Marius Avram
@mariusavram.bsky.social
Cyber Security Enthusiast. Two sons' proud dad!
Introducing the OWASP Top 10:2025
owasp.org/Top10/2025/0...
owasp.org/Top10/2025/0...
Introduction - OWASP Top 10:2025 RC1
OWASP Top 10:2025 RC1
owasp.org
November 7, 2025 at 1:44 PM
Introducing the OWASP Top 10:2025
owasp.org/Top10/2025/0...
owasp.org/Top10/2025/0...
Tenable Research has discovered seven vulnerabilities and attack techniques in ChatGPT, including unique indirect prompt injections, exfiltration of personal user information, persistence, evasion, and bypass of safety mechanisms. www.tenable.com/blog/hackedg...
November 5, 2025 at 4:39 PM
Tenable Research has discovered seven vulnerabilities and attack techniques in ChatGPT, including unique indirect prompt injections, exfiltration of personal user information, persistence, evasion, and bypass of safety mechanisms. www.tenable.com/blog/hackedg...
Phrack 72 Has Been Published phrack.org/issues/72/1
August 19, 2025 at 7:13 AM
Phrack 72 Has Been Published phrack.org/issues/72/1
Reposted by Marius Avram
IP data on compromised instances shared in our Compromised Website report tagged 'fortiweb-compromised': www.shadowserver.org/what-we-do/n...
IP data on exposed instances is in our Device ID report: www.shadowserver.org/what-we-do/n... (device model is set to FortiWeb Management Interface)
IP data on exposed instances is in our Device ID report: www.shadowserver.org/what-we-do/n... (device model is set to FortiWeb Management Interface)
CRITICAL: Compromised Website Report | The Shadowserver Foundation
This report is a list of all the websites we (or our collaborative partners) have been able to identify and verify to be compromised.
www.shadowserver.org
July 16, 2025 at 9:02 AM
IP data on compromised instances shared in our Compromised Website report tagged 'fortiweb-compromised': www.shadowserver.org/what-we-do/n...
IP data on exposed instances is in our Device ID report: www.shadowserver.org/what-we-do/n... (device model is set to FortiWeb Management Interface)
IP data on exposed instances is in our Device ID report: www.shadowserver.org/what-we-do/n... (device model is set to FortiWeb Management Interface)
opossum-attack.com <- Opossum is a cross-protocol application layer desynchronization attack that affects TLS-based application protocols that rely on both opportunistic and implicit TLS. Among the affected protocols are HTTP, FTP, POP3, SMTP, LMTP and NNTP.
Opossum Attack
opossum-attack.com
July 8, 2025 at 4:08 PM
opossum-attack.com <- Opossum is a cross-protocol application layer desynchronization attack that affects TLS-based application protocols that rely on both opportunistic and implicit TLS. Among the affected protocols are HTTP, FTP, POP3, SMTP, LMTP and NNTP.
British Hacker ‘IntelBroker’ Faces $25M Cybercrime Charges www.justice.gov/usao-sdny/pr...
Serial Hacker “IntelBroker” Charged For Causing $25 Million In Damages To Victims
The United States Attorney for the Southern District of New York, Jay Clayton, and the Assistant Director in Charge of the New York Field Office of the Federal Bureau of Investigation (“FBI”), Christo...
www.justice.gov
June 26, 2025 at 3:41 AM
British Hacker ‘IntelBroker’ Faces $25M Cybercrime Charges www.justice.gov/usao-sdny/pr...
Looks like old age finally finished the job and wiped out whatever was left of his brain, not that there was much to begin with. 😬
June 17, 2025 at 9:52 AM
Looks like old age finally finished the job and wiped out whatever was left of his brain, not that there was much to begin with. 😬
Reposted by Marius Avram
Free EC2 tool for pentesting or anything.
github.com/random-robbi...
github.com/random-robbi...
GitHub - random-robbie/ec2free: AWS EC2 Pentesting Lab Setup Script
AWS EC2 Pentesting Lab Setup Script. Contribute to random-robbie/ec2free development by creating an account on GitHub.
github.com
June 13, 2025 at 1:20 PM
Free EC2 tool for pentesting or anything.
github.com/random-robbi...
github.com/random-robbi...
Finding an SOQL Injection 0-Day in Salesforce mastersplinter.work/research/sal...
Finding an SOQL Injection 0-Day in Salesforce
How an un-exploitable SOQL injection turned into a 0-day in Salesforce itself affecting millions of user records
mastersplinter.work
June 11, 2025 at 6:20 AM
Finding an SOQL Injection 0-Day in Salesforce mastersplinter.work/research/sal...
Reposted by Marius Avram
According to my sources, Cellebrite used to purchase iPhone prototypes (aka dev-fused devices), which had lower security features, to develop its zero-days.
Corellium's founder Chris Wade also purchased them back in the day, according to sources.
www.vice.com/en/article/t...
Corellium's founder Chris Wade also purchased them back in the day, according to sources.
www.vice.com/en/article/t...
June 5, 2025 at 1:24 PM
According to my sources, Cellebrite used to purchase iPhone prototypes (aka dev-fused devices), which had lower security features, to develop its zero-days.
Corellium's founder Chris Wade also purchased them back in the day, according to sources.
www.vice.com/en/article/t...
Corellium's founder Chris Wade also purchased them back in the day, according to sources.
www.vice.com/en/article/t...
Reposted by Marius Avram
This vector adds an onerror handler with eval, rewrites all ReferenceError names, then triggers an error to execute the payload. Just added it to the XSS cheat sheet. Credit to @0x999.net , inspired by @terjanq.me
portswigger.net/web-security...
portswigger.net/web-security...
June 3, 2025 at 1:07 PM
This vector adds an onerror handler with eval, rewrites all ReferenceError names, then triggers an error to execute the payload. Just added it to the XSS cheat sheet. Credit to @0x999.net , inspired by @terjanq.me
portswigger.net/web-security...
portswigger.net/web-security...
Unmasking the Threat: A Deep Dive into the PDF Malicious labs.segura.blog/unmasking-th...
Unmasking the Threat: A Deep Dive into the PDF Malicious
Analyzing the Sophisticated Use of PDF Files as Cyberattack Vectors and the Imperative for Enhanced Security Measures
Abstract
The utilization of PDF files, a ubiquitous format for documents across...
labs.segura.blog
June 2, 2025 at 4:26 PM
Unmasking the Threat: A Deep Dive into the PDF Malicious labs.segura.blog/unmasking-th...
Finding SSRFs in Azure DevOps - Part 2 binsec.no/posts/2025/0...
May 30, 2025 at 1:00 PM
Finding SSRFs in Azure DevOps - Part 2 binsec.no/posts/2025/0...
Threat of TCC Bypasses on macOS afine.com/threat-of-tc...
May 26, 2025 at 12:13 PM
Threat of TCC Bypasses on macOS afine.com/threat-of-tc...
Automating MS-RPC vulnerability research www.incendium.rocks/posts/Automa...
May 22, 2025 at 12:23 PM
Automating MS-RPC vulnerability research www.incendium.rocks/posts/Automa...
Bypass SharePoint Restricted View to exfiltrate data using Copilot AI and more… www.pentestpartners.com/security-blo...
May 22, 2025 at 6:35 AM
Bypass SharePoint Restricted View to exfiltrate data using Copilot AI and more… www.pentestpartners.com/security-blo...
From SAST to CVE-2025-46337 xaliom.blogspot.com/2025/05/from...
May 5, 2025 at 3:42 PM
From SAST to CVE-2025-46337 xaliom.blogspot.com/2025/05/from...
Reposted by Marius Avram
#Skype shuts down TODAY.
Here's the link to download your contacts & chats. secure.skype.com/en/data-export
Here's the link to download your contacts & chats. secure.skype.com/en/data-export
May 5, 2025 at 10:23 AM
#Skype shuts down TODAY.
Here's the link to download your contacts & chats. secure.skype.com/en/data-export
Here's the link to download your contacts & chats. secure.skype.com/en/data-export
Agent of Chaos: Hijacking NodeJS’s Jenkins Agents
www.praetorian.com/blog/agent-o...
www.praetorian.com/blog/agent-o...
May 1, 2025 at 7:43 AM
Agent of Chaos: Hijacking NodeJS’s Jenkins Agents
www.praetorian.com/blog/agent-o...
www.praetorian.com/blog/agent-o...
Reposted by Marius Avram
Think you’ve seen every OS command injection trick?
Think again, read our latest blog post!
Link in the comments👇
Think again, read our latest blog post!
Link in the comments👇
April 30, 2025 at 12:44 PM
Think you’ve seen every OS command injection trick?
Think again, read our latest blog post!
Link in the comments👇
Think again, read our latest blog post!
Link in the comments👇
Reposted by Marius Avram
Just posted to my blog for the first time in a little over 2 years 😅 rambo.codes/posts/2025-0...
How a Single Line Of Code Could Brick Your iPhone | Rambo Codes
Gui Rambo writes about his coding and reverse engineering adventures.
rambo.codes
April 26, 2025 at 5:04 PM
Just posted to my blog for the first time in a little over 2 years 😅 rambo.codes/posts/2025-0...