Source Byte

An Undocumented 64-bit Keylogger Targeting Windows Systems https://github.com/ShadowOpCode/RustMe_Keylogger/blob/main/RustMe%20Keylogger.pdf

🧩 When too much access is not enough: a story about Confluence and tokens During a Red Team engagement, we compromised an AWS account containing a Confluence instance hosted on an EC2 virtual machine. Although we fully compromised the machine hosting the Confluence instance, we did not have valid credentials to log in but were able to interact with the underlying database. This led us to study the structure of the Confluence database and the mechanism for generating API tokens.

P.S. Еще несколько полезных ссылок со старого канала:

📜 Creating a Malicious Atlassian Plugin 🔗 Malfluence A PoC for a malicious Confluence plugin, which can access all content inside a Confluence instance, access the database directly, and execute arbitrary commands on the underlying Linux server. 📜 Stealing All of the Confluence Things 🔗 Conf-Thief A Red Team tool for exfiltrating sensitive data from Confluence pages. 🔗 AtlasReaper A command-line tool for reconnaissance and targeted write operations on Confluence and Jira instances. 🔗 Jecretz Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets.

haha they are back

zseano Methodology : https://manutd.notion.site/zseanos-methodology-cool-f1b6ef8d9e8a46af8bee229c1537d150#18b1238c7e2c4c34ab830acb474c5c04

From Chrome renderer code exec to kernel with MSG_OOB 🔗 Link #browser #exploitation #kernel #linux ——— 🆔 @Infosec_Fortress

these are the best phishing SE i have seen recently🥲

First known AI-powered ransomware https://x.com/ESETresearch/status/1960365364300087724

🛡CreateProcessAsPPL This is a utility for running processes with Protected Process Light (PPL) protection, enabling bypass of EDR/AV solution defensive mechanisms. It leverages legitimate Windows clipup.exe functionality from System32 to create protected processes that can overwrite antivirus service executable files. 🔗 Source: https://github.com/2x7EQ13/CreateProcessAsPPL #av #edr #bypass #ppl

Релиз моей статьи об атаках на IPv6 Caster - Legless (БезногNM) Genre: Offensive Label: exploit.org Release Date: 20 July 2025 Language: English Performed by: Caster Written by: Magama Bazarov Mastered by: Magama Bazarov Cover Edit: Magama Bazarov https://blog.exploit.org/caster-legless

UAC Bypass Chain Leading To Silent Elevation 👾 The Presentation Video My Blog: https://binary-win.github.io/2025/08/22/UAC-Bypass.html

We start in 5 Minutes . This webinar will be in Persian

Breaking modern software protectors through exploitation Reverse engineer VMProtect's obfuscator by using its embedded Lua scripting engine. They recover the original #RTTI information from the obfuscator and get a better understanding of its inner workings. https://www.youtube.com/live/PAG3M7mWT2c?si=Okhlj2PjXqfue5NU #vmprotect source

┐⁠(⁠´⁠ー⁠｀⁠)⁠┌ https://www.linkedin.com/posts/alireza-hosseini-ab53a7282_%EF%BD%93%EF%BD%85%EF%BD%83-%EF%BD%8E%EF%BD%8F%EF%BD%94%EF%BD%85-activity-7363312135457673217-Pc6k?utm_source=share&utm_medium=member_desktop&rcm=ACoAAETB42kB9nlQcP_FDiEg8Yigl_kGSv6f5hE

RTTI Internals in MSVC https://www.lukaszlipski.dev/post/rtti-msvc/ #RTTI