Seclog - #121
Rosecurify
"A swift attack in the cyber world is unseen; its effects, devastating." - The Art of Cyber War
π SecMisc
Cybench β A JVM performance benchmarking and profiling platform. Read More
DNM Buyerβs Bible β A practical guide for darknet markets and privacy preservation. Read More
π° SecLinks
Threat Modeling GitHub β A breakdown of GitHub's intentionally vulnerable design through threat modeling. Read More
Next Token Prediction & LLMs β How predicting the next token can be weaponized in LLMs. Read More
0-Click RCE on SuperNote E-Ink β Remote rootkit-style vulnerability in SuperNote tablets. Read More
MCP Tool Poisoning β Exploiting and hijacking MCP clients through tool poisoning. Read More
Agent2Agent Protocol (A2A) β Googleβs new protocol enabling agent-to-agent interoperability. Read More
Prompt Engineering β A technical whitepaper on crafting prompts to guide AI output. Read More
AI Vulnerability Discovery β Can AI discover and exploit vulnerabilities? A Schneier analysis. Read More
Langflow Python RCE β Unauthenticated RCE in Langflow via
exec()abuse. Read MorepgAdmin RCE (CVE-2025-2945) β Exploit write-up for a critical pgAdmin remote code execution flaw. Read More
.NET Deobfuscation β Reverse-engineering obfuscated .NET binaries. Read More
Anti-EDR Compendium β A deep technical dive into how EDRs workβand how attackers bypass them. Read More
π¦ SecX
AI MVP Security Checklist β A must-read checklist before launching any AI-based MVP. View on X
CVE-2025-30406 PoC β A working proof-of-concept for a newly added CVE on CISA's KEV list. View on X
π₯ SecVideo
From Zero to Zero Day β The hacker journey of Jonathan Jacobi and real-world 0day stories. Watch Here
Is Cursor or Windsurf Safe? β Evaluating the security of two popular AI tools. Watch Here
Hacking Happy Hour Ep.118 β A casual talk on 0days, SQLi, and red team news. Watch Here
π» SecGit
mcp-scan β A scanning tool designed for identifying security issues in MCP servers. Explore on GitHub
looking-glass β A tool for indexing, querying, and repeating searches through codebases. Explore on GitHub
CVE-2025-30065 PoC β A working proof-of-concept for the named CVE. Explore on GitHub
blutter β A reverse engineering toolkit for Flutter mobile applications. Explore on GitHub
CVE-2025-22457 PoC β A public exploit for CVE-2025-22457. Explore on GitHub
RF-Clown β BLE and Bluetooth jammer using ESP32 and nRF24L01 hardware. Explore on GitHub
passphrase-wordlist β A comprehensive wordlist and hashcat rule set for cracking long passphrases. Explore on GitHub
For suggestions and any feedback, please contact: securify@rosecurify.com
Subscribe to my newsletter
Read articles from Rosecurify directly inside your inbox. Subscribe to the newsletter, and don't miss out.
Written by