Lmst

I sat through way too many #pentest interviews where the candidates had no clue about the fundamentals of web security, like the Same-Origin Policy.

If you want to make a career of finding flaws in (web)apps, do yourself a favor and read @b0rk's HTTP zine:

https://wizardzines.com/comics/same-origin-policy/

VulNyx Misconfigured Writeup

A Step-by-Step Walkthrough of Enumerating AD Services and Gaining Administrator Access on the Misconfigured Machine
https://thecybercraft.medium.com/vulnyx-misconfigured-writeup-f3f35cb52673

#writeup #ctf #infosec #cybersecurity #pentest #vm

New cheatsheets pushed

https://github.com/r1cksec/cheatsheets

#infosec #cybersecurity #redteam #pentest #threatintel #bugbounty #malware #opensource

@nullcoreproject has some goodies coming for all of us, co-developed by PH4NTXM.

A project focused on security, privacy, and adversarial-resilient systems.

Details soon. A free version will be available soon for everyone to test, audit, and experiment with.

👀 Stay tuned, the news will be exciting!

#PH4NTXM #Linux #Privacy #Freedom #Debian #Pentest #Security #CyberSecurity #Hacking #FOSS #OpenSource #Tech #Technology

Сканер для обнаружения уязвимостей (NTLM relay)

#infosec #software #git #ad #pentest #relay

https://github.com/depthsecurity/RelayKing-Depth/

* Сканирует по SMB, LDAP/S, MSSQL, HTTP/S, RPC, WinRM;
* Находит WebDAV WebClient, CVE-2025-33073 (NTLM reflection), NTLMv1 + PrinterBug, PetitPotam и т.п.;
* Поддерживает аудит всего домена;
* Составляет список таргетов для `ntlmrelayx` и другого ПО;
* Сохраняет отчет в plaintext/JSON/CSV/Markdown.

Статья в блоге: https://www.depthsecurity.com/blog/introducing-relayking-relay-to-royalty/

Et si 2026 sonnait la mort du pentest ? Ça m'embêterait parce que c'est mon métier...

Depuis le début de l'année, je me suis penché sur son avenir. Entre les outils IA qui promettent des pentests automatisés, l'inquiétude pour les juniors qui arrivent sur le marché, et les outils qui vont potentiellement me faciliter la vie, j'ai posé mes réflexions dans un article.

Spoiler : le pentest n'est pas mort. Mais il va changer.

https://y0no.fr/posts/le-pentest-est-il-mort/

#infosec #pentest #llm

🔎 Một kỹ sư backend muốn thực hành phân tích bảo mật ứng dụng (web/mobile) miễn phí! 🎯 Cần 2‑3 dự án có môi trường test, không phải production. Ưu tiên phương pháp black‑box, cung cấp báo cáo rủi ro chi tiết, sau đó xoá mọi dữ liệu. DM nếu quan tâm! #cybersecurity #pentest #securitytesting #bảo_mật #kiểm_thử #ứng_dụng

https://www.reddit.com/r/SaaS/comments/1qt2ijs/im_looking_for_projects_to_perform_security/

El lado del mal - Cyphering Prompts & Answers para evadir Guardarraíles https://elladodelmal.com/2026/01/cyphering-prompts-para-evadir.html #PromptInjection #Jailbreak #Guardrails #IA #AI #Pentest #Hacking #Criptografía #Ofuscación #Cifrado

Как я создал свой сканер и пришёл к выплатам на багбаунти

Привет, Хабр! Сегодня хочу поделиться историей о том, как желание автоматизировать рутинную работу привело меня к созданию собственного инструмента FullMute и, как следствие, к первым серьезным выплатам на платформах bug bounty. Как многие начинающие исследователи, я начал с хаотичного ручного поиска уязвимостей: проверял заголовки, искал известные пути к админкам, пытался угадать версии CMS. Это было неэффективно, медленно и сильно зависело от везения. Мне нужен был «компас», который бы проводил первоначальную разведку за меня и давал четкие цели для атаки. Так родилась идея FullMute.

https://habr.com/ru/articles/991392/

#pentest #scanner #python #bugbounty

📢 Affaire Coalfire: 600 000 $ pour deux pentesters arrêtés à tort en Iowa
📝 Selon Ars Technica (Dan Goodin), Dallas County (Iowa) a accepté, cinq jours avant l’ouverture d’un procès, de verse...
📖 cyberveille : https://cyberveille.ch/posts/2026-01-31-affaire-coalfire-600-000-pour-deux-pentesters-arretes-a-tort-en-iowa/
🌐 source : https://arstechnica.com/security/2026/01/county-pays-600000-to-pentesters-it-arrested-for-assessing-courthouse-security/
#Iowa #pentest #Cyberveille

RE: https://mastodon.bsd.cafe/@stefano/115984116493117731

Luckily, many of my clients are intelligent and well-prepared people. Needless to say, that email, before making me laugh, had already made the client laugh. He immediately thought he was dealing with people who were great at marketing but had little technical skill.
I presented my theory on software engineering, but he immediately tore it apart, declaring himself extremely skeptical. In his opinion, it is more likely to be a technique to lower our defenses and then try to sell us "security products" after a "pentest full of flaws". Or simply sheer incompetence.

Anyway, their connection hasn't any open ports. So they can pentest anything they want to, as long as they want to.

#IT #SysAdmin #HorrorStories #PenTest

GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsoft SharePoint List and exfiltrate files using Google Drive or Microsoft SharePoint Document.

https://github.com/looCiprian/GC2-sheet

#infosec #cybersecurity #redteam #pentest #threatintel #dfir

The Coalfire Labs physical #pentest ordeal is finally over.

Over 6 years after being falsely arrested, maliciously prosecuted, and publicly defamed by a Sheriff who wanted to get into a political power struggle with the state judicial branch, there is a civil settlement.

https://arstechnica.com/security/2026/01/county-pays-600000-to-pentesters-it-arrested-for-assessing-courthouse-security/