Been working on building my own loader for #Windows, seems like using "CreateProcess" is much more likely to get detected than "CreateThread". Regardless, with PEzor github.com/phra/PEzor, you can easily evade most AVs including Windows Defender. #infosecurity #malwaredev

Bypassing Windows Defender to get a sliver beacon on the latest #windows 11 update using process injection and API Unhooking with PEzor. #infosec #malwaredev

"Self-deleting" #malware that bypasses #Windows Defender in the latest Windows 11 update using "Process Injection" to slip undetected, injecting shellcode into "OneDrive.exe". #infosec #malwaredevelopment #redteam

This is how "Windows Installation Files" can be weaponized into #malware that bypasses #Windows Defender in the latest Windows 11 distribution. #infosec #malwaredevelopment #zoom

In response to numerous requests, here's a brief walkthrough on how to implement this technique of using Windows Installers to deliver malware in your engagements. kavigihan.medium.com/using-windows-… #infosec #redteaming #windows #malwaredevelopment

This one is gonna make your brain hurt a little 😁#hackthebox

Hey Vulnlab Community! Just taking a moment to reflect on how far we've come together. It's been about a year since Vulnlab first launched, and now we've got around 100 vulnerable machines spread across 50 labs, 2300 Discord members and more than 700 lab users! The main focus

My new chain "Unintended" consisting of 3 Linux machines will be released tomorrow on Vulnlab . Make sure to tune in and have fun! 😄 #infosec #redteaming #vulnlab

Lesgoo! My next submission "Intuition", a hard Linux machine, is going live this weekend on Hack The Box Make sure to tune in and have fun. Time to use that brain people!!! #InfoSec #cybersecurity #pentesting #informationsecurity #hacking

I just pwned Intuition Hack The Box ! The attack chain to the user flag was great. Both privesc ways aren't satisfying to go through. Prepare yourself with a lot of patience. I got root unintendedly. I'll go back and try the intended. Thx Kavishka Gihan #hackthebox #htb #cyber

pwned Intuition in Hack The Box! ,most easiest machine I have ever played Kavishka Gihan hackthebox.com/achievement/ma… #hackthebox #htb #cybersecurity

I really like Intuition! Good attack path for the user part. Root requires some light reading if you aren't familiar with the tech. Bigup brother Kavishka Gihan for the experience hackthebox.com/achievement/ma… #hackthebox #htb #cybersecurity

A lot of the players reached out to me personally and said the same 😄 Its a shame most of them don't know the intended way resulting in impressions based on the unintended ways.

This is definitely a hard box damm😂😂 Kavishka Gihan hackthebox.com/achievement/ma… #hackthebox #htb #cybersecurity

Remote worker forgets to touch grass 🤣

Call me Crowdstrike, "I will make your legs shake before your boyfriend does". 😂

This is somewhat similar for domain-joined ubuntu machines - if you can create the AD group "admin" and use_fully_qualified_names is set to false in sssd.conf, you will be able to sudo to root due to the default "%admin ALL=(ALL) ALL" sudoers entry.

My first collab machine with ruycr4ft coming out this weekend on Hack The Box Make sure to tune in and have fun!

Meet the content creators behind this years #CTF 🧑🏼‍💻 Our amazing creators have built challenges for beginners through to experts ⚡️ It's not too late to sign-up to take part in this years event 👇 buff.ly/3CBWYxN #HackWithIntigriti #EthicalHacking #BugBounty

I just pwned Fries on Hack The Box! This is a solid headscratcher of a "lab" made by Kavishka Gihan and ruycr4ft. It allows you to sharpen your skills on a variety of subjects, lots to learn and w/ an opportunity to improve some tooling. #HackTheBox #htb #CyberSecurity