Talkback

Talkback

AI Powered Infosec Resource Aggregator to Boost Productivity.

Developed by elttam

Sign in to customize your weekly newsletter.

Resources See all
CVE-2025-32756: Low-Rise Jeans are Back and so are Buffer Overflows exp app

FortiGuard Labs advisory warns of CVE-2025-32756, a critical stack-based buffer overflow vulnerability in Fortinet products, enabling unauthenticated remote code execution and actively exploited in the wild, urging immediate updates or mitigations.

Thu 22 May horizon3.ai
De-obfuscating ALCATRAZ — Elastic Security Labs mal rev

Elastic Security Labs analyzed the DOUBLELOADER malware family protected by the ALCATRAZ obfuscator, releasing deobfuscation tools and YARA rules for detection.

Thu 22 May elastic.co/security-labs
How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation exp sys

The author discovered multiple Linux kernel vulnerabilities, including a zero-day exploit, using OpenAI's o3 model, showcasing its potential to enhance human performance in vulnerability research.

Thu 22 May sean.heelan.io
AppSec Cheat Sheet: Session Management app

Effective session management, including proper use of cookies and secure token configuration, is essential for maintaining user authentication and preventing attacks on websites.

Thu 22 May trustedsec.com
Storm-0558 and the Dangers of Cross-Tenant Token Forgery cloud app

Modern cloud ecosystems face security risks due to reliance on a single identity provider, exemplified by the Storm-0558 incident, emphasizing the importance of strong key management, token validation, monitoring, and rapid response plans to protect against unauthorized access and forged tokens.

Wed 21 May trustwave.com
Lumma Stealer: Breaking down the delivery techniques and capabilities of a prolific infostealer mal

Lumma Stealer is a sophisticated infostealer malware used by financially motivated threat actors across various industries, with a dynamic distribution infrastructure, capable of stealing data and being utilized in ransomware campaigns.

Wed 21 May microsoft.com/security/blog
Vulnerabilities See all
CVE-2025-32421 3.7
Awaiting Analysis

Next.js is a React framework for building full-stack web applications. Versions prior to 14.2.24 and 15.1.6 have a race-condition vulnerability. This issue only affects the Pages Router under certain misconfigurations, causing normal endpoints to serve `p…

  • Eclipse on Next.js: Conditioned exploitation of an intended race-condition
Wed 14 May
CVE-2025-26651 6.5
Received

Exposed dangerous method or function in Windows Local Session Manager (LSM) allows an authorized attacker to deny service over a network.

  • Automating MS-RPC vulnerability research
  • Zero Day Initiative — The April 2025 Security Update Review
Tue 8 Apr
CVE-2025-21375 7.8
Received

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

  • Frame by Frame, Kernel Streaming Keeps Giving Vulnerabilities
  • The February 2025 Security Update Review
Tue 11 Feb
CVE-2024-38245 7.8
Analyzed

Kernel Streaming Service Driver Elevation of Privilege Vulnerability

  • Frame by Frame, Kernel Streaming Keeps Giving Vulnerabilities
  • The September 2024 Security Update Review
Tue 10 Sep
CVE-2024-38238 7.8
Analyzed

Kernel Streaming Service Driver Elevation of Privilege Vulnerability

  • Frame by Frame, Kernel Streaming Keeps Giving Vulnerabilities
  • The September 2024 Security Update Review
Tue 10 Sep
CVE-2024-38237 7.8
Analyzed

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

  • Frame by Frame, Kernel Streaming Keeps Giving Vulnerabilities
  • The September 2024 Security Update Review
Tue 10 Sep
Topics See all
KrustyLoader Ivanti
Malware
  • Live Forensic Collection from Ivanti EPMM Appliances (CVE-2025-4427 & CVE-2025-4428)
  • Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks
Fri 23 May
Endpoint Manager Mobile (EPMM) Ivanti
Endpoint Management Software
  • Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks
  • Expression Payloads Meet Mayhem - Ivanti EPMM Unauth RCE Chain (CVE-2025-4427 and CVE-2025-4428)
  • Ivanti Patches Two EPMM Zero-Days Exploited to Hack Customers
  • ...
Fri 23 May
Python Python Software Foundation
Programming language
  • GitHub - NightBloodz/CVE-2025-4123: Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF
  • GitHub - dmcxblue/Claude-C2: Utilizng an MCP Server to communicate with your C2
  • GitHub - Octoberfest7/zip_smuggling: Python3 utility for creating zip files that smuggle additional data for later extraction
  • ...
Fri 23 May
Grafana Grafana
Monitoring and observability platform
  • GitHub - NightBloodz/CVE-2025-4123: Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF
  • HTB: BigBang
  • Grafana Patches CVE-2025-3260 and More in Critical Security Update
  • ...
Fri 23 May
GitHub GitHub
Version control repository
  • GitHub - NightBloodz/CVE-2025-4123: Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF
  • How and Why to Ditch GitHub
  • GitHub - wh1te4ever/CVE-2025-31258-PoC: 1day practice - Escape macOS sandbox (partial) using RemoteViewServices
  • ...
Fri 23 May
Gradio Gradio
Machine learning library
  • GitHub - louisgthier/decompai
  • GHSL-2024-273: ReDoS in remove_html_tags of Gradio
  • Auditing Gradio 5, Hugging Face’s ML GUI framework
  • ...
Thu 22 May

Indexed Resources