🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Simple ways to obfuscate PEB retrieval instructions in order to avoid the gs+0x60/fs+0x30 synawk.com/blog/peb-obfus… #malware #redteam #windows

If you are using SAP NetWeaver I would apply the patch asap. Also, I strongly recommend you go and investigate manually because exploitation has been going on for a while.

I hit level 60 in Classic Hardcore WoW to remind myself. What's old is new again. Never stop learning, never stop grinding. #RedTeamTip

Cool beginner-level introduction to the PE format: youtube.com/watch?v=f1J07O… - featuring #PEbear 🐻: youtube.com/watch?v=f1J07O…

I never got an answer about avast 😔

I jumped heavily into learning about SCCM tradecraft and wrote a detailed write-up with custom examples, covering the most interesting vulnerabilities that combine commonality and impact from low-privilege contexts, and what you can do to prevent them :) logan-goins.com/2025-04-25-scc…

I'm reposting my IBM blog dealing with Lazarus and "Direct kernel object manipulation (DKOM) attacks on ETW providers" on knifecoat 🔪🧥 knifecoat.com/Posts/Direct+K…

Dennis Kniep This is a very neat trick! In my opinion clearly a vulnerability though, it shouldn't be possible to skip the first step this way. I imagine Microsoft will want to fix this, or was this reported and deemed as not a vuln?

New update released! - Introduction to Keylogging - Developing a Keylogger - Sending Keystrokes To Remote Server - Manipulating VEH For Local Code Execution Shout out to 5pider and Mannyfreddy for their help in this update. More information: maldevacademy.com/syllabus

MY GOAT KEEPIN WEST COAST BEST COAST

Look at those cute little blobs in your internal network. They look harmless, but how about the one carrying SOCKS? It's ProxyBlob, a reverse proxy over Azure. Check out Atsika's article on how it came to exist after an assumed breach mission ⤵️ 👉 blog.quarkslab.com/proxyblobing-i…

ProxyBlob is alive ! We’ve open-sourced our stealthy reverse SOCKS proxy over Azure Blob Storage that can help you operate in restricted environments 🔒 🌐 github.com/quarkslab/prox… Blog post for more details right below ⬇️

Bobby Cooke I can confirm, it is using REST API over HTTPS under the hood for Blob operations🧙‍♂️

Another WDAC Bypass 👀‼️

In-case you missed the webcast, here's the GitHub link github.com/rvrsh3ll/Bolth…. Blog post coming soon! One of my fav bits we talked about was using this to have your C2 call to 127.0.0.1:port or even adding dev tunnels to the ClickOnce. Many options. Modify to taste 🧑‍🍳

🧙‍♂️Loki project is up to 25 vulnerable ⚡️Electron apps! What features would you like to see added to Loki? Private beta has: 🧦SOCKS5 proxy 📝Task Queue 🛜C2 Server ⚡️Agent rewrite 🥷Evasion github.com/boku7/Loki

BOF execution coming soon to Loki C2! Just got TrustedSec's COFFLoader working inside of a Node.js node module, callable from JavaScript! COFFLoader Project: github.com/trustedsec/COF… Loki C2 Project: github.com/boku7/Loki