PowerShell

The CPUID website was briefly compromised, allowing attackers to serve malicious installers via a side API instead of legit HWMonitor and CPU-Z files. While original binaries remained secure, the six-hour window allowed for the distribution of credential-stealing malware. The incident highlights significant risks in software distribution infrastructure beyond the build process itself.

Researchers have successfully ported DOOM to run entirely off DNS TXT records. By splitting game data and binaries into nearly 2,000 chunks stored in Cloudflare DNS, a custom PowerShell script fetches and executes the game in memory. This proof-of-concept leverages DNS lookup protocols beyond their intended design, bypassing local disk usage entirely.

The author explores using DNS TXT records as a serverless file storage system by encoding, splitting, and uploading data to be reassembled at runtime. By patching a C# DOOM engine to run entirely from memory, the author successfully executes the game via ~2,000 DNS queries using a PowerShell script, demonstrating significant, persistent, and stealthy protocol abuse.