Metro4Shell: Exploitation of React Native’s Metro Server in the Wild
https://www.vulncheck.com/blog/metro4shell_eitw#network-infrastructure
#CVE-2025-11953 , #glassworm
Samples : [ Link ]
https://www.vulncheck.com/blog/metro4shell_eitw#network-infrastructure
#CVE-2025-11953 , #glassworm
Samples : [ Link ]
👍3❤1👾1
Decompiler internals: microcode
This presentation is about the Hex-Rays Decompiler. It is a de-facto standard tool used by the security
professionals. Its main features include:
https://blackhat.com/us-18/briefings/schedule/#decompiler-internals-microcode-10076
This presentation is about the Hex-Rays Decompiler. It is a de-facto standard tool used by the security
professionals. Its main features include:
• Interactive, fast, robust, and programmable decompiler
• Can handle x86, x64, ARM, ARM64, PowerPC
• Runs on top of the IDA Pro disassembler
• Has been evolving for more than 10 years
• Internals have not been published yet
• Namely, the intermediate language
https://blackhat.com/us-18/briefings/schedule/#decompiler-internals-microcode-10076
👍6
Israel’s zero-click future: How cyber veterans are reinventing offensive intelligence
https://www.jpost.com/israel-news/defense-news/article-885789
https://www.jpost.com/israel-news/defense-news/article-885789
👎2👍1😱1
Forwarded from Sec Note
New post: "Browser Dumping — The Core Tactic Behind Most Infostealers"
(This blog is mainly for sharing my personal notes and learning journey)
#stealer #browser #Chrome_AppBound
(This blog is mainly for sharing my personal notes and learning journey)
This blog contains my own research collected from the internet, along with ideas from other blogs and studies. While many parts are written in my own words, the Most sections were copied directly from external sources because they were already very well written and clearly expressed. This blog is mainly for sharing my personal notes and learning journey.
#stealer #browser #Chrome_AppBound
❤4🔥3
Largest Multi-Agency Cyber Operation Mounted to Counter Threat Posed by Advanced Persistent Threat (APT) Actor UNC3886 to Singapore’s Telecommunications Sector
https://www.csa.gov.sg/news-events/press-releases/largest-multi-agency-cyber-operation-mounted-to-counter-threat-posed-by-advanced-persistent-threat--apt--actor-unc3886-to-singapore-s-telecommunications-sector/
https://www.csa.gov.sg/news-events/press-releases/largest-multi-agency-cyber-operation-mounted-to-counter-threat-posed-by-advanced-persistent-threat--apt--actor-unc3886-to-singapore-s-telecommunications-sector/
👍3
The general counsel of Paragon, uploaded a picture on Linkedin today showing the Paragon spyware control panel.
https://x.com/DrWhax/status/2021608609595945442?s=20
https://x.com/DrWhax/status/2021608609595945442?s=20
🔥7
Forwarded from reconcore
This media is not supported in your browser
VIEW IN TELEGRAM
CobaltStrike-Linux-Beacon
#poc #beacon #linux @reconcore
Proof of Concept (PoC) implant for creating custom Cobalt Strike Beacons
#poc #beacon #linux @reconcore
👍3👎1
Forwarded from Freedom Fox 🏴☠
#fortigate #persistence
Пример APTшного крепления в #фортиках через симлинки
Чекер: https://github.com/I3IT/Fortigate.Symlink.Persistence.Checker
Ресерч: https://pgj11.com/posts/FortiGate-Symlink-Attack/
Чат в МАХ
Telegram✉️ @freedomfox
Пример APTшного крепления в #фортиках через симлинки
Чекер: https://github.com/I3IT/Fortigate.Symlink.Persistence.Checker
Ресерч: https://pgj11.com/posts/FortiGate-Symlink-Attack/
Чат в МАХ
Telegram
Please open Telegram to view this post
VIEW IN TELEGRAM
👍3
State-Sponsored Platform Manipulation
Surge of attacks and information pollution define Iranian Twittersphere amid 2022 protest movement
https://www.socialforensics.com/reports-2/state-sponsored-platform-manipulation
Surge of attacks and information pollution define Iranian Twittersphere amid 2022 protest movement
https://www.socialforensics.com/reports-2/state-sponsored-platform-manipulation
👍4👎1
Source Byte
State-Sponsored Platform Manipulation Surge of attacks and information pollution define Iranian Twittersphere amid 2022 protest movement https://www.socialforensics.com/reports-2/state-sponsored-platform-manipulation
Guess who is "state-sponsor"
Anonymous Quiz
15%
China
15%
Russia
29%
Israel
22%
Iran
20%
Didn't read the report
❤2👎1
US used Anthropic's Claude during the Venezuela raid, WSJ reports
Feb 13 (Reuters) - Anthropic's artificial-intelligence model Claude was used in the U.S. military's operation to capture former Venezuelan President Nicolas Maduro, the Wall Street Journal reported on Friday, citing people familiar with the matter
https://www.reuters.com/world/americas/us-used-anthropics-claude-during-the-venezuela-raid-wsj-reports-2026-02-13/
Feb 13 (Reuters) - Anthropic's artificial-intelligence model Claude was used in the U.S. military's operation to capture former Venezuelan President Nicolas Maduro, the Wall Street Journal reported on Friday, citing people familiar with the matter
https://www.reuters.com/world/americas/us-used-anthropics-claude-during-the-venezuela-raid-wsj-reports-2026-02-13/
🔥2👎1