Yet another ZIP trick.

Friendly reminder that order of operations makes a difference. more so than you think ;)

Generate videos in just a few seconds. Try Grok Imagine, free for a limited time.

RT @richinseattle: Proud moment. The 40th anniversary @phrack release was a full success. We gave away 12,000 full color 150pg printed zine….

RT @phaldrzynski: Nice trick showing that the very same zip can be seen differently by two different programs. I've examined how this quirk….

RT @terjanq: Another challenge that I prepared for justCTF2025 was about a neat Prototype Pollution variation that bypasses commong mitigat….

This actually reminds me of that 0-sized executable which would re-run the last executed program on some old 8-bit comptuer.

Back in the days this "feature" was the result of pressing = performing the math operation, but NOT cleaning the operand / operation registers. Pressing = again would reuse the content of these registers. A cool feature for free!.Nowadays it seems folks do clear these regs on =.

So I've noticed this when running a workshop on Python — we were implementing a GUI calculator app and I wanted to show folks that repeatedly pressing = repeats the operation in my OS' calc app. And to my surprise, it didn't. (continued. ).

Topic: Calculators.Open any calculator app and press:.1 + 1 = = = =. What do you get? .(also put calculator app name / result in reply). It seems modern "simple" GUI calculator apps lost the feature/side-effect of what pressing = used to do (basically repeat last operation).

RT @kinugawamasato: I don't know who this will help but I put together a page listing JavaScript APIs that can break Shadow DOM encapsulati….

RT @5aelo: We released our Fuzzilli-based V8 Sandbox fuzzer: It explores the heap to find interesting objects and c….

RT @justCatTheFish: JustCTF 2025 is live! 🚀. Check the challenges at

RT @lukOlejnik: Malicious Firefox extensions are being used to steal crypto wallets (eed phrases). I analyzed the current big (continuous?)….

RT @paradoxengine: CVEs for prompt injections. Great idea or annoying noise?. (Spoiler alert, given the state of vuln mgmt I support cves m….

RT @justCatTheFish: 🎯 JustCTF 2025 - 37h of top-tier online jeopardy CTF action!.🗓️ Starts Aug 2, 0600 UTC.💰 $8,628 prize pool + IDA Pro li….

RT @phrack: Going to @defcon?! We'll have 9500 print copies of Phrack, and Sunday @ noon @netspooky @richinseattle and @chompie will be on….

This looks nicely written:

RT @r0keb: Good Morning! Just published a blog post diving into Windows Kernel LFH exploitation in the latest Windows 24h2 build, Focusing….

Lulu (print on demand) is increasing prices by 5% from Aug 1st, so if you were thinking of getting @pagedout_zine #6 there, do it now:

[Please share with people outside of cybersec].Do you have a horror story when you had to deal with cybersecurity companies / people? This is your chance to vent! → I'm running an anonymous survey to listen to stories and look into the disconnect we have.

RT @sirdarckcat: I wrote two challenges for this year's Google CTF. One of them is Circo - A challenge inspired by EntrySign (the AMD ucode….