Reposted
this would be a perfect photo of the sun, if only some guy hadn't gotten in the way 🔭
November 14, 2025 at 9:07 PM
this would be a perfect photo of the sun, if only some guy hadn't gotten in the way 🔭
Reposted
Tanto per esserne chiari: l'attuale traiettoria, considerando le politiche di mitigazione annunciate e messe in atto, ci porterà verso un sontuoso +2.7 °C nel 2100.
La fine di questo secolo è ad appena 75 anni di distanza, moltissimi bambini nati negli ultimi anni saranno lì...
La fine di questo secolo è ad appena 75 anni di distanza, moltissimi bambini nati negli ultimi anni saranno lì...
November 12, 2025 at 10:31 AM
Tanto per esserne chiari: l'attuale traiettoria, considerando le politiche di mitigazione annunciate e messe in atto, ci porterà verso un sontuoso +2.7 °C nel 2100.
La fine di questo secolo è ad appena 75 anni di distanza, moltissimi bambini nati negli ultimi anni saranno lì...
La fine di questo secolo è ad appena 75 anni di distanza, moltissimi bambini nati negli ultimi anni saranno lì...
Reposted
This year, I have gone back to talk at cybersecurity conferences, presenting the talk "app.alert(1) is the new alert(1)", at BSides Sofia and BSides Krakow. I have analyzed 4 CVEs: now you can find 3 PoCs in my GitHub :) because slides are cool, but code is better: github.com/luigigubello...
GitHub - luigigubello/bsides-2025: My talk "app.alert(1) is the new alert(1): PDF files as a vector to inject JavaScript code in web applications", presented at BSides Sofia 2025 and BSides Krakow 202...
My talk "app.alert(1) is the new alert(1): PDF files as a vector to inject JavaScript code in web applications", presented at BSides Sofia 2025 and BSides Krakow 2025. - luigigubello/bsid...
github.com
November 10, 2025 at 9:39 AM
This year, I have gone back to talk at cybersecurity conferences, presenting the talk "app.alert(1) is the new alert(1)", at BSides Sofia and BSides Krakow. I have analyzed 4 CVEs: now you can find 3 PoCs in my GitHub :) because slides are cool, but code is better: github.com/luigigubello...
Reposted
Reposted
Attending #theSAS25? Meet @paupu.bsky.social for his PAM pwnage talk!
It won't be recorded and it might *wink wink* contain a cool drop you don't want to miss 👀
It won't be recorded and it might *wink wink* contain a cool drop you don't want to miss 👀
October 26, 2025 at 3:56 PM
Attending #theSAS25? Meet @paupu.bsky.social for his PAM pwnage talk!
It won't be recorded and it might *wink wink* contain a cool drop you don't want to miss 👀
It won't be recorded and it might *wink wink* contain a cool drop you don't want to miss 👀
Reposted
all the anxiety human evolution developed to help me spot bears now kicks in when i have to answer emails
October 19, 2025 at 3:42 AM
all the anxiety human evolution developed to help me spot bears now kicks in when i have to answer emails
Reposted
In space news, astronomers have not just confirmed but photographed the existence of a black hole pair finding two in a locked 12 year orbit of each other www.utu.fi/en/news/pres...
Scientists capture an image of two black holes circling each other for the first time
For the first time, astronomers have managed to capture a radio image showing two black holes orbiting each other. The observation confirmed the existence of black hole pairs.
www.utu.fi
October 10, 2025 at 4:27 PM
In space news, astronomers have not just confirmed but photographed the existence of a black hole pair finding two in a locked 12 year orbit of each other www.utu.fi/en/news/pres...
Reposted
Dr. Jane Goodall filmed an interview with Netflix in March 2025 that she understood would only be released after her death.
October 5, 2025 at 9:08 AM
Dr. Jane Goodall filmed an interview with Netflix in March 2025 that she understood would only be released after her death.
Reposted
pagedout.institute ← we've just released Paged Out! zine Issue #7
pagedout.institute/download/Pag... ← direct link
lulu.com/search?page=... ← prints for zine collectors
pagedout.institute/download/Pag... ← issue wallpaper
Enjoy!
Please please please share to spread the news - thank you!
pagedout.institute/download/Pag... ← direct link
lulu.com/search?page=... ← prints for zine collectors
pagedout.institute/download/Pag... ← issue wallpaper
Enjoy!
Please please please share to spread the news - thank you!
October 4, 2025 at 10:39 AM
pagedout.institute ← we've just released Paged Out! zine Issue #7
pagedout.institute/download/Pag... ← direct link
lulu.com/search?page=... ← prints for zine collectors
pagedout.institute/download/Pag... ← issue wallpaper
Enjoy!
Please please please share to spread the news - thank you!
pagedout.institute/download/Pag... ← direct link
lulu.com/search?page=... ← prints for zine collectors
pagedout.institute/download/Pag... ← issue wallpaper
Enjoy!
Please please please share to spread the news - thank you!
Reposted
Heads up to anyone doing #mobile #reverseengineering and #penetrationtesting: I've just ported my @NowSecure #frida instrumentation scripts (#ios and #android) to Frida 17, which introduced some breaking changes in the API.
The original, battle-tested scripts from 2017 are preserved as release […]
The original, battle-tested scripts from 2017 are preserved as release […]
Original post on infosec.exchange
infosec.exchange
October 3, 2025 at 7:27 AM
Heads up to anyone doing #mobile #reverseengineering and #penetrationtesting: I've just ported my @NowSecure #frida instrumentation scripts (#ios and #android) to Frida 17, which introduced some breaking changes in the API.
The original, battle-tested scripts from 2017 are preserved as release […]
The original, battle-tested scripts from 2017 are preserved as release […]
Reposted
No Other Land su Rai3 il 7 ottobre prossimo.
Segnare, passare parola, guardare e far guardare a parenti, amici complici amanti, vicinato, colleghi di lavoro e compagni di sbronze.
Segnare, passare parola, guardare e far guardare a parenti, amici complici amanti, vicinato, colleghi di lavoro e compagni di sbronze.
September 25, 2025 at 4:46 PM
No Other Land su Rai3 il 7 ottobre prossimo.
Segnare, passare parola, guardare e far guardare a parenti, amici complici amanti, vicinato, colleghi di lavoro e compagni di sbronze.
Segnare, passare parola, guardare e far guardare a parenti, amici complici amanti, vicinato, colleghi di lavoro e compagni di sbronze.
Reposted
📢 It's here! Part 2 of Norbert Szetei's (@73696e65.bsky.social) research into ksmbd. See how customized fuzzing & the appropriate sanitizers led to discovering 23 Linux kernel CVEs, including use-after-frees & out-of-bounds reads/writes.
blog.doyensec.com/2025/09/02/k...
#doyensec #appsec #security
blog.doyensec.com/2025/09/02/k...
#doyensec #appsec #security
September 2, 2025 at 7:59 PM
📢 It's here! Part 2 of Norbert Szetei's (@73696e65.bsky.social) research into ksmbd. See how customized fuzzing & the appropriate sanitizers led to discovering 23 Linux kernel CVEs, including use-after-frees & out-of-bounds reads/writes.
blog.doyensec.com/2025/09/02/k...
#doyensec #appsec #security
blog.doyensec.com/2025/09/02/k...
#doyensec #appsec #security
Reposted
At long last - Phrack 72 has been released online for your reading pleasure!
Check it out: phrack.org
Check it out: phrack.org
August 18, 2025 at 9:33 PM
At long last - Phrack 72 has been released online for your reading pleasure!
Check it out: phrack.org
Check it out: phrack.org
Reposted
who called it a Kubernetes penetration test and not a clusterfuck
August 15, 2025 at 4:47 PM
who called it a Kubernetes penetration test and not a clusterfuck
Reposted
Le rare foto aeree che mostrano la devastazione causata dai bombardamenti israeliani a Gaza
Le rare foto aeree che mostrano la devastazione causata dai bombardamenti israeliani a Gaza
ilpost.link
August 4, 2025 at 10:49 AM
Le rare foto aeree che mostrano la devastazione causata dai bombardamenti israeliani a Gaza
Reposted
🚨 New Open Source Audit Alert! 🚨
Shielder, with @ostifofficial.bsky.social & ASWF audited OpenEXR and MaterialX:
🔍 11 issues found (1 critical, 3 still to be published)
✔️ Most fixed, others planned
🗣️ ndaprela @smaury.bsky.social @suidpit.bsky.social @thezero.org
Full details in the blog post ⬇️🧵
Shielder, with @ostifofficial.bsky.social & ASWF audited OpenEXR and MaterialX:
🔍 11 issues found (1 critical, 3 still to be published)
✔️ Most fixed, others planned
🗣️ ndaprela @smaury.bsky.social @suidpit.bsky.social @thezero.org
Full details in the blog post ⬇️🧵
July 31, 2025 at 3:09 PM
🚨 New Open Source Audit Alert! 🚨
Shielder, with @ostifofficial.bsky.social & ASWF audited OpenEXR and MaterialX:
🔍 11 issues found (1 critical, 3 still to be published)
✔️ Most fixed, others planned
🗣️ ndaprela @smaury.bsky.social @suidpit.bsky.social @thezero.org
Full details in the blog post ⬇️🧵
Shielder, with @ostifofficial.bsky.social & ASWF audited OpenEXR and MaterialX:
🔍 11 issues found (1 critical, 3 still to be published)
✔️ Most fixed, others planned
🗣️ ndaprela @smaury.bsky.social @suidpit.bsky.social @thezero.org
Full details in the blog post ⬇️🧵
Reposted
Reposted
I just added the 15-minute talk I gave at Tumpicon to the "Freebies" section.
This talk covers the extensions Piper and Scalpel, and allows users to easily manipulate encrypted data by shuffling blocks around
hackademy.agarri.fr/freebies
This talk covers the extensions Piper and Scalpel, and allows users to easily manipulate encrypted data by shuffling blocks around
hackademy.agarri.fr/freebies
Freebies - Mastering Burp Suite Pro
Freebies - Mastering Burp Suite Pro
hackademy.agarri.fr
July 25, 2025 at 4:38 PM
I just added the 15-minute talk I gave at Tumpicon to the "Freebies" section.
This talk covers the extensions Piper and Scalpel, and allows users to easily manipulate encrypted data by shuffling blocks around
hackademy.agarri.fr/freebies
This talk covers the extensions Piper and Scalpel, and allows users to easily manipulate encrypted data by shuffling blocks around
hackademy.agarri.fr/freebies
Reposted
I'm happy to release a script gadgets wiki inspired by the work of @slekies, @kkotowicz, and @sirdarckcat in their Black Hat USA 2017 talk! 🔥
The goal is to provide quick access to gadgets that help bypass HTML sanitizers and CSPs 👇
gmsgadget.com
1/4
The goal is to provide quick access to gadgets that help bypass HTML sanitizers and CSPs 👇
gmsgadget.com
1/4
July 24, 2025 at 3:31 PM
I'm happy to release a script gadgets wiki inspired by the work of @slekies, @kkotowicz, and @sirdarckcat in their Black Hat USA 2017 talk! 🔥
The goal is to provide quick access to gadgets that help bypass HTML sanitizers and CSPs 👇
gmsgadget.com
1/4
The goal is to provide quick access to gadgets that help bypass HTML sanitizers and CSPs 👇
gmsgadget.com
1/4
Reposted
🚨BREAKING: The last journalists working for AFP in Gaza have said they can no longer work for the news agency.
They are out of energy and they are starving to death.
I have never seen a statement from a news organisation like it.
🧵
They are out of energy and they are starving to death.
I have never seen a statement from a news organisation like it.
🧵
July 21, 2025 at 8:55 PM
🚨BREAKING: The last journalists working for AFP in Gaza have said they can no longer work for the news agency.
They are out of energy and they are starving to death.
I have never seen a statement from a news organisation like it.
🧵
They are out of energy and they are starving to death.
I have never seen a statement from a news organisation like it.
🧵
Reposted
Bye forever, WeTransfer.
July 14, 2025 at 11:57 PM
Bye forever, WeTransfer.
Reposted
Thanks to @jonty.bsky.social and @blufo.gs for this awful idea, but it turns out you absolutely can run usb c over parallel
July 11, 2025 at 6:51 PM
Thanks to @jonty.bsky.social and @blufo.gs for this awful idea, but it turns out you absolutely can run usb c over parallel