January 27th 15:30 GMT. Join us for a live webinar showcasing some of Nighthawk's key features and evasive capabilities. Orgs can apply to register here:.

RT @XintraOrg: Massive thanks to @MDSecLabs @offensiveninja for this awesome lab! 😍

RT @5mukx: I have done Parallel syscall technique in Rust. Inspired by @MDSecLabs Research. #research #poc #ru….

RT @0patch: We'd like to thank our sources researching various NTLM hash leak issues:.1) @domchell of @MDSecLabs: 2….

RT @domchell: Our red team is growing and we have a rare open position for a Principal RT Operator - if this sounds like you, get in touch….

Stumbled on ServiceNow during a red team? If not you might want to check our latest post on Red Teaming with ServiceNow by @__invictus_

RT @XintraOrg: Already three people have fully smashed the Mustang Panda lab with FULL points (zero hints used) over the weekend by @MDSecL….

RT @inversecos: The Council of Tropical Affairs, while negotiating the mango export deal, have noticed suspicious activity on their network….

RT @inversecos: NEW LAB: Mustang Panda 🐼🔍. Chinese cyber espionage APT targeting a government body across the U.S, Europe, and APAC. Test y….

RT @domchell: Last year's @BlackHatEvents was a blast so we're doing it all again! Join me and the @MDSeclabs crew in Vegas. Early bird dis….

RT @_dirkjan: I'm not doing training at BH USA this year, but some friends are and I highly recommend their courses:.- Adv Detection Engine….

Please note, if you register for this with anything but a business email you will be rejected 🕵️.

Hacky Christmas to all, see you in 2025 🎄🎅

Ever come across Altiris on a red team? We did. Check out this post from @breakfix on how to extract ACC creds. Extracting Account Connectivity Credentials (ACCs) from Symantec Management Agent (aka Altiris).

RT @C5pider: @MDSecLabs great work to the Nighthawk team :).Very impressive set of new features.

Ready for some Thanks Giving reading? Nighthawk 0.3.3 Evanesco is now live for customers #happythanksgiving

RT @clintgibler: 😈 Common Detection & Evasion Techniques for Web Application Firewalls. → Fuzzing, reversing regex rules, obfuscation/encod….

RT @XssPayloads: When WAFs Go Awry: Common Detection & Evasion Techniques for Web Application Firewalls, a good compilation of evasion tech….

RT @lastweekinfosec: WAF bypasses (@MDSecLabs), sastsweep (@_chebuya), and more!

RT @GrahamHelton3: Further reading from @MDSecLabs .