Tomas Rzepka
@1njected.bsky.social
Founder and Senior👨🦳security consultant at Rzec | OSEP yada yada | Attacker/Defender | Causer of guru meditations | Creator of 4bar loops 🇸🇪
Reposted by Tomas Rzepka
April 25, 2025 at 8:12 PM
Reposted by Tomas Rzepka
MS tried fixing a symlink vuln in Windows but accidentally created a new symlink vuln that lets non-admin users stop security updates from applying 😅 doublepulsar.com/microsofts-p...
Microsoft’s patch for CVE-2025–21204 symlink vulnerability introduces another symlink vulnerability
How non-admins can now stop security updates in Windows.
doublepulsar.com
April 24, 2025 at 5:27 AM
MS tried fixing a symlink vuln in Windows but accidentally created a new symlink vuln that lets non-admin users stop security updates from applying 😅 doublepulsar.com/microsofts-p...
Reposted by Tomas Rzepka
A few quick notes on the Erlang OTP SSHd RCE (CVE-2025-32433) [1/3]
1. Cisco confirmed that their ConfD and NSO products are affected. The ConfD patch is planned for May. These often run on ports 830, 2022, and 2024 versus 22.
sec.cloudapps.cisco.com/security/cen...
1. Cisco confirmed that their ConfD and NSO products are affected. The ConfD patch is planned for May. These often run on ports 830, 2022, and 2024 versus 22.
sec.cloudapps.cisco.com/security/cen...
Cisco Security Advisory: Multiple Cisco Products Unauthenticated Remote Code Execution in Erlang/OTP SSH Server: April 2025
On April 16, 2025, a critical vulnerability in the Erlang/OTP SSH server was disclosed. This vulnerability could allow an unauthenticated, remote attacker to perform remote code execution (RCE) on an…
sec.cloudapps.cisco.com
April 24, 2025 at 4:50 AM
A few quick notes on the Erlang OTP SSHd RCE (CVE-2025-32433) [1/3]
1. Cisco confirmed that their ConfD and NSO products are affected. The ConfD patch is planned for May. These often run on ports 830, 2022, and 2024 versus 22.
sec.cloudapps.cisco.com/security/cen...
1. Cisco confirmed that their ConfD and NSO products are affected. The ConfD patch is planned for May. These often run on ports 830, 2022, and 2024 versus 22.
sec.cloudapps.cisco.com/security/cen...
Reposted by Tomas Rzepka
BREAKING.
From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.
From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.
April 15, 2025 at 5:23 PM
BREAKING.
From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.
From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.
Reposted by Tomas Rzepka
Pete Hegseth allegedly having a Russian email address is the least surprising thing I’ve read today.
March 27, 2025 at 2:12 PM
Pete Hegseth allegedly having a Russian email address is the least surprising thing I’ve read today.
Reposted by Tomas Rzepka
March 21, 2025 at 10:45 AM
@bsky.app This ”jump to top” button is really annoying. Please add option to remove. #horribleUIdesign
November 25, 2024 at 7:02 PM
@bsky.app This ”jump to top” button is really annoying. Please add option to remove. #horribleUIdesign
New #Opeth album is dope! Love the concept and I’m looking forward to the concert in February. 🤘 open.spotify.com/album/1f2Q8u...
The Last Will And Testament
Opeth · Album · 2024 · 8 songs
open.spotify.com
November 23, 2024 at 6:55 PM
New #Opeth album is dope! Love the concept and I’m looking forward to the concert in February. 🤘 open.spotify.com/album/1f2Q8u...
Soon, within the scope of a red team operation near you 😅
This hack is brilliant, APT28 hopping into a target environment over wifi by compromising neighbouring companies and finding a dual-homed host within range.
volexity.com/blog/2024/11...
And yet... they got caught doing this!
volexity.com/blog/2024/11...
And yet... they got caught doing this!
November 23, 2024 at 10:51 AM
Soon, within the scope of a red team operation near you 😅
….delete the X/twitter account? 🙌👾🤘
November 21, 2024 at 8:30 PM
….delete the X/twitter account? 🙌👾🤘