Lightnews — Scholar-powered news

Eslam Salem @netcodex.bsky.social · Sep 14

I still didn't install bat yet but looks very good. I will do it now.

Eslam Salem @netcodex.bsky.social · Sep 13

I'm in love with claude code. The way it handles code writing and automates bash tasks is amazing and so convenient to me.
if you are an experienced developer, know what you are doing, the tasks that usually take Weeks. You will be able to do it in Hours 🤯🤯 #claudecode #ai

1 1 2

Eslam Salem @netcodex.bsky.social · Jun 17

Q for developers. Do you love/hate mandatory security training? And why?
#security #training #developers

Eslam Salem @netcodex.bsky.social · May 21

🚨 The obfuscation game: MUT-9332 targets Solidity developers via malicious VS Code extensions!

Deep dive analysis in this obfuscated campaign including (PowerShell & VBS scripts, PE malware, Malicious browser extensions even stegomalware)

Enjoy reading securitylabs.datadoghq.com/articles/mut...

The obfuscation game: MUT-9332 targets Solidity developers via malicious VS Code extensions | Datadog Security Labs

Analysis of a threat actor campaign targeting Solidity developers via three malicious VS Code extensions

securitylabs.datadoghq.com

2 2

Eslam Salem @netcodex.bsky.social · May 21

Pretty interesting threat campaign have been discovered by our research team.
We will be disclosing it in couple of hours , stay tuned 😉
#threats #malicious #security_research #datadog

1

Eslam Salem @netcodex.bsky.social · May 15

Recognizing employees for a job well done is just as important as giving constructive feedback when they underperform. Balance builds growth. #Leadership #Feedback

Eslam Salem @netcodex.bsky.social · May 14

I don't like threat actors attribution that much because in most cases it's wrong and so easily to be forged. We still should cluster campaigns but there is no "high confidence" attribution IMHO.

Eslam Salem @netcodex.bsky.social · Apr 24

Nice work for using AI to create POC by analysis the patch diff

platformsecurity.com/blog/CVE-202...

How I Used AI to Create a Working Exploit for CVE-2025-32433 Before Public PoCs Existed

A step-by-step walkthrough of how I leveraged AI to analyze, understand, and exploit the Erlang SSH pre-authentication vulnerability (CVE-2025-32433) without any existing public proof of concept. Lear...

platformsecurity.com

Reposted by Eslam Salem

Tib3rius @tib3rius.bsky.social · Apr 16

I have been told there will be a special announcement at 10am CET (that's 4am EDT btw) regarding this.

I will release the info I have at that time also. Thank you for the support.

Tib3rius @tib3rius.bsky.social · Apr 15

BREAKING.

From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.

3 7 33

Eslam Salem @netcodex.bsky.social · Apr 15

Any idea what will happen to the CVE program after MITRE
x.com/0xTib3rius/s...

x.com

1

Reposted by Eslam Salem

Rory McCune @mccune.org.uk · Apr 4

It’s the tutorial room at #kubecon where we’ll be hacking up a storm in just over 30 minutes!

Picture of the tutorial room in Kubecon eu 2025

1 1 19

Eslam Salem @netcodex.bsky.social · Apr 1

Interesting to see secret leaks in git still one the biggest threats in SDLC.
github.blog/security/app...

GitHub found 39M secret leaks in 2024. Here's what we're doing to help

Every minute, GitHub blocks several secrets with push protection—but secret leaks still remain one of the most common causes of security incidents. Learn how GitHub is making it easier to protect your...

github.blog

1 3

Eslam Salem @netcodex.bsky.social · Mar 31

I think it's time for me to start digging into AI and LLMs. I'm not sure where to start, any advice?

1

Eslam Salem @netcodex.bsky.social · Mar 31

Seeing phrack magazine brings so much good memories. Good old days.

1

Reposted by Eslam Salem

Rory McCune @mccune.org.uk · Mar 27

It's amazing how important one Phrack article from 27 years ago has been for web application security.

Covering what we now call SQL Injection and SSRF (amongst other things) problems we're still trying to handle today laid out in a couple of paragraphs

phrack.org/issues/54/8#...

.:: Phrack Magazine ::.

Phrack staff website.

phrack.org

2 14 64

Eslam Salem @netcodex.bsky.social · Mar 28

This time we analyzed the Next.js middleware bypass vulnerability (CVE-2025-29927). Also included IP/UA trying to exploit this in the wild.
securitylabs.datadoghq.com/articles/nex...

Understanding CVE-2025-29927: The Next.js Middleware Authorization Bypass Vulnerability | Datadog Security Labs

Learn how the Next.js middleware authorization bypass vulnerability works, and how to detect and remediate it.

securitylabs.datadoghq.com

1 3

Eslam Salem @netcodex.bsky.social · Mar 25

Our analysis and takeaways for IngressNightmare - Several vulnerabilities in the Kubernetes Ingress NGINX Controller. Enjoy!
securitylabs.datadoghq.com/articles/ing...

The

Learn how the Kubernetes Ingress NGINX Controller vulnerabilities work, how to detect and remediate them.

securitylabs.datadoghq.com

Eslam Salem @netcodex.bsky.social · Dec 16

I love it when some people tells me that's is your limit, this is your ceiling. This is when I feel fire within me reignite!

1

Eslam Salem @netcodex.bsky.social · Dec 9

Amazing presentation about supply chain security and the amazing work we do by our leaders @techy.detectionengineering.net
(Director of research) and Andrewkrug (Manager of advocacy) youtu.be/1b0RIi19qrw?...

AWS re:Invent 2024 - Beyond just observing, protecting your whole software supply chain (SEC406)

YouTube video by AWS Events

youtu.be

2

Eslam Salem @netcodex.bsky.social · Dec 6

Supply chain firewall in action
github.com/DataDog/supp...

Datadog Security Labs @securitylabs.datadoghq.com · Dec 6

1

Eslam Salem @netcodex.bsky.social · Dec 6

We are happy to introduce our latest tool "Supply Chain Firewall" 🎉 by @ikretz.bsky.social
The tool detects & prevents installation of malicious packages in local development environment.

Read more
securitylabs.datadoghq.com/articles/int...

And give it a try github.com/DataDog/supp...

Introducing Supply-Chain Firewall: Protecting Developers from Malicious Open Source Packages | Datadog Security Labs

Release of Supply-Chain Firewall, an open source tool for preventing the installation of malicious PyPI and npm packages

securitylabs.datadoghq.com

7 11

Reposted by Eslam Salem

Christophe Tafani-Dereeper @christophetd.fr · Dec 5

Supply-chain attack in the ultralytics PyPI package: github.com/ultralytics/...

An attacker opened a pull request and pushed a commit with a malicious name, leading to CI code injection.

They then backdoored versions 8.3.41 and 8.3.42 with code downloading a second-stage binary from GitHub

1 3 5

Reposted by Eslam Salem

Nick Frichette @frichetten.com · Dec 5

Common reasoning is that SMS 2FA is bad due to the risk of SIM swapping. It’s also bad if the telecommunications networks are hostile 😬
www.forbes.com/sites/zakdof...

FBI Warns iPhone And Android Users—Stop Sending Texts

US officials urge citizens to use encrypted messaging and calls wherever they can—here’s what you need to know.

www.forbes.com

1 3 10

Eslam Salem @netcodex.bsky.social · Dec 4

Awesome, Stratus Red Team v2.20.0 is now available 🎉

Christophe Tafani-Dereeper @christophetd.fr · Dec 4

Stratus Red Team v2.20.0 is now available, with great contributions from @flekyy90.bsky.social allowing you to reproduce AWS TTPs seen in the wild!

➔ Use GetFederationToken to generate temporary credentials

➔ Use SendSerialConsoleSSHPublicKey to pivot to EC2 instances

github.com/DataDog/stra...

1

Eslam Salem @netcodex.bsky.social · Dec 3

My Blackhat MEA arsenal presentation: "Detect Malicious Packages with Guarddog"
drive.google.com/file/d/11SAN...

4 4