π₯ YOU CAN NOT MISS THIS! GIVEAWAY! π₯
π Certified Offensive Security Junior (COSJ)
RedOps Academy has made their course FREE for 24 hours!
All enrolled students will enjoy lifetime access β so you can keep learning and revisiting the labs anytime.
π Certified Offensive Security Junior (COSJ)
RedOps Academy has made their course FREE for 24 hours!
All enrolled students will enjoy lifetime access β so you can keep learning and revisiting the labs anytime.
β€1π€1
π€Gemini CLI to Your Kali Linux Terminal To Automate Penetration Testing Tasks π€
π Feel free to use! π
With the release of Kali Linux 2025.3, a major update introduces an innovative tool that combines artificial intelligence and cybersecurity: the Gemini Command-Line Interface (CLI).
This new open-source package integrates Google's powerful Gemini AI directly into the terminal, offering penetration testers and security professionals an intelligent assistant designed to streamline and automate complex security workflows.
π οΈ Installation π οΈ
#kali_linux #pentest_os #red_team
π Feel free to use! π
With the release of Kali Linux 2025.3, a major update introduces an innovative tool that combines artificial intelligence and cybersecurity: the Gemini Command-Line Interface (CLI).
This new open-source package integrates Google's powerful Gemini AI directly into the terminal, offering penetration testers and security professionals an intelligent assistant designed to streamline and automate complex security workflows.
π οΈ Installation π οΈ
#kali_linux #pentest_os #red_team
π₯2
β οΈ Kubernetes for Pentesters β οΈ
A selection of articles on practical Kubernetes penetration testing:
π Kubernetes for Pentesters: Part 1
π A Pentesterβs Approach to Kubernetes Security β Part 1
π A Pentesterβs Approach to Kubernetes Security β Part 2
#red_team #kubernetes
A selection of articles on practical Kubernetes penetration testing:
π Kubernetes for Pentesters: Part 1
π A Pentesterβs Approach to Kubernetes Security β Part 1
π A Pentesterβs Approach to Kubernetes Security β Part 2
#red_team #kubernetes
β2
The new π https://cs.github.com π search allows for regex, which means brand *new* regex GitHub Dorks are possible!
Eg, find SSH and FTP passwords via connection strings with:
/ssh:\/\/.*:.*@.*target\.com/
/ftp:\/\/.*:.*@.*target\.com/
#info_security #red_team #osint
Eg, find SSH and FTP passwords via connection strings with:
/ssh:\/\/.*:.*@.*target\.com/
/ftp:\/\/.*:.*@.*target\.com/
#info_security #red_team #osint
π₯3
Hack The Box Challenges
Something stirs in the shadows... and itβs coming for your flags! π
Hack The Boo returns this October with some spooky Challenges. Dare to face your fears?
π 22-27 October: Practice CTF to polish your skills
π 24-27 October: The competition!
Register for free π Here
#HackTheBox #HTB #Cybersecurity #CTF #Halloween #Hackers
Something stirs in the shadows... and itβs coming for your flags! π
Hack The Boo returns this October with some spooky Challenges. Dare to face your fears?
π 22-27 October: Practice CTF to polish your skills
π 24-27 October: The competition!
Register for free π Here
#HackTheBox #HTB #Cybersecurity #CTF #Halloween #Hackers
β2
πΈToday we'll talk about logs.πΈ
πΉ What2Log is an open project that centralizes recommendations on what logs to collect and how to configure them for various systems.
πΉ It helps SOC analysts quickly identify the right log sources and standardized configurations, streamlining detection creation and log audit processes.
π What2Log π
πΉ What2Log is an open project that centralizes recommendations on what logs to collect and how to configure them for various systems.
πΉ It helps SOC analysts quickly identify the right log sources and standardized configurations, streamlining detection creation and log audit processes.
π What2Log π
π₯3
π³ Docker - How It Works π³
Docker is a containerization platform that lets you package your app and all its dependencies into lightweight, portable containers.
Each container runs on the same Docker Engine, sharing the OS kernel but staying completely isolated - with its own filesystem, processes, and network.
πΉ Core Components:
𧩠Image - a blueprint containing code, libraries, and configs.
π¦ Container - a running instance of that image.
βοΈ Docker Engine - runs and manages containers.
βοΈ Docker Hub - the global registry for sharing images.
π‘ Philosophy:
#docker #containerization
Docker is a containerization platform that lets you package your app and all its dependencies into lightweight, portable containers.
Each container runs on the same Docker Engine, sharing the OS kernel but staying completely isolated - with its own filesystem, processes, and network.
πΉ Core Components:
𧩠Image - a blueprint containing code, libraries, and configs.
π¦ Container - a running instance of that image.
βοΈ Docker Engine - runs and manages containers.
βοΈ Docker Hub - the global registry for sharing images.
π‘ Philosophy:
βIf it works on my machine - it works everywhere.β
#docker #containerization
π₯3
Docker Security - Quick Guide π
Keeping your containers secure means minimizing attack surface, scanning for vulnerabilities, and enforcing runtime policies.
π§ Essential Practices:
πΈ Run container as non-root
πΈ Scan Docker image for vulnerabilities
πΈ Apply default seccomp security profile
π§° Top 3 Docker Security Tools:
Trivy
πΉ All-in-one vulnerability scanner for container images, OS packages, and IaC.
Docker Bench for Security
πΉ Automated script to check for common Docker security best practices.
Cosign
πΉ Tool for signing and verifying container images to ensure integrity and trust:
Key takeaway:
π Always scan, sign, and sandbox - secure containers start with secure images.
#docker #containerization #security
Keeping your containers secure means minimizing attack surface, scanning for vulnerabilities, and enforcing runtime policies.
π§ Essential Practices:
πΈ Run container as non-root
docker run --user 1000:1000 nginx:latest
πΈ Scan Docker image for vulnerabilities
docker scan myimage:latest
πΈ Apply default seccomp security profile
docker run --security-opt seccomp=default.json myimage
π§° Top 3 Docker Security Tools:
Trivy
πΉ All-in-one vulnerability scanner for container images, OS packages, and IaC.
Docker Bench for Security
πΉ Automated script to check for common Docker security best practices.
Cosign
πΉ Tool for signing and verifying container images to ensure integrity and trust:
Key takeaway:
π Always scan, sign, and sandbox - secure containers start with secure images.
#docker #containerization #security
π3π₯1
β οΈ CVE-2025-24813 Apache Tomcat as Actively Exploited with 9.8 CVSS β οΈ
π₯ PoC: https://github.com/brs6412/CVE-2025-24813
π― 6.7m+ Results are found on the https://en.fofa.info nearly year.
π FOFA Link: https://en.fofa.info/result?qbase64=YXBwPSJBUEFDSEUtVG9tY2F0Ig%3D%3D
FOFA Query:app="APACHE-Tomcat"
π Refer: https://securityonline.info/cisa-flags-apache-tomcat-cve-2025-24813-as-actively-exploited-with-9-8-cvss/
#OSINT #FOFA #CyberSecurity #Vulnerability
π₯ PoC: https://github.com/brs6412/CVE-2025-24813
π― 6.7m+ Results are found on the https://en.fofa.info nearly year.
π FOFA Link: https://en.fofa.info/result?qbase64=YXBwPSJBUEFDSEUtVG9tY2F0Ig%3D%3D
FOFA Query:app="APACHE-Tomcat"
π Refer: https://securityonline.info/cisa-flags-apache-tomcat-cve-2025-24813-as-actively-exploited-with-9-8-cvss/
#OSINT #FOFA #CyberSecurity #Vulnerability
π₯3
π¨ CVE-2025-22167 (CVSS 8.7): Jira Path Traversal flaw allows arbitrary file writes to any JVM-writable path. Possible RCE when chained with other exploits. π¨
Search by vul.cve Filter: π vul.cve="CVE-2025-22167"
ZoomEye Dork: π app="Atlassian JIRA"
Over 107k vulnerable instances.
ZoomEye Link: Here
Refer:
1. https://jira.atlassian.com/browse/JSDSERVER-16409
2. https://hub.zoomeye.ai/detail/68f99417ad32f0b8765c0a99
#ZoomEye #cybersecurity #infosec #OSINT
Search by vul.cve Filter: π vul.cve="CVE-2025-22167"
ZoomEye Dork: π app="Atlassian JIRA"
Over 107k vulnerable instances.
ZoomEye Link: Here
Refer:
1. https://jira.atlassian.com/browse/JSDSERVER-16409
2. https://hub.zoomeye.ai/detail/68f99417ad32f0b8765c0a99
#ZoomEye #cybersecurity #infosec #OSINT
π₯2
The best way to learn Web Cache Deception is through this learning path. π
You'll learn to spot discrepancies in how origin servers and caches handle requests and then leverage these differences to create path confusion.
You'll learn:
πΆ Identifying web caches
πΆ How to construct a web cache deception attack
πΆ How to exploit cache rules
πΆ Leveraging path mapping and delimiter discrepancies
πΆ Preventing web cache deception vulnerabilities
Get Started: π Here
You'll learn to spot discrepancies in how origin servers and caches handle requests and then leverage these differences to create path confusion.
You'll learn:
πΆ Identifying web caches
πΆ How to construct a web cache deception attack
πΆ How to exploit cache rules
πΆ Leveraging path mapping and delimiter discrepancies
πΆ Preventing web cache deception vulnerabilities
Get Started: π Here
π1π₯1
β οΈ Web Cache Poisoning β οΈ - is an attack where a hacker manipulates HTTP requests to store malicious or incorrect content in a web cache or CDN.
π As a result, all users who later access the cached page receive the poisoned version, potentially leading to mass XSS, phishing, or content manipulation.
π Read more about: Here
π As a result, all users who later access the cached page receive the poisoned version, potentially leading to mass XSS, phishing, or content manipulation.
π Read more about: Here
β1β€1
π οΈ SSH Tunnels: Port Forwarding on Steroids π οΈ
πΈ A short Cheat Sheet to help you understand SSH tunneling.
#ssh_tunneling #pentest #red_team
πΈ A short Cheat Sheet to help you understand SSH tunneling.
#ssh_tunneling #pentest #red_team
β€1β1
β οΈ Evading Elastic Security - Deep dive into bypassing detections through string obfuscation, symbol randomization, XOR-encoded fragments & behavioral evasion techniques. β οΈ
Here π https://matheuzsecurity.github.io/hacking/bypassing-elastic
#infosec #redteam #linux #rootkit #elastic #malware
Here π https://matheuzsecurity.github.io/hacking/bypassing-elastic
#infosec #redteam #linux #rootkit #elastic #malware
π₯2
𧨠The Top 10 Most Dangerous Web3 Vulnerabilities Right Now π§¨
πΈ Access Control Vulnerabilities
πΈ Price Oracle Manipulation
πΈ Logic Errors
πΈ Lack of Input Validation
πΈ Reentrancy Attacks
πΈ Unchecked External Calls
πΈ Flash Loan Attacks
πΈ Integer Overflow and Underflow
πΈ Insecure Randomness
πΈ Denial of Service (DoS) Attacks
Details: π Here
πΈ Access Control Vulnerabilities
πΈ Price Oracle Manipulation
πΈ Logic Errors
πΈ Lack of Input Validation
πΈ Reentrancy Attacks
πΈ Unchecked External Calls
πΈ Flash Loan Attacks
πΈ Integer Overflow and Underflow
πΈ Insecure Randomness
πΈ Denial of Service (DoS) Attacks
Details: π Here
π―2π€‘1
β οΈ How To Secure A Linux Server. β οΈ
This guides purpose is to teach you how to secure a Linux server.
There are a lot of things you can do to secure a Linux server and this guide will attempt to cover as many of them as possible.
π Read more - Here π
#info_sec #linux #hardening
This guides purpose is to teach you how to secure a Linux server.
There are a lot of things you can do to secure a Linux server and this guide will attempt to cover as many of them as possible.
π Read more - Here π
#info_sec #linux #hardening
π2
Host-Pulse - a fast, lightweight domain liveness probe for pentesters and security engineers.
Scans large domain lists, quickly skips dead targets, detects reachable hosts (including 403/401/5xx), and produces clean
Tool: π https://github.com/xV4nd3Rx/Host-Pulse
β‘ Fast-skip dead targets.
π― Alive logic tuned for pentesting
𧩠Randomized User-Agent per request to avoid simple UA-based filtering.
π Parallel workers + controlled delays
π Insecure HTTPS requests are supported (suppressed warnings) so scanning continues even with untrusted certs
#pentest_tools #Red_Team #cybersecurity #Passive_Recon
Scans large domain lists, quickly skips dead targets, detects reachable hosts (including 403/401/5xx), and produces clean
alive.txt and compact results.csv reports.Tool: π https://github.com/xV4nd3Rx/Host-Pulse
β‘ Fast-skip dead targets.
π― Alive logic tuned for pentesting
𧩠Randomized User-Agent per request to avoid simple UA-based filtering.
π Parallel workers + controlled delays
π Insecure HTTPS requests are supported (suppressed warnings) so scanning continues even with untrusted certs
#pentest_tools #Red_Team #cybersecurity #Passive_Recon
π₯2