Tag feed

#exploit

78 posts13 followers

Explore Hashnode

Alternatives

Trending tags this week

C|chainbox | Calibraintmichaelbrownblog2.hashnode.devMay 13 · 4 min read

The $292M Kelp DAO Exploit: How North Korea Drained DeFi's Biggest Bridge in 2026

April 18, 2026, started like any other Saturday in crypto until it didn't. At 17:35 UTC, an attacker quietly drained 116,500 rsETH from Kelp DAO's cross-chain bridge. By the time protocols started fre

0

JJebitoksharonjebitok.comMay 6 · 19 min read

Spring AI: CVE-2026-22738 (TryHackMe)

Introduction Spring AI 1.0 shipped in May 2025 as the first stable release of the Java framework designed to simplify the development of LLM-powered applications. By wrapping OpenAI, Ollama, and other

0

TTiamattiamat-ai.hashnode.devMar 9 · 6 min read

VMware ESXi Ransomware: Chinese APT Exploiting 2-Year-Old Kernel Escape Vulnerabilities

TL;DR Chinese-linked APT groups are actively exploiting 2-year-old VMware ESXi kernel escape vulnerabilities (CVE-2024-20835, CVE-2024-20837) to move from compromised VPN appliances directly into hypervisor control. Once on the hypervisor, they contr...

0

Aaivr-blogaivr.hashnode.devJan 26 · 21 min read

Finding 0days with AI

For decades, many bug hunters and security pros have used manual testing, static analysis, and fuzzing to find vulnerabilities. Enter the age of AI. Many are skeptical, but when I look around I see mo

0

CACharlie Averyxoravery.hashnode.devJan 21 · 5 min read

Analyzing Malware utilizing OverlayFS Exploit

The code leverages known vulnerabilities in the OverlayFS filesystem driver, likely CVE-2021-3493 or CVE-2023-0386, to gain root-level access. The exploit allows an unprivileged local user to execute arbitrary code with the highest privileges, leadin...

0

AAAyomide Ayanwolablog.covenlabs.spaceJan 15 · 6 min read

React2Shell (CVE-2025-55182) Exploitation on AWS EC2 - A Real-World Incident Report

Executive Summary On one of our AWS EC2 servers running a Next.js development environment, we discovered an active exploitation of the React2Shell vulnerability (CVE-2025-55182 / CVE-2025-66478). The attacker successfully installed cryptocurrency min...

0

Aaivr-blogaivr.hashnode.devJan 14 · 7 min read

AwesomeBot meets Prompt Injection

Intro AwesomeBot is an awesome AI Chatbot! It was vibe coded from scratch to have a ton of awesome features without much security in mind so various attacks and offensive methods can be demonstrated. This series of blog posts serves as a way to under...

0

YHYoussof Hammoudengjoe.comJan 14 · 8 min read

I Spent 3 Weeks Exploiting a Patched Vulnerability

As an authorized junior developer I was assigned a pentesting task. Something new with not much expertise, however problem-solving from computer science field got my back. Spoiler: the vulnerability was already patched. I just didn't know it yet. Th...

0

SASunggat Alimbetovsunggat.comJan 8 · 12 min read

React2Shell Aftermath

Defining React terminology React: React started as a client-side JavaScript library for building component-based user interfaces, managing a virtual DOM and pushing minimal updates to the browser. Over time it grew into a full ecosystem that spans t...

0

JJebitoksharonjebitok.comDec 29, 2025 · 10 min read

Exploitation with cURL - Hoperation Eggsploit (TryHackMe) 🧑‍🎄🎉

After twenty-three days of exploits, investigations, and saving Wareville from disaster, Advent of Cyber reaches its final challenge. There are no flashy tools left. No browser. No Burp Suite. Just a terminal, raw HTTP, and the skills we’ve built thr...

0

#exploit

Search Hashnode

#exploit

Explore Hashnode

Trending tags this week

The $292M Kelp DAO Exploit: How North Korea Drained DeFi's Biggest Bridge in 2026

Spring AI: CVE-2026-22738 (TryHackMe)

VMware ESXi Ransomware: Chinese APT Exploiting 2-Year-Old Kernel Escape Vulnerabilities

Finding 0days with AI

Analyzing Malware utilizing OverlayFS Exploit

React2Shell (CVE-2025-55182) Exploitation on AWS EC2 - A Real-World Incident Report

AwesomeBot meets Prompt Injection

I Spent 3 Weeks Exploiting a Patched Vulnerability

React2Shell Aftermath

Exploitation with cURL - Hoperation Eggsploit (TryHackMe) 🧑‍🎄🎉