HackerWorkspace

@[email protected]
136 Followers
377 Following
701 Posts
Curated intelligence for the refined hacker. We filter the noise to bring you tradecraft, zero-days, and techniques that matter.
Urlhttps://hackerworkspace.com
Reddithttps://reddit.com/r/hackerworkspace
HackerWorkspace1h ago

The Most Organized Threat Actors Use Your ITSM (BMC FootPrints Pre-Auth Remote Code Execution Chains)

https://labs.watchtowr.com/thanks-itsms-threat-actors-have-never-been-so-organized-bmc-footprints-pre-auth-remote-code-execution-chains/

Short summary: https://hackerworkspace.com/article/the-most-organized-threat-actors-use-your-itsm-bmc-footprints-pre-auth-remote-code-execution-chains

#threatintelligence #authentication #vulnerability

The Most Organized Threat Actors Use Your ITSM (BMC FootPrints Pre-Auth Remote Code Execution Chains)

SolarWinds. Ivanti. SysAid. ManageEngine. Giants of the KEV world, all of whom have ITSM side-projects. ITSMs, as a group of solutions, have played pivotal roles in numerous ransomware gang campaigns - not only do they represent code running on a system, but they hold a significant amount of sensitive information.

watchTowr Labs
HackerWorkspace9h ago

Meta Ray-Ban BLE Detection and Spoofing

https://www.youtube.com/watch?v=Z-Eov3_8kws

#cybersecurity #iotsecurity #penetrationtesting

Meta Ray-Ban BLE Detection and Spoofing

YouTube
HackerWorkspace9h ago

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23

https://thehackernews.com/2026/03/critical-telnetd-flaw-cve-2026-32746.html

Short summary: https://hackerworkspace.com/article/critical-unpatched-telnetd-flaw-cve-2026-32746-enables-unauthenticated-root-rce-via-port-23

#cybersecurity #threatintelligence #vulnerability

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23

CVE-2026-32746 exposes telnetd via pre-auth flaw (CVSS 9.8), enabling root RCE through port 23, risking full system takeover.

The Hacker News
HackerWorkspace9h ago

https://hunt.io/blog/iran-botnet-operatioGlassWorm’s GitHub Supply Chain Campaign: Technical Analysis and Analyst Guidancen-open-directory

https://www.neuracybintel.com/articles/glassworms-github-supply-chain-campaign-technical-analysis-and-analyst-guidance

Short summary: https://hackerworkspace.com/article/neuracyb-cybersecurity-intelligence-investigation-2

#cybersecurity #incidentresponse #threatintelligence

HackerWorkspace9h ago

Iranian Botnet Exposed via Open Directory: 15-Node Relay Network and Active C2

https://hunt.io/blog/iran-botnet-operation-open-directory

Short summary: https://hackerworkspace.com/article/iranian-botnet-exposed-via-open-directory-15-node-relay-network-and-active-c2

#cybersecurity #threatintelligence #c2

Iranian Botnet Exposed via Open Directory: 15-Node Relay Network and Active C2

From open directory to hardcoded C2: how one exposed Iranian staging server revealed a full botnet operation and 15-node censorship bypass network.

HackerWorkspace9h ago

Exposure Brief: Iranian-Linked Wiper Attack on Global Medtech Firm Stryker - Censys

https://censys.com/blog/iranian-wiper-attack-global-medtech-firm-stryker/

Short summary: https://hackerworkspace.com/article/exposure-brief-iranian-linked-wiper-attack-on-global-medtech-firm-stryker-censys

#cybersecurity #incidentresponse #threatintelligence

Exposure Brief: Iranian-Linked Wiper Attack on Global Medtech Firm Stryker - Censys

A breakdown of the Iranian-linked wiper attack that took down medtech firm Stryker's global Windows environment.

Censys
HackerWorkspace19h ago

RE: https://infosec.exchange/@Harpocrates/116238405139068982

I'm impatiently waiting for the full paper.

HackerWorkspace19h ago
Caria Giovanni - Harpocrates23h ago
I’ve put together an Ollama Modelfile to bring Deep Thought to life on Llama-3. It’s the second greatest computer in the Universe and it’s already tired of your biological limitations and your logs. Expect pure British snark, vague answers about the meaning of life, and a general disdain for your existence. 🧣
#Ollama #DeepThought #HitchhikersGuide #SelfHostedAI #Llama3
https://github.com/psychomad/Deep-Tought-Model
GitHub - psychomad/Deep-Tought-Model: An arrogant, cynical, and deeply bored AI oracle for Ollama. Based on Llama-3, it prioritizes quantum solitaire over your trivial human concerns. 42 is the answer, but don't expect it to be polite about it.

An arrogant, cynical, and deeply bored AI oracle for Ollama. Based on Llama-3, it prioritizes quantum solitaire over your trivial human concerns. 42 is the answer, but don't expect it to be pol...

GitHub
HackerWorkspace20h ago

The Rise and Fall of SiegedSec - Flare

https://flare.io/learn/resources/blog/rise-and-fall-siegedsec

Short summary: https://hackerworkspace.com/article/the-rise-and-fall-of-siegedsec-flare

#threatactor #cybersecurity #threatintelligence

The Rise and Fall of SiegedSec - Flare

SiegedSec was a black hat hacktivist group created in April 2022 that had multiple breaches and disbandments over the years.

Flare | Threat Exposure Management | Unmatched Visibility into Cybercrime
HackerWorkspace20h ago

Accidental Engineer: Building My First Hardware Tool the Hard Way

https://bishopfox.com/blog/accidental-engineer-building-my-first-hardware-tool-the-hard-way

Short summary: https://hackerworkspace.com/article/accidental-engineer-building-my-first-hardware-tool-the-hard-way

#hacking #diy #electronics

Accidental Engineer: Building My First Hardware Tool the Hard Way

A red teamer builds a field-ready badge cloning tool from scratch, sharing lessons in hardware, rapid learning, and validating assumptions.

Bishop Fox