Filter by technique: All T1190 T1486 T1566.002 T1055.001 T1195.001 T1059.001 T1204.002 T1203

Filter by company: All Microsoft Google Huntress Apple Inc. GitHub Amazon Web Services Amazon Meta

• The vi family

  Lobsters

  T1204.002 53%
  1 day ago
• [webapps] FUXA 1.2.8 - Authentication Bypass + RCE Exploit

  Exploit-DB

  T1190 95% T1059.006 90% T1059.007 48%
  2026-04-30
• [webapps] HUSTOJ Zip-Slip v26.01.24 - RCE

  Exploit-DB

  T1190 96% T1539 48%
  2026-04-30
• [webapps] Frigate NVR 0.16.3 - Remote Code Execution

  Exploit-DB

  T1190 93% T1059.004 90% T1055.001 76%
  2026-04-30
• [webapps] Camaleon CMS v2.9.0 - Path Traversal

  Exploit-DB

  T1190 89%
  2026-04-30
• [webapps] deephas 1.0.7 - Prototype Pollution

  Exploit-DB

  T1059.006 35%
  2026-04-30
• A Practical Guide to BloodHound Data Collection

  Black Hills InfoSec

  T1588.002 88% T1087.002 78% T1482 60%
  2026-04-29
• [webapps] GeographicLib v2.5.1 - stack buffer overflow

  Exploit-DB

  T1059.004 97% T1587.004 69%
  2026-04-29
• [local] OpenWrt 23.05 - Authenticated Remote Code Execution (RCE)

  Exploit-DB

  T1190 87% T1068 64%
  2026-04-29
• [webapps] FacturaScripts 2025.43 - XSS

  Exploit-DB

  T1190 62%
  2026-04-29
• VU#915947: SGLang is vulnerable to remote code execution when rendering chat templates from a model file

  CERT/CC Vulnerability Notes

  T1059.006 79% T1190 63%
  2026-04-20
• Metasploit Wrap-Up 04/17/2026

  Rapid7 Blog

  T1190 97% T1053.005 93% T1053 58%
  2026-04-17
• [webapps] React Server 19.2.0 - Remote Code Execution

  Exploit-DB

  T1190 84%
  2026-04-09
• [webapps] RomM 4.4.0 - XSS_CSRF Chain

  Exploit-DB

  T1195.001 74%
  2026-04-09
• Node.js Trust Falls: Dangerous Module Resolution on Windows

  Zero Day Initiative

  T1195.002 55% T1195.001 36%
  2026-04-08
• [local] 7-Zip 24.00 - Directory Traversal

  Exploit-DB

  T1068 90% T1204.002 77% T1560.001 68%
  2026-04-08
• Hackers Are Attempting to Turn ComfyUI Servers Into a Cryptomining Proxy Botnet

  Censys

  T1070.003 96% T1018 84% T1098.004 84%
  2026-04-06
• [local] is-localhost-ip 2.0.0 - SSRF

  Exploit-DB

  T1203 53% T1190 35%
  2026-04-06
• Cloud Security: Tips and Resources for Securing the Cloud

  Black Hills InfoSec

  T1525 67% T1526 46% T1078.004 32%
  2026-04-01
• VU#577436: Hard coded credentials vulnerability in GoHarbor's Harbor

  CERT/CC Vulnerability Notes

  T1078.001 63% T1190 51%
  2026-03-24
• How a Tax Search Leads to Kernel-Mode AV/EDR Kill

  Huntress

  T1003.001 99% T1055.001 99% T1219 97%
  2026-03-19
• VU#665416: SGLang (sglang) is vulnerable to code execution attacks via unsafe pickle deserialization

  CERT/CC Vulnerability Notes

  T1059.007 84% T1190 35%
  2026-03-12
• Introducing CloudFox GCP: Attack Path Identification for Google Cloud

  Bishop Fox

  T1525 91% T1526 62% T1613 33%
  2026-02-26
• A New RAT and a Hands-on-Keyboard Intrusion

  Huntress

  T1055.001 99% T1053.005 87% T1204.004 74%
  2026-02-16
• ESXi Exploitation in the Wild

  Huntress

  T1068 98% T1055.001 88% T1486 81%
  2026-01-07
• Introducing Pathfinding.cloud

  Datadog Security Labs

  T1525 94%
  2025-12-17
• CVE-2025-55182 (React2Shell): Remote code execution in React Server Components and Next.js

  Datadog Security Labs

  T1059.004 83% T1083 70% T1190 66%
  2025-12-04
• Abusing Delegation with Impacket (Part 3): Resource-Based Constrained Delegation

  Black Hills InfoSec

  T1557.001 79% T1550.003 72% T1558 66%
  2025-11-26
• Abusing Delegation with Impacket (Part 2): Constrained Delegation

  Black Hills InfoSec

  T1003.006 85% T1558.003 77% T1550.003 70%
  2025-11-12
• Deobfuscating Files for Flags: Huntress CTF 2025 Retro

  Huntress

  T1027 75% T1014 31%
  2025-11-06
• Abusing Delegation with Impacket (Part 1): Unconstrained Delegation

  Black Hills InfoSec

  T1558 72% T1558.003 63% T1550.003 62%
  2025-11-05
• Wrangling Windows Event Logs with Hayabusa & SOF-ELK (Part 2)

  Black Hills InfoSec

  T1654 83%
  2025-10-01
• An Attacker’s Blunder Gave Us a Look Into Their Operations

  Huntress

  T1059.006 92% T1176.001 91% T1591 73%
  2025-09-09
• DNS Triage Cheatsheet

  Black Hills InfoSec

  T1071.004 88% T1566.002 68% T1586.002 64%
  2025-08-06
• Introducing OSS Rebuild: Open Source, Rebuilt to Last

  Google Security Blog

  T1195.001 55%
  2025-07-21
• Getting Started with NetExec: Streamlining Network Discovery and Access

  Black Hills InfoSec

  T1021.002 97% T1110.003 97% T1201 95%
  2025-07-09
• !exploitable Episode Two - Enter the Matrix

  Doyensec

  T1572 76% T1190 71% T1574.001 38%
  2025-02-26
• The Top Ten List of Why You Got Hacked This Year (2023/2024)

  Black Hills InfoSec

  T1078.001 67% T1190 50% T1557.001 44%
  2024-12-12
• Pentesting, Threat Hunting, and SOC: An Overview

  Black Hills InfoSec

  T1654 92% T1059.004 45% T1595 41%
  2024-10-31
• Crafting the Perfect Prompt: Getting the Most Out of ChatGPT and Other LLMs

  Black Hills InfoSec

  T1046 98%
  2024-08-29
• Fickle PDFs: exploiting browser rendering discrepancies

  PortSwigger Research

  T1588.006 51%
  2024-07-09
• Abusing Active Directory Certificate Services (Part 4)

  Black Hills InfoSec

  T1649 95% T1558.003 36%
  2024-05-30
• Offensive IoT for Red Team Implants (Part 3)

  Black Hills InfoSec

  T1543.002 94%
  2024-05-23
• At Home Detection Engineering Lab for Beginners

  Black Hills InfoSec

  T1059.001 100% T1204.002 46%
  2024-05-02
• Bypass NTLM Message Integrity Check – Drop the MIC

  Black Hills InfoSec

  T1557.001 95% T1558.001 72% T1550.003 35%
  2024-02-01
• Rooting For Secrets with TruffleHog

  Black Hills InfoSec

  T1552.004 63%
  2024-01-18
• Hunting for SSRF Bugs in PDF Generators

  Black Hills InfoSec

  T1552.005 59% T1190 57% T1525 52%
  2024-01-11
• Abusing Active Directory Certificate Services (Part 3)

  Black Hills InfoSec

  T1649 93% T1557.001 72%
  2023-11-09
• Abusing Active Directory Certificate Services (Part 2)

  Black Hills InfoSec

  T1649 94%
  2023-10-12
• Abusing Active Directory Certificate Services (Part 1)

  Black Hills InfoSec

  T1649 95% T1558.003 81% T1558 37%
  2023-10-05