Exploits
Discover expert insights on the latest exploits, penetration testing tactics, and real-world vulnerabilities to strengthen your cybersecurity defenses.
Articles Categorized as Exploits
-
RoguePlanet: The Defender Zero-day that Survived Microsoft’s June Patch
By Ryan Chaplin The new critical Microsoft Defender exploit, RoguePlanet (CVE-2026-50656), is confirmed active in the wild. Learn what it is and how to protect your network. June 22, 2026 -
Building Security Tools from Source to Bypass Endpoint Security
By Jason Taylor Endpoint security detects many malicious files created with pentest tools, but pentesters can sometimes bypass this by rebuilding source code. Learn how here. June 16, 2026 -
Cool Tools: Bloodhound CE
By Andrew Trexler BloodHound’s Community Edition has everything a penetration tester needs to enumerate relationships in a domain in order to gain more access, even Domain Admin. June 2, 2026 -
CVE-2026-36748: XSS in Rock RMS Leads to Privilege Escalation
By Jason Taylor Raxis Lead Pentester Jason Taylor recently discovered CVE-2026-36748, a high-risk XSS vulnerability in Rock RMS that allows privilege escalation to admin. June 1, 2026 -
Defense in Depth Against Linux Kernel Privilege Escalation: A Practical Guide for Container Workloads
By Ryan Chaplin With current local privilege escalation exploits like Copy Fail and Dirty Frag active in the wild, harden your defenses to halt attacks even before patching. May 26, 2026 -
Cool Tools: NetExec (NXC) Fundamentals
By Scottie Cole Now that CrackMapExec is no more, how is a pentester to rapidly test credentials, enumerate assets, spray passwords, and more? Learn the basics of NetExec here. May 19, 2026
