🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Added 2 new #rust program to my repo 1. defender exclusions enum without admin 2. hide dll from memory scanner (pe-sieve) #redteam github.com/BlackSnufkin/R…

i have just upgraded the defender enumeration so now it will also get enabled ASR rules and allowed threat on the system also the code can be changed to get also protection history

A powershell script to dump windows defender config and history without admin privileges #redteam #poweshell github.com/BlackSnufkin/I…

I am back on the hunt for BYOVD lots of drivers to play with

New tool release: NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. #Rust #RedTeam github.com/BlackSnufkin/N…

Tool Update: dual-build support, allowing you to compile as a DLL and execute .NET assemblies or BOFs via rundll32.

😎

Tired of switching tools for payload testing? LitterBox - bringing Moneta, PE-sieve & more into one unified platform. github.com/BlackSnufkin/L… #RedTeam #MalwareDev #CRTL

Tool Update: LitterBox v1.5 What's New: - New scanner RedEdr added to the arsenal. - Refactored some server-side code for better performance. - Major UX/UI improvements for smoother navigation. #MalwareDev #sandbox #RedTeam

They wouldn’t copy if it wasn’t cool. 😎 github.com/Minhal128/Thre…

Call Stack Spoofing in #Rust 10 points for Gryffindor #RedTeam #MalDev

6 months later still work

Works on Chrome, Edge, and Brave. Might make it public.

Ohhhh snap now you can use Claude in your #maldev and #redteam workflow LitterBox v3.0.0: GrumpyCats python client & #MCP server that can be used to interact with LitterBox #sandbox See it in action

WTF Anthropic just outright banned me with zero warning or explanation. 🤨 Didn’t break any rules so what gives? Anyone else getting ghost-banned?

The CVE system is broken. You report the vuln with PoC, videos, and analysis. The vendor stalls. Someone else uses CNA access, skips disclosure, and gets the CVE. No checks. No credit. Speed wins. Makes you wonder why anyone discloses at all. CVE MITRE

starting to think responsible disclosure is pointless. you give them everything PoC, videos, proper contact and while they stall, someone with CNA access pushes it through and gets the CVE. anyone else run into this bullshit? CVE MITRE

CVEs aren’t always what they seem. In Chapter 0 of From Day Zero to Zero Day, I walk through examples (like curl and Postgres) where CVEs were assigned, but no "real" vulnerability existed. What I show in the book: 🦝 CVEs are managed by a decentralized system of CNAs. 🦝 Some