7ASecurityπ£ New @7ASecurity public #Pentest report
π @dComms improves resilience with verified fixes, thanks to @OpenTechFund
4 issues identified (2 high) and remediated
Feedback is welcome enjoy π
π https://7asecurity.com/blog/2026/03/dcomms-audit-by-7asecurity/
BSidesLuxembourgAnother session announcement for BSides Luxembourg!
π» π§ππ’π¦π πͺππ’ ππ’π‘βπ§ ππππ₯π‘ ππ₯π’π ππ©ππ¦ ππ₯π ππ’π’π ππ π§π’ π₯ππππ¦ππ’π©ππ₯ π§πππ - Louis Nyffenegger (@snyff ) π₯
Real vulnerabilities donβt appear in isolation, theyβre rooted in code, context, and human error. This session walks through actual CVEs, analyzing the code where they were introduced. You will see the patterns, assumptions, and language quirks that led to the flaw - not just the exploit, but the moment it couldβve been caught.
Louis Nyffenegger https://bsky.app/profile/snyff.pentesterlab.com is the founder of PentesterLab and AppSecSchool, application security expert, and hands-on trainer with experience at the National Bank of Australia, Australia Post, and Fitbit.
π
Conference Dates: 6β8 May 2026 | 09:00β18:00
π 14, Porte de France, Esch-sur-Alzette, Luxembourg
ποΈ Tickets: https://2026.bsides.lu/tickets/
π
Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/
#BSidesLuxembourg #CVE #CodeReview #SecureCoding #PenTest #SecurityEducation #DevSecOps
r1cksecOpening a file in GNU Emacs can trigger arbitrary code execution through version control (git), most requiring zero user interaction beyond the file open itself.
https://github.com/califio/publications/blob/main/MADBugs/vim-vs-emacs-vs-claude/Emacs.md
#infosec #cybersecurity #redteam #pentest #ai #emacs #claude
A bug chain in Vim allows arbitrary OS command execution when a user opens a crafted file
https://github.com/vim/vim/security/advisories/GHSA-2gmj-rpqf-pxvh
https://github.com/califio/publications/blob/main/MADBugs/vim-vs-emacs-vs-claude/vim.md
Extract Windows credentials directly from VM memory snapshots and virtual disks
https://github.com/nikaiw/VMkatz
#infosec #cybersecurity #redteam #pentest #windows #opensource
artiZero Trust dla LLM-Γ³w.
PodrΔcznik programisty NVIDIA NemoClaw : https://lnkd.in/db5pZH68
#nemoclaw #pentest #ai #intership #securityAI #ZeroTrust #LM
PodrΔcznik programisty NVIDIA NemoClaw : https://lnkd.in/db5pZH68
#nemoclaw #pentest #ai #intership #securityAI #ZeroTrust #LM
Default TLS Exclusions for Palo Alto Networks Firewalls
https://gist.github.com/UNC1739/cc175d87b8623569844efadf224bd6ad
adison verlicehello #cybersecurity peeps. I am embarking on a new EAS discord bot, and part of this is a web interface for controlling the bot itself (bot owner only).
I was hoping you could #pentest the interface so I know how secure it is.
here: https://endec.blindsoft.net enjoy!
I was hoping you could #pentest the interface so I know how secure it is.
here: https://endec.blindsoft.net enjoy!
Marcel SIneM(S)USDa werde ich wohl ein Update durchfΓΌhren π
#KaliLinux 2026.1 bringt neue Tools mit und erstrahlt in neuer oder Retro-Optik | Security https://www.heise.de/news/Kali-Linux-2026-1-bringt-neue-Tools-mit-und-erstrahlt-in-neuer-oder-Retro-Optik-11223739.html #Linux 
#PenTest #PenTesting #PenetrationTesting
This repo contains the design plan and runbook for using Claude Code to search for Java Deserialization Gadget chains.
https://github.com/atredispartners/llmchainhunter
#infosec #cybersecurity #redteam #pentest #ai #llm #opensource
