اکنون در دسترس! پژوهش تلگرام ۲۰۲۵ — مهمترین بینشهای سال 
Proxy Bar
رفتن به کانال در Telegram
Exploits, Hacking and Leaks Чат группы - https://t.me/ Связь с администрацией и реклама: @NULL_vm Поддержать проект: BTC bc1qmrt229eghjyj9wqa7nmr9j8zuq6khz6km2pker
نمایش بیشتر📈 تحلیل کانال تلگرام Proxy Bar
کانال Proxy Bar (@proxy_bar) در بخش زبانی روسی بازیگری فعال است. در حال حاضر جامعه شامل 20 694 مشترک است و جایگاه 6 502 را در دسته فناوری و برنامهها و رتبه 32 521 را در منطقه روسيا دارد.
📊 شاخصهای مخاطب و پویایی
از زمان ایجاد در невідомо، پروژه رشد سریعی داشته و 20 694 مشترک جذب کرده است.
بر اساس آخرین دادهها در تاریخ 20 ژوئن, 2026، کانال فعالیت پایداری دارد. در ۳۰ روز گذشته تغییر اعضا برابر 166 و در ۲۴ ساعت گذشته برابر 8 بوده و همچنان دسترسی گستردهای حفظ شده است.
- وضعیت تأیید: تأیید نشده
- نرخ تعامل (ER): میانگین تعامل مخاطب 21.49% است و در ۲۴ ساعت نخست پس از انتشار، محتوا معمولاً 11.27% واکنش نسبت به کل مشترکان کسب میکند.
- دسترسی پستها: هر پست به طور میانگین 4 447 بازدید دریافت میکند. در اولین روز معمولاً 2 332 بازدید جمعآوری میشود.
- واکنشها و تعامل: مخاطبان بهطور فعال حمایت میکنند؛ میانگین واکنش به هر پست 10 است.
- علایق موضوعی: محتوا بر موضوعات کلیدی مانند cve-2025, exploit, linux, birth, define تمرکز دارد.
📝 توضیح و سیاست محتوایی
نویسنده این فضا را محل بیان دیدگاههای شخصی توصیف میکند:
“Exploits, Hacking and Leaks
Чат группы - https://t.me/
Связь с администрацией и реклама:
@NULL_vm
Поддержать проект:
BTC bc1qmrt229eghjyj9wqa7nmr9j8zuq6khz6km2pker”
به لطف بهروزرسانیهای پرتکرار (آخرین داده در تاریخ 21 ژوئن, 2026)، کانال همواره بهروز و دارای دسترسی بالاست. تحلیلها نشان میدهد مخاطبان بهطور فعال با محتوا تعامل دارند و آن را به نقطه اثرگذاری مهم در دسته فناوری و برنامهها تبدیل کردهاند.
20 694
مشترکین
+824 ساعت
+707 روز
+16630 روز
آرشیو پست ها
20 698
3D Point 😁
***
Если точка имеет координаты
x, y, z, значит ли это, что она трехмерная?
например:
P = (10, 20, 30)
у нее есть положение в 3D пространстве.
Есть ли у неё длина, ширина, высота и объём ?
*** то же самое, только злее
у точки в 3D есть три координаты.
у 3D объекта есть три размера.
Координаты и размеры — это одно и то же?20 698
Scales — carving an embedded eBPF rootkit
*
eBPF-based infostealer & rootkit targeting Arch Linux
20 698
👁 Ваши данные уже слиты
Учимся искать то, что скрытоТолько в 2025 году в сеть утекло 767 миллионов записей с данными россиян. Информации - море, но 95% людей не умеют искать ничего сложнее базовых запросов. 😒Мы запускаем бесплатный 2-дневный онлайн-интенсив по OSINT Выдают базу Давид (8 лет в пентесте, Red Team EC-Council) и Анар (9 лет в анализе киберугроз). 💗16 июня в 19:00 - Найди невидимое
Разбираем продвинутые техники: скрытые возможности Google Dorks, правильный пробив людей и компаний, работа с обратным поиском. В конце - живая практика мини-расследования.💗18 июня в 19:00 - Мышление расследователя
Учимся не просто гуглить, а собирать разрозненные куски в единую картину. Вытаскиваем метаданные, строим связи (люди/домены/аккаунты), вычисляем фейки и упаковываем всё это в полноценное досье.Регистрируйтесь сейчас - сразу после входа закинем вам в телеграм подробную карту OSINT-инструментов, чтобы не потеряться! ⬇️⬇️⬇️ ПОДРОБНЕЕ
20 698
Overcoming Space Restrictions with Egghunters in Windows Exploit Development — Savant Web Server 3.1, Syscall & SEH Egghunters, Heap Staging
Original text: “Overcoming Space Restrictions with Egghunters in Windows Exploit Development” — Remo (@Rem01x), Remo’s Blog (posted Jun 9, 2026). Code blocks, tables, and figures below are reproduced verbatim with attribution captions.
Executive Summary
Classic stack buffer overflows on 32-bit Windows services frequently land an attacker in a constrained position: deterministic EIP control is achieved,…
https://core-jmp.org/2026/06/egghunter-windows-exploit-development-savant-syscall-seh-heap-staging/
20 698
Windows Win32k Elevation of Privilege Vulnerability (CVE-2021-1732): Walkthrough of the ConsoleControl Offset Confusion
Original text: “Windows Win32k Elevation of Privilege Vulnerability (Win32k ConsoleControl Offset Confusion) — CVE-2021-1732” — Safe Security research paper (June 3, 2021). Figures and commands below are reproduced verbatim with attribution captions.
Executive Summary
CVE-2021-1732 is a Win32k local privilege escalation vulnerability in the Windows graphics subsystem driver win32kfull.sys. The flaw, also referred to as…
https://core-jmp.org/2026/06/cve-2021-1732-win32k-consolecontrol-offset-confusion-walkthrough/
20 698
GreatXML: Bypassing BitLocker on Windows 11 via a Recovery-Partition unattend.xml
Original text: “GreatXML — BitLocker bypass vulnerability” — NightmareEclipse (GitHub handle MSNightmare), released under the MIT license. The README, the unattend.xml, the ReAgent.xml and both screenshots below are reproduced verbatim with attribution captions, in line with the project’s MIT terms.
Executive Summary
GreatXML is a one-file BitLocker bypass against Windows 11 (build 10.0.26100, the 24H2…
https://core-jmp.org/2026/06/greatxml-bitlocker-bypass-winre-unattend-xml/
20 698
Covert Kernel/User Communication Channels on Windows: Rootkits, Game Cheats, and Detection
Original text: “Covert Kernel/User Communication Channels on Windows: Rootkits, Game Cheats, and Detection” — kernullist, Kernullist’s Blog (Jun 10, 2026). Classification tables, ASCII flow diagrams, and C-language structure declarations below are reproduced verbatim with attribution captions.
Executive Summary
A modern Windows kernel-assisted threat is almost never a single user-mode binary doing all the work. It…
https://core-jmp.org/2026/06/covert-kernel-user-communication-channels-windows-rootkits-cheats-detection/
20 698
Patching the Windows Kernel via BYOVD: ThrottleStop.sys, MmMapIoSpace and the NtAddAtom Trampoline
Original text: “Whoops! I did it again. I patched Windows Kernel at Milan0day 2026” — zer0matt, zer0matt’s blog (29 May 2026). PoC: github.com/zer0matt/Milan0day2026. Diagrams below are reproduced from the original with attribution; prose is paraphrased.
Executive Summary
zer0matt’s Milan0day 2026 talk and accompanying writeup demonstrate a clean Bring Your Own Vulnerable Driver (BYOVD) chain that…
https://core-jmp.org/2026/06/patching-windows-kernel-byovd-throttlestop-mmmapiospace-ntaddatom/
20 698
Client-Side Container Attack: DLL Sideloading wab.exe via Email Archive Delivery
Original text: “Initial access. Client side container attack” — Leigh Gilbert, Exploitz (exploitz.ca, June 2026). The diagrams below are reproduced with attribution; prose is paraphrased. MITRE ATT&CK reference: T1574.001 — DLL Search Order Hijacking.
Executive Summary
Leigh Gilbert’s walkthrough chains together a long-known but still effective initial-access pattern: ship a signed Microsoft binary that has…
https://core-jmp.org/2026/06/client-side-container-attack-dll-sideloading-wab-exe-email-archive/
20 698
Microsoft Defender Now Monitors Remote RPC Activity: What It Catches and How to Hunt
Original text: “Microsoft Defender now monitors RPC activity” — EdanZwick, Microsoft Tech Community / Microsoft Defender for Endpoint Blog (08 Jun 2026). The three KQL hunting queries below are reproduced verbatim with attribution. Prose is paraphrased; for the Defender XDR alert / detection screenshots, see the original post.
Executive Summary
Microsoft has extended Defender’s existing…
https://core-jmp.org/2026/06/microsoft-defender-monitors-remote-rpc-activity/
20 698
OOBdump: Single-Shot Heap-OOB Exploitation of objdump -g via FR30 Relocations
Original text: “OOBdump: Relocation Oriented Programming” — Calif, blog.calif.io (08 Jun 2026, no individual byline). PoCs and writeups: github.com/califio/publications/…/oobdump. Short illustrative code excerpts and the original article’s diagrams are reproduced with attribution; the prose is paraphrased.
Executive Summary
The Calif team has been quietly collecting trophy bugs in reverse-engineering tooling for a while — IDA…
https://core-jmp.org/2026/06/oobdump-objdump-fr30-relocation-oriented-programming/
20 698
BusyWork: Replacing Sleep with Real Work to Break Behavioral Detection
Original text: “BusyWork: Replacing Sleep with Real Work to Break Behavioral Detection” — patchi.fyi (07 Jun 2026, byline shows only the site handle — author not publicly attributed). Library source: github.com/PatchRequest/BusyWork. Short illustrative code excerpts are reproduced with attribution; longer routines are summarised — consult the upstream repo for full sources.
Executive Summary
A thread…
https://core-jmp.org/2026/06/busywork-replacing-sleep-with-real-work-behavioral-detection/
20 698
BOF Cocktails in Cobalt Strike: Instrumenting BOFs with BEACON_INLINE_EXECUTE and Crystal Palace
Original text: “BOF Cocktails in Cobalt Strike” — Rasta Mouse, rastamouse.me (05 Jun 2026). Code blocks and the screenshot below are reproduced verbatim from the source with attribution.
Executive Summary
Post-exploitation Beacon Object Files (BOFs) historically inherited their evasion posture from whatever agent or loader executed them. If the loader took care of unhooking, masking,…
https://core-jmp.org/2026/06/bof-cocktails-cobalt-strike-beacon-inline-execute-crystal-palace/
20 698
Qualcomm QAIC Kernel Driver Page Use-After-Free: From Stale Mmap to Pipe-Buffer-Backed Kernel R/W (Walk-through of Lukas Maar’s Linux v6.18 Exploit)
Original text: “Privilege Escalation via a Page Use-After-Free in Qualcomm’s AI Accelerator Linux Kernel Driver” — Lukas Maar, Security Blog (23 May 2026). Code blocks and figures below are reproduced verbatim with attribution captions.
Executive Summary
Lukas Maar’s post writes up a clean page-level use-after-free in the upstream drivers/accel/qaic Linux kernel driver. The bug is…
https://core-jmp.org/2026/06/qualcomm-qaic-kernel-driver-page-uaf-pipe-buffer-kernel-rw-lukas-maar/
