Laude Cybersecurity

02/15/2026

Openclaw rebuilt in Rust, more secure and faster. Raw binary is sitting at 2MB. Fully open sourced.
https://github.com/theonlyhennygod/zeroclaw

02/11/2026

02/11/2026

Sharing is Caring

𝟏𝟎𝟎% 𝐅𝐑𝐄𝐄 𝟏𝟎-𝐝𝐚𝐲 𝐜𝐨𝐮𝐫𝐬𝐞 designed for OSINT enthusiast, cybersecurity enthusiast (teachers, trainers), and privacy advocates who wants to learn how to use open-source intelligence techniques to audit and secure their own online presence.

𝐍𝐨𝐭𝐞: 𝐘𝐨𝐮'𝐫𝐞 𝐟𝐫𝐞𝐞 𝐭𝐨 𝐮𝐬𝐞 𝐢𝐭 𝐚𝐬 𝐫𝐞𝐟𝐞𝐫𝐞𝐧𝐜𝐞 𝐨𝐧 𝐜𝐨𝐧𝐝𝐮𝐜𝐭𝐢𝐧𝐠 𝐭𝐫𝐚𝐢𝐧𝐢𝐧𝐠𝐬.

Let’s start with basics to intermediate skills, focusing on visual aids, hands-on steps, and a daily task to make it practical and engaging. Each day includes 1–2 modules with lessons that take 1–3 hours total, plus practice time. The goal is for you to systematically uncover, analyze and mitigate your digital footprint.

𝐓𝐨𝐭𝐚𝐥 𝐃𝐮𝐫𝐚𝐭𝐢𝐨𝐧: 10 days (Assuming 2- 4 hours per day, including task).
𝐃𝐢𝐟𝐟𝐢𝐜𝐮𝐥𝐭𝐲: Beginner - Intermidiate

𝐂𝐥𝐢𝐜𝐤 𝐭𝐨 𝐑𝐞𝐚𝐝: https://medium.com//osint-do-it-yourself-self-auditing-589641d19f79

𝐏𝐫𝐞𝐫𝐞𝐪𝐮𝐢𝐬𝐢𝐭𝐞𝐬: Basic computer and internet skills (e.g., browsing & searching). No prior OSINT Experience needed, but familiarity with social media helps a lot. You’ll need a computer, tools like browsers and accounts on platforms like facebook, google (for searches).

07/16/2025

07/16/2025

A new and critical security threat, PerfektBlue, has emerged, targeting OpenSynergy's BlueSDK Bluetooth framework and posing an unprecedented risk to the automotive industry.

07/10/2025

Hacking into everything using cellular-based IoT tech: from SoC disassembly to AT commands - in just 39 minutes.

Another great presentation from Deral Heiland - this time on how to conduct security research and find vulnerabilities in cellular modems and SoCs (for IoT). From disassembly to pinouts, from NB-IoT and LTE-M differences to AT command sets across different manufacturers. Super informative and practical.

Cellular data is one of the key attack vectors for IoT, OT, and digital mobility. Cars, trains, planes, and ships - all rely on cellular modems, so this talk will be applicable to them as well.

Enjoy, and please share with your peers and colleagues!

More details:
Exploration of Cellular Based IoT Technology [Video]: https://lnkd.in/dMa2QdTN

07/10/2025

Security analysis of KIA's infotainment system: 164 pages of research details, from in-car wiring to unpatched (?!) vulnerability to QRishing! 🚙🛠️💣💀

Security researcher Danilo Erazo shared his truly comprehensive paper documenting his research on KIA's In-Vehicle Infotainment (IVI) system. If you're interested in how to hack car head units, this presentation is a great starting point.

Among the many interesting insights and great photos shared by the author, there's a creative and surprisingly practical QRishing attack. When you pair your phone with your car, you may be prompted to scan a QR code - but if an attacker has compromised the head unit, that QR code could direct you to a malicious website.

Below is a link to the GitHub repository that is expected to contain the proof-of-concept (PoC) code and visuals for the QRishing attack. The repository is currently private. As stated on Danilo's website: "Hack-iRTOS – This tool is still private in my GitHub repo. I will make it public when the vendor resolves the vulnerability."
So, I assume that at the time of writing this post, the vulnerability has not yet been patched.

Enjoy the research and the paper - and feel free to share it with your peers!

More details:
"Hardware Hacking a Car’s Head Unit & Uncovering a Vulnerable RTOS" [PDF]: https://lnkd.in/dqp-qhGS
GitHub repository with PoC and QRishing: https://lnkd.in/d6fppJVf

07/10/2025

Over 64 million chat records accessed using the password "123456"

When applying for a job at McDonald's, over 90% of franchises use "Olivia," an AI-powered chatbot. We discovered a vulnerability that could allow an attacker to access more than 64 million job applications. This data includes applicants' names, resumes, email addresses, phone numbers, and personalit...

07/07/2025

🟥 Indonesian Infosec! Red/blue teamers, hackers, bug bounty hunters, pentesters, SOC & DFIR and all others!

Apply to attend Positive Hack Talks conference in Jakarta, Indonesia 🇮🇩
🗓️ July 23 — free in-person event
🔗 https://phtalks.ptsecurity.com/jakarta

Attendee registration open until July 11.

A few things you should know:
- 8 speakers — some of them are already announced on the website (check it out, we have very cool researchers)
- 100% free to attend
- No sponsors, no sales — just real tech talks
- Talks in English + live Indonesian translation via headset
- Lunch, snacks & coffee all day (halal options too)

07/07/2025

Proof of concept for CVE-2025-32463, a local privilege escalation affecting sudo -R on Linux systems.
This vulnerability allows a user with local access to escalate privileges to root under specific conditions.
Tested on impacted sudo versions 1.9.14 to 1.9.17; fixed in 1.9.17p1.

Full PoC and mitigation notes available here:
- https://lnkd.in/d-VT39_7

⚠️ For authorized security testing and research purposes only.
https://github.com/FreeDurok/CVE-2025-32463-PoC

Proof of Concept for CVE-2025-32463 Local privilege escalation exploit targeting sudo -R on vulnerable Linux systems. For educational and authorized security testing only. - FreeDurok/CVE-2025-3246...

07/07/2025

4,000 hours of reverse engineering the Microsoft Xbox: literally every trick, from soldering to acid etching to X-raying chips. 👨🏻‍🏭🎮🪚♨️

Security researcher Markus Gaasedelen shares the fundamental and truly impressive research that took him three years and dozens of destroyed Xbox consoles. In his work, he tries nearly every trick and shares the details with the audience.

One of the most impressive things to me: Marcus soldered a 42-gauge wire (thinner than a human hair) into a 1mm hole in an attempt to disable a hidden Xbox boot ROM by tapping a microscopic gold bond wire inside the NVIDIA MCPX chip.

And on top of all that, this is a deeply personal presentation and talk. No spoilers - see for yourself. Please share it with your peers - this work is absolutely worth it.

More details:
Full-stack Reverse Engineering of the Original Microsoft Xbox [PDF]: https://lnkd.in/dP984kKx
Full-stack Reverse Engineering of the Original Microsoft Xbox [Video]: https://lnkd.in/dJgP_cc3
JTAG "Hacking" the Original Xbox in 2023 [Blog]: https://lnkd.in/dETbMXEB