POC - How to hide Windows reverse shell inside a .png file. This method utilizes a tool I built to easily morph the executable into over 20 different possible extensions. Even if it looks legit - don't be so quick to click.

Summer 2009 - little bit of caffeine leaking through the front page but otherwise fine.

RT @DarkWebInformer: "WiFi Pentesting Just Became Easy / Angry Oxide". Video Credit:

When my parents complained about traffic.

What do we call this behavior?

RT @Pirat_Nation: Full sites seized by the FBI:.>nsw2u.>nswd.>game-2u.>bigngame.>ps4pkg com.>ps4pkg net.>mgnetu

RT @pdiscoveryio: How to get subdomains, validate DNS, and probe with httpx - all in JSON!. This one-liner is a great start to your automat….

Was playing music and thinking about how machines have taken over everything. I guess when the lights started to flicker was the cue to stop.

They are using a PHP function that checks whether the server supports curl. If not, it falls back to file_get_contents. This function then fetches data from a hardcoded remote URL, storing it in a variable ($t) which is used to trigger a redirect with header("Location: . "). In.

Example of the r2048 function:

A look at the vulnerable piece of code:

WordPress - Evidence found of attackers injecting malicious code directly into theme files—like footer.php—to redirect your visitors to unwanted sites. They use a PHP function (r2048) to fetch a remote URL, then issue a 302 redirect without touching the dashboard—you won’t

go further:.curl -s ?q\=\*.targetc0rp.com\&output\=json | jq -r '.[].name_value' | grep -Po '(\w+\.\w+\.\w+)$' | sort -u.

Find and hunt subdomains like a boss:

Did they ever threaten to kick anyone off of welfare for not taking the vaccine?.

🚨 Apache issues critical RCE patches for Tomcat & Camel 🚨. In March 2025, Apache Tomcat versions 9.0.0.M1–9.0.98, 10.1.0.M1–10.1.34 and 11.0.0.M1–11.0.2 were found vulnerable to CVE‑2025‑24813, allowing remote code execution via partial PUT requests with Content‑Range headers

🧪 Malware Surge via LNK Files according to Palo Alto. LNK-based malware is booming baby. According to source data malicious Windows shortcut files jumped from 21K in 2023 to 68K+ in 2024. Hackers are abusing .lnk files to execute payloads, scripts, and exploits while

🚨 New Lab52 alert: Russian-origin Snake Keylogger is exploiting trusted Java tools in a geopolitical-themed phishing campaign 🐍. 📧 Spear-phishing emails tout oil deals, using a weaponized jsadebugd.exe DLL-sideload to inject Snake into InstallUtil.exe.🎯 Targets span

🚨 New DFIR report: RDP password spraying is back — and it's working. 🛠️ Threat actors used password spray attacks to gain access via exposed RDP, followed by hands-on-keyboard activity and eventual RansomHub deployment. 🔑 Key takeaways:.• Weak RDP creds = open door.•

🚨 New Threat Evolution Alert. 🎭 "GiftedCrook" malware has leveled up — what started as a basic browser stealer is now a full-blown data exfiltration platform. 🧠 The devs have pivoted hard:.• Targeting cloud drives, messaging apps, and crypto wallets.• Designed to evade.