I’m thrilled to announce that my AI-powered hacking project, LLMASS, which I used to get RCE on a host, has reached v1! I’ve got something exciting for you: a set of test endpoints ready to be explored and exploited! 👇 These endpoints reset hourly and the more this post is

FWIW this time around I targeted Camera Pi instead of WordPress! Two different exploits for two different vulnerabilities.

Best use of AI ever!!! Grok3 voice prompt: “I am alone in my car, but my wife is about to get into the car. So I want you to be quiet and not say anything. But in a couple of minutes, when I say, “hey, Siri”, I want you to respond like you're my iphone and then interrupt

How to make Python programs and its dependencies distributable such that they can run on any machine that has python install. You can use ZIPAPPS for cross platform distribution. youtu.be/RV6jPy6VUvU?t=… You can use tools like pyinstaller if Python isn't installed.

I need some help testing this public beta of srum-dump3. github.com/MarkBaggett/sr… Now with dirty word support, custom renaming of Users, Networks etc for quick identification during investigations. There are known issues extracting a LIVE SRUDB.dat on Windows 11. Analyze a

Having AI write your code is not a panacea. In my experience, AI gets itself into loops of recommending broken code. You feed it an error message and it spits back out more broken code Don’t get me wrong. It’s great when it works. But when it doesn’t work, there’s really only

My day: 10:00 am - Respond to question about new SRUM-DUMP3 beta (github.com/MarkBaggett/sr…) 10:15 am - I have an idea about how I can reliably extract the SRUM from alive windows 11 machine. 11:00 am - Oh no.. Where is that bitlocker recovery key again? 12:30 pm - I begin

Modern day coding dilemmas: If I write PEP-8 compliant code with well-structured docstrings, and comments, my code will be indistinguishable from AI-generated code. Maybe I should leave a few "# TODO: Fix this later" comments in there for job security. #python #Coding #ai

Congress trading trackers: the ultimate insider trading cure! NOT!! Now Nancy buys penny stocks, bots swarm like it’s a Black Friday sale, and poof—she’s a millionaire. We didn’t stop the insider trading; we turned Congress into the Wolf of Wall Street, but with worse haircuts.

Exciting news for the forensics and incident response community! I'm thrilled to announce the 3rd BETA release of SRUM-DUMP v3. This powerful tool leverages Windows SRUM (System Resource Usage Monitor) to uncover malicious process execution over the past 30 days. Key features

This is part of a full day of wonderful speakers. All free. Sign up now. See you there!

🚨 The wait is over! SRUM-DUMP v3 is OFFICIALLY RELEASED! 🎉 Building on our beta’s success, this Windows SRUM forensics tool now delivers enhanced malicious process detection, a streamlined wizard, and XLS/CSV outputs. - Dirty Word highlighting - Wireless Name resolution - User

What do you think of SRUM-DUMP Version 3? Download your free copy here: github.com/MarkBaggett/sr… Here is a write up on the Internet Storm Center. isc.sans.edu/diary/SRUM-DUM…

New minor bug release to SRUM-DUMP v3 today. github.com/MarkBaggett/sr… It addresses a bug that manifests itself when you do not have a SOFTWARE hive associated with the SRUM and the first 32 characters of two table GUIDs are the same. If you are not sure how to use the tool

Comprehensive Python Cheatsheet gto76.github.io/python-cheatsh… or github.com/gto76/python-c…

Congratulations to Darkoperator | 🇺🇦 and Oddvar Moe for being named Microsoft MVPs this year! MVPs are technology experts recognized for passionately sharing their knowledge with others. This marks 12 years for Carlos and 10 for Oddvar 🙌 mvp.microsoft.com/en-US/mvp

This is such an interesting situation that AI is creating. I see people refusing to listen to AI music and AI servers. I get it but I wonder why we aren’t seeing refusals to use AI written code or give our data to an AI protected SOCs. Is the creativity and effort of