🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

I just published a new blog post on (offensive) Windows kernel driver development. Hoping to make this into a nice series. Let me know what you think 😁! v3ded.github.io/redteam/red-te… #redteam #infosec

Hey look, I've just found a seRioUs vulnerability in Java System.out.println() method Just by executing System.out.println() with a malicious Object with the method toString() is override, our mAlicIous code will get executed remotely ( ͡° ͜ʖ ͡°)

Absolutely mind blowing presentation from CCob🏴󠁧󠁢󠁷󠁬󠁳󠁿 at BSides Cymru. Just awesome!

I know it's that time of year we all set out with lofty goals to achieve great things, but if there's anyone out there looking for a good cause to support whilst doing so.. let me suggest reunite ICAC 1/4

New CS Blog - Revisiting the UDRL Part 3: cobaltstrike.com/blog/revisitin… If you like the idea of loading a custom c2 channel in your UDRL then this blog may be of interest 👀

An example of custom Sleep in the new Cobalt Strike framework, reusing Sleepmask-VS. Hopefully clarifying how BeaconGate, Sleepmask, and Beacon Userdata all fit together! rwxstoned.github.io/2024-11-13-Cob…

[BLOG] This post summarises how to tie Cobalt Strike's UDRL, SleepMask, and BeaconGate together for your syscall and call stack spoofing needs. rastamouse.me/udrl-sleepmask…

Just wanted to put a little bit of sauce on your Friday morning☕️

Back in 2018, I released a post on how to break into pentesting, and it's been shared widely in the security community ever since. With so many changes in the field, I've reworked the post to reflect current standards and answer more questions. Enjoy! jhalon.github.io/breaking-into-…

Been super busy with some secret things but SoucePoint 4.0 is live with all the latest CS stuff github.com/Tylous/SourceP… #redteam #CobaltStrike

Been thinking about the acceptance of BOFs as the goto development platform for capability development. From their inception, BOFs were intended to behave as a short inline-execution capability that extended the integral functionality of your C2 agent. The “inline-execution” part

AdaptixC2 v0.4 is out github.com/Adaptix-Framew… * New Linux/MacOS "gopher" agent * TCP/mTLS external listener for "gopher" agent * New internal TCP listener for "beacon" agent * Screenshot storage Changelog: adaptix-framework.gitbook.io/adaptix-framew…

This modexp.wordpress.com/2025/04/27/bea… is an interesting post by modexp ... highly recommend checking it out.

Short post on an alternative method for obtaining Microsoft Entra refresh tokens via Beacon. Proof of concept BOF is available on my GitHub 🙂 infosecnoodle.com/p/obtaining-mi…

rssh-rs is a reflective DLL that performs some hacky integration with your favorite C2 Framework to provide SSH session access from a Beacon session. github.com/0xTriboulet/rs…

🚀 We just released my research on BadSuccessor - a new unpatched Active Directory privilege escalation vulnerability It allows compromising any user in AD, it works with the default config, and.. Microsoft currently won't fix it 🤷‍♂️ Read Here - akamai.com/blog/security-…

[BLOG] Dynamically Instrumenting Beacon with BeaconGate - For All Your Call Stack Spoofing Needs! cobaltstrike.com/blog/instrumen…

Having another look at Raffi's Crystal Palace PIC loaders today. This time as a post-ex reflective loader with embedded function pointers for GetModuleHandle & GetProcAddress.