RTO: Malware Development Intermediate course teaser

Link to the course: https://institute.sektor7.net/rto-maldev-intermediate


Other online courses from RED TEAM Operator series: https://institute.sektor7.net

Twitter: https://twitter.com/sektor7net
Labs:…

It had been a while since I’d looked into GitHub, so I thought it would be good to spin up a fresh enterprise trial and see what I could find. The GHE code is obfuscated, but it’s just to discourage customers from messing around and if you do a bit of googling…

I am sharing some of my methodology, recourses, tips and advices to become a better bug bounty hunter.

Updated: 15 Jun 2025 With Technitium DNS Server , you can not just consume DNS-over-HTTPS (DoH), DNS-over-TLS (DoT), or DNS-over-QUI...

Cutting-edge cyber security research from NCC Group. Find public reports, technical advisories, analyses, & other novel insights from our global experts.

CodeQL is GitHub's expressive language and engine for code analysis, which allows you to explore source code to find bugs and security vulnerabilities. During this beginner-friendly workshop, you will learn to write queries in CodeQL and find known security…

I was recently on an engagement where we phished in and ran into UAC which gave me more trouble than I expected. When a user logs onto Windows, a logon session is created and the credentials are ti…

Some server-side mysteries, the unveiling of the lesser-known techniques, and how inconsistency in the URL parsing and treating of certain elements by the server-side components that usually go undetected and can open up big gaps are waiting to be demystified!…

Introduction I’ve been passively consuming a lot of fuzzing-related material in the last few months as I’ve primarily tried to up my Windows exploitation game from Noob-Level to 1%-Less-Noob-Level, and I’ve found it utterly fascinating. In this post I will…

A step by step guide helps you configure and set up WireGuard VPN on Ubuntu 20.04 LTS server and a Linux desktop client, including firewall.

From a 500 error to Django admin takeover.

Fork Free Fail Repeat. Contribute to haxkor/forkever development by creating an account on GitHub.

exploits and proof-of-concept vulnerability demonstration files from the team at Hacker House - hackerhouse-opensource/exploits

Scripting engine, patents, and Python.

NCC Group Technical Advisory: SQL Injection and Reflected Cross-Site Scripting (XSS) Vulnerabilities in Oracle Communications Diameter Signaling Router (CVE-2020-14787, CVE-2020-14788)

Learn how to emulate, trace, debug, and Reverse Engineer UEFI modules in part 2 of our new blog series on Firmware Security