This writeups discusses the implementation of a Proof of Concept exploit for a vulnerability discovered in Node.js by a team in Sonar.

Ever seen a binary that looks like a .NET binary based on its strings, but .NET decompilers are not able to open them?

Learn how broken access and Null Pointer Dereference were found in the macOS IOMobileFramebuffer (AppleCLCD2) driver.

In 2013 a catalogue of intelligence gathering capabilities from NSA's ANT (Advanced Network Technology) was leaked online, unrelated to the E. Snowden leaks. One of the hardware implants mentioned there was FIREWALK, which was designed to be able to infiltrate…

A powerful, modular, lightweight and efficient command & control framework written in Nim. - hdbreaker/Nimhawk

In this article we describe a basic deobfuscation technique by leveraging a code snippet substitution.

eBPF-based lightweight debugger for Android. Contribute to ShinoLeah/eDBG development by creating an account on GitHub.

Shakewell & Fat Nick "Pemex" official music video

Produced By : Flexatelli
https://twitter.com/FLEXATELLI?lang=en
https://www.instagram.com/flexatelli/?hl=en

Directed & Shot by Dan Streit

Produced by Adam Talan

Camera Assistance by Tanner Hall, Alex…

Brief overview of Map related vulnerabilities in v8

Information Security Services. Offensive Security, Penetration Testing, Mobile and Application, Purple Team, Red Team

iOS 18.5 Beta 4(and below) MobileCoreService persistence exploit. Discovered by me! - cr4zyengineer/EvilWorkspace

In this stream, we performed malware research with the MalwareBazaar MCP server from Kevin Thomas https://github.com/mytechnotalent/MalwareBazaar_MCP , unpacked a loader malware variant with x64dbg and analyzed the unpacked loader with the BinjaLattice MCP…

A comprehensive technical walkthrough of Windows 11 Alternate Syscalls: allocating executable thunks, building the dispatch table, patching PspServiceDescriptorGroupTable, handling PspSyscallProviderServiceDispatchGeneric, and caching syscall arguments. Includes…

Guest post by Dillon Franke, Senior Security Engineer, 20% time on Project Zero Every second, highly-privileged MacOS system daemons accept and proces...

Malware Development Tutorial: Bypassing Windows Defender with SMB Staging

In this step-by-step malware development tutorial, you’ll discover how to bypass Windows Defender using a powerful technique called SMB staging. By delivering shellcode over a remote…

Binary code-coverage fuzzer for macOS, based on libFuzzer and LLVM - ant4g0nist/ManuFuzzer

1day practice - Escape macOS sandbox (partial) using RemoteViewServices - wh1te4ever/CVE-2025-31258-PoC