konik_polanowy

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.06.21.md

Human Observations on Mythos Runs - https://exploitbench.ai/blog/human-observations/

How to Fetch a Moving Target with Poudriere - https://oshogbo.com/blog/91/

Rusty Rootkit - Windows Kernel Rookit in Rust (Codename: Eagle) - https://memn0ps.github.io/rusty-windows-kernel-rootkit/

The Mythos We Have At Home: A Patch-Diffing Pipeline for N-Day Generation - https://www.originhq.com/research/patch-diffing-pipeline

A Different Approach to Red Team Tool Design - https://saza.re/posts/rover/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.06.19.md

RCEliteLLM – LiteLLM 1.83.14: Chaining an Environment Baribale Leak with Jinja2 SSTI for Remote Code Execution - https://mccaulay.co.uk/rcelitellm-litellm-1-83-14-chaining-an-environment-variable-leak-with-jinja2-ssti-for-remote-code-execution/

Jenny was a Friend of Mine - MCPs and Friends - https://blog.zsec.uk/bullyingllms/

We've Been Here Before: Decompilers, Fuzzers, and Now AI - https://www.clearseclabs.com/blog/weve-been-here-before-ai-vulnerability-research/

SilentMoonwalk: Implementing a dynamic Call Stack Spoofer - https://klezvirus.github.io/posts/Stackmoonwalk/

"Practical Android Software Protection in the Wild" - An Appetizer - https://blog.quarkslab.com/practical-android-software-protection-in-the-wild-an-appetizer.html

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.06.17.md

RedSun: How Windows Defender's Remediation Became a SYSTEM File Write - https://nefariousplan.com/posts/redsun-windows-defender-system-write

Needle in the haystack: LLMs for vulnerability research - https://devansh.bearblog.dev/needle-in-the-haystack/

SmokedMeat: A Red Team Tool to Hack Your Pipelines First - https://labs.boostsecurity.io/articles/introducing-smokedmeat/

Sleeping Beauty II: CFG, CET, and Stack Spoofing - https://maorsabag.github.io/posts/adaptix-stealthpalace/sleeping-beauty-ii/

The 90 day disclosure policy is dead - https://blog.himanshuanand.com/2026/05/the-90-day-disclosure-policy-is-dead/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.06.15.md

Shift Happens – Uncovering Two Built-in Command Injections in Windows Context Menus - https://specterops.io/blog/2026/05/07/shift-happens-uncovering-two-built-in-command-injections-in-windows-context-menus/

Privilege Escalation via a Page Use-After-Free in Qualcomm's AI Accelerator Linux Kernel Driver - https://lukasmaar.github.io/posts/qaic-page-uaf/index.html

Discovering Vulnerabilities in Enterprise Audiovisual Hardware - https://spaceraccoon.dev/discovering-vulnerabilities-enterprise-audiovisual-hardware/

CVE-2026-40369: Twelve Bytes to Escape the Browser Sandbox - https://voidsec.com/cve-2026-40369-browser-sandbox-escape/

Overcoming Space Restrictions with Egghunters in Windows Exploit Development - https://remo1x.github.io/posts/Egghunter-Exploit-Development/#1-introduction-the-space-problem

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.06.13.md

Async PICOs and Custom Beacon Wakeups in Cobalt Strike - https://www.nccgroup.com/research/async-picos-and-custom-beacon-wakeups-in-cobalt-strike/

Shellcode Loaders: Advanced Execution & Evasion Tradecraft - https://0xdbgman.github.io/posts/shellcode-loaders-the-art-of-execution/

Human Observations on Mythos Runs - https://exploitbench.ai/blog/human-observations/

Introducing deepsec: The security harness for finding vulnerabilities in your codebase - https://vercel.com/blog/introducing-deepsec-find-and-fix-vulnerabilities-in-your-code-base

An unexpected journey into Microsoft Defender's signature World - https://retooling.io/blog/an-unexpected-journey-into-microsoft-defenders-signature-world

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.06.11.md

Enter the WasmForge: Compiling Sliver into WebAssembly - https://www.praetorian.com/blog/wasmforge-sliver-webassembly/

Why Mythos doesn't matter (for us) - https://www.hacktron.ai/blog/why-mythos-doesnt-matter-for-us

Now You See mi: Now You're Pwned - https://labs.taszk.io/articles/post/nowyouseemi/

BYOVD and Looting LSASS in the Modern EDR Era - https://g3tsyst3m.com/byovd/BYOVD-and-Looting-LSASS-in-the-Modern-EDR-Era/

Hades Cluster PyPI Worm Abuses Python Startup Hooks - https://haltingproblems.com/analysis/hades-cluster-pypi-startup-hook-compromise/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.06.09.md

Using Tracealyzer for Embedded Systems Analysis - https://mcuoneclipse.com/2026/06/06/usingtracealyzerforembeddedsystemsanalysis/

The Practitioner’s Guide to AI-Enhanced Hacking - https://www.caido.io/blog/2026-03-24-ai-enhanced-hacking/

The (Anti-)EDR Compendium - https://blog.deeb.ch/posts/how-edr-works/

Powering up a module from the IBM 604: an electronic calculator from 1948 - https://www.righto.com/2026/06/ibm-604-thyraton-tube-module.html

Shellcode Loaders: Advanced Execution & Evasion Tradecraft - https://0xdbgman.github.io/posts/shellcode-loaders-the-art-of-execution/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.06.08.md

Implementing Impacket's Newest Protocol: MS-RAA https://www.abdulmhsblog.com/posts/developingwith-impacket/

Arbitrary Kernel Address Increment via NtQuerySystemInformation https://pwn2nimron.com/blog

Obfuscation vs the Optimizer: An LLVM Middle-End Arms Race https://blog.quarkslab.com/obfuscation-vs-the-optimizer-an-llvm-middle-end-arms-race.html

ThinkPads From the Inside: A Reproducible Path From Archived BIOS to Named SoC Pads https://tetdrad0n.codeberg.page/thinkpad-fw-analysis/

SSD Advisory – How MiraclePtr Crushed Two Sandbox Escapes https://ssd-disclosure.com/ssd-advisory-miracleptr-sandbox/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.06.05.md

The Newest Instagram "Exploit" is the Goofiest I've Seen - https://www.0xsid.com/blog/meta-account-takeover-fiasco

The Phishy GitHub Issue Case - https://blog.atsika.ninja/posts/the-phishy-github-issue-case/

A four-byte type, an eight-byte stride, one root shell - https://fatgid.io/

The 9.3 Critical Vulnerability Microsoft Dismissed: A Dependency Confusion Story - https://www.wahidfayad.com/blog.html?post=microsoft-dependency-confusion

AI-FI: Reproducing adb to root on Google's TV Streamer using Claude in less than 15 minutes - https://raelize.com/blog/ai-fi-reproducing-adb-to-root-on-googles-tv-streamer-using-claude/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.06.03.md

How to Deploy a Wii Pwn Challenge - https://towerofhanoi.it/blog/2025-07-20-forsaken-tower-deployment/

Uncovering Hidden Forensic Evidence in Windows: The Mystery of AutoLogger-Diagtrack-Listener.etl - https://www.fortinet.com/blog/threat-research/uncovering-hidden-forensic-evidence-in-windows-mystery-of-autologger

Kernel Karnage – Part 1 - https://blog.nviso.eu/2021/10/21/kernel-karnage-part-1/

Revisiting Two-Shot Kernel Shellcode Execution From Control Flow Hijacking - https://blog.zolutal.io/two-shot-kernel-shellcode/

Hunting Bugs in Linux Kernel With KASAN: How to Use it & What's the Benefit? - https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.06.01.md

Here We Go Again: A Five-Bug Chain to Arbitrary APK Install on Samsung S25 - https://bugscale.ch/blog/here-we-go-again-a-five-bug-chain-to-arbitrary-apk-install-on-samsung-s25/

How harnesses and post-training close the open-weight bug-finding gap - https://vincenzoiozzo.com/blog/oss-models-vuln-research

CFITSIO Fuzzing: Memory Corruptions and a Codex-Assisted Pipeline - https://blog.doyensec.com/2026/04/20/cfitsio-fuzzing.html

DirtyCBC: When Linux Kernel Decrypt-Before-MAC Turns Authenticated Encryption Into a Page-Cache Write - https://delphoslabs.com/blog/36142374-e1fe-80a9-9456-d3c64df81bd5/%20linux-rxgk-decrypt-mac

Creating Shadow Copies with VSS API - https://ricardojoserf.github.io/w11shadowcopies/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.05.30.md

QEMU abused to evade detection and enable ransomware delivery - https://www.sophos.com/en-us/blog/qemu-abused-to-evade-detection-and-enable-ransomware-delivery

Public disclosure, a response for CVE-2026-33825 patch - https://deadeclipse666.blogspot.com/2026/04/public-disclosure-response-for-cve-2026.html

Operational Workbooks Episode 1: Running a Playbook from a Workbook - https://attackthesoc.com/posts/operational-workbooks-ep1/

CVE-2026-20182: Critical authentication bypass in Cisco Catalyst SD-WAN Controller (FIXED) - https://www.rapid7.com/blog/post/ve-cve-2026-20182-critical-authentication-bypass-cisco-catalyst-sd-wan-controller-fixed/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.05.28.md

Stop Being Weird — Life After Call Stack Spoofing Under CET - https://bigbingus.com/posts/stop-being-weird/

Drupal warns of active exploitation attempts targeting critical SQL injection flaw - https://cyberinsider.com/drupal-warns-of-active-exploitation-attempts-targeting-critical-sql-injection-flaw/

The Hidden Risk of Side-Channel Attacks on Post Quantum Cryptography - https://www.ledger.com/blog-risk-side-channel-attacks-post-quantum-cryptography

RedSun: How Windows Defender's Remediation Became a SYSTEM File Write - https://nefariousplan.com/posts/redsun-windows-defender-system-write

CHECK Removed, Context Confused, Checkmate Achieved - https://starlabs.sg/blog/2026/04-check-removed-context-confused-checkmate-achieved/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.05.26.md

Revisiting Two-Shot Kernel Shellcode Execution From Control Flow Hijacking https://blog.zolutal.io/two-shot-kernel-shellcode/

Mona, tellme - AI-assisted analysis https://www.corelan.be/index.php/2026/05/14/mona-tellme/

Some notes on the security properties of the pipe_buffer kernel object https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html

The Search for AGI through Security: Introducing the World's First AI-Based Novel Attack Vector Researcher https://pwn.ai/blog/the-search-for-agi-through-security-and-novelity

Revisiting Two-Shot Kernel Shellcode Execution From Control Flow Hijacking https://blog.zolutal.io/two-shot-kernel-shellcode

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.05.24.md

An unexpected journey into Microsoft Defender's signature World - https://retooling.io/blog/an-unexpected-journey-into-microsoft-defenders-signature-world

Static Devirtualization of Themida - https://back.engineering/blog/09/05/2026/

The state of Bug Bounty in 2026 - https://aituglo.com/state-of-bug-bounty-in-2026/

Creating Custom x86 Windows Shellcode Using Dynamic API Resolution - https://screetsec.com/blog/custom-x86-windows-shellcode-dynamic-api-resolution

Understanding Integer Overflow in Windows Kernel Exploitation - https://whiteknightlabs.com/2025/05/27/understanding-integer-overflow-in-windows-kernel-exploitation/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.05.22.md

The QNAP Pattern - https://runiclabs.io/research/qnap-architecture/

Damned OOB - https://ze3tar.github.io/post-zcrx.html

The 429 Microsoft Graph Mystery - https://www.r-tec.net/r-tec-blog-the-429-microsoft-graph-mystery.html

Harness design for long-running application development - https://www.anthropic.com/engineering/harness-design-long-running-apps

GhostTree: Unveiling Path Manipulation Techniques to Bypass Windows Security - https://www.varonis.com/blog/ghosttree-ntfs-trick

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.05.20.md

Windows Shell Links in C++: How to Read and Write .lnk Files - https://trainsec.net/library/windows-kernel/windows-shell-links-in-c-how-to-read-and-write-lnk-files/

Where Have All the Complex Windows Malware and Their Analyses Gone? - https://r136a1.dev/2026/05/07/where-have-all-the-complex-malware-and-their-analyses-gone/

CVE-2026-20079 - Cisco FMC Authentication Bypass RCE Analysis - https://www.vulncheck.com/blog/cisco-fmc-auth-bypass-cve-2026-20079

Giving an Agent a Rooted Android Phone - https://workers.io/blog/autonomous-mobile-pentesting/

Ansible Security and Compliance - https://slicker.me/netsec/ansible-security-compliance.html

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.05.18.md

The ServiceNow AI Vulnerability: What Went Wrong and How to Secure Your AI Agents - https://opena2a.org/blogs/servicenow-ai-vulnerability

WinBoat: Drive by Client RCE + Sandbox escape - https://hack.do/posts/winboat-guest-service-host-rce/

After the Takedown: Excavating Abuse Infrastructure with DNS Sinkholes - https://disclosing.observer/2026/01/14/excavating-abuse-infrastructure-dns-sinkholes.html

DLL Sideloading & Proxying for Advance Red Team Engagements - https://www.zerotracelab.com/blog/dll-sideloading

Analysis of Python's .pth files as a persistence mechanism - https://dfir.ch/posts/publish_python_pth_extension/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.05.16.md

Introduction to Windows shellcode development – Part 1 - https://securitycafe.ro/2015/10/30/introduction-to-windows-shellcode-development-part1/

Reinforcement Learning for Hacking? - https://s1r1us.ninja/posts/reinforcement-learning-for-hacking/

How We Cut LLM Costs by 59% With Prompt Caching - https://projectdiscovery.io/blog/how-we-cut-llm-cost-with-prompt-caching

Instagram account takeover via Meta Pixel script abuse - https://ysamm.com/uncategorized/2026/01/16/leaking-fbevents-ato.html

Automating MS-RPC vulnerability research - https://www.incendium.rocks/posts/Automating-MS-RPC-Vulnerability-Research/

#informatyka

Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.05.14.md

CEliteLLM – LiteLLM 1.83.14: Chaining an Environment Variable Leak with Jinja2 SSTI for Remote Code Execution - https://mccaulay.co.uk/rcelitellm-litellm-1-83-14-chaining-an-environment-variable-leak-with-jinja2-ssti-for-remote-code-execution/

Bad Vibes: Comparing the Secure Coding Capabilities of Popular Coding Agents - https://blog.tenzai.com/bad-vibes-comparing-the-secure-coding-capabilities-of-popular-coding-agents/

Drone Hacking Part 1: Dumping Firmware and Bruteforcing ECC - https://neodyme.io/en/blog/drone_hacking_part_1/

Teaching ZFS about time - https://oshogbo.com/blog/86/

Reprompt: The Single-Click Microsoft Copilot Attack that Silently Steals Your Personal Data - https://www.varonis.com/blog/reprompt

#informatyka