Dominic White 👾
@singe
Hacker @sensepost - minimally active here. Fine me at https://chaos.social/@singe || @singe.bsky.social
Earlier this week I gave a talk to our internal hacking teams about the difference between good hackers and great ones that have been able to impact our field. I included three extended quotes - two from writers and one from Hamming that influenced my approach early on. Maybe…



Adriaan was struggling to get an interactive shell on the *nix application server he had popped, so he wrote a turn-based mini binary to give you a semi-interactive shell in restrictive environments. Writeup & code 👇🧵
It's been a long time since someone showed me a new way to shell. Nice work Adriaan!
Adriaan was struggling to get an interactive shell on the *nix application server he had popped, so he wrote a turn-based mini binary to give you a semi-interactive shell in restrictive environments. Writeup & code 👇🧵
A banned PyPI account and a big old bug bounty later Felipe wrote a tool to uncover nested dependency problems from GitHub repos.
After @felmoltor argued about dependency confusion & supply chain attacks & was confused with the feasibility of doing this in 2025, he decided to take a practical approach & create his own tool 📷 to detect Orphan and Misspelled packages 📷: sensepost.com/blog/2025/deps…
After @felmoltor argued about dependency confusion & supply chain attacks & was confused with the feasibility of doing this in 2025, he decided to take a practical approach & create his own tool 📷 to detect Orphan and Misspelled packages 📷: sensepost.com/blog/2025/deps…
Great thread that challenges what you know about modern WiFi hacking. The next iteration of our @BlackHatEvents Las Vegas course takes it further — you do the hacking, hands-on, in the cloud. Sign-up link at the end of the thread.
Wifi hacking can be a useful tool, but people are out here grinding on WPA2 handshake cracking tutorials & menu driven attack tooling. When @sensepost built the 3rd iteration of our wifi hacking course for @BlackHatEvents - we did it to show what really works & how it works. 1/7
My short impulse talk from Cycon has been published: youtu.be/qllU_B_Rmis?si…
Following my @securityfest talk yesterday I've released Hashcatalyst, a wrapper that helps automate non-distributed workflows by chaining multiple attacks with no downtime. github.com/stealthsploit/… #hashcat
Pentesters and Bug hunters in the UK! Come and join the UK HackerOne Club for regular meetups, hackathons and talks all relating to bug bounty and web app testing. You might even get a chance to hack on some pre-release targets! h1.community/uk-hackerone-c… #hackerone #BugBounty
How it started. How it's going... gizmodo.com/klarna-hiring-…