🛠️New tool released🛠️ SlackEnum - User enumeration for Slack. github.com/Wh1t3Rh1n0/Sla… Full write up coming soon on the Black Hills Information Security blog.

**NEW** BHIS | Blog What are your favorite ways to leverage Slack on red teams and penetration tests? Introducing SlackEnum: A User Enumeration Tool for Slack by: Michael "Rhino" Allen Published: 6/27/2024 Learn more: blackhillsinfosec.com/introducing-sl…

Phone addiction - Simon Sinek👏👏👏

#RedTeamTips do your intel and check which orgs are running Crowdstrike

Absolutely. The sole purpose of the red team to make the blue team and the hiring organization better through practice and education.

VPN funcionando. Nunca me imaginei praticando e propagando desobediência civil, mas censura não pode ser admitida, jamais.

Even though I may be fined on almost $9.000 a day, I won't back down, especially considering that the Superior Electoral Court is still posting on X. If they can, we can. Dictator de Voldemort's tirany won't prevail.

This is the elected Vice Governor of the Brazilian state Minas Gerais Professor Mateus — just for a sense of how things are in Brazil right now:🇧🇷

The world took a giant leap forward into totalitarianism yesterday as the Brazilian government blocked X, formerly Twitter, and threatened to fine its citizens $8,900 per day if they use it. Brazil, the world's sixth largest nation by population, now joins North Korea, China,

Today, we launch the daily data dump on the crimes – under *Brazilian* law – that fake “judge” Alexandre de Moraes has committed! He can block this platform in Brazil, but he can’t stop the whole world from knowing his illegal, shameful & hypocritical deeds. Karma’s a b*tch bro. 🍿🍿🍿

🚨🇺🇸HUGE LOSS FOR PUBLIC LIBRARIES: COURT RULES AGAINST INTERNET ARCHIVE | 500K BOOKS REMOVED A court has ruled that the Internet Archive, a key resource used by public libraries to lend books digitally, can no longer lend over 500,000 books like "The Catcher in the Rye" and "To

I fixed a few detection issues in MFASweep and added a new function (Invoke-BruteClientIDs) to brute force a bunch of client ID / resource combos to detect single factor access to Entra ID accounts. github.com/dafthack/MFASw…

This is an incredibly interesting article on how an attacker can send a malicious payload only if the curl request is piped to (ba)sh Example: curl sh.rustup.rs -> non malicious curl sh.rustup.rs | sh -> malicious web.archive.org/web/2024042313… Gif from article:

Come learn some wifi hacking with us on Thursday at 1 PM ET!

Listen up! I have had a SINGLE slot open up in my upcoming Introduction to Cybersecurity in Space Systems - Hardware Edition class October 8-9 in Deadwood SD open up. If you are interested and can make the event, shoot me a DM. Registration is closed but we can still get you in

This has been in the works for a while now and I am proud to finally release my research on some new DLL Hijacking techniques. #netsec #redteam blackhillsinfosec.com/a-different-ta…