🔍 vulnerability research

The most serious issue we fixed is an upstream memory corruption bug in the Broadcom Wi-Fi driver memory corruption bug for the Pixel 10, 10 Pro, 10 Pro XL a...

🐛Fuzzing lesswrong.com·

Vulnerabilities and exploits: where are we headed?

Covers 7 stories including Critical SharePoint Zero-Day (CVE-2025-53770) Under Active Exploitation

🐝eBPF meetcyber.net

Bandit CTF: Cracking Levels 1–4 and What Each One Taught Me About Linux

🐛Fuzzing Eugene Yan·

Patterns for Building Cybersecurity Evals

Covers 3 stories including ExploitGym: Can AI Agents Turn Security Vulnerabilities into Real Attacks?

🐝eBPF medium.com

Subdomain Takeover: A Complete Guide from Beginner to Advanced

🔐Cryptography Petri IT Knowledgebase·

New Windows Zero-Day Exploits Allow Privilege Escalation and BitLocker Bypass Attempts

🐛Fuzzing Gizchina·

Apple's Newest Unpatchable Exploit Hits iPhone XR to iPhone 11 — Permanently

Covers Usbliter8 an A12/A13 SecureROM Exploit

🐝eBPF InfoSec Write-ups

Host & Network Penetration Testing: The Metasploit Framework CTF 1 — eJPT (INE)

💻Operating Systems Security Affairs·

usbliter8 Brings Unpatchable BootROM Exploit to Apple A12 and A13 Devices

Covers 2 stories including Usbliter8 an A12/A13 SecureROM Exploit

🔐Cryptography easternherald.com·

Secret Network Hit by $4.67M Infinite-Mint Exploit as Axelar Bridge Flaw Goes Undetected for Seven Days

🔐Cryptography medium.com

Zero Trust Security: Why “Verify Identity” Isn’t Enough Anymore (And What’s Next for AI Agents)

🐛Fuzzing runzero.com·

Legacy scanners are already too slow for today's exploits

🔐Cryptography medium.com

12 Million Servers Are Leaking Their Own Passwords. Yours Might Be One of Them.

🔐Cryptography stanislavfort.substack.com·

"Mythos" at Home, and It's Called Aisle

Covers 10 stories including Statement on the US government directive to suspend access to Fable 5 and Mythos 5

Discussed on Substack

🐛Fuzzing OSINT Team Blog

Advanced Threat Intel: From 6 Hours to 0 Minutes per CVE

🔐Cryptography GitHub·

Horus – Zero-dependency C++ CLI for malware IOC analysis and enrichment

Discussed on Hacker News

Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development

PINK+ CTF 2026

eCPPT: Lateral Movement & Pivoting CTF — The “Stop Overthinking It” Run

Accidental RCE: How I Found a Working Exploit in a Live CTF (and It Wasn’t Even the Challenge)

The most serious issue we fixed is an upstream memory corruption bug in the Broadcom Wi-Fi driver memory corruption bug for the Pixel 10, 10 Pro, 10 Pro XL a...

Vulnerabilities and exploits: where are we headed?

Bandit CTF: Cracking Levels 1–4 and What Each One Taught Me About Linux

Patterns for Building Cybersecurity Evals

Subdomain Takeover: A Complete Guide from Beginner to Advanced

New Windows Zero-Day Exploits Allow Privilege Escalation and BitLocker Bypass Attempts

Apple's Newest Unpatchable Exploit Hits iPhone XR to iPhone 11 — Permanently

Host & Network Penetration Testing: The Metasploit Framework CTF 1 — eJPT (INE)

usbliter8 Brings Unpatchable BootROM Exploit to Apple A12 and A13 Devices

Secret Network Hit by $4.67M Infinite-Mint Exploit as Axelar Bridge Flaw Goes Undetected for Seven Days

Zero Trust Security: Why “Verify Identity” Isn’t Enough Anymore (And What’s Next for AI Agents)

Legacy scanners are already too slow for today's exploits

12 Million Servers Are Leaking Their Own Passwords. Yours Might Be One of Them.

"Mythos" at Home, and It's Called Aisle

Advanced Threat Intel: From 6 Hours to 0 Minutes per CVE

Horus – Zero-dependency C++ CLI for malware IOC analysis and enrichment