https://t.co/9LxZSQVu3Q next one from my blog. straightforward bind shell for macOS on Apple Silicon. Clean, minimal, no libc. Pure syscall style. #hacking #malware #purpleteam #redteam #blueteam #apple #macos #research #maldev #threatintel #cybersecurity #cybercrime #apt

I've started working on the 2025 edition of "Hacking: The Art of Exploitation", a beginner-friendly guide to binary exploitation. Wish me luck! https://t.co/KnJqHr2yrn

https://t.co/j0YMJPiumX next one from my blog. instead of hijacking an existing thread, we’ll create an entirely new thread in the target process. #malware #cybersecurity #hacking #purpleteam #maldev #cybercrime #asm #apple #macosx #threatintel #research #programming #book

Back to working on NomNom, my ransomware PoC. Currently working on Implementing exfiltrations of keys to a C2 server. The keys were originally saved in a file on disk which isn't the best. Like always, I have a lot of debugging to do :-)

Implemented TLS/SSL in my custom C2 to enable HTTPS communications :-) Used the OpenSSL Library for this

Wanted Raspberry Pi, so I hacked them (reported vuln)... and they sent me all this cool stuff🍓 Thanks @Raspberry_Pi :)

Doing a bit of learning on the Native Windows API. Thinking of using it in my Ransomware PoC as it’s potentially stealthier and better for evading AVs and EDRs https://t.co/DnnUlKEHk4

Implemented a method in my custom C++ c2 to fetch already stored keys :-). This should be enough for me to continue building my Ransomware PoC I will however be implementing some new functionality soon.

Implementing some anti-debugging techniques in my Ransomware PoC. Instead of using the usual 'IsDebuggerPresent()' which tends to be very suspicious, I implemented my own function. Learning about Windows Internals is definitely paying off :-)

Getting some work done on my custom C2. Just implemented an SQLite database to store encryption keys for later retrieval

Learning about Windows Internals so I can write better and stealthier malware 😇

https://t.co/qHyoWmNnTM next one from my blog. no exploits here - just clean mechanics you can reuse in #redteam/#blueteam practice/#exercises. #cybersecurity #hacking #malware #macos #apple #programming #research #purpleteam #maldev #malwareanalysis #arm #intel

Back to building a light weight C2 for my projects. This time, I'm using Crow, a C++ framework for creating HTTP or Websocket web services. It's really similar to Python's Flask.

Just got another opportunity to mentor hackers in the @thechaincademy Chainkathon starting on the 28th July. We will be supporting brilliant minds, sharing insights, and contributing to groundbreaking projects ! Join as a hacker here https://t.co/9dCu4LX7eO

Successfully exploited the buffer overflow vulnerability to launch calc.exe

Happy to share that I passed the PT1! Thank you @RealTryHackMe!

Working on my last remote buffer overflow exploit before moving on to advanced techniques. Currently looking for bad characters which is giving me some headache :-/

Found the offset to EIP, found bad characters and finally crafted the exploit to pop calc.exe

Currently working on another buffer overflow exploit. I'm now fuzzing the application and I was able to overflow the buffer and overwrite the value of EIP

Working on writing an exploit for the Free CD to MP3 application from scratch in python. The screenshot is me controlling EIP to execute shellcode that opens CALC.exe