Hi, now any user can get root — and Microsoft told you this would happen “Don’t run as root!” — they shouted.“Use sudo, it’s secure!” — they said.Well guess what?Even a user not in sudoers can now gain full root access. All thanks to sudo‘s cozy little bug involving chroot, nsswitch.conf, and your complacency. 🧬…
Tag: entraID
Zero-Days and Zero Mercy: Inside Houken’s Multi-Tool Mayhem
hi. imagine waking up, grabbing coffee, checking logs… and seeing a kernel-mode rootkit silently hijacking your cloud edge device. welcome to Houken — a stealthy but sloppy intrusion set that smashed into French networks in late 2024, chaining zero-days, dropping reverse shells, and playing persistence like a damn violin. not some elite APT black-ops fantasy…
Hackers Don’t Hack, They Hustle Humans (And They’re Winning)
hi. let’s kill the myth once and for all: hackers don’t break in. they log in. they don’t chase encrypted vaults or fight with multi-layered firewalls. they go for people. because people are the weakest, squishiest, most exploitable part of any system. DaniĂ«lle Haneveer hit the nail on the head in her recent post: attackers…
Microsoft Entra: The Identity Control Freak We Actually Needed
hi. look, let’s get this straight: the internet’s a mess. cloud, hybrid, remote work, BYOD, shadow IT, LLMs with plugins, interns with full access at 3 a.m.everything’s connected. everything’s exposed. everyone’s logging in from somewhere. so who the hell controls who gets in — and what they can do? yep. that’s what Microsoft Entra was…
Why I Run This Blog (And Why I Keep Writing All These Damn Articles)
A lot of ppl asks me why do I run this blog? okay take a look ))))))))) short version lol, so I don’t lose my mind with the amount of info I process every day. longer version ))))))) because everything I write helps me think, structure, and not drown in this tech flood of updates,…