pr3nk

You can now run full macOS inside a Docker container. Full Sequoia with KVM acceleration and a web viewer. - run seamlessly - Auto-install - browser access - No Mac required legally use at your own risk Open-source For anyone who’s ever needed macOS capabilities without the hardware , testing iOS or builds.

A 27B Uncensored model that built for specifically for offensive security tooling (need 12 GB) - Fine-tuned on real bug bounty reports & CVEs - Generates complete, ready-to-run Nuclei templates, Full CVE PoC script, Webshell upload bypass, and exploits, code reviews - Zero refusals. Full artifacts every time. trained with 2,541 of real bug bounty & offensive security reports. Q6_K quant (21GB) for maximum quality on server-grade GPUs.

gluegate - proxy memory allocation APIs through Firefox's signed mozglue.dll (MapRemoteViewOfFile, MozVirtualAlloc). Benifit: make the final allocating module appear as a trusted Firefox component, which some detection logic may exclude to reduce false positives. PoC + detection guidance: https://t.co/wjglBCCY9P

Andrej Karpathy joined Anthropic five weeks ago. Yesterday my friend on his team sent me the Claude.md file he actually uses. It completely changed how I work with Claude. From the very first message, the difference was obvious. With this file, Claude finally stops fighting me and starts working exactly the way I need it to. Bookmark it before it gets taken down. Read it now, then check the article below.

📌 NTLM Leak via UNC Path in Windows Sandbox A researcher demonstrated a new PoC chain in which a Windows Sandbox ".wsb" configuration file uses the "HostFolder" parameter to point to a network (UNC) path. When such a file is opened, the system initiates SMB authentication, resulting in a NetNTLMv2 hash leak even before the sandbox is initialized. The root cause is that the "Networking=Disable" parameter only affects the guest network, not the host, while "ReadOnly=true" restricts only write access and does not prevent the network connection itself. As a result, an attacker can use a ".wsb" file with a UNC path as a forced authentication primitive to capture host credentials. 📎 Article: https://t.co/2wGC5UF21n #dbugs_attacks

Crunch Wordlist Generation Guide 🚨 🔥 Telegram: https://t.co/upuP8k7Ev3 ✴ Twitter: https://t.co/Za7rYIL1h6 Crunch is a powerful wordlist generator that helps attackers create custom password lists based on specific patterns, lengths, and character sets—essential for brute-force and dictionary attacks. ⚡ Key Highlights 🔢 Generate wordlists with min & max length 🔤 Customize character sets (alphabets, numbers, symbols) 🎯 Create pattern-based passwords (e.g., raj%%% or @%^) 📂 Save output directly into files 🛠️ Advanced Features 📡 Use predefined charset (charset.lst) 🚀 Start from specific string (-s option) 🔄 Generate permutations (-p / -q) 📦 Split & compress large wordlists (-b, -c, -z) 💡 Crunch can generate massive combinations quickly, but improper usage may create extremely large files—impacting system resources. 📖 Article: https://t.co/uHPKyNwmcX #CyberSecurity #EthicalHacking #Pentesting #RedTeam #Wordlist #Bruteforce #Crunch

DReconPy is a Python-based reconnaissance and attack surface discovery tool designed for ethical hackers, penetration testers, and bug bounty hunters. It automates the collection of publicly available information about a target domain to help security professionals identify potential testing opportunities quickly and efficiently. Credit/Source: https://t.co/aZy9vETBQL