Here it is: my research on Alternate Syscalls for Windows 11! There are still a few other facets to explore, but this is stable and PatchGuard resistant (from my tests!). #blueteam #redteam #computing #securityresearch #cyber #infosec #cybersec #malware.

Okay @Microsoft @msftsecurity @MSFTResearch #RIFT is pretty damn cool. But can it be ported to ghidra for us poor nerds who can’t afford IDA Pro 🤓.

RT @d1rkmtr: Thinking about releasing initial access (bypass MotW & SmartScreen) framework just for bros, not that commercial free version….

RT @vxunderground: Dear Red Team nerds,. If you're curious what a successful and serious malware campaign looks like (if you want to make a….

RT @TheHackersNews: 🔍 UPDATE: The Havoc backdoor used by Iranian hackers is far more advanced than we thought. Injected via conhost.dll, i….

RT @5mukx: Doppelganger: An Advanced LSASS Dumper with Process Cloning.

The more I use Axum, the more I like it. About half way through v1.0 of my project that I'll open source. I have updates planned for v1.1, as well as through 2.0, 3.0 and 4.0. Keen to get a mvp out. but, I also want enough for it to be useful. Cant wait to share!!.

I was looking forward to using my gorgeous new (Spanish designed) garlic grater, but how the hell are you supposed to get the garlic out of the grooves it just smushes 😭😭😭

Yoooo nice work!.

Been re-cookin' an old project from about 3 years ago recently. Originally written in Go and C - rewriting in Rust. Got a roadmap for various releases - thinking of open sourcing it when the first major milestone is met. Or maybe I wait for a more complete product. Idk 🤷‍♂️.

Sorry, what? std::ops::Yeet ???

RT @xacone_: If you're exploiting a driver offering R/W access to physical memory on Win11 24H2, you can leverage this simple trick to circ….

Wanted to share this thing, @sixtyvividtails crazy human brain tissue AI ?! has found the root cause for a BSOD. I replaced the old process & thread walk with a ref counted method, preventing a race condition. Thats wild yo. Commit fixing the issue:

I've made a video on how to setup the Sanctum project based on a few people asking. Alt syscalls gives a bsod in 1 vm, but not the other (same kernel version) for a page fault. Doesn't appear to be Msft patching it, but it did work b4 a kernel update.

Interested in getting into some reverse engineering / lower level malware skills / general compsci? @5mukx got you covered!.

I've rewritten my readme providing much clearer deployment instructions from a clean setup, made some improvements to the overall deployment process, and had a lot of cups of tea 😵‍💫 good progress today!.

Got back late last night from a holiday in the most beautiful part of Europe. Day off today, time to go fix an issue and discussion someone raised in my repo. Back at it. Sad to be home tho, it’s rainy and cold here 🥲

Oops that break should be a continue, but we gucci

Also, worked first time, no BSOD doing multithreaded activity. I ❤️‍🔥 rust