Our tracking of OceanLotus activities from 2024–2026 reveals a shift in operational focus. During this period, the Vietnam-aligned OceanLotus adopted a more selective approach to external operations ...

The Vietnam-aligned threat actor known as OceanLotus has been attributed to two distinct campaigns that targeted domestic entities and stock investors with a backdoor known as SPECTRALVIPER. The ...

ESET researchers have discovered SprySOCKS for Windows, FishMonger’s backdoor weaponizing a kernel driver for advanced ...

Cato Networks tracked Poisson using OpenSSH and Tailscale to maintain access after Havoc C2 outage in a 33-day intrusion.

I wore the world's first HDR10 smart glasses TCL's new E Ink tablet beats the Remarkable and Kindle Anker's new charger is one of the most unique I've ever seen Best laptop cooling pads Best flip ...

uint64_t mmio_va = *(uint64_t *)(softc + IOMMU_SC_MMIO_VA); uint64_t cb2_va = *(uint64_t *)(softc + IOMMU_SC_CB2_PTR); uint64_t cb3_va = *(uint64_t *)(softc + IOMMU ...

Abstract: Developing a remote exploit is not easy. It requires a comprehensive understanding of a vulnerability and delicate techniques to bypass defense mechanisms. As a result, attackers may prefer ...

If you are looking for the source code of AnduinOS 2, please check the AnduinOS 2 repository. To edit the build parameters, modify the ./src/args.sh file. That's it. The built file will be an ISO file ...

Abstract: Shellcodes are short, executable code fragments that are utilized in various attack scenarios where code execution is possible. When they are injected through the program's inputs, they may ...

The write-up follows the exploitation workflow from reverse engineering with Cutter to payload development and remote exploitation using Pwntools, GDB/pwndbg, Python, and Linux debugging techniques.