How an image could compromise your Mac: understanding an ExifTool vulnerability (CVE-2026-3102) https://securelist.com/exiftool-compromise-mac/119866/

How an image could compromise your Mac: understanding an ExifTool vulnerability (CVE-2026-3102) https://securelist.com/exiftool-compromise-mac/119866/

Credential Guard Bypass via Remote Credential Guard Protocol Abuse (SpecterOps research testing) https://github.com/osherjacobs/AD-Lab-Research/blob/main/SPECTEROPSCGCOMPROMISE.md

NmapView transforms flat Nmap XML into interactive HTML dashboard https://github.com/dreizehnutters/NmapView

Advanced LSASS Dumper with PPL Bypass and Process Cloning https://github.com/vari-sh/RedTeamGrimoire/tree/main/Doppelganger

The Accidental C2: Exploring Dev Tunnels for Remote Access https://specterops.io/blog/2026/05/06/dev-tunnels-the-accidental-c2/

Bypassing Windows authentication reflection mitigations for SYSTEM shells - Part 1 https://www.synacktiv.com/en/node/1337

I just solved Logging on Hack The Box! Very realistic and fun Active Directory box, definitely learned something new. #HTB

A fork of GhostKatz that is compatible to AdaptixC2 and Kharon https://github.com/0xGunrunner/GhostKatz-AdaptixC2-Compatible

A Pentesters Worst Nightmare: When Your Toolkit Breaks https://www.abdulmhsblog.com/posts/brokentooling/