This writeup details the complete attack chain for the Silentium machine, starting from a vulnerable...
This writeup details the complete attack chain for the Silentium machine, starting from a vulnerable Flowise AI instance to a privilege escalation using a recent Gogs vulnerability (CVE-2025-8110).
1. Enumeration & Discovery
Initial enumeration of the target IP revealed an Nginx web server redirecting to silentium.htb and an open SSH port.
nmap -sV -sC <TARGET_IP>
Enter fullscreen mode
New IElevator2 COM interface? No problem
TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm…
Quasar Linux RAT (QLNX) harvests DevOps credentials to enable software supply chain attacks with fileless execution and dual…
Hundreds of packages across npm and PyPI have been compromised in a new Shai-Hulud supply-chain campaign delivering…
Weekly cybersecurity news: Critical cPanel flaw under attack, Copy Fail Linux privilege escalation, TeamPCP supply chain…
All your compromised credentials are belong to us now instead of the other gang
Google fixes CVSS 10.0 vulnerability in Gemini CLI
