HackingPassion.com
👻 home posts ethical hacking course newsletter shop whoami github youtube
HackingPassion.com
Hacking is not a hobby but a way of life

Ethical hacking,
zero to expert.

Hack like black hat hackers.
Penetration testing, Kali Linux, cybersecurity,
WiFi and web hacking,
and the mindset behind it.

View the course → The book
Ethical Hacking Complete Course Zero to Expert
The Book

Hacking Book

Everything I wish I had when I started. More than the course. Deeper explanations, real examples, the hacker mindset, and things I have never put online.

Coming soon Get notified when it drops → ← back to the course
SECURITY NEWS

Latest from the front line:

The newest CVEs, zero-days, malware, and breaches, taken apart so you can see how the attack works. I dig into the technical details, attack chains, and mistakes that made them possible.

All posts
A single character in nftables, the Linux firewall, lets any local user become root and escape a container. Patched, but the exploits are now public.
June 9, 2026

One Character in nftables Hands Any Linux User Root

Internet Explorer is gone, but its engine still lives in Windows. A researcher turned it into remote code execution on a fully patched machine.
June 8, 2026

Internet Explorer Can Still Take Over a Fully Patched Windows PC in 2026

Google ignored a Chrome bug for almost four years, then leaked the working code. One visit to a bad website can turn your browser into a botnet.
June 7, 2026

Google Leaked the Chrome Bug That Turns Your Browser Into a Botnet

Your phone, TV and router can be turned into hidden proxies that crawl the web for the AI industry under your own IP address. Here is how to spot it.
June 6, 2026

Your Home Devices Are Being Turned Into Proxies for the AI Industry

One home computer can crash nginx, Apache, IIS, Envoy and Cloudflare in seconds. HTTP/2 Bomb hits default settings and three of them have no patch.
June 3, 2026

HTTP/2 Bomb Takes Down nginx Apache IIS Envoy and Cloudflare

Hackers hijacked Instagram accounts by asking Meta's AI support bot to reset the password. Here is how the attack worked and how to protect your own.
June 2, 2026

Hackers Took Over Instagram Accounts By Asking Meta's AI Support Bot

One researcher published six working Windows zero days to get back at Microsoft. Now Microsoft calls it criminal. The full story, both sides.
May 31, 2026

Six Working Windows Zero Days and the Researcher Microsoft Called a Criminal

Just opening a web page lets it watch which sites and apps you have open, even ones running in a different browser, with no malware at all.
May 30, 2026

FROST Lets a Website See Which Sites and Apps You Have Open by Timing Your SSD

One character in a Host header bypasses authentication on FastAPI, vLLM, LiteLLM and the Python MCP SDK. The bug is in Starlette. Patch now.
May 27, 2026

BadHost Breaks Into FastAPI and vLLM With a Single Character

OPEN SOURCE

My Arsenal: from recon to root

I like building my own tools instead of waiting for someone else to. Then I put them on GitHub for free. Now hundreds of thousands of hackers and researchers use them.

THE LAB

More from the lab:

Tutorials, tools and deep dives. The evergreen stuff, from Linux and labs to hands-on hacking guides.

All posts
The oldest attack in hacking still works today. See how a buffer overflow takes control of a machine, and watch it happen on your own lab.
June 5, 2026

Watch a Buffer Overflow Take Over a Machine on Your Own Lab

Dorks Eye runs Google dorks from your terminal across five search engines, surfacing the exposed pages, files and logins the web never meant to show.
May 29, 2026

Dorks Eye finds what was never meant to be public

How honeypots work, what attackers do the moment they get in, how to set up Cowrie, and how to recognize a honeypot during a pentest.
May 28, 2026

Honeypots Set the Trap Watch the Attackers and Know When You Are Standing in One

NEWSLETTER

Stay updated

New posts in your inbox, about once a week when I find the time. Ethical hacking, security news, the tools I build, and now and then something I can't stop digging into.