Dominic White
@singe.bsky.social
Reposted by Dominic White
I like Bluesky, but I really hope it becomes more popular for global geopolitical & conflict news and discussion. This week's G20 summit was far more active & vibrant on X than on here, and I feel that's a tragedy. It continues to validate staying on a platform that everyone should ideally leave.
November 24, 2025 at 12:37 PM
I like Bluesky, but I really hope it becomes more popular for global geopolitical & conflict news and discussion. This week's G20 summit was far more active & vibrant on X than on here, and I feel that's a tragedy. It continues to validate staying on a platform that everyone should ideally leave.
Reposted by Dominic White
I've uploaded the slides of my recent talk "JS Engine Security in 2025": saelo.github.io/presentation.... I think there'll also be a recording available at some point (otherwise I can make one as not everything's in the slides).
Fantastic conference as usual, big thanks to the PoC Crew!
Fantastic conference as usual, big thanks to the PoC Crew!
saelo.github.io
November 24, 2025 at 9:58 AM
I've uploaded the slides of my recent talk "JS Engine Security in 2025": saelo.github.io/presentation.... I think there'll also be a recording available at some point (otherwise I can make one as not everything's in the slides).
Fantastic conference as usual, big thanks to the PoC Crew!
Fantastic conference as usual, big thanks to the PoC Crew!
I drink an awful lot of coffee and it’s rare that I’m genuinely surprised by a roast but darkmatterroasters.com is doing super interesting things with their roasting and teasing out specific flavours. I’d strongly recommend a try.
darkmatterroasters
Other worldly speciality coffee sourced from some of the world’s best producers. Expertly roasted in London, United Kingdom. Find roasted coffee beans available on flexible subscriptions, wholesale coffee for your cafe, bakery, hotel, business and more.
darkmatterroasters.com
November 23, 2025 at 8:01 PM
I drink an awful lot of coffee and it’s rare that I’m genuinely surprised by a roast but darkmatterroasters.com is doing super interesting things with their roasting and teasing out specific flavours. I’d strongly recommend a try.
Reposted by Dominic White
Cybersecurity isn’t ready for the conversation about how bad sexism and ageism are in the whole pen test / red team community, or how influencer culture and the saturated market are enabling it to get worse. www.linkedin.com/pulse/tryhac...
TryHackMe's Advent of Cyber 2025: Zero Women Creators - A Critical Look at Representation in Cybersecurity Education
THE PROBLEM 18 creators. Zero women.
www.linkedin.com
November 22, 2025 at 4:33 AM
Cybersecurity isn’t ready for the conversation about how bad sexism and ageism are in the whole pen test / red team community, or how influencer culture and the saturated market are enabling it to get worse. www.linkedin.com/pulse/tryhac...
Reposted by Dominic White
It's... been a while since the last objection release got tagged. We finally landed a 1.12 release today which also means pypi is up to date again, and for the foreseeable future! Work never really stopped, and plenty of bug fixes are included. More in 🧵
github.com/sensepost/ob...
github.com/sensepost/ob...
November 21, 2025 at 3:50 PM
It's... been a while since the last objection release got tagged. We finally landed a 1.12 release today which also means pypi is up to date again, and for the foreseeable future! Work never really stopped, and plenty of bug fixes are included. More in 🧵
github.com/sensepost/ob...
github.com/sensepost/ob...
I'm kind of proud of the syntax I invented for defining key spaces to expand when looking for phishing kits github.com/singe/domain...
GitHub - singe/domain-probe: A utility to find identically configured domains and web-servers based on a pattern. Used to find phishing kits.
A utility to find identically configured domains and web-servers based on a pattern. Used to find phishing kits. - singe/domain-probe
github.com
November 21, 2025 at 12:37 PM
I'm kind of proud of the syntax I invented for defining key spaces to expand when looking for phishing kits github.com/singe/domain...
Reposted by Dominic White
🔎Our CERT is releasing a new technical report on 🇰🇵Operation #DreamJob, focusing on recent evolution in its tooling.
Following an IR engagement at a large manufacturing client based in 🇪🇺, we investigated artefacts we attribute to #UNC2970.
➡️Full blog: ow.ly/V4mr50Xug1l
Following an IR engagement at a large manufacturing client based in 🇪🇺, we investigated artefacts we attribute to #UNC2970.
➡️Full blog: ow.ly/V4mr50Xug1l
November 20, 2025 at 2:37 PM
🔎Our CERT is releasing a new technical report on 🇰🇵Operation #DreamJob, focusing on recent evolution in its tooling.
Following an IR engagement at a large manufacturing client based in 🇪🇺, we investigated artefacts we attribute to #UNC2970.
➡️Full blog: ow.ly/V4mr50Xug1l
Following an IR engagement at a large manufacturing client based in 🇪🇺, we investigated artefacts we attribute to #UNC2970.
➡️Full blog: ow.ly/V4mr50Xug1l
Made this last night, it’s useful for finding a large number of domains hosting phishing kits or malware based on a consistent pattern github.com/singe/domain-p… Might be useful for some of you.
GitHub - singe/domain-probe: A utility to find identically configured domains and web-servers based on a pattern. Used to find phishing kits.
A utility to find identically configured domains and web-servers based on a pattern. Used to find phishing kits. - singe/domain-probe
github.com
November 20, 2025 at 6:22 AM
Made this last night, it’s useful for finding a large number of domains hosting phishing kits or malware based on a consistent pattern github.com/singe/domain-p… Might be useful for some of you.
Reposted by Dominic White
Turns out you can communicate across containers via 63-bits of available space in a shared lock you acquire on /proc/self/ns/time that all processes have access to.
No networking required. The post has a demo of a chat app communicating across unprivileged containers.
h4x0r.org/funreliable/
No networking required. The post has a demo of a chat app communicating across unprivileged containers.
h4x0r.org/funreliable/
November 12, 2025 at 2:35 PM
Turns out you can communicate across containers via 63-bits of available space in a shared lock you acquire on /proc/self/ns/time that all processes have access to.
No networking required. The post has a demo of a chat app communicating across unprivileged containers.
h4x0r.org/funreliable/
No networking required. The post has a demo of a chat app communicating across unprivileged containers.
h4x0r.org/funreliable/
Reposted by Dominic White
I chatted with @hex-rays.bsky.social about how I found my place in the security industry, how @blackhoodie.bsky.social came to be, what our goals are and why community matters so much. hex-rays.com/blog/blackho...
BlackHoodie Interview: Building Community, Opportunity, & Confidence
BlackHoodie founder Marion Marschalek shares her journey from early challenges to creating a global, inclusive reverse-engineering network.
hex-rays.com
November 18, 2025 at 6:02 PM
I chatted with @hex-rays.bsky.social about how I found my place in the security industry, how @blackhoodie.bsky.social came to be, what our goals are and why community matters so much. hex-rays.com/blog/blackho...
Reposted by Dominic White
HOPE has been banned from St. John's University. www.2600.com/content/hope...
HOPE CONFERENCE BANNED BY ST. JOHN'S UNIVERSITY | 2600
www.2600.com
November 18, 2025 at 6:21 PM
HOPE has been banned from St. John's University. www.2600.com/content/hope...
Reposted by Dominic White
November 18, 2025 at 5:11 PM
Here’s a free scanner for that FortiWeb CVE-2025-64446 I made for you.
GitHub - sensepost/CVE-2025-64446: A scanner for the FortiNet vulnerability CVE-2025-64446
A scanner for the FortiNet vulnerability CVE-2025-64446 - sensepost/CVE-2025-64446
github.com
November 18, 2025 at 5:07 PM
Here’s a free scanner for that FortiWeb CVE-2025-64446 I made for you.
Reposted by Dominic White
The clever folks at Grumpy Goose Labs have published even more ways to identify unauthorized IP KVMs across your environment, with some great memes to boot! Be KVM, Do Fraud - blog.grumpygoose.io/be-kvm-do-fr...
Be KVM, Do Fraud
Hi Everyone! It’s me, your friendly Wav3.
blog.grumpygoose.io
November 15, 2025 at 12:00 AM
The clever folks at Grumpy Goose Labs have published even more ways to identify unauthorized IP KVMs across your environment, with some great memes to boot! Be KVM, Do Fraud - blog.grumpygoose.io/be-kvm-do-fr...
Reposted by Dominic White
August 5, 2025 at 10:17 PM
Reposted by Dominic White
November 10, 2025 at 9:08 PM
Reposted by Dominic White
Reposted by Dominic White
@ellearmageddon.bsky.social wirh some words of inspiration at #kawaiicon
We can change the world, we do it in small steps, making each thing just a little better
We can change the world, we do it in small steps, making each thing just a little better
November 6, 2025 at 9:35 PM
@ellearmageddon.bsky.social wirh some words of inspiration at #kawaiicon
We can change the world, we do it in small steps, making each thing just a little better
We can change the world, we do it in small steps, making each thing just a little better
Reposted by Dominic White
NEW: Paragon spyware hit a key Italian campaign manager / political strategist.
Super concerning case & a reminder that Italy has a growing pile of unexplained infections with Paragon's Graphite spyware.
Super concerning case & a reminder that Italy has a growing pile of unexplained infections with Paragon's Graphite spyware.
NEW: The Paragon spyware scandal in Italy widens again.
A political consultant who works with left-wing politicians, who are part of the opposition party Partito Democratico, has now come out as the latest target.
"It is time to ask a very simple question: Why? Why me?" Francesco Nicodemos said.
A political consultant who works with left-wing politicians, who are part of the opposition party Partito Democratico, has now come out as the latest target.
"It is time to ask a very simple question: Why? Why me?" Francesco Nicodemos said.
Italian political consultant says he was targeted with Paragon spyware | TechCrunch
WhatsApp notified the consultant, who works for left-wing politicians, that his phone was targeted with spyware made by Paragon.
techcrunch.com
November 6, 2025 at 9:03 PM
NEW: Paragon spyware hit a key Italian campaign manager / political strategist.
Super concerning case & a reminder that Italy has a growing pile of unexplained infections with Paragon's Graphite spyware.
Super concerning case & a reminder that Italy has a growing pile of unexplained infections with Paragon's Graphite spyware.
Reposted by Dominic White
D3 viz of Symbiote malware call graph created with @binaryninja.bsky.social. Interactive, and makes pewpew sounds. The pewpew sounds are naturally the most important analysis feature, duh. Code going public soon.
November 7, 2025 at 1:52 AM
D3 viz of Symbiote malware call graph created with @binaryninja.bsky.social. Interactive, and makes pewpew sounds. The pewpew sounds are naturally the most important analysis feature, duh. Code going public soon.
Reposted by Dominic White
Heeey, ncurses/terminfo has a small virtual machine! And if there's a VM, there are CTF challenges :)
hackarcana.com/public-exerc...
hackarcana.com/public-exerc...
(third one coming next week, will be a bit harder)
hackarcana.com/public-exerc...
hackarcana.com/public-exerc...
(third one coming next week, will be a bit harder)
November 1, 2025 at 4:15 PM
Heeey, ncurses/terminfo has a small virtual machine! And if there's a VM, there are CTF challenges :)
hackarcana.com/public-exerc...
hackarcana.com/public-exerc...
(third one coming next week, will be a bit harder)
hackarcana.com/public-exerc...
hackarcana.com/public-exerc...
(third one coming next week, will be a bit harder)
T’was 0xC0N Jozi today. That makes number 9, finally beating ZaC0N’s run of 8 years. It’s such a special con because it’s small and full of passionate attendees - no corporate wage slaves there for a day off work, just a bunch of hackers new and old.
November 1, 2025 at 3:59 PM
T’was 0xC0N Jozi today. That makes number 9, finally beating ZaC0N’s run of 8 years. It’s such a special con because it’s small and full of passionate attendees - no corporate wage slaves there for a day off work, just a bunch of hackers new and old.
Just added SOCKS support to this reverse tunnelling tool github.com/singe/contun...
October 28, 2025 at 2:58 PM
Just added SOCKS support to this reverse tunnelling tool github.com/singe/contun...
github.com/singe/contun.p… this was a fun nerd snipe - how do you build a listed:listen connect:connect reverse tunnel that can handle concurrent connections when you only have Perl.
GitHub - singe/contun.pl: A concurrent listen:listen connect:connect tunnelling solution written in Perl
A concurrent listen:listen connect:connect tunnelling solution written in Perl - singe/contun.pl
github.com
October 27, 2025 at 7:00 PM
github.com/singe/contun.p… this was a fun nerd snipe - how do you build a listed:listen connect:connect reverse tunnel that can handle concurrent connections when you only have Perl.