If you like VPN exploits as much as us, you're going to love this course Zeroshi is bringing to @_ringzer0
We will walk students into opening up edge devices for research, mapping their attack surface, finding vulns and building full exploit chains.
https://t.co/oeOVHZ7d9C
Routers. Firewalls. Industrial devices.
Edge systems are prime targets.
Learn exploitation techniques from Marco Ortisi @redtimmysec — penetration tester, red team manager & vulnerability researcher since 1999.
March 2026 (Virtual)
🔗 https://t.co/sG0SBrZ5k0
March 5th, I'll give a virtual workshop in collaboration with Ringzer0 Training titled "ENEMY AT THE GATES: WEAKNESSES IN EDGE DEVICES". Registration is available via this form: https://t.co/vkWO2QjfbV
I tested the latest virtual appliance (branch 16.x) — and the issue is still present. I produced a follow-up video in English showing how easy this trick is.
https://t.co/iBSAHBLh2E
Last week I posted a YouTube video (inspired by a Reddit thread) about the least privilege principle and how many vendors still fail to apply it correctly.
The video started from a Reddit question about what to check when buying a WAF; I recommended first verifying whether the vendor implements least privilege. Then I decided to demonstrate a real case: a privilege-escalation trick I discovered 5–6 years ago on Cisco ESA.
Part 4 is out: in this video we programmatically attach alternate data streams with malicious paths and payloads to innocent-looking decoy files.
Try the exploit yourself and tell me if it works :-)
https://t.co/TqCQIUWtxD
Vulnerability exploitation walkthrough: CVE-2025-8088 was a 0-day vulnerability patched in late July 2025. I decided to write an exploit from scratch, with no external libs or dependencies.
Part 3 is out
In this third part of our series on exploiting CVE-2025-8088 in WinRAR, we continue building our proof of concept by introducing a custom file header definition. https://t.co/mRw7VFC0eL
In part 2, I start to perform a manual analysis with a hex editor of a malicious RAR file observed in the wild and explain how to add RAR signature + main archive header to the exploit poc (https://t.co/AisPhkN30l)