At the end of the year everyone reviews their achievements — and we decided not to lag behind: we’ve picked our top-10 posts of our Telegram channel PurpleShift that got the most likes in 2025.
The authors of these research papers, tools, and useful cybersecurity tips will certainly be rewarded! And you, dear readers, can check if you’ve read all our top-performing stories:
[1] Pentest Awards — 3rd place in “Infrastructure Breach” category (https://t.me/purpleshift/103) (case description)
[2] UnUnicode plugin to convert JSON with escaped characters into a human-readable format (https://t.me/purpleshift/100)
[3] Security research on the RPC interface (https://t.me/purpleshift/94)
[4] Using hidden and single-character files in Linux attacks (https://t.me/purpleshift/113)
[5] Promise to conduct a security analysis of the Zigbee protocol (https://t.me/purpleshift/98) — with separate post featuring research results (https://t.me/purpleshift/145)
[6] Pentest Awards — Top-10 prize in “Infrastructure Breach” category (https://t.me/purpleshift/107) (case description)
[7] Critical vulnerability in HashiCorp Vault (https://t.me/purpleshift/124)
[8] ParseJsonWithSDDLs utility to check permissions in DACL access control lists (https://t.me/purpleshift/114)
[9] How to talk to the air without drawing attention from security personnel (https://t.me/purpleshift/122)
[10] How to extract secrets from the Windows Registry without triggering EDR alerts (https://t.me/purpleshift/125)
