WarthogTK
@warthogtk.bsky.social
Pentester | Ex MD (Intensivist & Healthcare Simulation) | (Black) Arch Enthusiast |
Infosec - AD - Windows Internals/Maldev enthusiast |
Geopolitics, Defense, Disinformation, Hybrid warfare | DCS, Gaming, Metal
(OU=FR,DC=WORLD,DC=UNIVERSE)
Infosec - AD - Windows Internals/Maldev enthusiast |
Geopolitics, Defense, Disinformation, Hybrid warfare | DCS, Gaming, Metal
(OU=FR,DC=WORLD,DC=UNIVERSE)
Tenant Enumeration is Back
www.sprocketsecurity.com/blog/tenant-...
www.sprocketsecurity.com/blog/tenant-...
Sprocket Security | Tenant Enumeration is Back
Microsoft's soft patch didn't kill tenant enumeration. Attackers have new ways to map cloud infrastructure. Learn how modern Azure and Microsoft 365…
www.sprocketsecurity.com
December 28, 2025 at 8:46 AM
Tenant Enumeration is Back
www.sprocketsecurity.com/blog/tenant-...
www.sprocketsecurity.com/blog/tenant-...
CVE-2025-14847 - MongoDB Unauthenticated Memory Leak Exploit
A proof-of-concept exploit for the MongoDB zlib decompression vulnerability that allows unauthenticated attackers to leak sensitive server memory
github.com/joe-desimone...
A proof-of-concept exploit for the MongoDB zlib decompression vulnerability that allows unauthenticated attackers to leak sensitive server memory
github.com/joe-desimone...
GitHub - joe-desimone/mongobleed
Contribute to joe-desimone/mongobleed development by creating an account on GitHub.
github.com
December 27, 2025 at 4:29 PM
CVE-2025-14847 - MongoDB Unauthenticated Memory Leak Exploit
A proof-of-concept exploit for the MongoDB zlib decompression vulnerability that allows unauthenticated attackers to leak sensitive server memory
github.com/joe-desimone...
A proof-of-concept exploit for the MongoDB zlib decompression vulnerability that allows unauthenticated attackers to leak sensitive server memory
github.com/joe-desimone...
Beyond RC4 for Windows authentication
www.microsoft.com/en-us/window...
www.microsoft.com/en-us/window...
Beyond RC4 for Windows authentication
As organizations face an evolving threat landscape, strengthening Windows authentication is more critical than ever.
www.microsoft.com
December 26, 2025 at 8:30 AM
Beyond RC4 for Windows authentication
www.microsoft.com/en-us/window...
www.microsoft.com/en-us/window...
Abusing automatic calendar processing for initial access and lateral movement
www.tarlogic.com/blog/abusing...
www.tarlogic.com/blog/abusing...
GitHub - adulau/the-art-of-pivoting: The Art of Pivoting - Techniques for Intelligence Analysts to Discover New Relationships in a Complex World
The Art of Pivoting - Techniques for Intelligence Analysts to Discover New Relationships in a Complex World - adulau/the-art-of-pivoting
www.tarlogic.com
December 26, 2025 at 12:37 AM
Abusing automatic calendar processing for initial access and lateral movement
www.tarlogic.com/blog/abusing...
www.tarlogic.com/blog/abusing...
The Art of Pivoting - Techniques for Intelligence Analysts to Discover New Relationships in a Complex World
github.com/adulau/the-a...
github.com/adulau/the-a...
GitHub - adulau/the-art-of-pivoting: The Art of Pivoting - Techniques for Intelligence Analysts to Discover New Relationships in a Complex World
The Art of Pivoting - Techniques for Intelligence Analysts to Discover New Relationships in a Complex World - adulau/the-art-of-pivoting
github.com
December 25, 2025 at 2:34 PM
The Art of Pivoting - Techniques for Intelligence Analysts to Discover New Relationships in a Complex World
github.com/adulau/the-a...
github.com/adulau/the-a...
FrankenPHP - Unicode Case‑Folding Bug and PHP Sandbox Escape
internethandout.com/post/ezupload
internethandout.com/post/ezupload
FrankenPHP - Unicode Case‑Folding Bug and PHP Sandbox Escape
ezupload was a very interesting web challenge from [0CTF](https://ctftime.org/event/2997/). I happened to have some time to kill that morning, which gave me the opportunity to dig into it early and…
internethandout.com
December 22, 2025 at 7:39 PM
FrankenPHP - Unicode Case‑Folding Bug and PHP Sandbox Escape
internethandout.com/post/ezupload
internethandout.com/post/ezupload
Stealing Microsoft Teams access tokens in 2025 - Randorisec - blog.randorisec.fr/ms-teams-acc...
Stealing Microsoft Teams access tokens in 2025
RandoriSec Offensive Security
blog.randorisec.fr
December 15, 2025 at 4:31 PM
Stealing Microsoft Teams access tokens in 2025 - Randorisec - blog.randorisec.fr/ms-teams-acc...
Tracing JavaScript Value Origins with Breakpoint-Driven Heap Search (BDHS) and Live Object Search
fcavallarin.github.io/wirebrowser/...
fcavallarin.github.io/wirebrowser/...
Installing nathanlr | iOS Guide
Guide to installing nathanlr
fcavallarin.github.io
December 14, 2025 at 3:10 PM
Tracing JavaScript Value Origins with Breakpoint-Driven Heap Search (BDHS) and Live Object Search
fcavallarin.github.io/wirebrowser/...
fcavallarin.github.io/wirebrowser/...
SCOMmand and Conquer - Attacking System Center Operations Manager - SpecterOps
specterops.io/blog/2025/12...
specterops.io/blog/2025/12...
specterops.io/blog/2025/12...
specterops.io/blog/2025/12...
SCOMmand and Conquer - Attacking System Center Operations Manager (Part 1) - SpecterOps
TL:DR; SCOM suffers from similar insecure default configurations as its SCCM counterpart, enabling attackers to escalate privileges, harvest credentials, and ultimately compromise the entire…
specterops.io
December 14, 2025 at 9:44 AM
SCOMmand and Conquer - Attacking System Center Operations Manager - SpecterOps
specterops.io/blog/2025/12...
specterops.io/blog/2025/12...
specterops.io/blog/2025/12...
specterops.io/blog/2025/12...
Installing nathanlr | iOS Guide
Guide to installing nathanlr
ios.cfw.guide
December 13, 2025 at 2:27 PM
SOAPwn: Pwning .NET Framework Applications Through HTTP Client Proxies And WSDL
labs.watchtowr.com/soapwn-pwnin...
labs.watchtowr.com/soapwn-pwnin...
SOAPwn: Pwning .NET Framework Applications Through HTTP Client Proxies And WSDL
Welcome back! As we near the end of 2025, we are, of course, waiting for the next round of SSLVPN exploitation to occur in January (as it did in 2024 and 2025). Weeeeeeeee. Before then, we want to…
labs.watchtowr.com
December 13, 2025 at 1:06 PM
SOAPwn: Pwning .NET Framework Applications Through HTTP Client Proxies And WSDL
labs.watchtowr.com/soapwn-pwnin...
labs.watchtowr.com/soapwn-pwnin...
GitHub - 3lp4tr0n/SessionHop: Windows Session Hijacking via COM
github.com/3lp4tr0n/Ses...
github.com/3lp4tr0n/Ses...
GitHub - 3lp4tr0n/SessionHop: Windows Session Hijacking via COM
Windows Session Hijacking via COM. Contribute to 3lp4tr0n/SessionHop development by creating an account on GitHub.
github.com
December 13, 2025 at 8:52 AM
GitHub - 3lp4tr0n/SessionHop: Windows Session Hijacking via COM
github.com/3lp4tr0n/Ses...
github.com/3lp4tr0n/Ses...
CVE PoC Search
labs.jamessawyer.co.uk/cves/
labs.jamessawyer.co.uk/cves/
CVE PoC Search
Searchable index of CVE proof-of-concept links collected from GitHub.
labs.jamessawyer.co.uk
December 6, 2025 at 9:11 PM
CVE PoC Search
labs.jamessawyer.co.uk/cves/
labs.jamessawyer.co.uk/cves/
Security scanner for Docker containers and images, completely rewritten in Go.
github.com/cr0hn/docker...
github.com/cr0hn/docker...
GitHub - cr0hn/dockerscan: The Most Comprehensive Docker Security Scanner
The Most Comprehensive Docker Security Scanner. Contribute to cr0hn/dockerscan development by creating an account on GitHub.
github.com
December 6, 2025 at 9:08 PM
Security scanner for Docker containers and images, completely rewritten in Go.
github.com/cr0hn/docker...
github.com/cr0hn/docker...
SSRF Payload Generator
Generate HTML/SVG payloads for testing Server-Side Request Forgery vulnerabilities
shelltrail.com/tools/ssrf-p...
Generate HTML/SVG payloads for testing Server-Side Request Forgery vulnerabilities
shelltrail.com/tools/ssrf-p...
SSRF Payload Generator | Shelltrail - Swedish Experts in Pentesting
Generate HTML/SVG payloads for testing Server-Side Request Forgery vulnerabilities.
shelltrail.com
December 6, 2025 at 8:22 PM
SSRF Payload Generator
Generate HTML/SVG payloads for testing Server-Side Request Forgery vulnerabilities
shelltrail.com/tools/ssrf-p...
Generate HTML/SVG payloads for testing Server-Side Request Forgery vulnerabilities
shelltrail.com/tools/ssrf-p...
AI LLM Red Team Handbook | AI LLM Red Team Handbook and Field Manual
AI LLM Red Team Handbook | AI LLM Red Team Handbook and Field Manual
I'm here to help you with the docs.
cph-sec.gitbook.io
December 6, 2025 at 8:05 PM
AI LLM Red Team Handbook | AI LLM Red Team Handbook and Field Manual
RCE in React Server Components github.com/vercel/next....
RCE in React Server Components
A vulnerability affects certain React packages<sup>1</sup> for versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 and frameworks that use the affected packages, including Next.js 15.x and 16.x using the A...
github.com
December 3, 2025 at 6:27 PM
RCE in React Server Components github.com/vercel/next....
ClickFix Gets Creative: Malware Buried in Images
www.huntress.com/blog/clickfi...
www.huntress.com/blog/clickfi...
ClickFix Gets Creative: Malware Buried in Images | Huntress
Huntress uncovered an attack utilizing a ClickFix lure to initiate a multi-stage malware execution chain. This analysis reveals how threat actors use steganography to conceal infostealers like…
www.huntress.com
December 3, 2025 at 7:29 AM
ClickFix Gets Creative: Malware Buried in Images
www.huntress.com/blog/clickfi...
www.huntress.com/blog/clickfi...
Mythic for Developers - Tips and tricks for creating or customizing agents and anything else related to Mythic C2.
youtube.com/playlist?lis...
youtube.com/playlist?lis...
GitHub - Scoubi/BloodSOCer
Contribute to Scoubi/BloodSOCer development by creating an account on GitHub.
www.youtube.com
December 3, 2025 at 7:28 AM
Mythic for Developers - Tips and tricks for creating or customizing agents and anything else related to Mythic C2.
youtube.com/playlist?lis...
youtube.com/playlist?lis...
GitHub - Scoubi/BloodSOCer github.com/Scoubi/Blood...
GitHub - Scoubi/BloodSOCer
Contribute to Scoubi/BloodSOCer development by creating an account on GitHub.
github.com
December 2, 2025 at 10:03 PM
GitHub - Scoubi/BloodSOCer github.com/Scoubi/Blood...