We'll be publishing an analysis of the CVE-2025-24985 Windows Fast FAT Driver RCE Vulnerability that MS patched in March, along with a BSOD PoC tomorrow.

[1day1line] CVE-2025-32462: Elevation of Privilege via the host Option in sudo. Today’s 1day1line follows up on the previous chroot issue. It's another vulnerability in sudo, this time involving the host option. While no separate exploit is required, the.

[Research] From Paper to Code: Smart Contract [en]. Hello! I just published a new research on Smart Contracts. Read how they work and dive into common vulnerabilities.

[1day1line] CVE-2025-32463: Local Privilege Escalation via chroot in sudo. Today’s 1day1line covers a local privilege escalation (LPE) vulnerability caused by the use of chroot in sudo.

[HackingTweet🐥] Why Telegram Is No Longer Safe.Last September, Telegram, which had previously been extremely uncooperative with law enforcement, started providing information about criminals. As a result, law enforcement agencies say it has become easier to track down.

[팀원 모집 기간 연장].안녕하세요, Hackyboiz 입니다. 이번 신입 팀원 모집 기간을 내일(일요일) 23:59까지 연장합니다!.혹시 깜빡해서 지원을 못하셨거나 아직 망설이고 계시다면 지금 바로 지원해주세요😊.

[Research] Firmware Emulation with FirmAE Part 2. Hello This is newp1ayer48! This covers the use of FirmAE, a tool that easily automates firmware emulation!. In Part 2, we will cover the configuration and execution of FirmAE, as well as how to resolve IP.

[1day1line] CVE-2025-6019: LPE from allow_active to root in libblockdev via udisks. Today’s 1day1line covers a local privilege escalation (LPE) vulnerability discovered in the udisksd disk management daemon and its backend library libblockdev on Linux.

[Hackyboiz 팀원 모집 Q&A].안녕하세요, Hackuboiz 팀입니다!.저희 이번 신입 팀원 모집 마감일이 이제 3일밖에 남지 않았는데요, 모집 시작한 이후 많은 분들께서 다양한 질문들을 해주셨습니다 📷.오프라인이나 온라인으로 답변을 드렸습니다만 다른 분들에게도 도움될 정보라 공유드립니다. 1. CTF.

[1day1line] CVE-2025-1975: Denial of Service (DoS) Vulnerability due to Ollama's Lack of Array Index Verification. The vulnerability I studied today is the DoS vulnerability that occurs when the Ollama server handles pull requests. As Pwn2Own has added AI.

🚨 [리마인드] Hackyboiz 팀원 모집 D-7! 🚨.보안에 진심인 당신 🫵.팀 Hackyboiz가 함께 성장할 여러분을 기다립니다!. 📅 지원 마감: 7월 11일 (금) 23:59.📍 지원 링크:

[HackingTweet🐥] 🚨 Protecting South Korea from the "Hacking Hotspot" under President Lee Jae-myung. With Lee Jae-myung elected as the 21st President of South Korea, the country's cybersecurity policy is facing a major turning point! .What cybersecurity policies has the new

[1day1line] CVE-2025-1533: Stack Overflow Vulnerability in ASUS AsIO3.sys. The vulnerability occurred when the file path contained \\?\ and the path length was greater than 255.

Hello, This is OUYA77. Thank you very much for your interest in our blog. I sincerely apologize that the blog post was not visible for about 2 hours due to a GitHub issue. I apologize again for any inconvenience this may have caused. The issue has now been resolved, so we would.

[Research] Starting Chrome Exploitation with Type Confusion 101 ^-^☆ Part 1.(EN). Ever wondered how Chrome's V8 engine actually runs JavaScript, and how those internals can lead to security issues like Type Confusion?.In this post, I break down the V8

[1day1line] CVE-2025-32433: Pre-auth RCE in Erlang/OTP SSH Server. This vulnerability in Erlang/OTP's SSH daemon allows unauthenticated attackers to execute arbitrary shell commands by sending crafted SSH messages before authentication.