现已上线!2025 年 Telegram 研究 — 年度关键洞察 
Bug bounty Tips
前往频道在 Telegram
🛡️ Cybersecurity enthusiast | 💻 Helping secure the digital world | 🌐 Web App Tester | 🕵️♂️ OSINT Specialist Admin: @laazy_hack3r
显示更多5 772
订阅者
+1724 小时
+967 天
+42930 天
帖子存档
5 776
🦾 **VulnOps Daily Digest**
🌙 26 May 2026 · 09:10 PM IST
━━━━━━━━━━━━━━━━━
**📰 Trending — Cybersecurity News**
━━━━━━━━━━━━━━━━━
📰 MITRE moves Caldera cybersecurity platform to Apache Foundation for broader open-source collaboration
https://news.google.com/rss/articles/CBMizwFBVV95cUxQWVliaGNNdXBOVVA5VDBUbDVBLVVzS2FPQmhrUzdDTHFDMTExZFg2Qmk2VjQ5bTBDY0Y5QUNOOGxGbG5yR3JCMm11d1hGeTNqQy1mdE5ZdjNhT0toUFoyekJlemRLZmFPU3F6NWVDV0F0MUxzZkVKbHgwM0lrWEp1LXByTFpsc2ZFdHFNT2xacFdkTi1ia1cweGZPSVQyZHgyVDE0M3Rjc2R2SHR1TjR4eGQ0NjIzQzFoWEpTNC1zZElGTGMyeG1QcDNsazZERUU?oc=5 (Industrial Cyber)
📰 NJIT Cybersecurity Research Adds Protection to AI-Built Code
https://news.google.com/rss/articles/CBMihgFBVV95cUxQOU50YnZZc3oyRTkyVXN3YVMwdTkxWjF0ODM1eHVzeDhub1R4dVhLQ3J2Ml9wQlh0UHFfVi1OYmlJVS1NMXY0NTBnY082TFliNkNOWHYyWV9TSlhFdGZnUXZOdjNCSzdwZ0VuSHNiVFhxOHVmZHU4bkdkQ0xtUjBFZVBjOGxFUQ?oc=5 (NJIT News)
📰 Roadmap for Wind Cybersecurity
https://news.google.com/rss/articles/CBMie0FVX3lxTFBnSXR1TFN0N0ZNX0Y2a1FMWXgwQWgxUC1PMTM0R3dLUnVST2gxSGVJNkJUaDFNY0VDOGJSTVdFbXRJUHRGb0xLd1N1UHBxTzdhNDJ0NzBIa0JHMkszWnNERWkyRkQzbWtRODFXTkQ1UFkwZGpDemRPLXVyRQ?oc=5 (Department of Energy (.gov))
📰 State Tech Officials Urge Congress To Renew Cybersecurity Grants
https://news.google.com/rss/articles/CBMioAFBVV95cUxPUVRVLUJVT0dFUU5ac19VU21DS2RjSWMzSnVFa1djWXVPTkRxelFsaG9rMkVlcGZYOVEwd3ptS0lyRW05OEQxeTE5VzdwSHRnYnRvQTBrZlNnSFJ3dVJ1Z2ViV1VselRoVmZ2aXdHWEJnVGNYZTNOZ1VFbl9rUmpDc3NXX0R5Z0pCczRmY1N3c3Vzc1dJYVhsQUhKVjh5dzhk?oc=5 (MeriTalk)
📰 Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions
https://news.google.com/rss/articles/CBMiggFBVV95cUxNNl9USTY4LVRhQVl2QWU4emh5bmNEQ3VxeVZ2cFNRYXVVeUVVRjg4YkwzN1RxbnhxQTllZWliNWEyRWdjNmRfZEROTnVqTmJ4c0VFQ2p2NEZObGJKNTNBOHcxcE90YzdzVFJkZE1wUndzbnBfcTlvOWpOeTZ5d2lndVN3?oc=5 (The Hacker News)
💡 _Tip: Always verify patches in staging before production rollout._
━━━━━━━━━━━━━━━━━
⚡ _VulnOps · AI-powered cybersecurity_
🔗 _vulnops.com · @laazy_hack3r_
5 776
I have developed a vulops_pipeline designed to scan repositories for vulnerabilities, utilizing JSON files containing results to generate a comprehensive PDF report. I have tested this pipeline on Juice Shop. Please provide your feedback and suggestions to enhance the solution for pitching security services to clients.
5 776
#MLSecOps
"Adaptive Probe-based Steering for Robust LLM Jailbreaking", May 2026.
]-> https://github.com/fhdnskfbeuv/adaptiveSteering
]-> https://github.com/MuyuenLP/AdaSteer
// Being an attack paper, this paper focuses on revealing the breakdown of fortified LLMs, raising the average harmfulness score from 6 to 70%
5 776
#MLSecOps
#Offensive_security
"DarkLLM: Learning Language-Driven Adversarial Attacks with Large Language Models", May 2026.
// DarkLLM not only unifies targeted, untargeted, segmentation, and multi-model attacks within a single framework, but also achieves flexible and controllable adversarial generation, enabling each instruction to produce a perturbation that induces desired behaviors across heterogeneous models
5 776
#tools
#AIOps
"AgentWall: A Runtime Safety Layer for Local AI Agents", Mar. 2026.
]-> https://github.com/agentwall/Agentwall
// Run AI agents safely on your local machine
5 776
#tools
#exploit
#Kernel_Security
Linux Integrity Drift (LID):
Bypassing AppArmor via eBPF pathname rewriting. Pre-LSM syscall argument manipulation with zero audit footprint
https://github.com/azqzazq1/LID
// LID finds kernel code paths that bypass LSM hooks entirely - subsystems that perform security-sensitive operations without consulting the LSM framework. The security check is correct. The problem is that the kernel never asks
Disclaimer
5 776
#Whitepaper
#Cloud_Security
"Identifying Security Vulnerabilities in Kubernetes Environments, Jan. 2026.
// This research aims to develop a practical methodology for identifying security misconfigurations in Kubernetes environments, across both Infrastructure-as-Code and live cluster states
