Kaspersky's stolen Amazon SES token used in Office 365 phishing

NimHollow: Nim implementation of Process Hollowing

Melting-Cobalt - A Cobalt Strike Scanner That Retrieves Detected Team Server Beacons Into A JSON Object

Trojan Source attack lets hackers exploit source code

China's Personal Data Protection Law Kicks In Today

Researchers Uncover 'Pink' Botnet Malware That Infected Over 1.6 Million Devices

Signal Unveils How Far US Law Enforcement Will Go To Get Information About People

Microsoft warns of rise in password sprays targeting cloud accounts

RT PortSwigger Research: We've also updated the devtools panel in DOM Invader to display the number of sinks and messages. They will also turn red whe...

RT Hardik Shah 🇮🇳: Contents of my workshop “fuzzing open source software with afl” at Texas cyber summit 2021 is available here:  This covers ...

Re @huzayyfah Thank you!

RT HackerOne: Every year at HackerOne, we celebrate our community’s hard work by selecting 5 hackers and awarding them with the HackerOne Elite title...

Re @irsdl  Hi. We have made a number of performance improvements since this was reported. Can you please download the latest release and let us know i...

Re @0xirfan Thanks for the feedback, we can't make any promises at this stage but we've passed the idea on to the team.

RT PortSwigger Research: We've also updated the devtools panel in DOM Invader to display the number of sinks and messages. They will also turn red whe...

RT PortSwigger Research: The new version of DOM Invader (available in the early adopter channel) allows you to see if it's found some interesting mess...

This release provides several updates to DOM Invader, line wrapping in Burp's message editor, and some bug fixes.

Re @flcnhvy @adamhoov @Forbes He talks like an NPC with a limited dialogue tree

Re @dogeofficialceo @Forbes 🤣

Re @adamhoov @Forbes Srsly

Re @Forbes He looks good even for a 200-year-old!

Re @RenataKonkoly @Forbes Both of those factories failed & shut down long ago. Strange thing to brag about.

Re @campuscodi What was shadowbanned?

Re @Manquellerman It is a work in progress.

Timeline of events: October 27th, 2021: Grief ransomware group ransomed the National Rifle Association (NRA) October 29th, 2021: The NRA is removed fr...

Re @meispi_ In some cases, yes!

🔔 The October XSS challenge has now concluded 🎁 We will announce the winners tomorrow 📹 But today, we're going to look closer at the solution...

From Zero to Domain Admin

Melting-Cobalt - A Cobalt Strike Scanner That Retrieves Detected Team Server Beacons Into A JSON Object

Re @Forbes Literally can’t tell if this is real or deep fake 🤣🤣🤣

Re @MartinKulldorff @joerogan @DrJBhattacharya Should be a term limit for these appointees

Re @silverph @ring @TOCNYS @Tesla @TeslaNY 🤣

Trial program for opening Tesla Superchargers to other EVs has begun

[BLOG] D/Invoke Baguette.  A new D/Invoke fork, D/Invoke Wiki and NuGet server.

RT Brute Logic: You don't wake up every morning thinking "I will be a hacker". You just look at things & think "I have to know how this works".

October 28th @morphisec released a paper on Decaf ransomware - a GoLang based ransomware. We have the samples.  You can download it on our malware sam...

Today @symantec released a paper on BlackMatters new exfiltration tool dubbed 'ExMatter'. We have the samples for ExMatter. You can download it on our...

推荐 GitHub 上一个开源的增值税发票 OCR 识别项目：invoice。可通过 API 接口，快速识别发票代码、发票号码、开票日期、校验码、税后金额等内容。GitHub：github.com/guanshuicheng/invoice

toutatis: extract information from instagrams accounts such as e-mails, phone numbers

Re @VulkeyChen 路过,,写个"惨"

Re @nebdar @thedawgyg We do not currently have any Mespinoza (or Pysa) samples listed publicly. However, we do have 17 of their samples from approx. J...

We've updated the vx-underground APT sample collection: - WinDealer - SQUIRRELWAFFLE - WsLink Have a nice day.

万圣节……

“广播电视节目”，似乎是对形式的描述。但如果以形式论，那么王刚做菜李子柒种田是不是“广播电视节目”？所以可能还是因为内容。做菜，种田，问题不大，所以都可以不属于“广播电视节目”。

回复@电网头条: 理解万岁//@电网头条:您这条微博被很多公司内小伙伴安利了，忍不住来说下…发了，后来又没了…原因本宝宝不可说…

多么和谐的社会，黑客并不都是坏人，帮你写书也是可以的。

GitHub 上一个基于 Go 实现的即时通讯（IM）项目：Open-IM-Server，从服务端到客户端 SDK 开源即时通讯（IM）整体解决方案。作者为前某信技术专家，可轻松替代第三方 IM 云服务，打造具备聊天、社交功能的 App。GitHub：github.com/OpenIMSDK/Open-IM-Server

中华文化博大精深，准备翻开家里的山海经让他们见识见识了

代码审计顾名思义就是对源代码进行检查，寻找代码中的bug和安全缺陷，检查PHP源代码中的缺点和错误信息，分析并找到这些问题引发的安全漏洞。  序列化就是把实体对象状态按照一定的格式写入到有序字节流，当要用到时就通过反序列化来重建对象，恢复对象状态，这样就可以很方便的存取数据和传输数据。 ...全文

这是一个知识产权备受关注的时代。你也可以成为被关注的人！高质量的内容必然出自优质的创作者。为此，看雪学院聚集了一波优秀的看雪讲师，鼓励精品课程创作。如果因为你的课程，一个原本对网络安全不感兴趣的人对相关知识产生了好奇心，那么你就已经成功了。你的分享，将帮助更多人成长。如 ...全文