@segfaultc Sultan ist auch gut💪

BOF to perform stealthy LDAP queries over AD WS

https://github.com/mandiant/cleanldap

#infosec #cybersecurity #redteam #pentest #opensource

🎧
https://youtu.be/p1HKqJ8tZgM

@sihaha you're right it is community now. I'm on 25.04

I may be late to the party, anyway I have to say: #TrueNAS scale is quite nice. It's UI is polished and all the relevant stuff is there and integrated nicely.
I wish every appliance had such a nice web UI.

CustomDpapi: Calling the undocumented DPAPI RPC interface directly, no more calling public CryptUnprotectData! https://github.com/EvilBytecode/CustomDpapi #redteam

#directorytraversalmemes

I don't think @christopherkunz and I ever need to podcast about any supply chain incident ever again. @andrewnez has described them all in one glorious blogpost: https://nesbitt.io/2026/02/03/incident-report-cve-2024-yikes.html 😂

Meta is now using a Rust component to safely process media files shared on WhatsApp

https://engineering.fb.com/2026/01/27/security/rust-at-scale-security-whatsapp/

"Online security is an adversarial space" - Indeed, #WhatsApp, indeed.
Nice to see memory safety being rolled out where it matters at scale though, hopefully others will follow for an even safer experience

#rust #rce
https://engineering.fb.com/2026/01/27/security/rust-at-scale-security-whatsapp/

Incredible indoor freestyle flying by tinexd!
#FPV #tinywhoop
https://youtube.com/shorts/xsvGOYrUhWw

Dear f***ing lord!

Nearly one every three Meta ads showed in the EU and UK over 23 days pointed to online scams

This should be the easiest layup for govt agencies in the history of enforcements

https://www.gendigital.com/blog/insights/research/scam-ad-machine-meta

Erm… o.O

Microsoft CEO warns that we must 'do something useful' with AI or they'll lose 'social permission' to burn electricity on it
https://finance.yahoo.com/news/microsoft-ceo-warns-must-something-013756831.html

@bartavi @GrapheneOS
A Graphene post regarding a similar blog post:

https://grapheneos.social/@GrapheneOS/115991769334025062

The topic seems to go under the radar a bit, I would love to see more technical deep dives on it in the future! I hope that Apple's privacy enhancements in this field will shed more light on this issue

Windows: Microsoft konkretisiert NTLM-Aus, nennt aber immer noch kein Datum

Microsoft will das unsichere NTLM-Protokoll mit der nächsten Windows Server-Version standardmäßig deaktivieren. Dessen Erscheinungstermin bleibt jedoch offen.

https://www.heise.de/news/Windows-Microsoft-konkretisiert-NTLM-Aus-nennt-aber-immer-noch-kein-Datum-11162674.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#ActiveDirectory #IT #Microsoft #Windows #news

Swiss Airlines is placing 1.5t of lead plates in the back of their Airbus A330 because otherwise their new first class seats in the front part of the plane would be too heavy 🤡

https://youtu.be/1UWPGHtGO80

I wasn't aware that it is possible for carriers to silently request accurate GPS location data of any phone logged into their network, bypassing all OS controls and settings. #Apple seems to bring more end user visibility on this mechanism in their upcoming #iOS release for phones with their own C1 modem. I understand the necessity of this feature in emergency situations but apart from that, to me it is a #privacy nightmare

https://fumics.in/posts/2026-02-01-phone-gps-carrier-tracking.html

Interesting German news report about physical penetration testing

https://youtu.be/cxeJBzezVTk

Epic mountain flying by PlatyFPV! #FPV

https://youtu.be/0pvl8mfTkyk