frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

RedSun: System user access on Win 11/10 and Server with the April 2026 Update

https://github.com/Nightmare-Eclipse/RedSun
48•airhangerf15•2h ago

Comments

ranger_danger•1h ago
> normally I would just drop the PoC code and let people figure it out

Looks like that's exactly what they did though?

Or maybe they just meant that they don't usually explain how it works?

kijin•24m ago
Tney gave it a sexy name and set up a website about it (a github repo, at any rate), instead of just talking about it in a mailing list and getting a CVE like a proper bearded security researcher.
egeozcan•15m ago
I wonder why Windows Defender has the privilege to alter the system files. Read them for analysis? Sure! Reset (as in, call some windows API to have it replaced with the original), why not? But being able to write sounds like a bad idea.

However, I don't know what I'm talking about so take it with a grain of salt!

EvanAnderson•5m ago
AV had traditionally run as SYSTEM on Windows (and, in the past, often had kernel mode drivers too). I've always thought it was a terrible idea. It opens up exciting new attack surfaces. Kaspersky and McAfee both had privilege escalation vulnerabilities that I can recall. There have been a ton in multiple products over the years.
labelbabyjunior•50s ago
They kind of have to, though.

If malware exploits a privilege escalation vuln, what's the AV going to do about it when it's reduced to the software equivalent of a UK police officer. Observe and report?

labelbabyjunior•4m ago
Some files under Windows are protected as the TrustedInstaller user, which is a more restrictive level of permissions than SYSTEM.
labelbabyjunior•12m ago
A local privilege escalation to root via an exploitable service?

Doesn't Linux have one of these CVEs...each week?

Darkbloom – Private inference on idle Macs

https://darkbloom.dev
123•twapi•2h ago•65 comments

FSF trying to contact Google about spammer sending 10k+ mails from Gmail account

https://daedal.io/@thomzane/116410863009847575
88•pabs3•2h ago•36 comments

Sal Khan's AI revolution hasn't happened yet

https://www.chalkbeat.org/2026/04/09/sal-khan-reflects-on-ai-in-schools-and-khanmigo/
32•the-mitr•1h ago•28 comments

RedSun: System user access on Win 11/10 and Server with the April 2026 Update

https://github.com/Nightmare-Eclipse/RedSun
49•airhangerf15•2h ago•7 comments

Moving a large-scale metrics pipeline from StatsD to OpenTelemetry / Prometheus

https://medium.com/airbnb-engineering/building-a-high-volume-metrics-pipeline-with-opentelemetry-...
22•jmarbach•1h ago•3 comments

A Look into NaviDial, Japan's Legacy Phone Service

https://www.tokyodev.com/articles/a-look-into-navidial-japan-s-legacy-phone-service
25•pwim•2h ago•3 comments

The paper computer

https://jsomers.net/blog/the-paper-computer
108•jsomers•3d ago•18 comments

Stop Using Ollama

https://sleepingrobots.com/dreams/stop-using-ollama/
84•Zetaphor•3h ago•16 comments

Cybersecurity looks like proof of work now

https://www.dbreunig.com/2026/04/14/cybersecurity-is-proof-of-work-now.html
356•dbreunig•1d ago•124 comments

ChatGPT for Excel

https://chatgpt.com/apps/spreadsheets/
173•armcat•9h ago•122 comments

I made a terminal pager

https://theleo.zone/posts/pager/
115•speckx•8h ago•25 comments

Introduction to spherical harmonics for graphics programmers

https://gpfault.net/posts/sph.html
73•luu•2d ago•7 comments

Fast and Easy Levenshtein distance using a Trie

https://stevehanov.ca/blog/fast-and-easy-levenshtein-distance-using-a-trie
27•sebg•3d ago•1 comments

Cal.com is going closed source

https://cal.com/blog/cal-com-goes-closed-source-why
277•Benjamin_Dobell•15h ago•197 comments

Google broke its promise to me – now ICE has my data

https://www.eff.org/deeplinks/2026/04/google-broke-its-promise-me-now-ice-has-my-data
1336•Brajeshwar•12h ago•576 comments

Too much discussion of the XOR swap trick

https://heather.cafe/posts/too_much_xor_swap_trick/
15•CJefferson•2d ago•4 comments

Rewriting a 20-year-old Python library

https://www.b-list.org/weblog/2026/mar/23/20-year-library/
5•PaulHoule•4d ago•0 comments

North American English Dialects

https://aschmann.net/AmEng/
9•skogstokig•3h ago•1 comments

Show HN: Libretto – Making AI browser automations deterministic

https://github.com/saffron-health/libretto
93•muchael•14h ago•33 comments

Retrofitting JIT Compilers into C Interpreters

https://tratt.net/laurie/blog/2026/retrofitting_jit_compilers_into_c_interpreters.html
69•ltratt•18h ago•15 comments

IPv6 traffic crosses the 50% mark

https://www.google.com/intl/en/ipv6/statistics.html?yzh=28197
7•Aaronmacaron•18h ago•2 comments

The buns in McDonald's Japan's burger photos are all slightly askew

https://www.mcdonalds.co.jp/en/menu/burger/
356•bckygldstn•8h ago•179 comments

Stealth signals are bypassing Iran’s internet blackout

https://spectrum.ieee.org/iran-internet-blackout-satellite-tv
80•WaitWaitWha•4h ago•24 comments

PiCore - Raspberry Pi Port of Tiny Core Linux

http://tinycorelinux.net/5.x/armv6/releases/README
100•gregsadetsky•10h ago•12 comments

Show HN: Hiraeth – AWS Emulator

https://github.com/SethPyle376/hiraeth
19•ozarkerD•4h ago•5 comments

Live Nation illegally monopolized ticketing market, jury finds

https://www.bloomberg.com/news/articles/2026-04-15/live-nation-illegally-monopolized-ticketing-ma...
501•Alex_Bond•11h ago•146 comments

Agent - Native Mac OS X coding ide/harness

https://github.com/macOS26/Agent
37•jv22222•6h ago•7 comments

US v. Heppner (S.D.N.Y. 2026) no attorney-client privilege for AI chats [pdf]

https://fingfx.thomsonreuters.com/gfx/legaldocs/xmvjyjekkpr/Rakoff%20-%20order%20-%20AI.pdf
118•1vuio0pswjnm7•16h ago•92 comments

The Gemini app is now on Mac

https://blog.google/innovation-and-ai/products/gemini-app/gemini-app-now-on-mac-os/
130•thm•13h ago•62 comments

CRISPR takes important step toward silencing Down syndrome’s extra chromosome

https://medicalxpress.com/news/2026-04-crispr-bold-silencing-syndrome-extra.html
119•amichail•14h ago•72 comments