree Family Drama (Part One: LTS & COS): syst3mfailure.io/rbtree-famil... #cybersecurity #informationsecurity #exploitation #google #kernel #linux #cybersecurity #zeroday

Abusing Windows, .NET quirks, and Unicode Normalization to exploit DNN (DotNetNuke): slcyber.io/assetnote-se... #dotnet #infosec #informationsecurity #cybersecurity #exploitation #exploit

Pwning Solana for Fun and Profit - Exploiting a Subtle Rust Bug for Validator RCE and Money-Printing: anatomi.st/blog/2025_06... #cybersecurity #exploiting #exploitation #infosec #informationsecurity #rce #web3 #rust

Phantom Persistence: blog.phantomsec.tools/phantom-pers... #cybersecurity #hacking #malware #informationsecurity #redteam #blueteam #programming

5Ghoul - 5G NR Attacks & 5G OTA Fuzzing: (project): github.com/asset-group/... (paper): asset-group.github.io/papers/5Ghou... #telecom #infosec #cybersecurity #fuzzing #ota #5g #smartphones #mobile #mobilesecurity

Emulating an iPhone in QEMU: Part 01: eshard.com/posts/emulat... Part 02: eshard.com/posts/emulat... #ios #iphone #emulation #cybersecurity #securityresearch #reverseengineering #infosec #informationsecurity

Hypervisors for Memory Introspection and Reverse Engineering: secret.club/2025/06/02/h... #reverveengineering #infosec #hypervisor #memoryanalysis #windows #rust

Cisco IOS XE WLC Arbitrary File Upload Vulnerability (CVE-2025-20188) Analysis: horizon3.ai/attack-resea... #cybersecurity #xxe #infosec #cve #vulnerability #threathunting #exploitation

CVE-2025-32756: Low-Rise Jeans are Back and so are Buffer Overflows: horizon3.ai/attack-resea... #cybersecurity #fortinet #exploitation #rce #exploit #vulnerability

Bypassing MTE with CVE-2025-0072: github.blog/security/vul... #mte #android #cve #exploitation #vulnerability

Python Dirty Arbitrary File Write to RCE via Writing Shared Object Files Or Overwriting Bytecode Files: siunam321.github.io/research/pyt... #python #cve #informationsecurity #rce #vulnerability #exploitation

Analysis of CVE-2024-38063 - Exploiting The Kernel Via IPv6 [EN]: 0xreverse.com/analysis-of-... #cve #kernel #cybersecurity #vulnerability #ipv6 #infosec #windows

Technical analysis of CVE-2025-31201: reverse engineering the diff between iOS 18.4 and 18.4.1 to study the changes made to RPAC.: blog.epsilon-sec.com/cve-2025-312... #iOS #apple #cybersecurity #reversing #pac #security #cve #vulnerability

Unpacking APT38: Static and Dynamic Analysis of Lazarus Group Malware: blog-en.itochuci.co.jp/entry/2025/0... #apt #lazarus #informationsecurity #cybersecurity #threathunting #reversing #infosec

A Warning about Malicious PoCs: chocapikk.com/posts/2025/s... #cybersecurity #exploit #malware #informationsecurity #hacking

CVE-2025-21299: Unguarding Microsoft Credential Guard: www.netspi.com/blog/technic... #cybersecurity #microsoft #exploitation #vulnerability #infosec #credential

Unlocking secret ThinkPad functionality for emulating USB devices: xairy.io/articles/thi... #reverseengineering #informationsecurity #hardware #hacking #infosec #cybersecurity

Auto-color - Linux backdoor : zw01f.github.io/malware%20an... #linux #backdoor #informationsecurity #cybersecurity #redteam #malware

C++20 in Chromium (a playlist with four hours of videos): www.youtube.com/playlist?lis... #videos #chromium #cpp #browser #cybersecurity #programming

Version 1.4 of CFPsec, a simple client that lists call for papers and upcoming Hacking/Security Conferences from the command line, has been released: github.com/alexandrebor... To install it: pip install -U cfpsec Finally, this trivial project has been updated. #hacking #cybersecurity

Do you know examples of polyglot files that have been used in real-life to hide malware from detection/analysis tools? There is at least this PDF/MHT: blogs.jpcert.or.jp/en/2023/08/m... Do you know other real malware cases?

Even though I've been away from the field for years, it's great to see that a simple tool that I initially launched in 2018 and with great collaborators (Artur Marzano, Corey Forman and Christian Clauss) has been used by so many professionals. www.helpnetsecurity.com/2025/03/26/m... #malware

Malwoverview: First response tool for threat hunting 📖 Read more: www.helpnetsecurity.com/2025/03/26/m... #cybersecurity #cybersecuritynews #opensource @alexandreborges.bsky.social

Last barrier destroyed, or compromise of Fuse Encryption Key for Intel Security Fuses: swarm.ptsecurity.com/last-barrier... #intel #me #reverseengineering #cybersecurity #processor #managementengine

The fifth article (57 pages) of the Exploiting Reversing Series (ERS) is available on: exploitreversing.com/2025/03/12/e... I hope you enjoy reading it and have an excellent day. #hypervisor #hyperv #architecture #cybersecurity #research #internals #idapro #informationsecurity #microsoft

Zen and the Art of Microcode Hacking: bughunters.google.com/blog/5424842... #processor #cybersecurity #microcode #microcodehacking #hacking #exploitation

Hacking the Xbox 360 Hypervisor: 01. Hacking the Xbox 360 Hypervisor Part 1: System Overview: icode4.coffee?p=1047 02. Hacking the Xbox 360 Hypervisor Part 2: The Bad Update Exploit: icode4.coffee?p=1081 #hacking #exploit #exploitation #xbox #reversing #informationsecurity #hardware #hypervisor

The Key to COMpromise - Pwning AVs and EDRs by Hijacking COM Interfaces, Part 1, 2 and 3: neodyme.io/en/blog/com_... neodyme.io/en/blog/com_... neodyme.io/en/blog/com_... #edr #redteam #informationsecurity #edr #com #programming #cybersecurity

The Art of Breaking AI: Exploitation of large language models: 7h3h4ckv157.medium.com/the-art-of-b... #ai #informationsecurity #infosec #llm #exploitation #exploit

The fourth article (126 pages) of the Exploiting Reversing Series (ERS) is available on: exploitreversing.com/2025/02/04/e... I hope you enjoy reading it and have an excellent day. #apple #ios #macOS #architecture #cybersecurity #research #internals #vulnerability #idapro

Free & Affordable Training News Monthly: Dec 2024 - Feb 2025 - Newly released DFIR, OSINT, and Malware Analysis training, tools, and books from Dec 2024 & Jan 2025 - Upcoming CTFs and training for February, 2025 Link: dfirdiva.com/free-amp-aff... #DFIR #IncidentResponse #MalwareAnalysis #OSINT

Mitigating DMA Attacks Through Redirected Address Tables research.meekolab.com/mitigating-d... #informationsecurity #cybersecurity #hardware #dma #processor

Reverse Engineering Call Of Duty Anti-Cheat: ssno.cc/posts/revers... #reverseengineering #anticheat #informationsecurity #cybersecurity #assembly

Securing Cryptocurrency Organizations: cloud.google.com/blog/topics/... #crypto #cybersecurity #informationsecurity #threatintelligence #cryptocurrency

The third article (62 pages) of the Exploiting Reversing Series (ERS) is available on: exploitreversing.com/2025/01/22/e... I hope you like the reading and have an excellent day #chrome #browsers #architecture #cybersecurity #v8 #research #internals #vulnerability #google

The third article (62 pages) of the Exploiting Reversing Series (ERS) is available on: exploitreversing.com/2025/01/22/e... I hope you like the reading and have an excellent day #chrome #browsers #architecture #cybersecurity #v8 #research #internals #vulnerability #google

2025.01.18: As expensive as a plane flight: Looking at some claims that quantum computers won't work. blog.cr.yp.to/20250118-fli... #quantum #energy #variables #errors #rsa #secrecy #crypto #informationsecurity #cybersecurity #cryptography

A Brief JavaScriptCore RCE Story: qriousec.github.io/post/jsc-uni... #cybersecurity #informationsecurity #rce #javascript #vulnerability

The tenth article (35 pages) of the Malware Analysis Series (MAS) is available on: exploitreversing.com/2025/01/15/m... Next week (JAN/22) the third article of the Exploiting Reversing Series (ER 03) will be released. Have an excellent day. #linux #malware #elf #crypto #ransomware

The nineth article (38 pages) of the Malware Analysis Series (MAS) is available on: exploitreversing.com/2025/01/08/m... Even though I haven't been on this subject for years, I promised I would write a series of ten articles, and the last one will be released next week (JAN/15). #malware

BlackPill is a stealthy Linux rootkit made in Rust. github.com/DualHorizon/... #rootkit #malware #linux #rust #hypervisor