Harvesting the Tradecraft Garden
https://rastamouse.me/harvesting-the-tradecraft-garden
arete | Fuzzing WebSockets for Server-Side Vulnerabilities
https://arete06.com/posts/fuzzing-ws/
Mikko Hypponen talks drone warfare, APT naming schemes - YouTube
https://youtu.be/y1x2qAhxfDo
Checklists/Microsoft Exchange.md at master · netbiosX/Checklists · GitHub
https://github.com/netbiosX/Checklists/blob/master/Microsoft%20Exchange.md
Malicious Browser Extensions Infect Over 700 Users Across Latin America Since Early 2025
https://thehackernews.com/2025/06/malicious-browser-extensions-infect-722.html
nytimes.com
https://www.nytimes.com/2025/06/07/world/europe/china-russia-spies-documents-putin-war.html
New Mirai botnet infect TBK DVR devices via command injection flaw
https://www.bleepingcomputer.com/news/security/new-mirai-botnet-infect-tbk-dvr-devices-via-command-injection-flaw/
GitHub - jayesther/KTM_POCS: Reports and POCs for CVE 2024-43570 and CVE-2024-43535
https://github.com/jayesther/KTM_POCS
Active Directory Pentesting Using Netexec Tool: A Complete Guide - Hacking Articles
https://www.hackingarticles.in/active-directory-pentesting-using-netexec-tool-a-complete-guide/
New Supply Chain Malware Operation Hits npm and PyPI Ecosystems, Targeting Millions Globally
https://thehackernews.com/2025/06/new-supply-chain-malware-operation-hits.html
Going Native - Malicious Native Applications
https://www.protexity.com/post/going-native-malicious-native-applications
oss-sec: Re: Re: Re: Linux kernel: HFS+ filesystem implementation, issues, exposure in distros
https://seclists.org/oss-sec/2025/q2/230
Malware found in NPM packages with 1 million weekly downloads
https://www.bleepingcomputer.com/news/security/supply-chain-attack-hits-gluestack-npm-packages-with-960k-weekly-downloads/