Purpleshift
Recent
Vulnerable PackageKit gives attacker root access
Detecting privilege escalation in Linux through TOCTOU vulnerability
Extending IDA Pro: а guide for reverse engineers
What if your decompiler doesn’t support some RISC-V instructions
MiniPlasma: detecting a dangerous exploit from Nightmare Eclipse
A 2020 vulnerability still allows a local user to elevate privileges to SYSTEM
Privilege escalation on SCCM undetected by antiviruses
Vulnerability CVE-2025-47179 allows for full control over SCCM
From RCE on a controller to domain admin
An interesting experience in solving a pentesting task
NetNTLM hashes leak through Snipping Tool
How to prevent exploitation of a vulnerability in a popular image editing tool
Accessing Bitbucket through a test K8s cluster
Kubernetes API can reveal many secrets without authentication
New NTLM audit events help to detect coercing attacks
A chain of events 4023 and 4021 from the same IP address means an attack
LLM for pentesting: speed isn't everything
We found out which local LLMs are better at finding vulnerabilities