@nadsec.online.bsky.social
Hacker (the good kind[mostly]). Breaking things, fixing them, then breaking them again. AI, robotics, honeypots, and whatever else keeps me up at night https://github.com/Rat5ak https://medium.com/@Nadsec https://x.com/Nadsec11
Read that as neutering.
11.09.2025 20:51 β π 0 π 0 π¬ 1 π 0If 13-year-olds can breeze through your millions in next-gen firewalls, intrusion boxes, AI juicers and zero-trust microwaves while laughing uncontrollably in a Discord server, then this industryβs clearly been swindled by slick talking yokels wearing suits. Shoulda listened to the kids in hoodies!
11.09.2025 20:49 β π 0 π 0 π¬ 0 π 0Those ratbag kids claim to have practically every single data set available, which likely isnβt far from the truth given how much crypto they would happen to have laying around.
The biggest question here is, wtf have we all been doing for the last decade with all of these bolt on security products.
I thought everything was meant to be bigger in Texas.
10.09.2025 18:48 β π 0 π 0 π¬ 1 π 0I mean, I use AI vibe coding to create malware based on security research/technical blogs.. You can give it a POC, or even part of a somewhat redacted POC and within about 20 minutes of messing about have a spray and pray vuln cannon that probably just works.
- Keyword, probably.
Seems very likely these different groups are gearing up.. The report from Greynoise is actually looking at a botnet from a few days earlier which interestingly I actually did not capture as in the instance Greynoise are looking at is targetting the united states...
05.09.2025 01:12 β π 0 π 0 π¬ 0 π 0
That is certainly concerning, wonder if we are dealing with an undisclosed zero-day that just hasn't been widely used yet.. The usual children are carrying on in their telegram channels about having a Cisco dump they are not willing to release..
05.09.2025 01:08 β π 0 π 0 π¬ 1 π 0Skill issue.
01.09.2025 04:03 β π 0 π 0 π¬ 0 π 0I can confirm, itβs just not worth it! Oh lord! Why must I be burdened with this genetically-gifted admin overhead!?!?
31.08.2025 02:20 β π 0 π 0 π¬ 0 π 0I only use browsers rated GPT-7 or higher..
30.08.2025 07:32 β π 2 π 0 π¬ 0 π 0Well if everybody just gets the brain implant, this wonβt end up becoming a problem..
30.08.2025 07:30 β π 1 π 0 π¬ 0 π 0Bonus jank:
github.com/Rat5ak/Anato...
This isnt what I signed up for!
29.08.2025 18:58 β π 0 π 0 π¬ 0 π 0Cisco ASA honeypot blew up Aug 28:
β 200k probes in 20h
β 3 ASNs only: NYBULA / CHEAPY-HOST / GCS
β Each IP ~10,102 reqs (scripted)
likely prepping for CVE-2025-20182/20134 (DoS), disclosure bugs, or legacy RCEs.
Report: medium.com/@Nadsec/hone...
OTX Pulses: otx.alienvault.com/user/conrat
from dangernoodle import snakes
cobra = snakes.Cobra()
cobra.hiss()
If it werenβt for all the damn snakes the internet would be a lot safer!
21.08.2025 00:07 β π 0 π 0 π¬ 0 π 0And no matter how hard you try you can never truly be sure whether you have the worldβs most secure environment, or if youβre harbouring the worldβs most sophisticated malware!
07.08.2025 14:29 β π 0 π 0 π¬ 0 π 0As a further note, I regularly change phone providers to whoever has the cheapest deal and every single time Iβve been able to effectively sim swap myself without providing the network operator/isp any form of valid ID.. the most Iβve ever handed over is a photo of a Medicare card lolβ¦.
08.05.2025 04:22 β π 1 π 0 π¬ 0 π 0I am finding that workplaces simply are not providing employees with a device to use outside of the office, a work phone to use with MFA etc etcβ¦
Assuming this may have been the case here - currently I use my personal phone for mfa via sms for work and I feel like a sitting duck.
Thatβs no problems! Tbf Iβd skip right over an email from a personal Gmail account with 15 pdfs attached too π€£
Thanks and more to come :)
Appreciate all you guys do for the community.
Was quite interested to see Cisos and the likes trying this out on their PCs and being gobsmacked they can rdp in with old creds π€£. Crazy how long this has been going on and even crazier to me to find out just how many people didnβt know how this worked. Onya Microsoft! Another job well done!
08.05.2025 01:52 β π 1 π 1 π¬ 1 π 0Canβt argue
08.05.2025 01:44 β π 0 π 0 π¬ 0 π 0@patrick.risky.biz
Cheers for the shoutout!
Heard my name pop up on the podcast on way to work this morning :)
Fav podcast, long time listener. Also I sent yβall over a big pack of docos regarding the rdp stuff a few weeks ago. If ya interested in the specifics have a suss.
I am so glad to have grown up just in time to have have witnessed these products π€£π€£π€£. I want them back.
It canβt be meβ¦ itβs the children who are out of touch!
I am so glad to have grown up just in time to have have witnessed these products π€£π€£π€£. I want them back.
It canβt be meβ¦ itβs the children who are out of touch!
Mass Scanning Targeting Palo Alto GlobalProtect PortalsβββMarch 2025 Threat Intelligence Report medium.com/@Nadsec/mass...
#cyber #palo #vulnerability #cybersecurity #report #infosec
Iβve already seen Terminator. I donβt need to see it again in 3d.
04.04.2025 00:10 β π 0 π 0 π¬ 0 π 0
And there we go..
www.forbes.com/sites/daveyw...
π¨ New vuln drop: FlickJect (CVE-2025-0401)
Inject code into powerline Ethernet adapters using light switch flicker patterns.
Yeah. For real.
π Full technical write-up (PoC, traces, affected devices):
medium.com/p/flickject-...
#infosec #CVE #FlickJect #Cybersec
A comprehensive analysis of the current state that twitter/X has been left in. This report was spurred on by the ease of which I was able to create accounts/spin up bots. There is no game of Cat and Mouse to be played at twitter HQ.. They fired all of the mice..
medium.com/@danjwade95/...
