Sql3t0

Linux Privilege Escalation Using Misconfigured NFS 🔥 Telegram: https://t.co/upuP8k8ckB ✴ Twitter: https://t.co/Za7rYILz6E Misconfigured NFS shares can become a direct path to root access on Linux systems ⚠️ 📚 What You'll Learn in This Guide 🔍 Understanding NFS & Network File Sharing 📋 Enumerating NFS Exports and Permissions ⚙️ Identifying Dangerous NFS Configurations 🚨 Exploiting no_root_squash Misconfigurations 📂 Mounting Remote NFS Shares 🛠️ Creating and Deploying SUID Binaries 🐚 Gaining Root Access via NFS Abuse 🔑 Privilege Escalation Walkthrough 🧠 Enumeration & Post-Exploitation Techniques 🛡️ Securing NFS Shares and Permissions ⚠️ Detection & Mitigation Best Practices 💡 NFS misconfigurations, especially the no_root_squash option, can allow attackers to create privileged files on shared directories and escalate privileges to root on Linux systems. 📖 Article: https://t.co/jmM8kCytZs #Linux #PrivilegeEscalation #NFS #NoRootSquash #RedTeam #Pentesting #CyberSecurity #EthicalHacking #InfoSec #LinuxSecurity

Burp Suite Professional costs 475 dollars a year per seat. A senior software engineer in Amsterdam built the open source replacement as a side project. He put it on GitHub for free. It has 10,569 stars. His name is David Stotijn. The software is Hetty. Here is what Hetty is. An HTTP toolkit for security research. A machine-in-the-middle proxy that sits between your browser and the target. Every request and every response flows through Hetty. You can read them, search them, intercept them, edit them, replay them, and send them again. This is the core loop of every web application security test ever performed. Burp Suite charges 475 dollars a year for it. Hetty does the same job for zero. Here is the feature set. A machine-in-the-middle HTTP proxy with full logs and advanced search. An HTTP client for manually creating and editing requests, and replaying any request you already proxied. Request and response interception for manual review, with full edit, send, receive, and cancel control. Scope support to keep your work organized to a single target. A web-based admin interface that runs in your browser. Project-based database storage so multiple engagements stay separate. A GraphQL service for programmatic access. The installer is a single Go binary. Works on macOS, Linux, and Windows. No Java runtime, no enterprise license server, no machine fingerprinting, no telemetry. Here is the price ladder. Burp Suite Professional: 475 dollars a year per seat. Burp Suite Enterprise: thousands per year, contact sales for a quote. Burp Suite Community Edition: free, but throttled, no scanner, no project save, no intruder rate. OWASP ZAP: free and open source, now owned by Checkmarx after a 2024 acquisition. Hetty: zero. Forever. One binary. No account. A pentester working full time pays Burp 475 dollars a year. A team of 10 pentesters pays 4,750 dollars a year. A bug bounty hunter who finds one vulnerability has already paid for Burp twice over. Or they download a 30 MB Go binary written by a freelancer in Amsterdam and keep every dollar they earn. David has not pushed a new commit in 16 months. The last commit was January 13, 2025. That is normal for a tool that is feature-complete. HTTP has not changed. The proxy still proxies. The intercept still intercepts. MIT licensed code does not expire when the maintainer takes a break. Buy a domain. Find a bug. Cash a bounty. PortSwigger took a free industry tool and put it behind a 475 dollar paywall. A freelancer in Amsterdam gave it back. On every platform. For zero dollars. Your proxy. Your binary. Your bounties. (Link in the comments)

🪟Microsoft Windows Defender A threat actor has publicly claimed the discovery of an unpatched Windows Defender zero-day vulnerability capable of elevating privileges to NT AUTHORITY\SYSTEM. According to the post, the exploit was successfully tested against fully patched Windows 10 and Windows 11 systems released in June 2026. The actor describes the vulnerability as a race-condition issue and claims Windows Server installations may also be affected. Screenshots shared by the actor appear to show successful SYSTEM-level privilege escalation. A public Proof-of-Concept (PoC) repository was also referenced. At the time of writing, Daily Dark Web has not independently verified the vulnerability or Microsoft's awareness of the claim. Analyst Note: If validated, this would represent a high-impact local privilege escalation vulnerability affecting one of the most widely deployed security products in the world. Organizations should closely monitor Microsoft advisories and security researcher disclosures for confirmation and mitigation guidance. #DDW #Intelligence #DarkWeb #Microsoft

卧槽兄弟们，GitHub 上真的有一堆免费到离谱的项目。 很多能力已经能直接干掉你正在月付的软件。 1. TradingAgents AI 多 Agent 量化交易框架 https://t.co/TUb3q0uILN… 2. LibreChat 一个界面接入 ChatGPT、Claude、Gemini 等多个模型 https://t.co/UUMftLSOU4… 3. HyperFrames HeyGen 开源的视频生成引擎 https://t.co/OZKS8R1qnj… 4. Fincept Terminal 开源版彭博终端 https://t.co/3QGYCnWJqV… 5. MoneyPrinterTurbo AI 一键生成短视频 https://t.co/XenuwHKMwg… 6. Agentic Inbox Cloudflare 开源 AI 邮件助手 https://t.co/g92N5IMxIG… 7. VoxCPM AI 声音克隆工具 https://t.co/nWDB88AF0m 8. Flowsint 开源 OSINT 情报分析工具 https://t.co/dNp65L5v0e… 9. agent-skills Claude Code 技能库 https://t.co/y7RnzfKJT8… 10. Nango 开源 API 集成平台 https://t.co/xBK94t6Pgj 兄弟们，这些真不是玩具项目。 很多你还在交月费的软件，GitHub 上已经有人做出开源平替了。 一句话： 别只会收藏 AI 工具网站了。 真正狠的东西，很多都藏在 GitHub 里。

HackLabs is a collection of hands-on vulnerable labs designed to practice web exploitation, privilege escalation, Active Directory attacks, and general pentesting techniques in a safe environment. ⚠️ For educational and authorized testing only. 🔗 https://t.co/yIKRr71ymP #CyberSecurity #Pentesting #EthicalHacking #RedTeam #CTF #InfoSec #AppSec

📷 The Easiest Way to Discover Live Cameras around the World OSINT investigations often involve searching for public cameras manually in a specific area… Different tabs. Different datasets 👀 But combining everything into one view changes how fast you can understand a situation. When I’m doing geospatial OSINT, one of my favorite approaches is using platforms that merge multiple live data sources into a single map 🗺️ Because context matters just as much as raw data. Here’s what this type of tool can show 👇 📹 Live public cameras around the world ✈️ Real-time aircraft tracking 🚢 Maritime vessel movements 🌍 Interactive 3D globe visualization 🧩 Additional intelligence layers through plugins 🎯 Real-life example: Imagine you’re investigating an incident near a coastal city or airport. Instead of checking separate platforms, you: • View nearby live cameras • Check aircraft activity overhead • Monitor vessel traffic in real time 🔗 Tool: https://t.co/GNBkgXbbWc What’s your favorite OSINT tool for geospatial or real-time analysis? P.S. ♻️ Repost if you found this helpful.

C̶l̶a̶u̶d̶e̶ ̶B̶u̶g̶ ̶H̶u̶n̶t̶e̶r̶ is now BUG HUNTER. We changed the name because it is no longer limited to Claude Code. Now it is a standalone open-source CLI that runs from any terminal. Use Ollama, Groq, DeepSeek, Claude, OpenAI or Grok. Built for the bug bounty community. Run it locally with Ollama - no paid AI subscription required. We are very close to 2.5K GitHub stars. Let’s make it happen, guys. More updates coming soon. #OpenSource #BugBounty #CyberSecurity #AI #EthicalHacking #Ollama #GitHub #SecurityTools #BugHunter

🚨 Windows Defender 0-Day Exploit “RoguePlanet” Grants SYSTEM Access to Attackers Source: https://t.co/h0SqQD6cjB A researcher known as Nightmare Eclipse has publicly released a new proof-of-concept (PoC) exploit named RoguePlanet, targeting a previously undisclosed race condition vulnerability in Microsoft Windows Defender. When successfully executed, the exploit spawns a command shell running under SYSTEM-level privileges, granting an attacker the highest possible access on a compromised Windows machine. The release, posted to GitHub, arrives on Patch Tuesday, June 10, 2026, adding urgency to an already escalating series of Defender-targeting disclosures. #cybersecuritynews

🇧🇷 Alleged Brazilian Federal Revenue Database Containing 248M+ Citizen Records Advertised for Sale A threat actor using the handle "BuddhaGroup" has advertised what they claim is a complete database from Brazil's Federal Revenue Service (Receita Federal). * According to the post: * Claimed scope: 248 million+ Brazilian citizens * Source claimed by seller: Receita Federal * Seller claims data was "extracted directly from official sources" * Advertisement posted in a marketplace section offering database sales * The actor claims the database includes multiple interconnected tables containing: * Individual records * CPF numbers * Full names * Dates of birth * Gender information * Mother's names * Occupation data * Contact information * Email addresses * Telephone numbers * Area codes (DDD) * Address information * Residential information * Street addresses * Neighborhoods * ZIP codes * Cities * Corporate information * CNPJ records * Company trade names * Economic activity codes (CNAE) * Capital information * Legal entity details * Corporate ownership and shareholder information * Corporate succession history * The post references several tables allegedly containing hundreds of millions of records, including citizen, address, company, telephone, and shareholder datasets. * If authentic, the advertised dataset would represent one of the largest alleged exposures of Brazilian citizen and corporate information observed on underground forums. * At the time of publication, Daily Dark Web could not independently verify: * The authenticity of the database * Whether the data originated from Receita Federal systems * Whether the information is current * Whether the records were obtained through unauthorized access * Whether the dataset consists of newly acquired or previously leaked information Analyst Note: Large-scale national identity datasets are frequently re-packaged, merged, and resold across underground communities. However, authentic CPF-linked records remain highly valuable to cybercriminals due to their utility in identity theft, financial fraud, account takeover, synthetic identity creation, and social engineering operations. Any dataset claiming nationwide citizen coverage should be treated as a high-priority intelligence event until validated. #DDW #Intelligence #DarkWeb #Brazil