Bypassing Windows Mark-of-the-Web (MotW) feature with a crafted ZIP file, by Kuba Gretzky Enjoy the journey! breakdev.org/zip-motw-bug-a…

Just pushed SQLRecon v2.2. A big thanks to Rasta Mouse for contributing some enum modules and to Josh for helping me fix linked clr assembly execution and linked agent command execution. Added a couple of new modules and enhanced some old ones github.com/skahwah/SQLRec…

I think I did the patchless/breakpoint in process amsi bypass thingy with C# gist.github.com/susMdT/360c64c…

Made a blog post discussing my experiences Red Teaming at WRCCDC for the first time, things I saw during the comp, common mistakes I saw from Blue Teamers, and giving some advice to Blue Teamers competing in CCDC to help them improve: bri5ee.sh/red%20team/202…

I co-wrote this year’s Mandiant Red Team case study for the new M-Trends. Check it out! 🌚

Had a ton of fun finally getting a grasp on sleep encryption and trying to bypass Hunt Sleeping Beacons with Ekko. dtsec.us/2023-04-24-Sle… tldr; spoof the callstack while sleeping and avoid Wait:UserRequest in your timer callback.

Let's go Stanford Applied Cybersecurity and Cal Poly SWIFT (Stanford University and Cal Poly Pomona) Good luck at National CCDC

The Cal Poly Pomona Cal Poly SWIFT team is quickly working to put up their network defenses... go team! #NCCDC

David Cowen appreciate the gift

I decided to have myself a capstone of sorts, after attending the Mandiant (part of Google Cloud) Practical Mobile Application Security training and hacked my childhood Spider-Man mobile game. Check out my blogpost! nosecurity.blog/smuHack

Read clear-text passwords from OpenSSH server process automatically github.com/jm33-m0/SSH-Ha… jm33.me/sshd-injection…

CommandoVM got accepted to Black Hat USA Arsenal! Come see me show off the newest version we’ve been working hard on along with others from Mandiant (part of Google Cloud)’s Red Team and FLARE 😎

The "code" for my Defcon 31 talk is live! Enjoy! 😈 github.com/byt3bl33d3r/Sp…

Created a blog post with my good friend Jessica Leung discussing a methodology of organizing and crafting notes with Obsidian for incident responders and analysts by correlating techniques/procedures and artifacts by utilizing links. bri5ee.sh/blue%20team/20…

Congrats to the top 10 teams joining us this week (April 25-27) in San Antonio, TX for the 19th Annual #NCCDC! Read about this year's competition here >> bit.ly/3UbzxjZ #cyberdefense #FutureOfWork #thebest #collegestudents #CyberSecurity

Activity is picking up in the team Cal Poly Pomona room, but the energy is electric and these students are pushing through! #homestretch #NCCDC

2nd place National CCDC concludes my participation in collegiate cyber competitions. I'm proud of my team Cal Poly SWIFT giving it our all and fighting till the end 🫡.

Hey, these graph things are kind of useful 🤓

Posting my write up for XINTRA 's Hybrid Azure APT Emulation Lab (Husky Corp) bri5ee.sh/blue%20team/20…. Fairly in depth blog post walking through OAuth, Managed Identity, and PTA abuse, Pass the PRT, etc. Huge s/o to ✞ inversecos and the team for making an amazing lab.