LARGEST SUPPLY CHAIN HACK IN HISTORY ZOMG!!!!111

John Hammond · Beginner ·🔐 Cybersecurity ·6mo ago
Links referenced: https://github.com/advisories/GHSA-8mgj-vmr8-frr6 https://www.linkedin.com/posts/advocatemack_malware-npm-supplychain-activity-7370829639537291264-jxZD/ https://news.ycombinator.com/item?id=45169657&trk=public_post_comment-text https://npmdiff.dev/simple-swizzle/0.2.2/0.2.3/package/index.js/ https://www.aikido.dev/blog/npm-debug-and-chalk-packages-compromised https://www.securityalliance.org/news/2025-09-npm-supply-chain https://x.com/InsiderPhD/status/1965110610972250550 https://x.com/WhichbufferArda/status/1965139425475907774 https://x.com/hackerfantastic/status/19651434915…
Watch on YouTube ↗ (saves to browser)

Playlist

Uploads from John Hammond · John Hammond · 0 of 60

← Previous Next →
1 b00t2root CTF: cuz rsa is lub [RSA Cryptography]
b00t2root CTF: cuz rsa is lub [RSA Cryptography]
John Hammond
 2 b00t2root19 CTF: Scatter Me [3D Scatter Plots]
b00t2root19 CTF: Scatter Me [3D Scatter Plots]
John Hammond
 3 b00t2root19 CTF: Genetics [DNA Cryptography]
b00t2root19 CTF: Genetics [DNA Cryptography]
John Hammond
 4 b00t2root19 CTF: Can You Read Me [Esoteric Languages]
b00t2root19 CTF: Can You Read Me [Esoteric Languages]
John Hammond
 5 b00t2root19 CTF: Treasure [GameBoy ROMs]
b00t2root19 CTF: Treasure [GameBoy ROMs]
John Hammond
 6 b00t2root19 CTF: Loopback [PCAP Forensics]
b00t2root19 CTF: Loopback [PCAP Forensics]
John Hammond
 7 b00t2root19 CTF: EasyPHP [PHP Web Exploits]
b00t2root19 CTF: EasyPHP [PHP Web Exploits]
John Hammond
 8 SunshineCTF 2019: WelcomeCrypto [ROT47]
SunshineCTF 2019: WelcomeCrypto [ROT47]
John Hammond
 9 SunshineCTF 2019 | Brainmeat (Esoteric Languages)
SunshineCTF 2019 | Brainmeat (Esoteric Languages)
John Hammond
 10 SunshineCTF 2019 | CB1 (NATO Phonetic Alphabet)
SunshineCTF 2019 | CB1 (NATO Phonetic Alphabet)
John Hammond
 11 SunshineCTF 2019 | Return to Mania (PWN) PIE
SunshineCTF 2019 | Return to Mania (PWN) PIE
John Hammond
 12 SunshineCTF 2019: Wrestler Book (Explicit SQL Injection)
SunshineCTF 2019: Wrestler Book (Explicit SQL Injection)
John Hammond
 13 SunshineCTF 2019: Wrestler Name Generator (XML XXE)
SunshineCTF 2019: Wrestler Name Generator (XML XXE)
John Hammond
 14 Python PIL: Recreating LSB in Stegsolve.jar
Python PIL: Recreating LSB in Stegsolve.jar
John Hammond
 15 Checking IP Address in CIDR Subnet w/ Python
Checking IP Address in CIDR Subnet w/ Python
John Hammond
 16 Cracking HSRP Passwords w/ John The Ripper
Cracking HSRP Passwords w/ John The Ripper
John Hammond
 17 Facebook CTF - SQL Injection with Spaces (Products Manager)
Facebook CTF - SQL Injection with Spaces (Products Manager)
John Hammond
 18 Crypto: Classic RSA with a Twist (ParsonsCTF)
Crypto: Classic RSA with a Twist (ParsonsCTF)
John Hammond
 19 Finding Shared Libraries with LDD (ParsonsCTF)
Finding Shared Libraries with LDD (ParsonsCTF)
John Hammond
 20 HSCTF - Obfuscated JavaScript (JSF**k) [Verbose]
HSCTF - Obfuscated JavaScript (JSF**k) [Verbose]
John Hammond
 21 HSCTF - Hiding in ZIP Files (LockedUp)
HSCTF - Hiding in ZIP Files (LockedUp)
John Hammond
 22 HackTheBox - Help
HackTheBox - Help
John Hammond
 23 HSCTF - Hunting Git Commits (Admin Pass)
HSCTF - Hunting Git Commits (Admin Pass)
John Hammond
 24 HSCTF - Python Remote Code Execution (A Simple Conversation)
HSCTF - Python Remote Code Execution (A Simple Conversation)
John Hammond
 25 HSCTF - Hidden UTF-8 Encoding (Real Reversal)
HSCTF - Hidden UTF-8 Encoding (Real Reversal)
John Hammond
 26 HSCTF - XORing Data (Hidden Flag)
HSCTF - XORing Data (Hidden Flag)
John Hammond
 27 HSCTF - RSA Cryptography (Reverse Search Algorithm)
HSCTF - RSA Cryptography (Reverse Search Algorithm)
John Hammond
 28 GOOGLE CTF 2019 HYPE
GOOGLE CTF 2019 HYPE
John Hammond
 29 SANS GirlsGoCyberStart [01] I suck at CAPTCHA
SANS GirlsGoCyberStart [01] I suck at CAPTCHA
John Hammond
 30 SANS GirlsGoCyberStart [02] You Sneaky Dog
SANS GirlsGoCyberStart [02] You Sneaky Dog
John Hammond
 31 SANS GirlsGoCyberStart [03] Crypto Coffee
SANS GirlsGoCyberStart [03] Crypto Coffee
John Hammond
 32 BAD USER INTERFACE / UI EXPERIENCE
BAD USER INTERFACE / UI EXPERIENCE
John Hammond
 33 TECHNICOLOR QR CODE (Prism) InnoCTF 2019
TECHNICOLOR QR CODE (Prism) InnoCTF 2019
John Hammond
 34 MITRE CTF 2019 HIGHLIGHTS
MITRE CTF 2019 HIGHLIGHTS
John Hammond
 35 HACKERS REACT: Bad Hollywood Hacking Scenes
HACKERS REACT: Bad Hollywood Hacking Scenes
John Hammond
 36 Windows PowerShell [01] Introduction
Windows PowerShell [01] Introduction
John Hammond
 37 CSAW'19 - PWN - Ret2libc w/ PWNTOOLS (baby_boi)
CSAW'19 - PWN - Ret2libc w/ PWNTOOLS (baby_boi)
John Hammond
 38 BCACTF - LISP "Thspeaking" (with SinisterMatrix!)
BCACTF - LISP "Thspeaking" (with SinisterMatrix!)
John Hammond
 39 BCACTF - Bruteforcing "Basic Pass" (with SinisterMatrix!)
BCACTF - Bruteforcing "Basic Pass" (with SinisterMatrix!)
John Hammond
 40 100% OSCP: Offensive Security Certified Professional
100% OSCP: Offensive Security Certified Professional
John Hammond
 41 BCACTF "For the NIght is Dark" (with SInisterMatrix!)
BCACTF "For the NIght is Dark" (with SInisterMatrix!)
John Hammond
 42 PicoCTF 2019 HYPE - LIVE NOW!
PicoCTF 2019 HYPE - LIVE NOW!
John Hammond
 43 x86 Assembly: Hello World!
x86 Assembly: Hello World!
John Hammond
 44 OSCP - Taking Notes & Resources
OSCP - Taking Notes & Resources
John Hammond
 45 CVE-2019-14287 SUDO Bug [under 1.8.28]
CVE-2019-14287 SUDO Bug [under 1.8.28]
John Hammond
 46 PicoCTF 2019 [01] Glory of the Garden (Strings Challenge)
PicoCTF 2019 [01] Glory of the Garden (Strings Challenge)
John Hammond
 47 PicoCTF 2019 [02] Inspector (HTML, CSS, JavaScript)
PicoCTF 2019 [02] Inspector (HTML, CSS, JavaScript)
John Hammond
 48 PicoCTF 2019 [03] The Numbers (Python Script)
PicoCTF 2019 [03] The Numbers (Python Script)
John Hammond
 49 PicoCTF 2019 [04] Warmed Up + Bash Script
PicoCTF 2019 [04] Warmed Up + Bash Script
John Hammond
 50 templeos.txt.mp4.wav.psd
templeos.txt.mp4.wav.psd
John Hammond
 51 PicoCTF 2019 [05] Handy Shellcode (Pwntools)
PicoCTF 2019 [05] Handy Shellcode (Pwntools)
John Hammond
 52 PicoCTF 2019 [06] Practice Run & SSH
PicoCTF 2019 [06] Practice Run & SSH
John Hammond
 53 PicoCTF 2019 [07] Unzip, RE & Rot13
PicoCTF 2019 [07] Unzip, RE & Rot13
John Hammond
 54 PicoCTF 2019 [08] Caesar & Client Side
PicoCTF 2019 [08] Caesar & Client Side
John Hammond
 55 PicoCTF 2019 [09] Logon & Vaultdoor 1
PicoCTF 2019 [09] Logon & Vaultdoor 1
John Hammond
 56 PicoCTF 2019 [10] Robots.txt & Metadata
PicoCTF 2019 [10] Robots.txt & Metadata
John Hammond
 57 PicoCTF 2019 [11] What Lies Within & Extensions
PicoCTF 2019 [11] What Lies Within & Extensions
John Hammond
 58 PicoCTF 2019 [12] Shark On Wire 1
PicoCTF 2019 [12] Shark On Wire 1
John Hammond
 59 PicoCTF 2019 [13] More Client-Side & Flags
PicoCTF 2019 [13] More Client-Side & Flags
John Hammond
 60 A Poor Man's Pentest: Automating the Manual - BsidesDE 2019
A Poor Man's Pentest: Automating the Manual - BsidesDE 2019
John Hammond
Digital Marketing Institute | Cyber Safety Tips for Marketers
Next Up
Digital Marketing Institute | Cyber Safety Tips for Marketers
Digital Marketing Institute