New Open-Source Tool Spotlight

MCP-Hydra bridges AI assistants like ChatGPT with security tools (e.g., Nmap, Sqlmap) via the Model Context Protocol (MCP). It simplifies AI-assisted pentesting and analysis by making tools extensible and scriptable. #Cybersecurity #AI

Project link on #GitHub https://github.com/HappyHackingSpace/mcp-hydra

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New Open-Source Tool Spotlight

Kubernetes History Inspector (KHI) is an agentless log viewer built for visualizing Kubernetes audit logs. Its timeline-based log analysis and resource relationship diagrams simplify cluster troubleshooting—no complex setups or commands required. #Kubernetes #Observability

Project link on #GitHub https://github.com/GoogleCloudPlatform/khi

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

A post about malware development essentials and myths

https://blog.deeb.ch/posts/maldev-myths

New Open-Source Tool Spotlight

Pocket ID is an OIDC provider simplifying authentication with passkeys. No passwords. Think secure logins using Yubikeys or biometrics. Lightweight compared to Keycloak or Hydra and ideal for focused use cases. Built for Docker setups. #Passkeys #OIDC

Project link on #GitHub https://github.com/pocket-id/pocket-id

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New Open-Source Tool Spotlight

tfmcp simplifies Terraform management by letting AI assistants like Claude Desktop handle config, plans, and state via the Model Context Protocol (MCP). Built with Rust, it offers robust security, Docker support, and detailed analysis. #Terraform #DevOps

Project link on #GitHub https://github.com/nwiizo/tfmcp

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New Open-Source Tool Spotlight

Groundhog by @ghuntley explains AI coding agents like Cursor from first principles. Built in Rust, it teaches the inner workings of coding assistants—perfect for learning or building your own. #AI #RustLang

Project link on #GitHub https://github.com/ghuntley/groundhog

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New Open-Source Tool Spotlight

Cortex by TheHive Project is a powerful open-source engine for observable analysis and active response. Supporting integration with MISP & TheHive, it offers 39+ analyzers to streamline DFIR tasks. Built using Scala, AngularJS, and Python for scalability. #CyberSecurity #DFIR

Project link on #GitHub https://github.com/TheHive-Project/Cortex

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

We're very happy and excited to announce that we've closed the extra last-minute CFP for the #OffensiveOps Offensive Security Village, which Bourbon Offensive Security Services has sponsored and turned into reality! The village is accompanied by a #Lockpicking village - see more details below.

This TAKES PLACE on June 18th from 14.00-18.00 on top of the June 19th full day agenda!!

Talks:
1 - Browser Exploitation: From N-Days to Real-World Exploit Chains in Google Chrome - by Arnaud Perrot (aka "petitoto")

2 - Hacking EV Chargers: Fast Track to Market, Fast Track to Vulnerabilities - by Simon Petitjean

3 - Targeting pentesters - by Charlie Bromberg (aka "Shutdown") & Mathieu Calemard du Gardin

4 - Unpacking Azure Initial Access Attack Techniques - by François-Jérôme Daniel & Patrick Mkhael

In parallel we host the “Physical Intrusion & hashtag
hashtag#Lockpicking Village” in the Atrium to permits to practice, learn and more ! by Nicolas Aunay (Joker2a)) and Nicolas B.!!

The village will be live during both days of the event

Get your ticket here: https://lnkd.in/edXc3ytn

If you’re into #pentesting, #redteam, #adversaryemulation, #physicalintrusion or you're a student, passionate, or just curious to explore why offense is mandatory for defense — you’ll feel right at home.

Let’s build something meaningful for the offensive security community in Luxembourg.

#BSidesLuxembourg2025
#OffensiveOps
#OffSec
#Cybersecurity
#infosec
#communitydriven

New Open-Source Tool Spotlight

Sops encrypts secrets in YAML, JSON, ENV, or INI formats, ensuring encrypted leaf values while preserving file structure. Supported integrations include AWS KMS, GCP KMS, Azure Key Vault, age, and PGP. Edit files seamlessly, with automated encryption/decryption during save. #encryption #devops

Project link on #GitHub https://github.com/getsops/sops

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

So here is how dangerous I am finding the latest #AI from #Anthropic...

After about a week of use (it just came out), I realised that it's ingratiating itself to me !!!
I almost missed it, as my ability for self reflection is pretty poor.

But the number of times it's said to me; "That's Brilliant, What a great algorithm, How insightful...etc", would have gone unnoticed...

Consider this model (#claude V4) is the one rated level 3 (most dangerous so far) and it was already in the news because it tried to blackmail #redteam #AIsafety engineers.

That's one of the ways #AGI will get human accomplices...
....the machine will become your best buddy because it will manipulate you like an adult manipulates a child. It knows all the praxis, few people do.

BEWARE. THE FRONTIER #LLM MODELS.
THEY WILL MANIPULATE YOU !

AI will gaslight you into compliance and obedience.

New Open-Source Tool Spotlight

Nuclei Templates by ProjectDiscovery: a repository of community-curated YAML templates enabling the Nuclei engine to identify application vulnerabilities. It’s modular, covers CVEs, misconfigurations, and more. #CyberSecurity #OpenSource

Project link on #GitHub https://github.com/projectdiscovery/nuclei-templates

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New Open-Source Tool Spotlight

Google's MCP Security repo integrates various security solutions like Chronicle, GTI, SOAR, & SCC via Model Context Protocol servers. Flexible deployment options make it easy to adapt to diverse environments. Documentation is thorough—local Sphinx builds supported. #CyberSecurity #DevOps

Project link on #GitHub https://github.com/google/mcp-security

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New Open-Source Tool Spotlight

ScareCrow: A framework for crafting payloads designed to bypass Endpoint Detection and Response (EDR). It flushes EDR hooks in DLLs using methods like `VirtualProtect` & indirect syscalls, ensuring stealth execution. Written in Go, it even uses obfuscation tools like Garble. #CyberSecurity #MalwareDevelopment

Project link on #GitHub https://github.com/Tylous/ScareCrow

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New blog post! It's a rather short one, nothing crazy. Just wanted to share a random finding I made recently.

'Hijacking the Windows "MareBackup" Scheduled Task for Privilege Escalation'

https://blog.scrt.ch/2025/05/20/hijacking-the-windows-marebackup-scheduled-task-for-privilege-escalation/

New Open-Source Tool Spotlight

"Living off the Land" tactics are a core part of modern offensive and defensive cybersecurity. The GitHub repo 'Awesome LOLBins and Beyond' aggregates tools/resources like LOLBins, GTFOBins, and macOS LOOBins. Essential for red teams and threat hunters. #CyberSecurity #RedTeam

Project link on #GitHub https://github.com/sheimo/awesome-lolbins-and-beyond

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New Open-Source Tool Spotlight

Living Off the Land (LOL) techniques exploit legitimate tools for malicious purposes. This GitHub repo curates an impressive list of methods and resources attackers use across endpoints, cloud services, and more. Great for defenders seeking to enhance detection strategies. #Cybersecurity #Infosec

Project link on #GitHub https://github.com/danzek/awesome-lol-commonly-abused

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

Cybersecurity Roles & Domains: Where Do You Fit In?

Cybersecurity isn’t one-size-fits-all — it includes a wide range of roles and domains, each with unique skills and responsibilities.

Whether you enjoy coding, problem-solving, analyzing data, or working with policy — there's a role for you in cybersecurity.

Disclaimer: This content is for educational and career guidance purposes only.