How the NSA (Equation Group) allegedly hacked into China's Polytechnical University 👀 I analysed intelligence reports from Chinese cyber firms (360, Pangu, CVERC) to aggregate TTPs attributed to Equation Group. 🔗 https://t.co/Jx995rWoOp

This course is instructed by Adrian Justice @Zeroedtech, who has performed IR at Crowdstrike and at the Australian Cyber Security Centre (ACSC) for the government. He has extensive experience responding to APT compromises of government departments and critical infrastructure

New XINTRA course‼️ Advanced IIS Post Exploitation, Detection & Evasion Modern APT groups are actively weaponizing ToolShell and fileless IIS tradecraft to compromise Exchange, SharePoint, ASP workloads. If your detection and response capabilities lag exposure, this course

cover letters are basically corporate fan fiction tf you supposed to write 😩 “Nothing excites me more than logging into Entra ID…”

💕updated the description thank you @vxunderground

We based the entire story of the lab on CD Projekt Red compromise but updated ALL of the TTPs to use the latest techniques Scattered Spider uses 😉 this lab took a few iterations to get perfect. We hope you enjoy it <3 Here's the infected network you're investigating.

NEW LAB: Scattered Spider (UNC3944) 🕷️🕸️ Scattered Spider hits indie studio AB Projekt Blue, deploying ransomware and stealing unreleased game code. Test your skills on: 👀 Social Engineering & MFA Fatigue 👀 Credential Theft via OST Files 👀 Bring Your Own Vulnerable Driver

Hi all - I'm hiring a Principal Security Researcher who has strong knowledge in Active Directory and Entra ID. Are you interested in spending time to find the next ZeroLogon or BadSuccessor equivalent, as well as helping our product to improve? Go apply:

✅ initial access achieved disk 11: @inversecos we psyop’d the one and only @inversecos! such a beautiful mammal inside and out; infectiously happy and joyful, i’m genuinely so glad i got to meet you not once but twice! 🖤🖤🖤

We 🫶 malware @inversecos @MalwareVillage @DEFCON 33

https://t.co/jEyfSzi1mY

Meow and I’ll give you ONE OF EACH

ur girls at defcon so if u want @XintraOrg waifu & egirl stickers just come thru 🫶🏼

a lot of “forensic” artifacts can be used in an evil way if you’re creative enough :D

Red teamers, no need to “pull” clipboard data when Windows already saves it all on disk for you in a neat little file 🗿 (including past clipboard items) https://t.co/U7Jetiix6b

this post was sponsored by an unnamed agency

are honey traps still a thing? can I see photos of one 😝 for research purposes

Become a contributor at XINTRA @XintraOrg 🔎 We're looking for RED and BLUE team contributors 🔴Red Team – Emulate real APT groups 🔵Blue Team – Investigate & respond to emulations What you get: - Challenging, realistic emulations - Hack & forensicate vendor devices -

If you're interested in the comparison details, check it here below. https://t.co/K3AZWnUOYJ We have three new labs now in the pipeline with another 6 being planned out. Thank you for your patience with us as we are a super small team!

Introducing XINTRA Enterprise Live!!!! Real-world threat simulation with live infrastructure. Our team took nearly 8 months to build it, and it's finally here :) We designed it for SOC/IR teams, with the power to collect evidence, deploy your own tools, and assign tasks...

XINTRA Public LIVE Trainings now open for 2025😍 🔹Small class sizes 🔹Course recordings included 🔹Slides, VMs and resource downloads provided 🔹EU, US and AU time zones supported 🔹Two instructors per class Black Hat USA in-person sessions also available (first two options) -