Dominic White
@singe.bsky.social
Reposted by Dominic White
Reposted by Dominic White
I'm not 💯 on what the CVE was issued for in the end. The ActiveX bypass is still present (along with ProtectedView bypass), the fix was to disable the functionality in Outlook. It is why APT34 and APT33 were able to continue using it by re-enabling the functionality: cloud.google.com/blog/topics/...
Breaking the Rules: A Tough Outlook for Home Page Attacks (CVE-2017-11774) | Mandiant | Google Cloud Blog
cloud.google.com
December 27, 2025 at 7:41 AM
I'm not 💯 on what the CVE was issued for in the end. The ActiveX bypass is still present (along with ProtectedView bypass), the fix was to disable the functionality in Outlook. It is why APT34 and APT33 were able to continue using it by re-enabling the functionality: cloud.google.com/blog/topics/...
Reposted by Dominic White
Really big age release coming tomorrow! 🎅🏻
- native post-quantum keys
- built-in recipients for hw plugins
- age-inspect tool
- plugin framework
- batchpass plugin
- many improved error messages
- native post-quantum keys
- built-in recipients for hw plugins
- age-inspect tool
- plugin framework
- batchpass plugin
- many improved error messages
GitHub - FiloSottile/age: A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.
A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability. - FiloSottile/age
age-encryption.org
December 24, 2025 at 12:02 PM
Really big age release coming tomorrow! 🎅🏻
- native post-quantum keys
- built-in recipients for hw plugins
- age-inspect tool
- plugin framework
- batchpass plugin
- many improved error messages
- native post-quantum keys
- built-in recipients for hw plugins
- age-inspect tool
- plugin framework
- batchpass plugin
- many improved error messages
We (Orange Cyberdefense) became a CVE CNA & in prep for that collected the various vulns we had reported over the years that had corresponding public information. 108 of them! It’s mostly a vanity list but will be where we publish new vulns in future. advisories.orangecyberdefense.com/advisories
December 24, 2025 at 12:01 PM
We (Orange Cyberdefense) became a CVE CNA & in prep for that collected the various vulns we had reported over the years that had corresponding public information. 108 of them! It’s mostly a vanity list but will be where we publish new vulns in future. advisories.orangecyberdefense.com/advisories
Reposted by Dominic White
💻 How far can we push small language models?
This summer, our Project t0 team showed that small, open-weight language models can achieve near-frontier reasoning performance when applied to focused, domain-specific tasks.
http://bit.ly/4fu00E1
This summer, our Project t0 team showed that small, open-weight language models can achieve near-frontier reasoning performance when applied to focused, domain-specific tasks.
http://bit.ly/4fu00E1
Why we still need small language models – even in the age of frontier AI
Lean, locally run models can unlock huge benefits for public sector and compute-constrained environments
bit.ly
December 23, 2025 at 2:00 PM
💻 How far can we push small language models?
This summer, our Project t0 team showed that small, open-weight language models can achieve near-frontier reasoning performance when applied to focused, domain-specific tasks.
http://bit.ly/4fu00E1
This summer, our Project t0 team showed that small, open-weight language models can achieve near-frontier reasoning performance when applied to focused, domain-specific tasks.
http://bit.ly/4fu00E1
Barbra Streisand
Wooo, wooo, wooo-ooh, wooo, wooo, wooo-ooh
Wooo, wooo, wooo-ooh, wooo, wooo, wooo
Barbra Streisand
I never watch 60 minutes but I watched that one about CECOT wooo
Barbra Streisand
Wooo, wooo, wooo-ooh, wooo, wooo, wooo-ooh
Wooo, wooo, wooo-ooh, wooo, wooo, wooo
Barbra Streisand
I never watch 60 minutes but I watched that one about CECOT wooo
Barbra Streisand
December 23, 2025 at 3:53 PM
Barbra Streisand
Wooo, wooo, wooo-ooh, wooo, wooo, wooo-ooh
Wooo, wooo, wooo-ooh, wooo, wooo, wooo
Barbra Streisand
I never watch 60 minutes but I watched that one about CECOT wooo
Barbra Streisand
Wooo, wooo, wooo-ooh, wooo, wooo, wooo-ooh
Wooo, wooo, wooo-ooh, wooo, wooo, wooo
Barbra Streisand
I never watch 60 minutes but I watched that one about CECOT wooo
Barbra Streisand
Reposted by Dominic White
THC Release 💥: The world’s largest IP<>Domain database: ip.thc.org
All forward and reverse IPs, all CNAMES and all subdomains of every domain. For free.
Updated monthly.
Try: curl ip.thc.org/1.1.1.1
Raw data (187GB): ip.thc.org/docs/bulk-da...
(The fine work of messede 👌)
All forward and reverse IPs, all CNAMES and all subdomains of every domain. For free.
Updated monthly.
Try: curl ip.thc.org/1.1.1.1
Raw data (187GB): ip.thc.org/docs/bulk-da...
(The fine work of messede 👌)
December 17, 2025 at 1:33 PM
THC Release 💥: The world’s largest IP<>Domain database: ip.thc.org
All forward and reverse IPs, all CNAMES and all subdomains of every domain. For free.
Updated monthly.
Try: curl ip.thc.org/1.1.1.1
Raw data (187GB): ip.thc.org/docs/bulk-da...
(The fine work of messede 👌)
All forward and reverse IPs, all CNAMES and all subdomains of every domain. For free.
Updated monthly.
Try: curl ip.thc.org/1.1.1.1
Raw data (187GB): ip.thc.org/docs/bulk-da...
(The fine work of messede 👌)
Reposted by Dominic White
This function takes a tenant ID and queries the public accounts.accesscontrol.windows.net metadata (returns all domains associated with that Office 365 tenant)🕵️♂️
github.com/gscales/Powe...
#infosec #cybersecurity #redteam #osint #cloud
github.com/gscales/Powe...
#infosec #cybersecurity #redteam #osint #cloud
Sign in to your account
accounts.accesscontrol.windows.net
December 20, 2025 at 10:40 AM
This function takes a tenant ID and queries the public accounts.accesscontrol.windows.net metadata (returns all domains associated with that Office 365 tenant)🕵️♂️
github.com/gscales/Powe...
#infosec #cybersecurity #redteam #osint #cloud
github.com/gscales/Powe...
#infosec #cybersecurity #redteam #osint #cloud
Reposted by Dominic White
This is super good news: Docker Hardened Images are now available for free for all devs. These can form a much more secure baseline of your containerized apps.
Hardened Images for Everyone | Docker
Security for everyone. Docker Hardened Images are now free to use, share, and build on with no licensing surprises.
www.docker.com
December 17, 2025 at 4:31 PM
This is super good news: Docker Hardened Images are now available for free for all devs. These can form a much more secure baseline of your containerized apps.
Reposted by Dominic White
Assassination plots, sabotage, cyber-attacks and the manipulation of information by Russia and other hostile states mean that “the frontline is everywhere”, the new head of MI6 will warn on Monday.
www.theguardian.com/uk-news/2025...
www.theguardian.com/uk-news/2025...
‘The frontline is everywhere’: new MI6 head to warn of growing Russian threat
Blaise Metreweli expected to say UK faces new ‘age of uncertainty’ in speech identifying Kremlin as key threat
www.theguardian.com
December 15, 2025 at 5:25 PM
Assassination plots, sabotage, cyber-attacks and the manipulation of information by Russia and other hostile states mean that “the frontline is everywhere”, the new head of MI6 will warn on Monday.
www.theguardian.com/uk-news/2025...
www.theguardian.com/uk-news/2025...
Reposted by Dominic White
THC Release: 🎄Smallest SSHD backdoor🎄
- Does not add any new file
- Survives apt-update
- Does not use PAM or authorized_keys
Just SSHD trickery....adds one line only.
More at thc.org/tips 👌
- Does not add any new file
- Survives apt-update
- Does not use PAM or authorized_keys
Just SSHD trickery....adds one line only.
More at thc.org/tips 👌
December 14, 2025 at 2:47 PM
THC Release: 🎄Smallest SSHD backdoor🎄
- Does not add any new file
- Survives apt-update
- Does not use PAM or authorized_keys
Just SSHD trickery....adds one line only.
More at thc.org/tips 👌
- Does not add any new file
- Survives apt-update
- Does not use PAM or authorized_keys
Just SSHD trickery....adds one line only.
More at thc.org/tips 👌
Reposted by Dominic White
And, AGAIN -- Another good opportunity to remind you of Deth Veggie's First Law of the Internet: LIE TO EVERY SITE ABOUT ABSOLUTELY EVERYTHING YOU CAN.
Fake names, fake birthdays, fake pets' names, and maiden names, and first streets, and schools and... everything you can.
Fake names, fake birthdays, fake pets' names, and maiden names, and first streets, and schools and... everything you can.
December 12, 2025 at 5:47 PM
And, AGAIN -- Another good opportunity to remind you of Deth Veggie's First Law of the Internet: LIE TO EVERY SITE ABOUT ABSOLUTELY EVERYTHING YOU CAN.
Fake names, fake birthdays, fake pets' names, and maiden names, and first streets, and schools and... everything you can.
Fake names, fake birthdays, fake pets' names, and maiden names, and first streets, and schools and... everything you can.
Reposted by Dominic White
My BSides Cape Town 2025 wrap-up is finally out, you can read about it all here www.linkedin.com/pulse/bsides....
Please share with your friends and help spread the word!
#bsidescapetown2025 #bsidescapetown #hackers #rubberducks
Please share with your friends and help spread the word!
#bsidescapetown2025 #bsidescapetown #hackers #rubberducks
BSides Cape Town 2025 - 14000 steps by the sea.
Saturday 6th December 2025 was BSides Cape Town 2025! Our yearly hacker/infosec/security/"cyber" conference. This year it was bigger than ever with over 600 people (I think it was as high as 640?), wi...
www.linkedin.com
December 8, 2025 at 10:04 AM
My BSides Cape Town 2025 wrap-up is finally out, you can read about it all here www.linkedin.com/pulse/bsides....
Please share with your friends and help spread the word!
#bsidescapetown2025 #bsidescapetown #hackers #rubberducks
Please share with your friends and help spread the word!
#bsidescapetown2025 #bsidescapetown #hackers #rubberducks
Reposted by Dominic White
Two blog posts just dropped - one with the details on the bloatware pwning shenanigans I was up to earlier in the year, and another on pipetap, a new Windows named pipe proxy/tool.
sensepost.com/blog/2025/pw...
sensepost.com/blog/2025/pi...
sensepost.com/blog/2025/pw...
sensepost.com/blog/2025/pi...
December 7, 2025 at 7:02 AM
Two blog posts just dropped - one with the details on the bloatware pwning shenanigans I was up to earlier in the year, and another on pipetap, a new Windows named pipe proxy/tool.
sensepost.com/blog/2025/pw...
sensepost.com/blog/2025/pi...
sensepost.com/blog/2025/pw...
sensepost.com/blog/2025/pi...
Reposted by Dominic White
It’s almost time for my @BSidesCapeTown talk, and I’ve just open sourced pipetap. My Windows named pipe proxy & multi-tool. Excited to see what you do with it!
github.com/sensepost/pi...
github.com/sensepost/pi...
December 6, 2025 at 1:56 PM
It’s almost time for my @BSidesCapeTown talk, and I’ve just open sourced pipetap. My Windows named pipe proxy & multi-tool. Excited to see what you do with it!
github.com/sensepost/pi...
github.com/sensepost/pi...
lolwifi.network really does point out the elephant in the cyber room. It’s not about WiFi it’s about security professionals understanding risk assessment.
lolwifi.network - Public WiFi Security Assessment
Public WiFi security assessment and education. Understand the risks that occur when joining networks.
lolwifi.network
December 5, 2025 at 4:12 AM
lolwifi.network really does point out the elephant in the cyber room. It’s not about WiFi it’s about security professionals understanding risk assessment.
Reposted by Dominic White
Thank you to cybercriminals who sacrifice themselves in order to give us free marketing.
December 31, 2024 at 6:23 AM
Thank you to cybercriminals who sacrifice themselves in order to give us free marketing.
Reposted by Dominic White
Shamlessly reposting from elsewhere- you can easily communicate between Linux VMs and guests using VSOCK (man7.org/linux/man-pa...). Here's some silly examples of bidirectional chat btwn host & guest using Socat. Or connecting via SSH to my home router from the VM without TCP/IP. No code required.
November 29, 2025 at 6:59 AM
Shamlessly reposting from elsewhere- you can easily communicate between Linux VMs and guests using VSOCK (man7.org/linux/man-pa...). Here's some silly examples of bidirectional chat btwn host & guest using Socat. Or connecting via SSH to my home router from the VM without TCP/IP. No code required.
Reposted by Dominic White
Reposted by Dominic White
I like Bluesky, but I really hope it becomes more popular for global geopolitical & conflict news and discussion. This week's G20 summit was far more active & vibrant on X than on here, and I feel that's a tragedy. It continues to validate staying on a platform that everyone should ideally leave.
November 24, 2025 at 12:37 PM
I like Bluesky, but I really hope it becomes more popular for global geopolitical & conflict news and discussion. This week's G20 summit was far more active & vibrant on X than on here, and I feel that's a tragedy. It continues to validate staying on a platform that everyone should ideally leave.
Reposted by Dominic White
I've uploaded the slides of my recent talk "JS Engine Security in 2025": saelo.github.io/presentation.... I think there'll also be a recording available at some point (otherwise I can make one as not everything's in the slides).
Fantastic conference as usual, big thanks to the PoC Crew!
Fantastic conference as usual, big thanks to the PoC Crew!
saelo.github.io
November 24, 2025 at 9:58 AM
I've uploaded the slides of my recent talk "JS Engine Security in 2025": saelo.github.io/presentation.... I think there'll also be a recording available at some point (otherwise I can make one as not everything's in the slides).
Fantastic conference as usual, big thanks to the PoC Crew!
Fantastic conference as usual, big thanks to the PoC Crew!
I drink an awful lot of coffee and it’s rare that I’m genuinely surprised by a roast but darkmatterroasters.com is doing super interesting things with their roasting and teasing out specific flavours. I’d strongly recommend a try.
darkmatterroasters
Other worldly speciality coffee sourced from some of the world’s best producers. Expertly roasted in London, United Kingdom. Find roasted coffee beans available on flexible subscriptions, wholesale coffee for your cafe, bakery, hotel, business and more.
darkmatterroasters.com
November 23, 2025 at 8:01 PM
I drink an awful lot of coffee and it’s rare that I’m genuinely surprised by a roast but darkmatterroasters.com is doing super interesting things with their roasting and teasing out specific flavours. I’d strongly recommend a try.
Reposted by Dominic White
Cybersecurity isn’t ready for the conversation about how bad sexism and ageism are in the whole pen test / red team community, or how influencer culture and the saturated market are enabling it to get worse. www.linkedin.com/pulse/tryhac...
TryHackMe's Advent of Cyber 2025: Zero Women Creators - A Critical Look at Representation in Cybersecurity Education
THE PROBLEM 18 creators. Zero women.
www.linkedin.com
November 22, 2025 at 4:33 AM
Cybersecurity isn’t ready for the conversation about how bad sexism and ageism are in the whole pen test / red team community, or how influencer culture and the saturated market are enabling it to get worse. www.linkedin.com/pulse/tryhac...