Releasing a project I've been working on for a while: thermoptic - A next-generation HTTP stealth proxy which perfectly cloaks requests as the Chrome browser across all layers of the stack. github.com/mandatoryprogramm…

We launched lockdown mode to all @ChatGPTapp users. For more security conscious users, this gives an extra layer of protection by reducing the risk of data exfiltration from prompt injection attacks. help.openai.com/en/articles/…

finally lcamtuf.substack.com/p/a-bre…

🚨 CRITICAL: Active supply chain attack on axios -- one of npm's most depended-on packages. The latest axios@1.14.1 now pulls in plain-crypto-js@4.2.1, a package that did not exist before today. This is a live compromise. This is textbook supply chain installer malware. axios has 100M weekly downloads. Every npm install pulling the latest version is potentially compromised right now. Socket AI analysis confirms this is malware. plain-crypto-js is an obfuscated dropper/loader that: • Deobfuscates embedded payloads and operational strings at runtime • Dynamically loads fs, os, and execSync to evade static analysis • Executes decoded shell commands • Stages and copies payload files into OS temp and Windows ProgramData directories • Deletes and renames artifacts post-execution to destroy forensic evidence If you use axios, pin your version immediately and audit your lockfiles. Do not upgrade.

Work in progress on a "vibe hacking" mode coming to Sliver, including sync'd to n-operators via multiplayer:

New Sliver release! > Improvements to shell you can now manage multiple shells and swap between them! > Windows PE metadata spoofing > Improvements to MacOS shellcode loader > Bug fixes github.com/BishopFox/sliver/…

Some big updates to Sliver recently, more to come here some new features in v1.6.1 - v1.6.10 in addition to performance improvements and bug fixes 🧵:

Not to worry, we've mitigated the issue:

Sliver now has MCP support which means defenders can use prompt injection to leak sensitive information from the C2 server. 🎉 I use a file called passwords.txt to trick #ClaudeAI into creating directories beacon/session info. #AGI #PromptInjection #DFIR

For the Next.js/RSC RCE, it's possible to bypass both Vercel and Cloudflare, and most WAFs really. Don't trust your provider's WAFs, patch your systems ASAP. We added these new WAF aware checks to @assetnote earlier this morning.

I am the main developer fixing security issues in FFmpeg. I have fixed over 2700 google oss fuzz issues. I have fixed most of the BIGSLEEP issues. And i disagree with the comments @ffmpeg (Kieran) has made about google. From all companies, google has been the most helpfull & nice

thermoptic now supports upstream SOCKS & HTTP proxies so you can have a perfect JA4 fingerprint set across whichever exit IP you prefer 🎉: github.com/mandatoryprogramm… The update abstracts away Chrome's annoying proxy handling too, so you can use authenticated proxies as well!

Updated Sliver's SGN implementation (by @egeblc) to use a wasm-based build of Keystone assembler making it easier to cross-compile to all platforms (to almost every GOOS/GOARCH) SGN standalone: github.com/moloch--/sgn/rele… Wasm keystone (fork of For-ACGN) github.com/moloch--/go-keyst…

I wrote up a quick blogpost why this SIM farm story is bogus and why you journalists should feel embarrassed for not questioning such obvious propaganda. cybersect.substack.com/p/tha…

New tutorial: "Bypassing" Cloudflare's Turnstile CAPTCHA With thermoptic github.com/mandatoryprogramm…