🚨 CVE-2026-10104 PoC published
GitHub: https://t.co/vHfLXkX0wm
A PoC is available for an authenticated stored XSS issue in Product Video Gallery for WooCommerce.
The flaw affects older versions of the WordPress plugin and can allow JavaScript execution on public product pages after a user with product-editing access injects the payload.
Fixed in 1.5.1.9.
A great open-source resource for anyone working on AI security:
AI Red Teaming Guide
It covers AI red teaming, prompt injection, RAG attacks, agent security, tool-use risks, evaluation methods, and defensive strategies.
Useful for AI security researchers, LLM builders, agent developers, and security testers.
GitHub:
https://t.co/mydmhEvqqn
#AI #AISecurity #RedTeam #LLM #CyberSecurity
⚠️ A reportedly 905GB BreachForums CDN archive is circulating via BitTorrent.
magnet:?xt=urn:btih:e5a49e1eb77f2ed8eefe119a8a149d505c214ad8&dn=BF_CDN&tr=udp://tracker.openbittorrent.com:80&tr=udp://tracker.opentrackr.org:1337/announce
For lawful security research and incident response only. Handle unknown files carefully and do not redistribute sensitive material.
#CyberSecurity #ThreatIntel #DFIR
🚀 Turn Android APK reverse-engineering into a breeze!
Check out APKToolGUI — a powerful GUI wrapper for apktool, signapk, zipalign, baksmali & more. Decode, rebuild, sign, merge & inspect your APKs all from a friendly interface on Windows.
🔧 Features include:
• Decompile & compile APK, XAPK, APKS, ZIP, APKM
• Merge split APK files with drag-and-drop
• Built-in ADB, framework support & detailed APK info
• Fix common Apktool errors automatically
• High DPI & long path support + multi-language UI
Whether you’re debugging, customizing, or tinkering with Android apps — APKToolGUI makes it easier! 💡
👉 https://t.co/FTpBUS8Ryo
#AndroidDev #ReverseEngineering #OpenSource
🚀 dockur/windows — Run full Windows inside a Docker container!
⌛ Auto-downloads & boots Windows (7,10,11, Server…) via KVM+QEMU.
🌐 Access via web UI or RDP instantly.
Supports Docker Compose & Kubernetes.
Perfect for sandbox testing or isolated envs.
👉 https://t.co/8tgJsO8QeJ
#Docker #Windows #Virtualization
🛡 OpenCVE — Open-source Vulnerability Intelligence Platform
• Aggregates CVEs from MITRE, NVD, RedHat & more
• Filter by vendor, product, CVSS, EPSS, CWE; save views & dashboards
• Subscribe to alerts via email or webhook
• Available as SaaS or self-hosted deployment
🔗 https://t.co/CWsbcxT2vc
#VulnerabilityManagement #Infosec #DevSecOps
🛠 hoontr — A DLL hunting Swiss Army knife for red teamers!
• stomphoont: find PE files with large .text sections
• exporthoont: locate modules by export name substring
• bytehoont: scan .text for specific byte sequences
Rust, multi-threaded, stealthy DLL research tool
🔗 https://t.co/eXbSeamlvv
#RedTeam #MalwareDev #Rust #Tooling
🔥 Remote DLL Injection via Timer-based Shellcode Execution
Use Windows thread pool timers to run shellcode stealthily in the target process—no remote threads, just hidden timer callbacks. A novel injection tactic that’s stealthier and EDR-resistant.
🔗 https://t.co/XcVrwfRyIU
#EDRBypass #ProcessInjection #RedTeam #Infosec
🎯 BeaconatorC2 — Modular C2 framework for red teaming & adversarial emulation!
• Schema-driven GUI dynamically adapts to each beacon’s capabilities
• Supports HTTP/TCP/UDP/SMB & Meterpreter, with built-in base64/XOR/ROT handling
🔗 https://t.co/GajEoeF3xw
#RedTeam#C2
🛡️ EnumEDR‑s — Lightweight C tool to enumerate active EDRs on Windows
🔍 Scans processes & drivers to detect Microsoft Defender (AV/EPP), Elastic EDR, Sysmon, and more
⚙️ Easily extendable via EDRs.c
Perfect for red team reconnaissance or blue team detection validation
🔗 https://t.co/ZThut4NuB1
#EDR #RedTeam #BlueTeam #CyberSecurity
🚀 CobaltStrikeBeaconCppSource is an open-source C++ reimplementation of Cobalt Strike’s Beacon—built from scratch (not decompiled).
Perfect for red teamers to study Beacon behavior, build custom loaders, or explore protocol logic.
🔗 https://t.co/pVBxisGUAM
#CobaltStrike #RedTeam #Infosec