"To navigate the cyber battlefield, know the terrain of networks as well as you know your own mind." - The Art of Cyber War

📚 SecMisc #

teXt0wnz Utility – Introducing teXt0wnz, a utility for various text-based operations and potential security analyses. Go

Heatmap Diff Viewer for Code – Introducing A heatmap diff viewer designed to enhance code review processes by visualizing changes effectively. Go

📰 SecLinks #

China Vuln Research, OPSEC, Google Engineer Thinking – Explore China's changing vulnerability research, common OPSEC pitfalls for intelligence agencies, and gain insights into the mindset of a Google Security Engineer. Read More https://docs.cloud.google.com/vertex-ai/generative-ai/docs/security-bulletins#gcp-2025-059?ref=https://rosecurify.com/seclog-150)

SessionReaper Exploit for Magento 2 – A detailed write-up on how an exploit was built for SessionReaper, CVE-2025-54236, affecting Magento 2 and Adobe Commerce environments. Read More

CoPhish Attack on Copilot Studio – Learn about the CoPhish Attack exploiting Microsoft Copilot Studio's OAuth for theft. Read More

TOLLBOOTH IIS Mine Exploitation – Discover the TOLLBOOTH research from Elastic Security Labs detailing exploitation of IIS. Read More

WSO2 Arbitrary File Read Exploit – Uncover how a 404 error in WSO2 can be escalated to achieve an arbitrary file read vulnerability. Read More

Hacking Team Back: Dante Spyware – The Hacking Team is back! Investigate the resurgence of this APT group, now employing Dante spyware in "Mem3nt0 mori" attacks. Read More

Benchmarking LLMs for Malware Analysis – Meta's research introduces CyberSOCEval, a new benchmark for evaluating LLMs capabilities for malware analysis and threat intelligence reasoning. Read More

It's Not Always DNS – A reflection on troubleshooting and the common misconception that network issues are always DNS. Read More

Hacking India's Tata Motors – A case study detailing the hacking of India's largest automaker, Tata Motors, exposing significant vulnerabilities. Read More

Next.js Mutated Middleware Vulnerabilities – Diving into vulnerabilities found in Next.js applications due to mutated middleware behavior. Read More

Don't Leave Me Outdated – A critical reminder and guide to keeping systems and software updated, emphasizing, "Don't Leave Me Outdated!" Read More

TRUfusion Enterprise Pre-Auth Vulnerabilities – Analysis of four critical pre-auth vulnerabilities found in TRUfusion Enterprise, highlighting how audits can sometimes fail. Read More

TikTok RCE Android Pentesting – A practical case study on Android Pentesting, demonstrating a Remote Code Execution (RCE) vulnerability in TikTok. Read More

Unlocking British Airways Free WiFi – A technical breakdown on the methods used for unlocking free WiFi services aboard British Airways flights. Read More

Claude API Data Exfiltration – Detail on "Claude Pirate," an abuse of Anthropic's File API for data exfiltration by exploiting network access. Read More

Attacking Self-Hosted GitLab CI/CD – Strategies for attacking and defending self-hosted GitLab CI/CD environments, offering insights for both red and blue teams. Read More

DNS Rebinding in Chrome/Safari – Advanced tricks for reliable split-second DNS rebinding exploits in Chrome and Safari browsers. Read More

Exploiting Syntax Confusion Vulnerabilities – Explore the "minefield between syntaxes" and how to exploit ambiguous parsing for syntax confusion vulnerabilities. Read More

AI Browsers Cybersecurity Time Bomb – A warning that AI browsers represent a significant cybersecurity time bomb due to inherent privacy and security risks. Read More

Botnet Shifts, Zeus Coder Arrested – The Aisuru Botnet shifts from DDoS to residential proxies, while the alleged Jabber Zeus Coder 'MrICQ' is now in U.S. Custody. Read More

Tricks, Treats, and Terabits – A blog post discussing various security tricks, treats, and terabits related to Halloween and cybersecurity. Read More

DepiConf Dependency Confusion Checker – DepiConf provides an online tool to easily check for potential dependency confusion vulnerabilities. Read More

OpenAI Aardvark Security Researcher – OpenAI introduces Aardvark, an agentic security researcher designed to identify and mitigate vulnerabilities autonomously. Read More

Understanding AI-Native SAST – A deep dive into the concept of "AI-Native SAST" and its implications for static application security testing. Read More

Electronic Passport Cryptography Explained – An explanation of the complex cryptography behind electronic passports, detailing their security mechanisms. Read More

🎥 SecVideo #

Russia's Unit 29155 Spy Hotel – An in-depth look into Russia's Spy Hotel and the activities of Unit 29155 in this episode. Watch Here

💻 SecGit #

Kubernetes Attack Paths & Vulnerability Tools – Explore Kubernetes attack paths with KubeHound, tools for the Go vulnerability database, a TARmageddon CVE exploit, and a Terraform to Mermaid diagram utility. Explore on GitHub

← Back to Seclog