RT @HackingLZ: Now that there are tons of these and I can never find them when I need them, thanks @Oddvarmoe for showing me all the LOLS….

RT @_l0gg: Blog for ToolShell.Disclaimer: The content of this blog is provided for educational and informational purposes only. https://t.c….

RT @codewhitesec: We have reproduced "ToolShell", the unauthenticated exploit chain for CVE-2025-49706 + CVE-2025-49704 used by @_l0gg to p….

Found this by @ddiwakr. While the project is absolutely in a PoC state, test runs were almost successful. C2 channel over Zoom API. I like the idea. :)

RT @mpgn_x64: Wanna see something cool about RDP and NetExec ?

RT @TrustedSec: Chrome Remote Desktop can offer red teamers a subtle way to bypass restrictions—if they know how to use it. In this blog, @….

RT @HackingLZ: Beacon Object Files – Five Years On… 🔥.

RT @RedTeamPT: 🚨 Our new blog post about Windows CVE-2025-33073 which we discovered is live:. 🪞 The Reflective Kerberos Relay Attack - Remo….

Played with copilot for offensive coding. Tbh it is disappointing. If I asked sth for low-level the produced code is totally false and uncompilable. It was easier to use legacy (but still awesome) stuff like Donut, +polished my loader from lasy year. Still good in some scenarios.

RT @ACEResponder: How the new Bad Successor dMSA domain takeover attack works. #ThreatHunting #DFIR

RT @the_yellow_fall: Critical 0-Day (CVSS 9.8) in Fortinet Products Actively Exploited. A critical Fortinet zero-day (CVE-2025-32756, CVSS….

RT @theluemmel: Took @akamai_research's script for BadSuccessor and improved it a bit. - runs from non domain joined systems.- works in fo….

RT @Octoberfest73: Can’t win. Try to do the right thing and get told to fuck off by Microsoft, so you open source it WITH detection logic a….

RT @HackingLZ: If you want to be a successful red teamer in 2025, do you have to be able to code(This includes with or without the assistan….

RT @bl4sty: ok ok fine, for old time's sake .

One more thing about my Hikvision journey: extracted the plaintext camera passwords from the NVR by MitM (actually connected to the NVR using a camera IP) and by downgrading the default HTTP digest authentication to basic using these RTSP server replies.

One last note about the TFTP download: the NVR uses relative path (filename without leading /), so a map file might be needed (if the TFTP server requires absolute paths).

The colors of the USB TTL wires are (ordered):. - black: GND.- red: power (must NOT be connected!).- white: RX (data to USB).- green: TX (data from USB). The connection should be (TX<->RX, GND<->GND):. - JST yellow <-> USB white.- JST black <-> USB green.- JST red <-> USB black.

The wiring of the JST-ZH connector according to the picture below:. - white: power (must NOT be connected!!!).- yellow: TX (data out from the NVR).- black: RX (data into the NVR).- red: GND (ground, it is required for reliable operation)