CVE-2025-29927 : Next.js Middleware Authorization Bypass – Technical Analysis
A critical vulnerability, CVE-2025-29927, has been identified in Next.js, a React-based web framework by Vercel. This flaw allows attackers to bypass middleware-based authorization checks...
pugDNS : Revolutionizing DNS Query Speed And Accuracy For Advanced Networking Needs
pugDNS is an experimental, high-performance DNS query tool designed to facilitate fast and accurate bulk DNS lookups.
It leverages AF_XDP (Address Family eXpress Data...
ZeroDays CTF 2025 : A Comprehensive Overview
The ZeroDays CTF 2025, held on March 22nd at Croke Park in Dublin, Ireland, marks a significant milestone as it celebrates its 10th anniversary....
CloudPEASS : Cloud Privilege Escalation Awesome Script Suite
CloudPEASS is a suite of tools designed to help users identify potential privilege escalation paths and other security vulnerabilities in cloud environments, specifically Azure,...
OSCE³ and OSEE Study Guide : Understanding Key Tools And Functions
The OSCE³ (Offensive Security Certified Expert 3) and OSEE (Offensive Security Exploitation Expert) certifications are advanced qualifications in the field of cybersecurity, focusing on...
Kernel Callbacks Removal : Bypassing EDR Detections
Kernel callbacks are essential components used by Endpoint Detection and Response (EDR) systems to monitor system events, such as process creation, image loading, and...
Blockchain-Attack-Vectors : A Comprehensive Tool For Web3 Security
The Blockchain-Attack-Vectors directory is a vital resource for the Web3 community, designed to categorize and mitigate various attack vectors on blockchain networks.
This open...
Verizon AI Burp Extensions (VAIBE) : Revolutionizing AI Security Testing
Verizon AI Burp Extensions (VAIBE) is a cutting-edge suite of tools designed to enhance the capabilities of penetration testers and security researchers working with...
ArkFlow : High-Performance Stream Processing – A Comprehensive Guide
ArkFlow is a high-performance Rust-based stream processing engine designed to handle data streams efficiently. It supports multiple input/output sources and processors, making it versatile...
TInjA – The Template INJection Analyzer
TInjA is a powerful CLI tool designed to detect and identify template injection vulnerabilities in web applications.
Developed by Hackmanit and Maximilian Hildebrand, it...