LDLightning Developerintech-odyssey.hashnode.dev·5d ago · 6 min readAgentjacking Vulnerability: When Fake Error Reports Trick AI Coding ToolsIn the fast-moving world of AI-assisted development, new tools promise to streamline our workflows like never before. Yet recent findings highlight a clever weakness that could let outsiders slip harm00
AFAeon Flex / Splicer Scorninchaincoder.hashnode.dev·5d ago · 8 min readDeepfakes Are Free Now. Your Company’s Phone System Is Not. And that’s the whole problem. Let me set the scene for you. It’s 2:47 PM on a Tuesday. Your CFO gets a call. It’s the CEO’s voice. Same cadence. Same little pause before numbers. Same “hey, can you ru00
AFAeon Flex / Splicer Scorninchaincoder.hashnode.dev·Jun 12 · 11 min readThe 2026 Wireless Threat Nobody Prepared For: UWB Hacking, Relay Attacks, and Proximity CrimesLook. I’ve been breaking things since before it was normal for kids to have phones. I watched the entire security industry grow up from a hobby into a bloated bureaucracy of certifications, compliance00
JTJeff Tonginwind010.hashnode.dev·Jun 10 · 6 min readMalicious Github Repository AnalysisDiscovery I was doing some research on CVE-2026-41940 after catching up on the Security Now podcast and looked for a PoC to better understand the the vulnerability. That's when a simple Google search 10
OROhm Ramwalainhashbyte20.hashnode.dev·Jun 10 · 4 min readHack The Box: TwoMillion Walkthrough - Invite Code, API Abuse & RootIntroduction TwoMillion is an Easy-rated Linux machine on Hack The Box that combines web enumeration, API abuse, command injection, credential discovery, and privilege escalation. The machine is inspi10
VGVivek Goswamiinvivekgoswami.hashnode.dev·Jun 9 · 2 min readKrioptrix Level-3 WalkthroughIt’s a Basic level machine you can find it on Vulnhub Machine Info: Difficulty: Easy Goal: Gain root access Before starting, add an entry for kioptrix3.com in the /etc/hosts file. As usual the fir00
VGVivek Goswamiinvivekgoswami.hashnode.dev·Jun 8 · 6 min readDevArea Walthrough Hack The Box Welcome to another Hack the Box walkthrough. In this blog post, I have demonstrated how I owned the DevArea machine on Hack the Box. Hack The Box is a cybersecurity platform that helps you bridge know00
ASAditya Shelkeinadixcode-github-hack.hashnode.dev·Jun 4 · 32 min readInside the 18-Minute Hack That Breached GitHub's Internal VaultOn May 18, 2026, at exactly 12:30 p.m. UTC, a software update silently arrived on the machines of thousands of developers worldwide. It looked legitimate, a routine patch to a tool used by over 2.2 mi10
JTJeff Tonginwind010.hashnode.dev·May 31 · 4 min readHack the Box - Season 10 - Season of the UndergroundSeason 10 - Season of the Underground This was a rough season. Moved to a new property towards the end of the season which dropped me in the rankings. Surprised that I bumped back up with just one box00
NTNimesh Thakurinhack-notes.hashnode.dev·May 29 · 10 min readDNS for Hackers — What Every Record Type Means to an AttackerPart 1 of 3 in the DNS Recon for Bug Bounty Hunters series Hey, welcome. If you're getting started in bug bounty hunting, you've probably heard people say "do recon first." And the very first thing i00
