Expert insights on cybersecurity, vulnerability research, and security best practices.
Critical stack-based buffer overflow in Windows Netlogon lets unauthenticated attackers run SYSTEM code on any Windows domain controller over the network -- now under active exploitation
BitUnlocker and YellowKey show that BitLocker bypasses don't break cryptography — they exploit the trust chain around WinRE, TPM, and Secure Boot.
Hidden productivity boosters in adPEAS v2: Show-Object, KnownSPN discovery, dangerous ACL analysis, EPA testing, account activity filters, certificate analysis, and more.
An unauthenticated SQL injection in Drupal core's PostgreSQL EntityQuery handler -- anonymous attackers turn JSON object keys and JSON:API filter parameters into raw SQL fragments. Drupal-rated 23/25 'Highly Critical', CISA KEV, 15,000+ exploit attempts in 48 hours
We rebuilt sekurity.de from the ground up - a new UX/UI on a modern technology stack, crafted with a lot of time and even more attention to detail.
Deep dive into the PAC structure, NDR serialization, PAC checksums, and how adPEAS v2 forges Golden, Silver, and Diamond Tickets step by step.
A size-mismatch bug in the NGINX rewrite module lets a remote, unauthenticated attacker overflow the heap with a single crafted HTTP request -- reliable worker crashes for everyone, potential RCE where ASLR is off. CVSS 4.0 9.2, public PoC, exploited in the wild since 2026-05-16, ~5.7M exposed servers
Deep dive into the Kerberos protocol internals as implemented by adPEAS v2: ASN.1 encoding, key derivation, encryption algorithms, message structures, and why attacks like Kerberoasting work.
A buffer overflow in the PAN-OS User-ID Authentication Portal lets a remote, unauthenticated attacker pop a root shell on PA-Series and VM-Series firewalls -- CVSS 9.3, CISA KEV, actively exploited by a likely state-sponsored cluster (CL-STA-1132)
Hands-on guide to adPEAS v2 offensive capabilities: privilege escalation, persistence, lateral movement, GPO abuse, ADCS exploitation, and Kerberos ticket forging.
A nine-year-old logic bug in the Linux kernel's algif_aead crypto module lets any local user write 4 bytes into the page cache of any readable file -- root, container escape, no race condition, public PoC
How adPEAS v2 turns scan results into actionable output: color-coded console, interactive HTML reports, incremental scanning, offline conversion, and report diffing.