🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Also want to highlight that this AMSI bypass uses the same behavior that, according to Microsoft, enabled SQL Server 2005 to load assemblies from the database learn.microsoft.com/en-us/archive/…

Get ready to learn advanced red teaming of ML Ops platforms and hacking AI data science tools with Brett Hawkins and me this Black Hat! We'll have in-depth labs for both cloud-based AI-as-a-Service and on-prem platforms.

Come and join us to learn how to attack and defend popular platforms that are used to develop and deploy ML models! ⬇️

Loki C2 is coming.. Cross-platform Stage 1 C2, battle-tested in ops for 8 months against the world’s leading EDRs and MSSPs, undetectable, bypasses Application Control/WDAC.. Shoutouts to Dylan Tran for helping build the project, and chompie & Ellis Springe for inspiration!

magic-box.dev/hacking/smolta… securityintelligence.com/x-force/smolta… wooo new blog on an rce i found in in Hugging Face's smolagents library 🥳. check it out if you ❤️ ai x security :)

Tradecraft is great and all, but data is still king. Time is inelastic. How about parsing and reconciling ADIDNS records with known systems, quickly, for LARGE environments (400K+ in under 1/10th of a second) AND fast BloodHound ingestion guidance? github.com/EspressoCake/A…

Would you like to transition from local user to cloud access w/o having to dump browser cookies or hope SSO via kerberos is enabled? 🧵

It was an honor to speak at the 780th Military Intelligence Brigade (Cyber)’s AvengerCon on the use of AI in Offensive Cyber Operations, Vuln Discovery/Weaponization, OST Dev as well as attacking AI systems. Stay tuned for an announcement of the 1st dedicated Offensive AI Conference in 2 weeks, coming to San

v1.4 of ADOKit is out now thanks to a new reconnaissance module from s1zz. Check it out! github.com/xforcered/ADOK…

Loki C2 blog drop! Thank you for all those who helped and all the support from the community. Big shoutout to Dylan Tran and chompie for all their contributions to Loki C2! IBM IBM Security X-Force securityintelligence.com/x-force/bypass…

Amazing blog post by Bobby! Highly recommend if you’re interested in red teaming ttps against hardened environments. Stay tuned for a follow up post from me on abusing trusted electron apps to bypass the strictest WDAC policies and execute shellcode natively 👀

I am excited to announce the first conference dedicated to the offensive use of AI in security! Request an invite at offensiveaicon.com. Co-organized by RemoteThreat, Dreadnode, & DEVSEC. The Call for Papers opens Tuesday, March 25, 2025, and will remain open until Friday,

The CFP for Offensive AI Con is now open! We’d love to hear about how you’re using knowledge assistants, semi/fully autonomous workflows, agents, or specialized models to find and weaponize vulnerabilities, speed up offensive cyber operations, develop capabilities faster, solve

Had a lot of fun digging into COM stuff with bohops recently! We ended up finding a way to laterally move without dropping a file. ibm.com/think/news/fil…

As promised... this is Loki Command & Control! 🧙‍♂️🔮🪄 Thanks to Dylan Tran for his work done on the project and everyone else on the team for making this release happen! github.com/boku7/Loki

RemoteMonologue - A Windows credential harvesting attack that leverages the Interactive User RunAs key and coerces NTLM authentications via DCOM. Remotely compromise users without moving laterally or touching LSASS. Hope you enjoy the blog & tool drop 🤟 ibm.com/think/x-force/…

New blog from me about a bug in Power Apps that allows execution of arbitrary SQL queries on hosts connected through on-prem data gateways. This can turn external O365 access into compromised on-prem SQL servers. ibm.com/think/x-force/…

Gave the most personal and vulnerable keynote I will (probably) ever give at BSides Nashville this weekend. Thank you to everyone who told me they can relate, it means more to me than you know! Also shoutout to those who donated to Hak4Kidz 🫶🏼, a new record

Me and the homies are dropping browser exploits on the red team engagement 😎. Find out how to bypass WDAC + execute native shellcode using this one weird trick -- exploiting the V8 engine of a vulnerable trusted application. ibm.com/think/x-force/…

Pro security tip that you don’t want to miss. If you unplug your computer from the network and turn it off, your security can’t be bypassed.