One more CVE in our bank, this time on jsonpickle, report by me and @_j0lt.

JDBG : Java Dynamic Reverse Engineering and Debugging Tool :

AV/EDR Evasion Lab for Training & Learning Purposes :

Reverse-engineering an encrypted IoT protocol:

shadow-rs : Windows Kernel Rootkit in Rust :

Abusing multicast poisoning for pre-authenticated Kerberos relay over HTTP with Responder and krbrelayx :

Taking the relaying capabilities of multicast poisoning to the next level : tricking Windows SMB clients into falling back to WebDav :

FullBypass : A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell :

Indetectables - toolkit : The essential toolkit for reversing, malware analysis, and cracking :

Exploring Heap Exploitation Mechanisms: Understanding the House of Force Technique

Exploiting the EvilVideo vulnerability on Telegram for Android : credits @LukasStefanko.CVE-2024-7014 Return : Updated Evilloader : telegram-video-extension-manipulation-PoC :. credits @0x6rss.

Bypassing AMSI and Evading AV Detection with SpecterInsight : New AMSI Bypss Technique Modifying CLR.DLL in Memory :

RT @orange_8361: New look for my blog!✨ Finally moved away from the Markdown-Unfriendly Blogger 😖.

As your service is shit and you guys are scammers about your extended warranty lets just let me know about the process of getting a refund of my AMC and service charges, or else I have to go to consumer court for the justice.

Digging for SSRF in NextJS apps:

Custom Shell Code Creation in x64: credits @s4dbrd.

Implementing a ChatGPT-like LLM from scratch, step by step:

QCSuper: Capture raw 2G/3G/4G/ 5G radio frames:

NTLM Relay Gat: a powerful tool designed to automate the exploitation of NTLM relays using credits.@fin3ss3g0d.

NetExec: The Network Execution Tool - a network service exploitation tool that helps automate assessing the security of large networks: Details:

Embed A Malicious Executable in a Normal PDF or EXE: