Releasing EPIC [Extensible Position Independent Code] – toolkit for C/C++ shellcode building 🔥 https://t.co/dnUg6PoEBa - Modularity (!) - Dead-code & payload size optimization - Global context - Minimal PIC-friendly libc & win32 included - More... #redteam #malware #security

https://t.co/X5ChPpoYKv

Good lord, Signal is down...

we told claude code + sonnet 4.5 to rewrite our entire typescript repository in go it ran for 29 hours results below:

Take this tool and get infinite number of CVEs. Have fun. https://t.co/BPP6dJM7ku

I took as an example NppConverter.dll but it works exactly the same way for mimeTools.dll and NppExport.dll (the "CVE" one).

Let me explain where this incredible vulnerability in Notepad++ comes from... my blog post from 3w ago. The problem is there's no vuln. I described this as sneaky init access. You might as well do binary patching of any PE file in the world. #infosec https://t.co/rXWXaskcG0

The main reason for writing this tool was the fact that every month I was writing an ad hoc shitty Python script for just one maldev project... Those days are over!

ByteCaster 🔥 – my new tool for payload encryption, obfuscation, and conversion to byte arrays. https://t.co/vqCrSVeRO1 - 14 output formats: C, Rust, C#, Nim, Go... - AES-256, RC4, XOR supported - IPv4Fuscation, MACFuscation, base64/32 #malware #redteam #security #infosec

"The Renaissance of NTLM Relay Attacks: Everything You Need to Know" by @elad_shamir (@SpecterOps) 🔥 One of the best overview of NTLM relay technique I've ever seen. (and the styling is is an art in itself!) #redteam #security #infosec #windows https://t.co/eRK7yg7B8U

Fire.

Azure AD via weak ACLS (@xybytes), HTTP stealth proxy (@IAmMandatory), Dll sideloading for initial access (@Print3M_), kernel-hack-drill (@a13xp0p0v), and more!

DLL Sideloading for Initial Access – Red Team Operator's Guide 🔥 (new article) https://t.co/rXWXasjEQs - finding software to backdoor - finding DLL and function to backdoor - legit software backdooring - OPSEC considerations #redteam #infosec #malware #security

DllShimmer: 1.1.0 update 🚨 Features: - dynamic linking cache, more stealth, better performance - saving debug logs to a file (--debug-file) - new logging format (img below) - all boilerplate is moved to a header file https://t.co/BPP6dJLzuW #redteam #malware #security

[CC] Might be interesting for you: @hasherezade @mrexodia @vxunderground @netbiosX @mariuszbit @mrd0x @MalDevAcademy

I'm releasing my new tool: DllShimmer 🔥 Weaponize DLL hijacking easily. https://t.co/BPP6dJLzuW - backdoor any function, no reverse engineering - all functions proxied, no program crash - built-in debug info and mutex to every function - more... #redteam #malware #security

CISSP ❌ CRTP ❌ the actual hands-on red teaming course with 1.337% pass rate 👇✅ bonus, it is taught on real systems

"Turning Microsoft's Login Page into our Phishing Infrastructure". Super hot research from this year's @defcon by @RedByte1337 🔥🚨 #phishing #redteam #defcon https://t.co/6qcjUiq9bh

Another FileJacking exploration out there 🥳

If you haven’t already, check out @Print3M_’s research on File System APIs here: https://t.co/DFFcVPTD2s We went down the exfil path for this research, but certainly some abuse potential there!