Re @txtdarisisange Sumpah aku gak tau ini maksudnya apa? 🤣

Re @2000trazh Besok pagi otw lamar 🤣🤣

Per feedback received: should vx-underground link directly to newly added papers? *This will limit the amount of paper additions we can announce due t...

RT Arjun G:  Re Another version, with “Signal” clearly visible - I think I will submit this to the @defcon artwork contest as well, or at the very l...

Re @abison_binoy @yeswehack @Hacker0x01 @Bugcrowd @Bug_Bounty_com @GoogleVRP What a nice ride! Enjoy!

回复@卓耿表弟: 福建不刹车，就是粤菜。//@卓耿表弟:福建不刹车，就是河北。

RT KNOXSS: #KNOXSS v3 is finally out !!! Videos on new #XSS cases coming soon. Subscribe:  By now we will leave you with this! 😎

RT SecurityTrails: "A significant amount of our proceedings is reinvested back into our community. We genuinely believe in the value of the crowd, and...

常常有人问：”某人说 XXXX，我应该怎么反驳？”先不谈要不要在网上跟人辩论的问题——一个人提出一个观点，他得先自己证明这个观点，你才需要反驳这个观点。比如有人说：“弱势群体讽刺强势群体是讽刺，强势群体讽刺弱势群体就是歧视”。如果对方只是说了这么一句，那就不需要反驳。你没必要去证 ...全文

InveighZero - Windows C# LLMNR/mDNS/NBNS/DNS/DHCPv6 Spoofer/Man-In-The-Middle Tool

SharpGPOAbuse - Tool To Take Advantage Of A User'S Edit Rights On A Group Policy Object (GPO) In Order To Compromise The Objects That Are Controlled B...

清明时节黄山全是雾，无法远眺。这边的旅游服务很赞，从住的宾馆到山上的配套设施，无一不超出预期，碰上的工作人员很好客很热情，山上洗手间里都有热水。由于不是旺季，很多路段感觉包场了。陈北雁全程高能，虽因雨水有些狼狈，但一路兴致盎然。

RT Jaya Goswami👾: Understanding & Identifying Insecure Deserialization Vulnerabilities New WriteUp on Wall: April 2021 Posted on Medium: InfoSec Wr...

新疆不刹车，就是香港。香港不刹车，就是台湾。台湾不刹车，就是福建。

这个解释很对我胃口。顺便说一下，被TK拉黑了不要来问我为啥啊，我很困惑的。像我两商之和150的低能者，能回答出这么高深的问题吗。别问，问就是命运。

女人就是要优雅老去，让你们看看什么叫贵妇：

怕老婆才是中华民族的优良传统。应该请国内这方面技术领先的省份对外输出耙耳朵培训班。//@Fenng:这家长是该有多么没文化啊。

Re @0xkasper Woohoo, congratulations!

11公里沙漠徒步，两个小朋友还算是可以的。今天终于把帐篷扎到沙漠，解锁一项新体验。

回复@2020fund_v3: 怎么可能。5 盎司的售价就超过 10000 人民币了。//@2020fund_v3:比纪念品便宜

2021 年，纽埃会发行世界上第一种有法定货币面值的纪念币雕像：Geralt of Rivia, White Wolf。有 5 盎司和 1 公斤两种，面值分别为 10 新西兰元和 50 新西兰元，由新西兰造币厂制造。（纽埃是太平洋上的一个岛国，使用新西兰元作为法定货币）

主管部门提出的“三化六防，挂图作战”的核心要点之一就是要做好网络空间资产的测绘工作，昨日第三方调研机构的测评调研机构数世咨询发布《网络空间资产测绘(CAM)能力指南》知道创宇旗下网络空间测绘搜索引擎ZoomEye(“钟馗之眼”)系列产品，在“应用创新能力”、“市场执行力”、“心智占有率”三个维 ...全文

RT Catalin Cimpanu: Scoop: GitHub is investigating a malware operation that's abusing GitHub Actions to plant and run cryptominers on the company's se...

加入我们实验室，对脱单有奇效 网页链接

这张图是不同年龄段的美国人对社会主义和资本主义的看法。最左边图中两条折线是 Z 世代中对两者持正面看法的人的比例。可以看到早年还是热爱资本主义的比较多。但从 2018 年开始变得基本相同。这和我对中国社会的观察完全吻合：网页链接所以，背后可能存在更深的、超越国界的原因。

看这阵势，第二季应该是快开播了。

www.youtube.com/playlist?list=PLxrNvQzmYFAzG5MDoaNf4vRrLDZWp_jcD这个列表是 Dryante Zan 团队录制的《巫师》系列 MV，列表里现在已经有 20 个视频。Dryante Zan 频道的主题就是各个幻想世界的 MV。魔兽、上古卷轴，全都有。不光音乐做的好，画面拍的也很不错。  tombkeeper的微博视频

求偶当然也是一种竞争，是地球上第二古老的竞争。如果没有异配生殖，没有性选择压力推动演化，现在地球上最复杂的生物大概就是水母。

We've expanded the vx-underground Windows Infection papers collection. - Windows Boot CD Infection by LiTlLe VxW - Thread Local Storage: The hidden en...

ClearURLs - An Add-On Based On The New WebExtensions Technology And Will Automatically Remove Tracking Elements...

Deploy an SSD cloud server at DigitalOcean. Get $10 Free Credits

Tuf - A Framework For Securing Software Update Systems

Tomorrow’s #defconmovienight features the singular Werner Herzog’s ‘Grizzly Man’. Join us at 8pm PT on the #defcon Discord ( See you there!

Re @RazoesSergio @blackroomsec 💯

RT Alex Chaveriat (silk): A 1-minute story of the #defcon talk @ryancdotorg gave at DC23 (You rock!)- Hackers crack a $15,000,000 Bitcoin wallet, YOIN...

RT halvarflake: Dear fellow people in Cloud: If you have been hit in the past with high cross-AZ data transfer bills, we would love to have a chat wit...

RT nuclei: - Nuclei v2.3.4 updates 🛠️🛠️ - Templates v8.1.9 updates 🗒️🗒️ Nuclei changelog -  Templates changelog -  #hackwithautomation...

RT Youssef Sammouda: I had a crazy week in February in which i was able to find 3 interesting account takeovers in Facebook and resulted a total of $1...

Re @Jean_Maes_1994 @OutflankNL It’s not unreasonable to assume that other companies haven’t already been working along the same lines. @OutflankNL m...

Re @firefart @intigriti Good bot.

Re @uveys_al @theXSSrat @nav1n0x @xsswingman @knoxss_me @ChefSecure Expect it until the end of this month.

Re @theXSSrat @nav1n0x @xsswingman @knoxss_me @ChefSecure Appreciate it! Wait for 2021 Edition...

Re @fervag_ Probably not. But it depends on that assessment for labeling the tool as "perfect" which is done by the very one in need of it. And that o...

Re @fervag_ Because some might just need that a SQLi vulnerability be found, not an assessment of it, if there's or not. So even "needs" here are subj...

Re @fervag_ That's a tricky question. How do you know if it does what you need it to do? For example, it must find a SQLi and it doesn't. Is there a v...

Automate Cache Poisoning Vulnerability via ⁦⁦@pdnuclei⁩

Android_Hid - Use Android As Rubber Ducky Against Another Android Device

SecretScanner - Find Secrets And Passwords In Container Images And File Systems

Re @rez0__ Everyone in the quarterly top 20 gets a voucher!

Re @fervag_ Certainly not. I don't want to promote him/her or his/her work in any way. But these are exceptions, our point here is the knowledge about...