Scraping By: My YouTube Data Adventure
Exploring insights and lessons from a detailed journey into YouTube data scraping.
Read More
Announcing CodeQL Community Packs
A deep dive into the new CodeQL Community Packs and their implications for vulnerability research.
Read More
Portspoof: Fighting Back Scanners
Discover a new approach to thwart port and service scanners with Portspoof.
Read More
RCE via Prompt Injection
How a terminal prompt injection vulnerability opens doors for RCE in Cursor.
Read More
Breaking Popular WAFs: Project NZT-48
An investigation into bypassing the most common Web Application Firewalls.
Read More
Databricks JDBC Attack via JAAS
Analyzing the methods and impacts of a Databricks JDBC attack leveraging JAAS.
Read More

Kevin Mitnick's Remote Attack (1994)
Did Kevin Mitnick actually execute a remote attack using address spoofing and TCP sequence prediction?
Read More
First SQL Injection Demonstration (1998)
Learn how rain.forest.puppy revealed the first SQL injection vulnerability in Phrack issue 54.
Read More
RCE Attempts Targeting TP-Link Routers
A report on Mirai botnet attacks exploiting TP-Link Archer routers (#CVE-2023-1389).
Read More

The Pager Plot; The Iron River; Joy to the World
A comprehensive episode featuring riveting stories, including security-related narratives.
Watch Here

Tomcat CVE-2024-50379 PoC
A proof of concept for RCE via a race condition in Apache Tomcat.
Explore Here
Polyglot Files: HTML/ZIP/PNG
Learn how to create polyglot files combining HTML, ZIP, and PNG formats.
Explore Here

For suggestions and any feedback, please contact: securify@rosecurify.com

Seclog - #106