Friendly reminder I have created what I (non-humbly) consider the greatest SQL injection cheatsheet of all time: tib3rius.com/sqli Unlike others, it contains payloads for 5 main database variants, and doesn't use weird quote chars (IYKYK 👀).

ExecutePeFromPngViaLNK: Embed an encrypted PE file within a PNG file, then extract and execute it via a generated LNK file. github.com/Maldev-Academy…

@RedTeamTactics There was a really good talk at DEF CON this year on this topic called MaLDAPtive youtube.com/watch?v=mKRS5I…

imo kaonashi.txt + haku34K.rule is still the best cracking combo of all time github.com/kaonashi-passw…

Anderson Nascimento x.com/unit42_intel/s…

502 bad gateway

lol innocent looking my arse.

The PowerHuntShares v2 update now includes: interesting files, password extraction, and LLM fingerprinting! Check it out & give me some feedback! netspi.com/blog/technical…

Pure Malware Development : github.com/malsearchs/Pur…

Neat trick for initial access - corrupted files: thehackernews.com/2024/12/hacker…

This is a simple .NET tool I wrote as apart of my research with Jonathan Beierle called Krueger, meant for disabling EDR remotely with WDAC to assist in lateral movement activities. github.com/logangoins/Kru…

As a zoomer, this is what my filesystem looks like

I’m not trapped in here with them… they are trapped in here with me! 😂😈🛜🛜🛜🛜🛜🛜🛜🛜🛜🛜

The (Anti-)EDR Compendium : EDR functionality and bypasses in 2024, with focus on undetected shellcode loader : blog.deeb.ch/posts/how-edr-… credits @dobinrutis

Stacey makes a great point. Last weekend at a family gathering I sat across the dining room table from my 16 month old nephew. I had multiple clear-cut career accomplishments in 2024. My 16 month old nephew? Zero. He can't code He can't drive He poops his pants He hasn't even

How Windows access tokens work. #ThreatHunting #DFIR

PatchWerk : BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion) : github.com/boku7/patchwerk

EDR Evasion - Inject Shellcode via MSSQL CLR Assembly Detection Blog: blog.pyn3rd.com/2024/11/22/How… KQL: github.com/SlimKQL/Huntin…

My malware development works and practices for [April 2025]: * Waiting thread hijacking: github.com/Whitecat18/Rus… * My Custom Shellcode: github.com/Whitecat18/Rus… * ApiHooking using Trampoline: github.com/Whitecat18/Rus… * Fixed Direct Syscall Issues: github.com/Whitecat18/Rus… *