2777
🛡️ Cybersecurity enthusiast | 💻 Helping secure the digital world | 🌐 Web App Tester | 🕵️♂️ OSINT Specialist Admin: @laazy_hack3r
🖼️ Daily Cybersecurity Meme
"WRITING UNIT TESTS"
"RUNNING SAST IN CI/CD"
"HIRING A RED TEAM"
""IT COMPILES, SHIP IT""
#Tech_book
"Metasploit: The Penetration Tester's Guide",
2nd edition, 2024.
// This book is designed to teach you the fundamentals of the Framework as well as advanced techniques in exploitation. Our goal is to provide a useful tutorial for the beginner and a reference for practitioners
#OpSec
#MalDev
#Offensive_security
Sleeping Beauty:
Part 1 - Putting Adaptix to Bed with Crystal Palace
Part 2 - CFG, CET, and Stack Spoofing
// A tale of relocations, ROP chains, and the quest to make an Adaptix beacon sleep gracefully..
// Disclaimer
#Tech_book
"Hands-On Ethical Hacking:
Tactics Strategies, tools, and techniques for effective cyber defense", 2024.
#Research
#MLSecOps
"Prioritization of Risks from Artificial Intelligence:
A Delphi Study of 272 International Experts",
June 2026.
]-> Repo
// Data and materials from a three-round Delphi study conducted by the MIT AI Risk Initiative to elicit expert judgments on the prioritisation of AI risks. Over 200 experts assessed 24 AI risk subdomains from the AI Risk Repository taxonomy across three dimensions: vulnerability, responsibility, and severity
🖼️ Daily Cybersecurity Meme
"ENCRYPTED S3 BUCKET"
"INTERNS"
"PUBLIC S3 BUCKET WITH "backup-DO-NOT-DELETE""
🖼️ Daily Cybersecurity Meme
""WE FOLLOW OWASP BEST PRACTICES""
""We FoLlOw OwAsP bEsT pRaCtIcEs""
🖼️ Daily Cybersecurity Meme
"SECURITY POLICIES"
"STARTUP FOUNDERS"
""MOVE FAST AND BREAK THINGS""
🦾 **VulnOps Daily Digest**
☀️ 26 Jun 2026 · 02:40 PM IST
📰 A $2.5 Billion Whodunit: The Hack That Dented the U.K. Economy
https://news.google.com/rss/articles/CBMie0FVX3lxTE5MdTRMYi1JcVlfUmNTLU05NlpsYURIMG14V2M1bmxCZzFlemtIWW1vMHdZVmZBZndubk9jOEFjWVFsQWFzTjhrRDlGck9abzhBck1nY3VmVnlRcWczYkVsYTdFLVM1Z2FSdGsxT3d0aEFnYkQ1cFE5VC1YYw?oc=5
📰 AI Makes the Cybersecurity Game Faster, Not New
https://news.google.com/rss/articles/CBMiigFBVV95cUxNSzB2NnJobGR2d2JsZUl2cnhtS2xYY0ZSaWFSRFlwb1NtUFoxcVozS0NRMDk0UklOdzlOeTY5RUxIUFptX0NGWlZwOEJodXF6VDZ3VjVMVFhrYzBOY0Z6OXE3WUYyVXVZMVpTTFVCZ0NMN1Y2cnBuVmF0Y0xPVUZKMU01cy1kVExiWVE?oc=5
📰 White House’s state infrastructure cybersecurity initiative stalled
https://news.google.com/rss/articles/CBMioAFBVV95cUxPR1loUVEwbzU1MEhqQWwzb1NfMmRhY0Qwc0dwdFV2XzlEZ005Z2FvRDJheHkyVWMtNGM3dWJNLUxFYnA5a2h1NlIyZnkwWVYxZ3dhblBZOS1HSGVoOXhMeUVOOFRnVF9xdzBwM25FTjBLY0o3cDdFcVJjam5OaGgwSGFyT19WRXlRZjFfRkRqblBIdE9xSnlrczdjcVZwd2V1?oc=5
📰 Twin Executive Orders Seek to Spur Quantum Leap in Technology and Cybersecurity
https://news.google.com/rss/articles/CBMiyAFBVV95cUxNeldYSU8weVUteGRLWWFUOC1najh5NGZYUlNIRG5uSW54dTZfREpXNjBCcElaZ3h5d1FEZTJuTC1KYnV0eG5Na25rOVJvTzFVRnFDdzd5ekJWQ1hLRnZOZVBNOFF0LVNWUnM0QXFrSFoyUHFyWXFLOVlGRTF0RXhnSTluUnIwa3FqYVN1MEplNVZhU0h1ZWR5cVlnTXpleVp5TkVtdFdqbW1pbjFVU3UxZFBQSlpETGZBZHQ0dTV6ekh1NHQwbXRiRw?oc=5
📰 Evaluating Mexico’s New Cybersecurity Plan
https://news.google.com/rss/articles/CBMihwFBVV95cUxOZkZqbFVQZlFVS0VDUkQtWnlvNm9kZVFqUzhoNmk5NS12Z1dacVpVdW5oZ1Vaakp3OEFuNFZPcXBVUWU4aXpGTWJyNExLc1dUdzdzTkh4UzNOdE1QdnktbUROMktXWnF3MnYtZ2EtcHNna0FpUGQxVi1fVmJuXzlpQUVWUXJGR2s?oc=5
💡 Segment your network. One compromised host shouldn't mean game over.
⚡ _VulnOps · AI-Powered Security_
🖼️ Daily Cybersecurity Meme
"FIX ALL 500 CRITICAL VULNS"
"DEPLOY TO PROD ON SCHEDULE"
"SWEATING INTENSELY"
🖼️ Daily Cybersecurity Meme
"DOING THREAT MODELING WITH A WHITEBOARD"
"ASKING GPT-4 "WHAT COULD GO WRONG?""
🖼️ Daily Cybersecurity Meme
"PROPER INPUT VALIDATION"
"JUNIOR DEVS"
"innerHTML = userInput"
Hello, guys after many days I am able to use this without vpn.. So many things got stuck.. And will continue posting from today as usual..
Thanks for understanding everyone.. ❤️
#Kernel_Security
Unix GC Remastered
https://mohandacherir.github.io/Qdiv7/posts/unix_new_gc
// A walkthrough of the rewritten AF_UNIX garbage collector, the CVE-2025-40214 scc_index uninitialised-field bug, and two reproducers
#DFIR
#AIOps
#Whitepaper
"From Alert to Evidence:
Evaluating AI Agents for Cyber Forensic Triage", 2026.
]-> https://github.com/connorblackard/breadcrumb
// LLM-powered forensic triage. Takes a SIEM alert plus a directory of KAPE/EZ-tools forensic output and produces an incident report
#AIOps
#Whitepaper
1⃣ "Zero Trust for AI Agents: The Security Checklist", v.3, Jun 2026.
2⃣ "Agentic AI Threat Map", v.2, Jun 2026.
#Fuzzing
#reversing
#Research
#Mobile_security
"Protocol Prying: Systematic Vulnerability Research in the Apple AirDrop and Android Quick Share Proximity Transfer Protocols", Jun 2026.
]-> artifacts
// the first cross-platform reverse engineering and protocol-aware fuzzing study of both stacks
#Research
#hardening
#Cloud_Security
"A Comparison of Kubernetes Compliance Standards and Configuration Scanners", Jun 2026.
]-> benchmark for evaluating and comparing Kubernetes security scanners
// This research presents a systematic comparison of eight commonly used Kubernetes hardening guidelines
#tools
#Sec_code_review
"LLM-Powered Vulnerability Discovery Through Code Decomposition, Adversarial Verification, and Dynamic Testing", Jun 2026.
// OpenAnt - open-source vulnerability discovery system that integrates static program analysis with LLM-based reasoning in a multi-stage pipeline
🖼️ Daily Cybersecurity Meme
""ADMIN123" IS A PERFECTLY"
"SECURE PASSWORD"
🖼️ Daily Cybersecurity Meme
"ENCRYPTED S3 BUCKET"
"INTERNS"
"PUBLIC S3 BUCKET WITH "backup-DO-NOT-DELETE""
🖼️ Daily Cybersecurity Meme
"SHIFT-LEFT MEANS YOU"
"DON'T NEED SHIFT-RIGHT"
🖼️ Daily Cybersecurity Meme
"LEGACY MONOLITH"
"DEVELOPERS"
"NEW MICROSERVICE WITH 0 TESTS"
🦾 **VulnOps Daily Digest**
☀️ 26 Jun 2026 · 02:40 PM IST
📰 A $2.5 Billion Whodunit: The Hack That Dented the U.K. Economy
https://news.google.com/rss/articles/CBMie0FVX3lxTE5MdTRMYi1JcVlfUmNTLU05NlpsYURIMG14V2M1bmxCZzFlemtIWW1vMHdZVmZBZndubk9jOEFjWVFsQWFzTjhrRDlGck9abzhBck1nY3VmVnlRcWczYkVsYTdFLVM1Z2FSdGsxT3d0aEFnYkQ1cFE5VC1YYw?oc=5
📰 AI Makes the Cybersecurity Game Faster, Not New
https://news.google.com/rss/articles/CBMiigFBVV95cUxNSzB2NnJobGR2d2JsZUl2cnhtS2xYY0ZSaWFSRFlwb1NtUFoxcVozS0NRMDk0UklOdzlOeTY5RUxIUFptX0NGWlZwOEJodXF6VDZ3VjVMVFhrYzBOY0Z6OXE3WUYyVXVZMVpTTFVCZ0NMN1Y2cnBuVmF0Y0xPVUZKMU01cy1kVExiWVE?oc=5
📰 White House’s state infrastructure cybersecurity initiative stalled
https://news.google.com/rss/articles/CBMioAFBVV95cUxPR1loUVEwbzU1MEhqQWwzb1NfMmRhY0Qwc0dwdFV2XzlEZ005Z2FvRDJheHkyVWMtNGM3dWJNLUxFYnA5a2h1NlIyZnkwWVYxZ3dhblBZOS1HSGVoOXhMeUVOOFRnVF9xdzBwM25FTjBLY0o3cDdFcVJjam5OaGgwSGFyT19WRXlRZjFfRkRqblBIdE9xSnlrczdjcVZwd2V1?oc=5
📰 Twin Executive Orders Seek to Spur Quantum Leap in Technology and Cybersecurity
https://news.google.com/rss/articles/CBMiyAFBVV95cUxNeldYSU8weVUteGRLWWFUOC1najh5NGZYUlNIRG5uSW54dTZfREpXNjBCcElaZ3h5d1FEZTJuTC1KYnV0eG5Na25rOVJvTzFVRnFDdzd5ekJWQ1hLRnZOZVBNOFF0LVNWUnM0QXFrSFoyUHFyWXFLOVlGRTF0RXhnSTluUnIwa3FqYVN1MEplNVZhU0h1ZWR5cVlnTXpleVp5TkVtdFdqbW1pbjFVU3UxZFBQSlpETGZBZHQ0dTV6ekh1NHQwbXRiRw?oc=5
📰 Evaluating Mexico’s New Cybersecurity Plan
https://news.google.com/rss/articles/CBMihwFBVV95cUxOZkZqbFVQZlFVS0VDUkQtWnlvNm9kZVFqUzhoNmk5NS12Z1dacVpVdW5oZ1Vaakp3OEFuNFZPcXBVUWU4aXpGTWJyNExLc1dUdzdzTkh4UzNOdE1QdnktbUROMktXWnF3MnYtZ2EtcHNna0FpUGQxVi1fVmJuXzlpQUVWUXJGR2s?oc=5
💡 Default creds are still the #1 initial access vector. Change them.
⚡ _VulnOps · AI-Powered Security_
🖼️ Daily Cybersecurity Meme
"PROPER INPUT VALIDATION"
"JUNIOR DEVS"
"innerHTML = userInput"
🖼️ Daily Cybersecurity Meme
""I HAVE NOTHING TO HIDE ONLINE""
""i HaVe NoThInG tO hIdE oNlInE""
🦾 **VulnOps Daily Digest**
☀️ 23 Jun 2026 · 09:53 AM IST
📰 Policymakers struggle to factor cybersecurity into federal funding programs
https://news.google.com/rss/articles/CBMiyAFBVV95cUxNNHBkT3hTWG0zbUo5MWE3bnVIb1BLR3J4TXRKRExTbGlURmY3Vm9FOW45bEdCS3g5NXM3eHdaV0JpNXFFRW85ckJ3blFYZkxDWl82UjNiY0pYbld0WHBUalJwRmJYNll0Z0lvbmJmRkpYNEhsT0JrUUltUHRyX3FmbklnWFVlaDRJb2c0YUF4eFpSejZMN0gzV01lNFVvZkttRnpmb2lvdkpKTUUtR0s4dVNQeFhMczVkUHk3RVZfZWozM2JIcUhPVA?oc=5
📰 Daybreak: Tools for securing every organization in the world
https://news.google.com/rss/articles/CBMiY0FVX3lxTE5tVlVnSldkUzdBazNDRTJxbnpxdzJSdzhHVGJMcWNYQUt6WDVkMUQ5NDk5ajZzZWpXWGxlNllybW84MFFOVFZHYjl6RDRkMXRkLVlGcTcwQ1A5M2l0MGlQOUtndw?oc=5
📰 Klue hack results in data breach at several cybersecurity firms
https://news.google.com/rss/articles/CBMinwFBVV95cUxONlZvZjYyRVNNVGFBWm5kaXEwWlJndmpzSGVycEd5dUl0RDNFeHo0S0xwSUNmeXVuRlc2M3dOV2Y1Y0k0VmhoazVYWU9MLUVVaVNESWdadkUxMEw4SFBOazVsRlRfY0hMcXdzN2V2a3hmaG1GWEIxQ25MVVZTb3g3TjNYUjdheU5zenNkWWZ5SlJ1ZUo4SFdjOGZDNGZWLUU?oc=5
📰 UMass Chan study finds brain activity could predict problematic drinking, relapse vulnerability in alcohol use disorder
https://news.google.com/rss/articles/CBMi-gFBVV95cUxPeTlxU3ltVG9uTTItcnZhbWlpQndZdHVzWExlWFFZS25ybU5rOWRSWUpPdWZYNW01QW1WRUhKMXRtbm85ekYzUFloTUpkZDZnWHRrQjcxRGRTS0JQU1FUYnpYNWZXSk43RlVPc0JmallxWk5lcU1wNWluaW5rZmpzMVFVcElOVnZBUzNMU0cyZUpVcWlhNWJpZFJZamVlNE1LTVV2M1lrSlRMYmk5eUlyVVEyU1ZzSERXMFRFQ2VhWlNaLURCd2o0OERrd1J3cW9EeFRQTWlLRUNNel9yeVRkWmhpQjd0WkVZSmVLek53VV94SU9KeUtWUDZ3?oc=5
📰 Prevention vs Recovery: What Modern Ransomware Defense Gets Wrong
https://news.google.com/rss/articles/CBMinAFBVV95cUxQS0p5X0gxSUUzNTVGX1J1U0RaWUQ4WGZZckpQYmU5ampfREUtdjNSMUtXdmFpRzRVVFhEUGs4MHRUNGpHdTBpb3h4UWFONFBlUXB4OG1UTTVUd19oMW92NVlyRHdqaThxSklWMHNtaTJoZThSVHB5QUxUVVo0a1Z4ZVRlU0JwUGNiRXdqOEJacGJwU1EwSmxEckhBWEM?oc=5
💡 Run weekly dependency scans — CVEs don't wait for patch Tuesday.
⚡ _VulnOps · AI-Powered Security_
#AIOps
#MLSecOps
"Deep-Research Agents Can Be Poisoned via User-Generated Content", May 2026.
]-> https://github.com/Tingwei-Zhang/geo_storm
// WARP (Web Agent Retrieval Poisoning) attack exploits the predictable retrieval patterns of deep-research agents. Key observation is that within a topic cluster, the same UGC pages are retrieved across many related queries. By appending poisoned text to one of these high-overlap pages - e.g., posting a comment on a popular Reddit thread - an adversary can influence the agent’s output across the entire cluster. Crucially, the WARP attack does not inject new documents into retrieval; it modifies existing pages that the agent already retrieves organically
#tools
#Threat_Research
Ghost-Sender - Universal Email Spoofing against Exchange Online
https://labs.infoguard.ch/posts/ghost-sender
// Using Exchange Online (or on-premises exchange in hybrid mode) in combination with an external MX record, such as a third-party email server or spam protection solution, can allow the spoofing of emails from any sender to any recipient in the target tenant
Guys good morning bec of the issue from the govt on temporary ban on the telegram.. For few days there might be delay on the updates on the channel.. Kindly bare it...
And heartly thankfull for u guys for the understanding❤️