Mole is a Binary Ninja plugin designed to identify interesting paths in binaries [by performing static backward slicing]

https://github.com/cyber-defence-campus/mole

In our final ksmbd research post, @sine provides a detailed walkthrough for exploiting a local privilege escalation vulnerability. If you're interested in learning more about exploitation on modern systems - check it out!

https://blog.doyensec.com/2025/10/08/ksmbd-3.html

#doyensec #appsec #security

This was driving me nuts: Even though I set #Firefox to always ask where it saves files, sometimes when I accessed PDF's it saved them in my Downloads directory without question.

It seems `browser.download.start_downloads_in_tmp_dir=true` solves this problem but I still can't wrap my head around why they implemented this exceptional behavior (and why there is no visible setting for it).

Source: https://www.reddit.com/r/firefox/comments/1jnpvs3/firefox_doesnt_ask_when_downloading_pdfs_and/

@badsamurai Great initiatives! Unfortunately they actively hinder C-levels blowing their remaining yearly budget in order to ask for more next year, so they won't happen.

Cybersecurity Awareness Month is dumb. Here are some alternatives.

No Vendor November Do some free shit to improve your posture. You know your users, systems and business better than they do.

Defaults December Security by design and default deny.

#cybersecurityawarenessmonth

Micropatches Released for Windows Storage Spoofing Vulnerability (CVE-2025-49760)
https://blog.0patch.com/2025/10/micropatches-released-for-windows.html

Crafting a Full Exploit RCE from a Crash in Autodesk Revit RFA File Parsing: Trend ZDI researcher Simon Zuckerbraun shows how to go from a crash to a full exploit - & he provides you tools to do the same, including his technique used to get ROP execution. https://www.zerodayinitiative.com/blog/2025/10/6/crafting-a-full-exploit-rce-from-a-crash-in-autodesk-revit-rfa-file-parsing

[RSS] UNEXPECTED_STORE_EXCEPTION (0x154) -- Root Cause: Storage I/O Failure in iaStorAC.sys

https://medium.com/@Debugger/unexpected-store-exception-0x154-root-cause-storage-i-o-failure-in-iastorac-sys-2745d9de6202?source=rss-3ba65b326b28------2

[RSS] LLM Poisoning [1/3] - Reading the Transformer's Thoughts

https://www.synacktiv.com/en/publications/llm-poisoning-13-reading-the-transformers-thoughts.html

Bash a newline: Exploiting SSH via ProxyCommand, again (CVE-2025-61984) https://dgl.cx/2025/10/bash-a-newline-ssh-proxycommand-cve-2025-61984

We just posted our AttackerKB @rapid7 Analysis for the recent Cisco ASA 0day chain; CVE-2025-20362 and CVE-2025-20333. The auth bypass appears to be a patch bypass of an older 2018 vuln. The buffer overflow is in a Lua endpoint, but unsafe native code operations allow a buffer to be overflowed and memory corruption to occur. Full technical root cause analysis here: https://attackerkb.com/topics/Szq5u0xgUX/cve-2025-20362/rapid7-analysis

[RSS] iOS emulation for security research -- early access now open

https://u.eshard.com/ios-emulator

[RSS] Remembering the end of support for VRML in Internet Explorer

https://devblogs.microsoft.com/oldnewthing/20251007-00/?p=111657

Just learned how relocations within a binary work:

https://0xrick.github.io/win-internals/pe7/

#windows #binary #relocation #reverseengineering #peheader

I wonder if Microsoft secretly wants everyone to switch to Linux. There are certainly fewer reasons to stick to Windows every day: https://www.theverge.com/news/793579/microsoft-windows-11-local-account-bypass-workaround-changes

@TarkabarkaHolgy lawful evil calls disease control and puts the whole school under quarantine

#ToddlerDnD

I am constantly feeling like parents have to take daily Alignment checks during Autumn Snot Season. Checks are administered by daycare/school staff.

I'm gonna need an alignment chart for this 😄

#parenting

Well, Well, Well. It’s Another Day. (Oracle E-Business Suite Pre-Auth RCE Chain - CVE-2025-61882) https://labs.watchtowr.com/well-well-well-its-another-day-oracle-e-business-suite-pre-auth-rce-chain-cve-2025-61882well-well-well-its-another-day-oracle-e-business-suite-pre-auth-rce-chain-cve-2025-61882/

I love people saying AI helps with the bullshit stuff. Nobody asking why the bullshit exists in first place and how to get rid of it LOL

@neurovagrant "But not as fun" -> No kink shaming plz!