[Pin] My maldev link dump if anyone else wants to read :D (Will be updated) https://t.co/Bp0cYuqmRj

mfw one of my beacons had the internet speed of a rural village so i had to add options to my screenshot BOF to push file size down💀 update pushed to the repo https://t.co/DYOfJcmLyA

Added my ICMP, NTP and Websocket C2 channel examples to the public repo. https://t.co/GLmksKiBY7 Also accompanying blog post explaining the template: https://t.co/3zvoKvUdDl pls no flame bad code :D Websocket channel in action:

Added a few more example C2 channels to the Cobalt Strike custom c2 channel template on top of the existing file read/write PoC: - named pipe - TCP - UDP https://t.co/TjJ310AFdE

Open sourced my template code for implementing custom C2 channels via a UDRL hook in Cobalt Strike Hopefully this makes developing custom c2 channels for CS easier, because externalC2 spec is a pain. Or just use the upcoming UDC2 interface /shrug https://t.co/GLmksKiBY7

Been using @_RastaMouse 's crystal kit as a UDRL dev template for the past few days and did quite a few cool things, among them was implementing a custom c2 channel template (in this case, PoC using files on disk as the channel) using IAT hooks on the wininet functions

mfw hashcat v7 b4 gta6

Introducing Havoc Professional: A Lethal Presence We’re excited to share a first look at Havoc Professional, a next-generation, highly modular Command and Control framework, and Kaine-kit our fully Position Independent Code agent engineered for stealth! https://t.co/0aPVihoFIU

average day as an aggressorscript victim

@TheHackersNews ah interesting

Swimming deep inside Windows Security Center service to re-engineer API access allowing to disable Windows Defender. COM interface reconstruction and integrity checks bypassed to inform WD that its not the-boss-in-the-house anymore... A post by @es3n1n. Nicely done! Repo:

This is my research project in creating read, write and allocate primitives that can be turned into an injection in order to evade certain telemetry which I presented last year in RedTreat. I hope everyone likes it \m/. https://t.co/GY37MMfCGl

Truly excited for the upcoming workshop. Covering modern ransomware evasion & detection and also implementing your own ransomware/decryptor for Windows, MacOS and Linux. See you soon! 👻

crto2 pwned pogpogpog https://t.co/YWAcq6iCMB

So excited to speak at #BHUSA for the first time this year! I'll talk about training LLMs on verifiable tasks (including what exactly that means) with a case study automating some maldev work.

I'm finally releasing a project that I've been working on for a little while now. Here's Boflink, a linker for Beacon Object Files. https://t.co/herd91NIGF Supporting blog post about it.

I'm super happy to announce an operationally weaponized version of @YuG0rd's BadSuccessor in .NET format! With a minimum of "CreateChild" privileges over any OU it allows for automatic escalation to Domain Admin (DA). Enjoy your inline .NET execution! https://t.co/nvZmsNqjnG

Learn to evade and strengthen security controls by building your own ransomware. For a teaser on what to expect, check out my talk 'Windows Ransomware Detection' https://t.co/a0f2jvPIcr Excited to have y'all join us next month.

a certain certification vendor must be fuming right now

We are very excited to announce that Volatility 3 has reached parity with Volatility 2! With this achievement, Volatility 2 is now deprecated. See the full details in our blog post:

wtf bro has a larger bounty than john wick 😭