@Malmons_World I meant to tag you guys lol 😂

Always a great experience with @qatarairways! Heading back to NYC from Doha and the service has been outstanding as usual. Huge appreciation for crew member Anna for being so kind and helpful. Exceptional service! ❤️

Thank you, young art student person place or thing. It is very nice. I didn't see the face behind everything originally because I don't have my glasses on (I'm old and stinky).

@shireenrasul.art painted this incredible piece for me. blend of evrything I live & breathe. From the #VXUnderground flame on the top right, the @wearedefcon logo on the 👈 👁️, the Zer0byte “0” on the 👉👁️, @spuxo on the 👈 side of the face, and the 🦅 on the right. #cybercyber

Another "old but gold" little trick, harkening back to @mubix's blog post waaay back in 2013: "Stealing passwords every time they change" -- creating a Password Filter & adding it to Windows Registry. A clever persistence trick to exfiltrate credz. Video: https://t.co/JCrtv3GoB8

Defcon Workshop: Killing and Silencing EDR Agents Like an Adversary

.@h313n_0f_t0r while be at DEFCON representing us. She will have several different limited edition vx-underground stickers. Two are holographic. One is glow-in-the-dark. If you see her say "Hello" and grab a sticker.

Whoa

Microsoft just released the patch for CVE-2025-33073, a critical vulnerability allowing a standard user to remotely compromise any machine with SMB signing not enforced! Checkout the details in the blogpost by @yaumn_ and @wil_fri3d. https://t.co/EY5Z53w1ZT

Did you know that Azure Join Devices has a database that stores all the actions the Azure user has performed on the device? It's inside user\..\appdata\local\connectedDevicePlatform\AAD.<guid>\activitiesCache 🫣 I wonder where MS sends this information.

TeamViewer - @whynotsecurity TL;DR: TeamViewer stored user passwords encrypted with AES-128-CBC with they key of 0602000000a400005253413100040000 and iv of 0100010067244F436E6762F25EA8D704 in the Windows registry. https://t.co/0Cbwvu4ZgA

A Unified Platform for Adversary Emulation and Red Team Operations

It is not just a tab.

the darkest day in streaming history 🖤

https://t.co/yrClmRrmiP

This is insane https://t.co/p4L2PR3M8w

A 7th grader following my 3 minute tutorial on building with Grok 3 and Replit. The future is bright.

From the BlackBasta chat logs, I obtained access to GoblinCrypt, a private malware encryption tool used to bypass EDR/AV. With it, I pivoted into each malware samples and C2 address. Here’s the full list: https://t.co/08lDSQhYFT

As a pentester the report is what you're being paid for. All of the time you spend having fun (and stressing) hacking is a bonus. A great report will showcase all the hard work you do while also providing your client a guide to make their environment safer! Resources: Hack for

it took me so much time to finish this exploit but I finally did it! my first guest-to-host virtualbox escape is finally ready, using a combination of 2 bugs I can target the latest version :) Eternal thank you to my dear friend Corentin @OnlyTheDuck for constantly encouraging me