Forwarded from Yekolo Temari (α¨αα α°ααͺ)
#Ramadan Nights CTF #2025
π Top 3 Winners β Get 2 months of free premium access to CyberTalents!
π All Participants β Enjoy 1 month of free premium access just for joining!
π 27 March 2025
π Register Here
π Top 3 Winners β Get 2 months of free premium access to CyberTalents!
π All Participants β Enjoy 1 month of free premium access just for joining!
π 27 March 2025
π Register Here
β‘6
Android Security & Malware
Looks like there is a demand for Telegram RCE exploit https://techcrunch.com/2025/03/21/russian-zero-day-seller-is-offering-up-to-4-million-for-telegram-exploits/
Damn, this is huge π³ Zero-day sellers are getting wild fr
Russian zero-day seller is offering up to $4 million for Telegram exploits mtsm
@AfroSec
Russian zero-day seller is offering up to $4 million for Telegram exploits mtsm
@AfroSec
π€―5π€£1
i never tried any web3 challenges or concepts before like blockchain and stuff like that
but today i tried a challenge which is found in htb cyber apocalypse and i got the flag after all π
but htb is crazy fr endeee mndnew koy
like bro easy blew lela tarik wst π€―
it aint fair tho π
@AfroSec
but today i tried a challenge which is found in htb cyber apocalypse and i got the flag after all π
but htb is crazy fr endeee mndnew koy
like bro easy blew lela tarik wst π€―
it aint fair tho π
@AfroSec
π4π2π₯1
Cybertopia
I found a time-based and union-based SQLi in one of the university website. Tip: Always check every parameter and test.you never know where a vulnerability might be hiding. @cybert0pia
hey guys
I have a friend who is a passionate cybersecurity enthusiast, and we've been hustling together since this semester,now, he has created a channel and joined the cyber blogging communityππ
Show some love and support for our bro
@AfroSec
I have a friend who is a passionate cybersecurity enthusiast, and we've been hustling together since this semester,now, he has created a channel and joined the cyber blogging communityππ
Show some love and support for our bro
@AfroSec
β‘5π₯1π«‘1
I donβt know how you guys feel but this quote really hit deep fr.
Itβs like He gave me exactly what I needed this skill that am passionate abt and curiosity and over time, I started to understand everything like, why didnβt He just give us what we wanted instantly? Thereβs a reason for everything, it's all matter of time right and faith ?
Not trying to be a preacher here, but I just felt it uk
God is good anyway β€οΈβ€οΈ
@AfroSec
Itβs like He gave me exactly what I needed this skill that am passionate abt and curiosity and over time, I started to understand everything like, why didnβt He just give us what we wanted instantly? Thereβs a reason for everything, it's all matter of time right and faith ?
Not trying to be a preacher here, but I just felt it uk
God is good anyway β€οΈβ€οΈ
@AfroSec
β€9π―2β‘1π₯1
[ Next.js ]
Thereβs a new CVE out for Next.js and hope youβve seen it, If you want to actually try the attack ur slf, check out this TryHackMe room that just dropped yesterday based on the new CVE. Have at it anywayπ
@AfroSec
Thereβs a new CVE out for Next.js and hope youβve seen it, If you want to actually try the attack ur slf, check out this TryHackMe room that just dropped yesterday based on the new CVE. Have at it anywayπ
@AfroSec
TryHackMe
Next.js: CVE-2025-29927
Explore an authorisation bypass vulnerability in Next.js.
π₯4β‘1π1
The Hacker News
π Running an unpatched Windows system? Youβre a target. Hackers are exploiting CVE-2025-26633: EncryptHub hijacks Windows MMC with a stealthy .msc file swap via MUIPath, loading malware like Rhadamanthys and StealC through a fake βen-USβ folder. π§ͺ Trendβ¦
suuuuuupππ
Hereβs a banger for you: "MSC EvilTwin"! Ready for some Windows magic?
This oneβs all abt exploiting Microsoft Management Console (MMC). The bad guys figured out how to trick it into running malicious payloads without you knowing! π±
Fake MSI + evil MSC file = Payload runs silently when MMC is opened. No user input needed, and Stealthy ASF right ? and also it's real deal π
Patch Alert: CVE-2025-26633 (7.0 CVSS) patched recently in Patch Tuesday update
UPDATE NOW! β οΈ
#MSC_EvilTwin
@AfroSec
Hereβs a banger for you: "MSC EvilTwin"! Ready for some Windows magic?
This oneβs all abt exploiting Microsoft Management Console (MMC). The bad guys figured out how to trick it into running malicious payloads without you knowing! π±
Fake MSI + evil MSC file = Payload runs silently when MMC is opened. No user input needed, and Stealthy ASF right ? and also it's real deal π
Patch Alert: CVE-2025-26633 (7.0 CVSS) patched recently in Patch Tuesday update
UPDATE NOW! β οΈ
#MSC_EvilTwin
@AfroSec
π₯3β€1β‘1π₯°1π1
AfroSec
suuuuuupππ Hereβs a banger for you: "MSC EvilTwin"! Ready for some Windows magic? This oneβs all abt exploiting Microsoft Management Console (MMC). The bad guys figured out how to trick it into running malicious payloads without you knowing! π± Fake MSIβ¦
α₯α΅αͺ windows users α°α₯α°α₯ α α α₯α α₯ααα
α΅ α αα΅ αα ππ
@AfroSec
@AfroSec
π8π€£3
The Hacker News
π Hackers can now hijack solar power systems. 46 new bugs found in inverters from Sungrow, Growatt, and SMA. Attackers could shut down power, cause blackouts, or remotely control devices like a botnet. π¬ One trick? Reset accounts to default password: 123456β¦
this is what we call it > "α α α²α΅ ααα ααα¨αα " ππ
there is no place that we hackers can't get ( exception : heaven π)
@AfroSec
there is no place that we hackers can't get ( exception : heaven π)
@AfroSec
π8π₯2π€£2
Recently, a friend from the channel approached me and asked for a comprehensive roadmap to get started in cybersecurity, so I came up with this simple and easy-to-follow map. ππ
I was soooo lost back then coz I didnβt know where to start. all I did was watch some random Indian dude on Udemy doing black hat stuff ππβlike DDoS and things like that. I was just sitting there like, "Beka, is this hacking?" I had no clue what the dude was doing. ππ (Funny when I think about that phase fr.)
then someone told me to start with networking, so I did.
I wrote this because I know someone in this channel prolly wants to get started, so this message is for them.
And as I told you guys, Iβm still learning. This is just my short-term experience. There have been a lot of ups and downs, but I never stopped. I even lost a lot along the way for this passion. So yeah, Iβm an enthusiast, not a cyber wizard that's all I wanna say. ππ
Just hustle at any damn cost, donβt stop. Time will pay for your struggle. ππ
@AfroSec
I was soooo lost back then coz I didnβt know where to start. all I did was watch some random Indian dude on Udemy doing black hat stuff ππβlike DDoS and things like that. I was just sitting there like, "Beka, is this hacking?" I had no clue what the dude was doing. ππ (Funny when I think about that phase fr.)
then someone told me to start with networking, so I did.
I wrote this because I know someone in this channel prolly wants to get started, so this message is for them.
And as I told you guys, Iβm still learning. This is just my short-term experience. There have been a lot of ups and downs, but I never stopped. I even lost a lot along the way for this passion. So yeah, Iβm an enthusiast, not a cyber wizard that's all I wanna say. ππ
Just hustle at any damn cost, donβt stop. Time will pay for your struggle. ππ
@AfroSec
π₯9β‘1β€βπ₯1π―1
Forwarded from πΊπππππππ π©ππ
And check out the website roadmap.sh they have a great roadmap
π2β‘1