r1cksecGeneralized Wi-Fi Client Isolation Bypasses
DCSync Beacon Object File (BOF)
nickbeardedTried my new VPN gateway on a Raspberry Pi and booted BlackArch live to explore some tools. Sadly, the distro feels abandoned: outdated packages, broken apps, no copy/paste in terminals, and a prehistoric Firefox. A shame, because it still boots under 500MB RAM π
This ASPX web shell enables execution of Beacon Object Files (BOFs) on a target server using a semi-interactive Python client.
7ASecurityπ£ New @7ASecurity public #Pentest report
π @dComms improves resilience with verified fixes, thanks to @OpenTechFund
4 issues identified (2 high) and remediated
Feedback is welcome enjoy π
π https://7asecurity.com/blog/2026/03/dcomms-audit-by-7asecurity/
BSidesLuxembourgAnother session announcement for BSides Luxembourg!
π» π§ππ’π¦π πͺππ’ ππ’π‘βπ§ ππππ₯π‘ ππ₯π’π ππ©ππ¦ ππ₯π ππ’π’π ππ π§π’ π₯ππππ¦ππ’π©ππ₯ π§πππ - Louis Nyffenegger (@snyff ) π₯
Real vulnerabilities donβt appear in isolation, theyβre rooted in code, context, and human error. This session walks through actual CVEs, analyzing the code where they were introduced. You will see the patterns, assumptions, and language quirks that led to the flaw - not just the exploit, but the moment it couldβve been caught.
Louis Nyffenegger https://bsky.app/profile/snyff.pentesterlab.com is the founder of PentesterLab and AppSecSchool, application security expert, and hands-on trainer with experience at the National Bank of Australia, Australia Post, and Fitbit.
π
Conference Dates: 6β8 May 2026 | 09:00β18:00
π 14, Porte de France, Esch-sur-Alzette, Luxembourg
ποΈ Tickets: https://2026.bsides.lu/tickets/
π
Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/
#BSidesLuxembourg #CVE #CodeReview #SecureCoding #PenTest #SecurityEducation #DevSecOps
Opening a file in GNU Emacs can trigger arbitrary code execution through version control (git), most requiring zero user interaction beyond the file open itself.
https://github.com/califio/publications/blob/main/MADBugs/vim-vs-emacs-vs-claude/Emacs.md
#infosec #cybersecurity #redteam #pentest #ai #emacs #claude
A bug chain in Vim allows arbitrary OS command execution when a user opens a crafted file
https://github.com/vim/vim/security/advisories/GHSA-2gmj-rpqf-pxvh
https://github.com/califio/publications/blob/main/MADBugs/vim-vs-emacs-vs-claude/vim.md
Extract Windows credentials directly from VM memory snapshots and virtual disks
https://github.com/nikaiw/VMkatz
#infosec #cybersecurity #redteam #pentest #windows #opensource
artiZero Trust dla LLM-Γ³w.
PodrΔcznik programisty NVIDIA NemoClaw : https://lnkd.in/db5pZH68
#nemoclaw #pentest #ai #intership #securityAI #ZeroTrust #LM
PodrΔcznik programisty NVIDIA NemoClaw : https://lnkd.in/db5pZH68
#nemoclaw #pentest #ai #intership #securityAI #ZeroTrust #LM
