#Spotify playlist of my 2019 favourites (down from 13 hours/190 songs) in backpack hop and duffel pop @atomless@iamjoehall @bunnyhausen https://t.co/RdkeIRR5Cp
🔥 An AI worm used a local open-weight LLM to find targets, choose attack paths, and copy itself.
> No human help.
> No OpenAI or #Anthropic API.
> No API key to shut off.
In 7 days, it replicated to 62% of a 33-host test network.
It also used fresh CVE advisories to find new attack paths.
Read full story: https://t.co/NVZZjUGZXF
🚨 A single domain user could run code on your Veeam Backup Server.
Veeam has patched a critical RCE flaw (CVE-2026-44963, CVSS 9.4) in Backup & Replication.
All v12 builds up to 12.3.2.4465 are affected. Fixed in 12.3.2.4854. v13.x is safe.
Patch now: https://t.co/ZIuU1eGBif
firewalls can't stop this.
A developer just open sourced a tunnel that smuggles your entire internet through port 53 the port every router on earth is forced to leave open.
It's called MasterDnsVPN. It hides your traffic inside DNS queries, the one type of packet no network can block without breaking itself.
Every firewall on earth has to allow DNS. Schools, airports, hotels, hotel WiFi, entire countries running ISP-level censorship all of them keep port 53 open or nothing on the network resolves. This repo turns that loophole into a full encrypted tunnel.
Here's what makes it different from every other DNS tunnel that came before:
→ Custom ARQ layer gives you TCP-level reliability over UDP DNS, so nothing drops even on garbage networks
→ Sends every packet through up to 12 different resolver paths at the same time, if 11 fail the packet still arrives
→ Auto probes the maximum DNS payload your path can handle, then locks in the fastest MTU possible
→ AES-256-GCM, ChaCha20, AES-128, AES-192 all built in, pick your encryption
→ SOCKS5 proxy on 127.0.0.1:1080 point any browser or app at it and you're through
Killed: $12/mo Mullvad, $10/mo NordVPN, $15/mo Astrill, every commercial DNS tunnel charging monthly fees for the exact same idea.
Pre-built binaries for Windows, Linux AMD64, Linux ARM64, macOS ARM64. No Python install needed. Configure two DNS records, drop in the encryption key, run the executable.
Works in environments where every other VPN protocol is dead on arrival.
MIT License. 100% Opensource.
🚨 Microsoft’s June 2026 Patch Tuesday fixes 200 flaws, including 3 publicly disclosed zero-days affecting Windows privilege escalation, HTTP.sys, and BitLocker.
⚫️33 flaws are rated Critical, including 28 RCE bugs.
⚫️Microsoft patched the new “HTTP/2 Bomb” DoS attack targeting HTTP.sys.
⚫️The BitLocker bypass dubbed YellowKey that allowed access to encrypted drives was also patched.
Read our full report: https://t.co/Vo4ygyOIt8
SPN-less RBCD with NetExec🔥
While classic RBCD requires a computer account, you can use U2U authentication to perform RBCD with a normal user account, if a computer account is not available.
Thanks to @azoxlpf, you can now perform this attack with NetExec as well🚀
🚨 On 6/8/26, #CheckPoint published an advisory for a critical vuln. affecting its Remote Access VPN, Mobile Access & Spark Firewall products.
CVE-2026-50751 allows an unauth. attacker to establish a VPN session without providing valid credentials. More: https://t.co/NygDMpWc3h
U2U powers UnPAC-the-Hash and chains into Shadow Credentials and ADCS ESC attacks, but most resources skip the “how.”
@GrayHatKiller breaks down Kerberos U2U auth from the RFC to Windows’ divergences—and why modern attacks rely on it.
https://t.co/Ci49LjpHwQ
This week's release has a whooping 5 new modules including LPE 'sploits for dirty frag and a info leak scanner for Citrix NetScaler. Check it out at https://t.co/AckuaNy8WA
Back in 2002, I wrote a super-simple tool to dump the memory of a live process to a file. This was a cool way to grab "screenshots" of SSH sessions, editors, etc.
I recently non-vibe-coded a new version that works on modern Linux, if you want to have fun: https://t.co/To6C3Vmib6
#PaloAltoNetworks published a security advisory for CVE-2026-0257. Exploitation of this vulnerability allows a remote unauthenticated attacker to establish a VPN connection through the GlobalProtect gateway of an affected appliance. More via our blog: https://t.co/881ruTB0N4
Not all BloodHound data collection methods are created equal.
Learn more: https://t.co/NcOAiV7S8L
A Practical Guide to BloodHound Data Collection
by: Alyssa Snow
Published: 4/29/2026
At @NCSC we have just released 'Designing secure access with ZTNA' - ZTNA is widely deployed, but often still built on old trust assumptions and our guidance explains how to design ZTNA architectures aligned with zero trust principles
https://t.co/dnZ7seWaqF
As promised, today we released DumpBrowserSecrets a tool which extracts passwords, tokens, cookies and other data from several browsers.
https://t.co/EaswGdihdU
Created some 2026 rules for #hashcat with ChatGPT. Manually corrected the prepend rules and removed some cruft. Contains 74 rules.
https://t.co/NraJYpTTiM