Binni Shah
@binitamshah.bsky.social
Linux Evangelist, Malwares , Security Enthusiast, Investor, Contrarian , Neurology , Philanthropist , Reformist ,Sigma female
300 Milliseconds to Admin: Mastering DLL Hijacking and Hooking to Win the Race (CVE-2025-24076 and CVE-2025-24994) : blog.compass-security.com/2025/04/3-mi...
May 20, 2025 at 7:25 AM
300 Milliseconds to Admin: Mastering DLL Hijacking and Hooking to Win the Race (CVE-2025-24076 and CVE-2025-24994) : blog.compass-security.com/2025/04/3-mi...
Bypassing kASLR via Cache Timing : r0keb.github.io/posts/Bypass...
kASLR Internals and Evolution : r0keb.github.io/posts/kASLR-... credits @r0keb
kASLR Internals and Evolution : r0keb.github.io/posts/kASLR-... credits @r0keb
May 20, 2025 at 6:40 AM
Bypassing kASLR via Cache Timing : r0keb.github.io/posts/Bypass...
kASLR Internals and Evolution : r0keb.github.io/posts/kASLR-... credits @r0keb
kASLR Internals and Evolution : r0keb.github.io/posts/kASLR-... credits @r0keb
Cache poisoning via race-condition in Next.js : zhero-web-sec.github.io/research-and... credits @zhero___
May 20, 2025 at 6:14 AM
Cache poisoning via race-condition in Next.js : zhero-web-sec.github.io/research-and... credits @zhero___
O2 VoLTE : Locating any customer with a phone call : mastdatabase.co.uk/blog/2025/05...
May 20, 2025 at 6:06 AM
O2 VoLTE : Locating any customer with a phone call : mastdatabase.co.uk/blog/2025/05...
0-click RCE on Tesla Model 3 through TPMS Sensors : www.synacktiv.com/sites/defaul... credits @masthoon @vdehors
May 18, 2025 at 11:34 AM
0-click RCE on Tesla Model 3 through TPMS Sensors : www.synacktiv.com/sites/defaul... credits @masthoon @vdehors
Evolution of Tycoon 2FA Defense Evasion Mechanisms : Analysis and Timeline : any.run/cybersecurit...
May 17, 2025 at 1:00 PM
Evolution of Tycoon 2FA Defense Evasion Mechanisms : Analysis and Timeline : any.run/cybersecurit...
HTML to PDF Renderer : A tale of local file access and shellcode execution : neodyme.io/en/blog/html...
May 17, 2025 at 12:55 PM
HTML to PDF Renderer : A tale of local file access and shellcode execution : neodyme.io/en/blog/html...
Fileless Execution : PowerShell Based Shellcode Loader Executes Remcos RAT : blog.qualys.com/vulnerabilit...
May 17, 2025 at 9:16 AM
Fileless Execution : PowerShell Based Shellcode Loader Executes Remcos RAT : blog.qualys.com/vulnerabilit...
Breaking up-to-date Windows 11 BitLocker encryption -- on-device but software-only : neodyme.io/en/blog/bitl...
May 17, 2025 at 9:04 AM
Breaking up-to-date Windows 11 BitLocker encryption -- on-device but software-only : neodyme.io/en/blog/bitl...
Fuzzing Windows ARM64 closed-source binary : www.romainthomas.fr/post/25-04-w...
May 17, 2025 at 6:15 AM
Fuzzing Windows ARM64 closed-source binary : www.romainthomas.fr/post/25-04-w...
Litterbox : Sandbox approach for malware developers and red teamers to test payloads against detection mechanisms before deployment : github.com/BlackSnufkin...
May 17, 2025 at 6:04 AM
Litterbox : Sandbox approach for malware developers and red teamers to test payloads against detection mechanisms before deployment : github.com/BlackSnufkin...
Linux running in Excel : github.com/NSG650/Linux...
May 2, 2025 at 3:46 PM
Linux running in Excel : github.com/NSG650/Linux...
Attacking My Landlord's Boiler : blog.videah.net/attacking-my...
May 1, 2025 at 3:51 PM
Attacking My Landlord's Boiler : blog.videah.net/attacking-my...
AirBorne : Wormable Zero-Click RCE in Apple AirPlay Puts Billions of Devices at Risk : www.oligo.security/blog/airborne
May 1, 2025 at 3:37 PM
AirBorne : Wormable Zero-Click RCE in Apple AirPlay Puts Billions of Devices at Risk : www.oligo.security/blog/airborne
tpotce : T-Pot - The All In One Multi Honeypot Platform : github.com/telekom-secu...
May 1, 2025 at 1:48 PM
tpotce : T-Pot - The All In One Multi Honeypot Platform : github.com/telekom-secu...
JS-Tap : JavaScript payload and supporting software to be used as XSS payload or post exploitation implant to monitor users as they use the targeted application : github.com/hoodoer/JS-Tap
Details : Weaponizing JavaScript for Red Teams : trustedsec.com/blog/js-tap-...
Details : Weaponizing JavaScript for Red Teams : trustedsec.com/blog/js-tap-...
May 1, 2025 at 1:45 PM
JS-Tap : JavaScript payload and supporting software to be used as XSS payload or post exploitation implant to monitor users as they use the targeted application : github.com/hoodoer/JS-Tap
Details : Weaponizing JavaScript for Red Teams : trustedsec.com/blog/js-tap-...
Details : Weaponizing JavaScript for Red Teams : trustedsec.com/blog/js-tap-...
Ghosting-AMSI : AMSI Bypass via RPC Hijack (NdrClientCall3) : github.com/andreisss/Gh...
May 1, 2025 at 1:11 PM
Ghosting-AMSI : AMSI Bypass via RPC Hijack (NdrClientCall3) : github.com/andreisss/Gh...
Yet Another NodeJS Backdoor (YaNB) : A Modern Challenge : www.trustwave.com/en-us/resour...
May 1, 2025 at 1:05 PM
Yet Another NodeJS Backdoor (YaNB) : A Modern Challenge : www.trustwave.com/en-us/resour...
cuddlephish : Weaponized multi-user browser-in-the-middle (BitM) for penetration testers : github.com/fkasler/cudd...
Details : link.springer.com/article/10.1... credits @FKasler
Details : link.springer.com/article/10.1... credits @FKasler
May 1, 2025 at 12:40 PM
cuddlephish : Weaponized multi-user browser-in-the-middle (BitM) for penetration testers : github.com/fkasler/cudd...
Details : link.springer.com/article/10.1... credits @FKasler
Details : link.springer.com/article/10.1... credits @FKasler
Pwning the Ladybird browser : jessie.cafe/posts/pwning...
May 1, 2025 at 11:50 AM
Pwning the Ladybird browser : jessie.cafe/posts/pwning...
Pwning the Ladybird browser : jessie.cafe/posts/pwning...
May 1, 2025 at 11:49 AM
Pwning the Ladybird browser : jessie.cafe/posts/pwning...
Linux Kernel Exploitation (CVE-2025-21756) : Attack of the Vsock : hoefler.dev/articles/vso...
Source code for the exploit : github.com/hoefler02/CV...
Source code for the exploit : github.com/hoefler02/CV...
May 1, 2025 at 11:43 AM
Linux Kernel Exploitation (CVE-2025-21756) : Attack of the Vsock : hoefler.dev/articles/vso...
Source code for the exploit : github.com/hoefler02/CV...
Source code for the exploit : github.com/hoefler02/CV...
Drag and Pwnd : Leverage ASCII characters to exploit VS Code : portswigger.net/research/dra... credits @d4d89704243
ActiveScan++ : github.com/albinowax/Ac...
Ref :
WorstFit : Unveiling Hidden Transformers in Windows ANSI! : blog.orange.tw/posts/2025-0... credits @orange_8361
ActiveScan++ : github.com/albinowax/Ac...
Ref :
WorstFit : Unveiling Hidden Transformers in Windows ANSI! : blog.orange.tw/posts/2025-0... credits @orange_8361
May 1, 2025 at 11:30 AM
Drag and Pwnd : Leverage ASCII characters to exploit VS Code : portswigger.net/research/dra... credits @d4d89704243
ActiveScan++ : github.com/albinowax/Ac...
Ref :
WorstFit : Unveiling Hidden Transformers in Windows ANSI! : blog.orange.tw/posts/2025-0... credits @orange_8361
ActiveScan++ : github.com/albinowax/Ac...
Ref :
WorstFit : Unveiling Hidden Transformers in Windows ANSI! : blog.orange.tw/posts/2025-0... credits @orange_8361
Zig Strike: The ultimate toolkit for payload creation and evasion : kpmg.com/nl/en/home/i...
ZigStrike : a powerful Payload Delivery Pipeline (developed in Zig) offering a variety of injection techniques and anti-sandbox features : github.com/0xsp-SRD/Zig...
ZigStrike : a powerful Payload Delivery Pipeline (developed in Zig) offering a variety of injection techniques and anti-sandbox features : github.com/0xsp-SRD/Zig...
April 24, 2025 at 4:04 PM
Zig Strike: The ultimate toolkit for payload creation and evasion : kpmg.com/nl/en/home/i...
ZigStrike : a powerful Payload Delivery Pipeline (developed in Zig) offering a variety of injection techniques and anti-sandbox features : github.com/0xsp-SRD/Zig...
ZigStrike : a powerful Payload Delivery Pipeline (developed in Zig) offering a variety of injection techniques and anti-sandbox features : github.com/0xsp-SRD/Zig...
Bypassing AMSI with Dynamic API Resolution in PowerShell : rootfu.in/bypassing-am...
April 24, 2025 at 3:46 PM
Bypassing AMSI with Dynamic API Resolution in PowerShell : rootfu.in/bypassing-am...