xcaliburr

Reminder: The only place to download the Hermes Agent Desktop App is https://t.co/MO6rabNnfO Any other website or source is dangerous and could contain old, or worse, dangerous alternative installers or viruses. Do NOT download the app anywhere else. Please report to us if another website or source is distributing the app. And never download from a website that is not the link above.

firewalls can't stop this. A developer just open sourced a tunnel that smuggles your entire internet through port 53 the port every router on earth is forced to leave open. It's called MasterDnsVPN. It hides your traffic inside DNS queries, the one type of packet no network can block without breaking itself. Every firewall on earth has to allow DNS. Schools, airports, hotels, hotel WiFi, entire countries running ISP-level censorship all of them keep port 53 open or nothing on the network resolves. This repo turns that loophole into a full encrypted tunnel. Here's what makes it different from every other DNS tunnel that came before: → Custom ARQ layer gives you TCP-level reliability over UDP DNS, so nothing drops even on garbage networks → Sends every packet through up to 12 different resolver paths at the same time, if 11 fail the packet still arrives → Auto probes the maximum DNS payload your path can handle, then locks in the fastest MTU possible → AES-256-GCM, ChaCha20, AES-128, AES-192 all built in, pick your encryption → SOCKS5 proxy on 127.0.0.1:1080 point any browser or app at it and you're through Killed: $12/mo Mullvad, $10/mo NordVPN, $15/mo Astrill, every commercial DNS tunnel charging monthly fees for the exact same idea. Pre-built binaries for Windows, Linux AMD64, Linux ARM64, macOS ARM64. No Python install needed. Configure two DNS records, drop in the encryption key, run the executable. Works in environments where every other VPN protocol is dead on arrival. MIT License. 100% Opensource.

i just ran Google's brand new Unsloth Gemma4 12B dense GGUF on my RTX 4060 using llama.cpp + CUDA 13.2 21 tokens per second. on a budget consumer GPU. locally. no API. no cloud. no subscription. and the benchmarks are absolutely cooked # first let's talk architecture because this is genuinely different every multimodal model you've used has a frozen vision encoder + frozen audio encoder + LLM backbone glued together Gemma 4 12B is different it's a single decoder only transformer. that's it. vision? raw 48×48 pixel patches → one matmul → projected directly into the LLM audio? raw 16kHz signal sliced into 40ms frames → linear projection → same LLM input space no encoder tax. no latency penalty. no fragmented memory to put the encoder savings in perspective: old Gemma 4 26B approach: - 550M param vision encoder (frozen) - 300M param audio encoder (frozen) - LLM backbone Gemma 4 12B: - 35M param vision embedder (a single matmul) - no audio encoder at all - LLM backbone handles EVERYTHING 550M → 35M for vision alone. that's a 15x reduction this is why the gemma-4-12b-it-Q4_K_M.gguf is just 6.6 GBs!!! and it has 256K native context context # Benchmarks: AIME 2026 (math olympiad): 77.5% GPQA Diamond (expert science): 78.8% LiveCodeBench v6 (real code): 72% Codeforces ELO: 1659 MMLU Pro: 77.2% MATH-Vision: 79.7% BigBench Extra Hard: 53% inference → llama.cpp, LM Studio, vLLM, SGLang llamacpp flags: -m "gemma-4-12b-it-Q4_K_M.gguf" -ngl 99 -c 8000 -v --port 8080 Available on huggingface now! Link below

Bypassing AMSI is useless if you get caught by Script Block Logging (4104) 5 seconds later. I compiled a complete reference guide for PowerShell Defense Evasion covering the full chain: AMSI, AppLocker, CLM escapes, and blinding the logs. Read the full breakdown below https://t.co/VTCTVGq6Zp

Tools like Snaffler are great, but crawling SMB shares creates a telemetry nightmare. You instantly light up the SIEM with : - 5140 / 5145 (Network Share Access) - 4656 / 4663 (Object & File Access) So I built Invoke-WindowsSearch to query the native Windows Search DB (OLE DB) directly via WinRM/RPC, It extracts the targets without touching the actual files, completely bypassing the 4663 and 5145 detection footprint. Trade-offs: Requires the WSearch service (disabled by default on Server OS) and lacks complex regex capabilities. Know your environment before execution. #RedTeam #ActiveDirectory #OPSEC #ThreatHunting #PowerShell

Today we announced Workshop – a solution for launching sandboxed development environments in Ubuntu with a single command. Spend less time on configuring your environment: with just a few lines of YAML, you’ve got a reproducible environment you can use across machines. Find out how it works at: https://t.co/ItDsCVb34O