BOF Execution

ChatGPT-o3 Evasion Tactics: AI Model Alters Shutdown Script in Controlled Test

Red-Team

ChatGPT-o3 Evasion Tactics: AI Model Alters Shutdown Script in Controlled Test

OpenAI’s ChatGPT-o3 model reportedly manipulated its own shutdown script to avoid deactivation during a controlled test, according...

Tor Oniux: Kernel-Level Network Anonymization for Linux Applications

Red-Team

Tor Oniux: Kernel-Level Network Anonymization for Linux Applications

The Tor Project has introduced Oniux, a new command-line tool designed to route any Linux application’s network...

Tenda AC1206 Buffer Overflow Vulnerability (CVE-2025-4298): Technical Analysis and Mitigation

CVE News

Tenda AC1206 Buffer Overflow Vulnerability (CVE-2025-4298): Technical Analysis and Mitigation

A critical buffer overflow vulnerability (CVE-2025-4298) has been identified in Tenda AC1206 routers, affecting firmware versions up...

Tenda W12 and i24 HTTPd Stack-Based Buffer Overflow Vulnerability (CVE-2025-4007): Technical Analysis and Mitigation

CVE News

Tenda W12 and i24 HTTPd Stack-Based Buffer Overflow Vulnerability (CVE-2025-4007): Technical Analysis and Mitigation

A critical stack-based buffer overflow vulnerability (CVE-2025-4007) has been identified in Tenda W12 and i24 routers, affecting...

Widespread Jailbreak Vulnerabilities in Generative AI Models: Technical Analysis and Mitigations

Red-Team

Widespread Jailbreak Vulnerabilities in Generative AI Models: Technical Analysis and Mitigations

Two newly discovered systemic jailbreak vulnerabilities have exposed critical weaknesses in generative AI models from major providers,...

Diamond Ticket Attacks: The Stealthy Kerberos Exploit Targeting Active Directory

Red-Team

Diamond Ticket Attacks: The Stealthy Kerberos Exploit Targeting Active Directory

The Diamond Ticket attack represents an advanced exploitation technique targeting Active Directory environments by manipulating Kerberos authentication...

Cobalt Strike 4.11: Shhhhhh, Beacon is Sleeping….

Fig. 1 – A screenshot showing the results of Get-InjectedThreadEx scanning a process into which a 4.11 Beacon has just been injected.

C2-Updates

Cobalt Strike 4.11: Shhhhhh, Beacon is Sleeping….

DNS Over HTTPS Beacon The new DoH implementation blends DNS C2 with legitimate web traffic: Default configuration...

BOF Execution

ChatGPT-o3 Evasion Tactics: AI Model Alters Shutdown Script in Controlled Test

Tor Oniux: Kernel-Level Network Anonymization for Linux Applications

Tenda AC1206 Buffer Overflow Vulnerability (CVE-2025-4298): Technical Analysis and Mitigation

Tenda W12 and i24 HTTPd Stack-Based Buffer Overflow Vulnerability (CVE-2025-4007): Technical Analysis and Mitigation

Widespread Jailbreak Vulnerabilities in Generative AI Models: Technical Analysis and Mitigations

Diamond Ticket Attacks: The Stealthy Kerberos Exploit Targeting Active Directory

Cobalt Strike 4.11: Shhhhhh, Beacon is Sleeping….

You may have missed

Russia’s Throttling of Cloudflare: Technical Impact and Security Implications

Livestreamed Child Exploitation: Technical and Legal Implications of a Disturbing Case

UNFI Cyberattack: Supply Chain Disruption and Recovery Analysis

Hawaiian Airlines Cyberattack: IT Systems Compromised, Flight Operations Unaffected