Created small tool that joins a device to a Tailscale network and exposes a local SOCKS proxy. It’s built for red team pivots and quick access into (restricted) environments. The underlying tsnet library is currently Go-only, so it's semi-portable for now.

RT @decoder_it: Regarding #CVE-2025-33073 fixing NTLM/Kerberos reflection attacks via SMB: the patch only covers SMB clients. The "CredMars….

RT @OutflankNL: BOFs are powerful, but error-prone! We dropped a post and new BOF linting tool to catch bugs early, and to prevent crashing….

RT @SpecterOps: So you've compromised a host that isn’t cloud-joined. Antero Guy breaks down how to request OAuth tokens & enumerate an Ent….

RT @AlmondOffSec: Following @ShitSecure's TROOPERS talk and release of BitlockMove, we're releasing our internal DCOMRunAs PoC made by @SAE….

RT @Gi7w0rm: Do i read this correctly as "One click on a link is enough to take over a windows system" ? .That is baaaaad! O.o. https://t.c….

RT @ajpc500: TIL that there's a Defender 365 detection for use of the Microsoft logo from a wiki page - "Phish_HTML_WithMsLogoFromWiki_A" 🤣….

RT @ShitSecure: After today’s talk at #TROOPERS25 I’m releasing BitlockMove, a PoC to execute code on remote systems in the context of a lo….

RT @SpecterOps: In the year since Misconfiguration Manager's release, the security community has been actively researching new tradecraft &….

RT @fabian_bader: One of the results of the joined research with @_dirkjan is . Basically the yellow pages for Micr….

RT @Wietze: #HuntingTipOfTheDay: there are numerous open-source projects listing cyber threats. Some of these have easily ingestible indica….

RT @x33fcon: #x33fcon 2025 highlights. Thank you for being with us!

RT @_dirkjan: Last two weeks I talked about BYO Identity Providers in Entra ID and backdoors to External Auth Methods to bypass MFA. Only p….

RT @mrd0x: FileFix - A ClickFix Alternative.

RT @al3x_n3ff: Did you know that you can kerberoast without any valid credentials? All you need is an account that is ASREProastable. This….

RT @ptswarm: 🔥 Microsoft fixed CVE-2025-47955, discovered by our researcher Sergey Bliznyuk!. This vulnerability allows a locally authentic….

RT @watchtowrcyber: With the help of the Sesame Street gang, watchTowr Labs is back - with a pre-auth RCE chain against Sitecore Experience….

RT @x33fcon: "#Nemesis 2.0: Building an #Offensive VirusTotal" by @tifkin_ and @harmj0y at #x33fcon #red - https://….

RT @praetorianlabs: 🚨 New attack disclosed: GitHub Device Code Phishing. John, Matt, and Mason reveal how they've been using this technique….

RT @RedByte1337: GraphSpy just got scarily powerful!🔥. 🤖Automated device code entry.🖥️Post-comprimise automation (device registration, WinH….