We have been hard at work and have some exciting features of EvadeX coming out soon! 1. NixX: Stage 0 C2 for MacOS and Linux devices (both ARM and AMD). 2. Waiting Thread Hijacking 3. Username Guardrail Interested? Simply visit our site: phantomsec.tools

👻

We have touched down HackSpaceCon!!

We are setup HackSpaceCon. Come say hi for some swag!

Come see my talk on hacking back against phishing kits and why we need to do more of it HackSpaceCon @ 9am in the Jamaican room 🤘

It was great seeing the Phantom Security Group guys at HackSpaceCon! My podcast with them drops on Tuesday.

Yapped a bit HackSpaceCon about something I’ve become very passionate about, which is Hacking Back against Phishing Kits. Hosting providers don’t care, law enforcement doesn’t have the resources, and our loved ones are losing thousands. Will post the slides soon ;)

That's a wrap for Hack Space Con 2025! CyberDagger had an amazing time building community and connecting with other cybersecurity professionals! John Hammond Grant Smith📡 Phantom Security Group #Cyberconference #Hackers #Cybersecurity #CybersecurityConference #CybersecurityEvent

The latest episode of The Phillip Wylie Show features Grant Smith (Grant Smith📡) and Justin Perez , the founders of Phantom Security Group. From Hacking to Entrepreneurship: The PhantomSec Story youtu.be/EQ5eAiX89Zc

My DEF CON submission wasn’t accepted unfortunately but that means y’all will get a new Windows persistence technique early ;) Will be sharing it through Phantom Security Group

The wait is over! Our stealthy Windows persistence technique (PhantomPersist) is now out! Read the blog post here: blog.phantomsec.tools/phantom-persis…

FileFix - A ClickFix Alternative mrd0x.com/filefix-clickf…

Phantom Security Group Thought this was cool, so here's a rust library of the PoC in the blog post: github.com/Teach2Breach/p…

From Hacking to Entrepreneurship: The PhantomSec Story thehackermaker.com/from-hacking-t…

Register here: lu.ma/6jikit3g

BYOVD is no longer required on modern Windows. a bunch of recent msft kernel patches just shove vulnerable kernel code behind a privilege check. I wonder if we will see threat actors leveraging this like they did BYOVD. no bringing along a driver and loading also means less IOCs