Big news in the #BashCore project: introducing #BashCoreLX — the same minimal, powerful BashCore, now with a lightweight #LXDE graphical interface!
Tested on my old machine: just 300MB RAM on boot.
Hoping to release a public ISO soon using live-build!

It’ll include all BashCore tools +
#Wireshark #OWASPZAP #BurpSuite #FernWiFiCracker #FirefoxESR #Netsurf

#Linux #Pentesting #CyberSecurity #LightweightLinux #InfoSec #LiveISO

@albinowax Your research is always mind blowing. Can’t wait!

@tib3rius That's excellent - haha

Hello friends. The dreaded and long awaiting blog on WHAT THE FUCK HAPPENED TO THE CYBERSECURITY JOBS MARKET has arrived.

https://tisiphone.net/2025/04/01/lesley-what-happened-to-the-cybersecurity-skills-shortage/

I'm sorry.

TIL of the bad.horse traceroute

You might have noticed that the recent SAML writeups omit some crucial details. In "SAML roulette: the hacker always wins", we share everything you need to know for a complete unauthenticated exploit on ruby-saml, using GitLab as a case-study.

https://portswigger.net/research/saml-roulette-the-hacker-always-wins

A MicroPython Interpreter For Flipper Zero https://hackaday.com/2025/03/03/a-micropython-interpreter-for-flipper-zero/

@0xceba Thank you, this extension is awesome and is a huge time saver when testing APIs

after a lengthy concept review, code review, and QA process, PortSwigger has published the Burp Variables extension to the BApp Store! if you do API testing from Burp, you should look into this productivity extension which allows you to store and reuse variables in your outgoing requests, similar to other API testing clients like Postman and Insomnia. this is a productivity boon because it gives you single place to update ephemeral credential/token values and it helps you keep track of your identifiers & credentials which minimizes false positives. to learn more:
- install the extension from the BApp Store
- see more details at the BApp Store page: https://portswigger.net/bappstore/27f89b068a3045649d4df77a863209c1
- review the source code at the extension's source repo: https://github.com/0xceba/burp_variables

#burp #burpsuite #burp_suite #pentesting #pentest #bugbounty #bugbountytips #hacking #cybersecurity #infosec

Quick macOS Tip: Create and Use Text Clippings for Productivity https://www.macrumors.com/how-to/macos-tip-create-text-clippings-productivity/?utm_source=dlvr.it&utm_medium=mastodon

In case you missed them, here are all the videos to highlight some of Hackvertor v2 features.

https://www.youtube.com/watch?v=RV0LIlv6CCA

@albinowax @raptor @gaz I’d love to see local LLM support. Due to our contracts, I can’t utilize this feature until it supports that. I have other extensions that add AI and support local LLM so that is nice, but I’d like to enable the full suite of AI features.

We've just released Shadow Repeater, for AI-enhanced manual testing. Simply use Burp Repeater as you normally would, and behind the scenes Shadow Repeater will learn from your attacks, try payload permutations, and report any discoveries via Organizer.

Shadow Repeater is now available via the BApp store. For technical details & backstory, check out our blog post: https://portswigger.net/research/shadow-repeater-ai-enhanced-manual-testing

Microsoft Identifies 3,000 Leaked ASP.NET Keys Enabling Code Injection Attacks https://thehackernews.com/2025/02/microsoft-identifies-3000-publicly.html

🎉 PESD v2.0 is now in the BApp store! Effortlessly generate dynamic sequence diagrams directly from BurpSuite traffic!
Now you can also create your own theme, conveniently edit the generated diagrams with MD syntax and much more! Install it today! 🎉
#doyensec #appsec #burpsuite #security

This link has been taken down from the NASA site by someone who probably told themselves as a kid that they would have stood up to the Nazis in the 1930s: https://www.nasa.gov/universe/nasa-intern-found-hope-in-the-moon-2 Here's the story that Musk and Trump and their goons are so afraid to let you read https://scitechdaily.com/nasa-intern-found-hope-in-the-moon/

I'm excited to announce Burp Variables v.1.1.6. this version has an updated UI which streamlines how variables are added: they can now be added through the dedicated panel on the Variables tab or via the context menu for requests that come from the message editor. the latter option is convenient when working with new variable names that haven't been memorized yet. download the new release at: https://github.com/0xceba/burp_variables

#burp #burpsuite #burp_suite #pentesting #pentest #bugbounty #bugbountytips #hacking

Hi Mastodon, time for an #introduction !

With Instagram getting continually worse I thought I'd give this a go. Looks like a promising platform and I'm excited to see where it goes.

My name is Cru and I'm a landscape #photographer from Rainbow Beach, #Queensland #Australia

My photography is mostly #nature and #landscape images. I sell my images as prints and for licensed use. This past year, much of my images have been taken in #Tasmania.

My website can be found here https://cruscanlan.com