Interesting Git repos of the week:

Detection:

* https://github.com/gadievron/honeyslop - a side bar to RAPTOR, a vulndev slop detector from @gadi 🤖
* https://github.com/Nehboro/nehboro - a Chrome extension to help protect you from phishing scams
* https://github.com/trustedsec/SysmonCommunityGuide - TrustedSec dropped guides for Sysmon
* https://github.com/JPCERTCC/LogonTracer - watch out for unexpected logins with JPCERT
* https://github.com/persistent-security/month-of-bypasses - a month of detection engineering tips and tricks
* https://github.com/sjzasada/agentflash - my old uni house mate has written a tool to keep an eye on Claude

Bugs:

* https://github.com/theori-io/copy-fail-CVE-2026-31431 - copy.fail \o/

Exploitation:

* https://github.com/CyberStrikeus/CyberStrike - sloppy pen testing 🤖
* https://github.com/SnailSploit/Claude-Red - another agentic pen tester 🤖
* https://github.com/PurpleAILAB/Decepticon - rise of the bots 🤖
* https://github.com/hackerschoice/team-teso - courtesy of @thc, an archive of TESO
* https://github.com/BishopFox/cirro - @BishopFox created Cirro to map clouds 🤖
* https://github.com/thomasdullien/vulpine - @HalvarFlake dabbles in AI bug hunting and vulndev
* https://github.com/boostsecurityio/smokedmeat - smoked meat attacks CICD pipelines for hot red team action
* https://github.com/mandiant/gopacket - Mandiant ported Impacket to Go
* https://github.com/trailofbits/trailmark - @trailofbits's Trailmark graphs code 🤖
* https://github.com/sailay1996/vss-fr2system - arbitrary reads to SYSTEM \o/
* https://github.com/asset-group/Sni5Gect-5GNR-sniffing-and-exploitation - attacking 5G for sniffs and giggles
* https://github.com/ANSSI-FR/bmc-tools - ANSSI parses your RDP screenshots
* https://github.com/BSI-Bund/RdpCacheStitcher - BSI stitches them together
* https://github.com/califio/publications - @thaidn and friends do interesting things 🤖
* https://github.com/jedireza/reserved-subdomains - what subdomains are reserved?

Hardening:

* https://github.com/sektioneins/ovpncc - One of SektionEins's various config checking tools, this onefor OpenVPN
* https://github.com/HarmonicSecurity/claudit-sec - audit your Claude Desktop posture

Cryptography:

* https://github.com/nitram2342/bruteforce-crc - crunching through CRC32

Data:

* https://github.com/op7ic/SwarmMaker - my good friend opt7ic drops a new tool to build LLM skills

Nerd:

* https://github.com/moshix/BRICKS_TS - mainframe code

#security, #research, #code

Infosec community right now…

#Synchrotron control room, Yerevan

Physics Institute, Alikhanyan National Science Laboratory, Yerevan, Armenia
In 1956, the Soviet physicist Artem Alikhanian began the development of the Armenian accelerator, known as #Arus. His aim was to construct the most powerful electron synchrotron in the world, capable of accelerating particles to nearly the speed of light around a closed loop.

#photography
#Russia
#science
#physics
#Armenia

313 Team, the Iraqi-aligned group claiming credit for the Ubuntu attack, are now encouraging the use of #CopyFail against Ubuntu targets while servers may not be able to reach updates.

https://discourse.ifin.network/t/ubuntu-services-under-attack/356

“GCC now supports Algol 68” https://algol68genie.nl/en/blog/gcc-algol-68-genie/

#BlackMetal album of the day by a friend of mine: Malevolic, Complete Integrity Corruption.

https://malevolic.bandcamp.com/album/complete-integrity-corruption
#Metal

My first ever open source release: lib0xc, the C standard library you wish you had.

https://aka.ms/lib0xc

Listening to cybersecurity people freak out over Mythos is so tiring. Like, bro, your local water treatment plant runs Windows XP, your mobile provider's hardware is older than you are, and the protocol that routes internet traffic is secured by everyone just agreeing that hijacking it would be uncool.

Dear Mastodon friends, Telegram has started to publish their transparency data for Q1 2026. As usual, I am trying to crowdsource this information as it is only accessible per country for Telegram accounts registered with a number for that country. Here is what I have so far, if you have a Telegram account with a number not in that list, please take a screenshot of the @transparency answer and answer here or open an issue here https://github.com/Te-k/telegram-transparency/issues
Thanks and please retoot!

STOP. SENDING. SURVEYS. FROM. THIRD. PARTY. SERVICES.

It looks sus as ducks having something from randomsurvey.co.uk come through on behalf of YourCompany with every domain/link in the email having no obvious link to it. Rarely is there a single link to the company domain, with everything pointing to the that of the commissioned survey provider.

To me it sets off every damn alarm bell for a phishing attempt. Expecting customers to use it encourages unsafe practices.

She confided it all to her therapist: her marriage, financial stress and her self-esteem. Every word ended up in court. Proof News investigates how a database of 140 million message exchanges on a telehealth platform is being used to build an AI therapy companion – and what that means for patients.
https://www.proofnews.org/womans-talkspace-therapy-app-sessions-exposed-in-court/