Google's Audio Memory: What If the Promises Don't Hold?
Google's new Pixel feature listens to your day and remembers it. The company says everything stays on your device. But what if it doesn't — and does it matter either way?
Security Research & Analysis
Offensive thinking.
Offensive thinking.
Defensive expertise.
In-depth red team research, blue team strategy — and privacy-first security tools that run entirely in your browser. No accounts. No telemetry. No data leaves your machine.
Featured
Latest research
Archive
Recent posts
pedit COW & DirtyClone: Two New Linux Root Exploits That Bypass On-Disk Integrity Checks
CVE-2026-46331 and CVE-2026-43503 both corrupt the Linux page cache via network subsystems to grant root — bypassing file integrity tools like AIDE and Tripwire without touching files on disk.
Trump Died of Rabies — And What That Means for Your Package Manager
When DuckDuckGo's AI killed Trump with rabies, the world laughed. When AI coding assistants invent package names, attackers register them. Nobody's laughing then.
One HTTP Header, Full Admin Access: Gitea's June 2026 Security Release Explained
Gitea 1.26.3 and 1.26.4 addressed a dense security release window, including a 9.8 CRITICAL auth bypass exploitable with a single HTTP header. Here's what broke and how to fix it.
AI Cyber Sovereignty: What Happens When Your Best Defender Can Be Switched Off?
Frontier cyber AI is becoming controlled infrastructure. The security risk is not only that attackers get stronger models, but that defenders become dependent on capabilities a vendor or government can withdraw.
Cordyceps and GitHub Actions: When CI/CD Trust Boundaries Become the Supply Chain Attack
Novee's Cordyceps research is a reminder that GitHub Actions workflows are executable attack surface, not harmless YAML. Here is how to audit the trust boundary before an outside pull request borrows maintainer authority.
FortiBleed: Treat Exposed FortiGate Credentials as an Incident, Not a Patch Ticket
A reported FortiGate credential-harvesting campaign is a reminder that patched edge appliances can still be compromised. Here is how to verify exposure, contain access, and hunt for follow-on activity.