Mastodawn

https://seclists.org/oss-sec/2026/q2/107

oss-sec: Re: GNU tar: listing/extraction desynchronization allows hidden file injection

Looking for an open-source cyber range solution?
We are building one ; designed for hands-on security training, community-driven, and freely available. Still a work progress but take a look

https://github.com/range42/range42

GitHub - range42/range42: RANGE42 – Main repository and entry point for setup and deployment on your Proxmox nodes

RANGE42 – Main repository and entry point for setup and deployment on your Proxmox nodes - range42/range42

GitHub

Hyde Apr 4

Psst... ninjas. New Kunai rules. Go dig into it.

If something malicious runs on your Linux system, would you notice? Most of the time, it just looks like normal activity.

That's usually where detection falls apart. I've been updating my Kunai rules to make that easier to spot. The repository now has 200+ rules. Still a lot of iteration, mostly driven by real usage. Less noise. Better context.

200+ behavioral detection rules for Kunai (Linux eBPF). Covers MITRE ATT&CK with 92 techniques across execve, connect, DNS, file ops, ptrace, BPF, and more. Ready-to-use profiles for servers and desktops.

https://github.com/digisquad-repo/kunai-rules

GitHub - digisquad-repo/kunai-rules: 200+ behavioral detection rules for Kunai (Linux eBPF). Covers MITRE ATT&CK with 92 techniques across execve, connect, DNS, file ops, ptrace, BPF, and more. Ready-to-use profiles for servers and desktops.

200+ behavioral detection rules for Kunai (Linux eBPF). Covers MITRE ATT&CK with 92 techniques across execve, connect, DNS, file ops, ptrace, BPF, and more. Ready-to-use profiles for servers an...

GitHub

Hyde Feb 5

Alexandre Dulaunoy Feb 5

If you’re looking for a great open-source project to use and sponsor, check out

@pandoc.

I’ve been using Pandoc for years, it’s a huge time-saver for publishing documents from Markdown and an essential tool in my workflow.

https://github.com/jgm/pandoc

#pandoc #opensource #floss #publishing

GitHub - jgm/pandoc: Universal markup converter

Universal markup converter. Contribute to jgm/pandoc development by creating an account on GitHub.

GitHub

Hyde Jan 21

Alexandre Dulaunoy Jan 20

GNU InetUtils Security Advisory: remote authentication by-pass in telnetd

🔗 https://vulnerability.circl.lu/vuln/gcve-1-2026-0007

#telnet #telnetd #cybersecurity #vulnerability

@gcve GCVE-1-2026-0007

Vulnerability-Lookup

Vulnerability-Lookup - Fast vulnerability lookup correlation from different sources.

Hyde Nov 8, 2025

Alexandre Dulaunoy Nov 6, 2025

The MISP Galaxy now includes an updated knowledge base of UAVs and drones covering both civilian and military models.

It comes with detailed attributes such as manufacturer, cost, and technical specs.
You can now easily classify, model, and share UAV-related observations directly in MISP.

🔗 MISP UAVs overview - https://www.misp-galaxy.org/uavs/

Thanks to @Thanat0s for the huge contribution.

#misp #threatintel #threatintelligence #uav #military #intelligence

@misp