Super awesome watching our targeted ops team showing off C2 operations with sliver at BlackHat. It’s one of my favorite C2’s. Wrote a special blog on hacking an AD environment with it. Enjoy. “Hacking Active Directory with Sliver C2” by Root ♊ rootsecdev.medium.com/hacking-active…

Never let a job steal your life

I just published Home Grown Red Team: SMB Pivots With Havoc C2 link.medium.com/Ap3Xk0HKjCb An updated article for lateral movement with Havoc.

Happy Monday! Today Darkoperator | 🇺🇦 and I are releasing a blog on adversarial LDAP tradecraft. In this write-up we show: - Normal LDAP queries you might see - Common LDAP queries adversaries and red teams use - Telemetry you can use to see these LDAP queries - A way to get

Urge NYC's Mayor and City Council to halt the elimination of community compost programs. I just signed. Please join me here. nwmd.io/s/twitter/ZBc0…

Still dealing with service accounts in Domain Admins? This ADSecurity.org article covers some ways to reduce service accounts from having DA rights: adsecurity.org/?p=4115

If you're a red teamer or pentester, where do you go to learn more about evasion? These immediately come to mind. Are there others you'd recommend? 1. Maldev academy 2. Sektor7 3. RTO 1 & 2 by zero-point security 4. S3cur3th3sh1ts content 5. Mr. Un1k0d3r's content

CyberChef is AWESOME. Here is a pipeline that parses Google Authenticator export QR codes and generates TOTP with them

Don't sleep on PingCastle folks

I've stayed away from definitive comments on CrowdStrike until more information was present. A couple of thoughts. This type of update could happen to anyone - however, these daily configuration changes that were happening should have gone through proper QA processes to

James Lucas Tell your loved ones you love them more often. Take no one in your life for granted. And count your blessings every day. This post was a sobering moment for me, thank you for sharing. This is my go to image for inspiration. Every time I look at it I think to myself…imagine

Biologically tactile pressure sensitive devices, neural induction and “influencer” genome infusions will be probably seen in our kids’ lifetimes. I’m still happy with 16-bit video games

.Eric Adams Erik Bottcher Mark D. Levine NYC Parks: Repair the landmarked Tony Dapolito Recreation Center now — don’t destroy it and move it to the already too-tall 388 Hudson Street cc Village Preservation (GVSHP) p2a.co/twitterimage?i…

Last quarter I rolled out Microsoft Copilot to 4,000 employees. $30 per seat per month. $1.4 million annually. I called it "digital transformation." The board loved that phrase. They approved it in eleven minutes. No one asked what it would actually do. Including me. I

TROOPERS25: Beyond LSASS - Cutting Edge Techniques for Undetectable Threat Emulation youtu.be/LE03KbttoIY

Modern iOS Security Features – A Deep Dive by Moritz Steffin and Jiska arxiv.org/pdf/2510.09272

x.com/i/article/2013…