All posts in Uncategorized

■■■■□ ❌ Disinformation: A recently reported contract between Israel and Clock Tower Group, valued at $6 million, is aimed at shaping online narratives. Reports by Responsible Statecraft suggest this involves content production for disinformation and misinformation campaigns, potentially influencing platforms like ChatGPT. The agreement could be seen as a form of mass manipulation.

■■■■□ A deliberately vulnerable Microsoft Entra ID environment. Learn identity security through hands-on, realistic attack challenges. https://github.com/Semperis/EntraGoat

🖱Yet another website: dorksearch.com

■■■■□ North Korean infiltrator caught working in Amazon IT department thanks to lag — 110ms keystroke input raises red flags over true location. A barely perceptible keystroke delay was the smoking gun that led to the uncovering of a malign imposter. https://www.tomshardware.com/tech-industry/cyber-security/north-korean-infiltrator-caught-working-in-amazon-it-department-thanks-to-lag-110ms-keystroke-input-raises-red-flags-over-true-location

💻Bug Bounty: Iran-linked hacker group offers $30,000 bounty for Israel’s military info. https://www.iranintl.com/en/202512164597

■■■□□ Signal Intelligence, Reconnaissance esp wrt. aerial targets and other technologies of electronic warfare were shared by Israeli Elbit systems with Ministry of Defence of UAE 🇦🇪 with 2.3 Billion USD. This is highest amount of money in any deal Elbit has ever seen.

■■■■□ Data-Leak of Military technology. A fully intact GBU-39 from United States 🇺🇸 was dropped on Lebanon 🇱🇧 weeks ago to kill top Hizbollah Shit’te commander. 8 strikes, 7 explode, 1 was dud. The dud was recovered. Now US is pressuring Lebanese government to return the dud. The technology is being now reverse engineered by…

■■■■□ A critical security issue involving the Windows Remote Access Connection Manager (RasMan) that allows local attackers to execute arbitrary code with System privileges. While investigating CVE-2025-59230, the vulnerability that Microsoft addressed in the October 2025 security updates. 0patch security analysts discovered a complex exploit chain that relies on a secondary, previously unknown zero-day flaw…

■■■■□ Shannon – AI Pentesting Tool that Autonomously Checks for Code Vulnerabilities and Executes Real Exploits. https://github.com/KeygraphHQ/shannon Shannon – AI Pentesting Tool that Autonomously Checks for Code Vulnerabilities and Executes Real Exploits

■■■□□ Kali 2025.4 has MCP server support through Hexstrike-AI.