EvadeX just got a solid round of upgrades. We’ve recently updated a number of anti-analysis features, improved our C# obfuscator, and expanded the portal with in-depth details and operator resources so you can make your operations more evasive based on the C2 framework you use.

Great talking with Matteo Wong @TheAtlantic the other day about smishing and the Smishing Triad, along with the new Google lawsuit against the group. Highly recommend reading Matteo’s article here:

drawn-out setups. 💻 This offer is available only to verified members or red teams at legitimate companies based in NATO countries or Australia. Verification is required before a license is issued. Reach out today: info(@) https://t.co/y4QL8lDEJR

🛑 Stuck trying to bypass EDRs every engagement, or paying providers who make you chain 5 to 10 options before anything even runs? Try EvadeX with a one-week trial you can use on real engagements to test templates, validate evasions, and see how a simple selection beats long, …

A little shocked and awstruck that we are even on the radar of this multi-billion dollar company, but shows we are doing something right.

All while using our simple point and click evasion templates. That outcome demonstrates our focus on practical, repeatable effectiveness rather than flashy one-offs. Learn more at

A recent red team engagement highlighted why that approach matters: “We were able to get a working payload using EvadeX and Adaptix C2 that could run commands within a sensitive environment, including interacting with LSA/SAM, without detection from CrowdStrike with Overwatch.”

We design EvadeX and our evasion templates to be resilient, not a long, drawn out process of chaining a bunch of steps together to hopefully work on your end. CONT. BELOW

New EvadeX Release Tonight! This includes multiple new features and execution techniques along with a new C# obfuscater to assist in your post exploration needs.

Register here:

BYOVD is no longer required on modern Windows. a bunch of recent msft kernel patches just shove vulnerable kernel code behind a privilege check. I wonder if we will see threat actors leveraging this like they did BYOVD. no bringing along a driver and loading also means less IOCs

From Hacking to Entrepreneurship: The PhantomSec Story

Register here:

Are you an offensive security engineer, manager, director, or just a 1337 hacker who will be at DEF CON? Join the PhantomSec team after for our Post-DEF CON Meetup! Will be a great place to grab a drink, some food, and to chat with other offsec folks after the busy week.

@phantomcybersec Thought this was cool, so here's a rust library of the PoC in the blog post:

FileFix - A ClickFix Alternative https://t.co/OMU7UADf9J

The wait is over! Our stealthy Windows persistence technique (PhantomPersist) is now out! Read the blog post here:

My DEF CON submission wasn’t accepted unfortunately but that means y’all will get a new Windows persistence technique early ;) Will be sharing it through @phantomcybersec

The latest episode of The Phillip Wylie Show features Grant Smith (@S1n1st3rSecuri1) and Justin Perez , the founders of @phantomcybersec. From Hacking to Entrepreneurship: The PhantomSec Story https://t.co/w5iAeyFNX1

That's a wrap for Hack Space Con 2025! CyberDagger had an amazing time building community and connecting with other cybersecurity professionals! @_JohnHammond @S1n1st3rSecuri1 @phantomcybersec #Cyberconference #Hackers #Cybersecurity #CybersecurityConference #CybersecurityEvent