The Dark Side of EDR: Repurpose EDR as an Offensive Tool safebreach.com/blog/dark-side…

Have you every wanted to get into Windows Kernel Exploitation but don't know where to start? I'm going be releasing a series to get you from Windows 7 (x86) to Windows 11 (x64). You can find the first tutorial here: wetw0rk.github.io/posts/0x00-int…

NetExec has a new Module: Timeroast🔥 In AD environments, the DC hashes NTP responses with the computer account NT hash. That means that you can request and brute force all computer accounts in a domain from an UNAUTHENTICATED perspective! Implemented by Disgame 1/3🧵

Windows Sockets: From Registered I/O to SYSTEM Privileges blog.exodusintel.com/2024/12/02/win…

Malware on Steroids Part 3: Machine Learning & Sandbox Evasion : networkintelligence.ai/malware-on-ste… Part 2: Evading Antivirus in a Simulated Organizational Environment : networkintelligence.ai/malware-on-ste… Part 1: Simple CMD Reverse Shell : networkintelligence.ai/malware-on-ste… credits Chetan Nayak (Brute Ratel C4 Author)

Got the transpiler working for my MIPS I VM 🥳Which means that one can basically write plain C with included windows headers and compile it to a PSXecute MIPS module. Also just published the code: github.com/eversinc33/PSX…

Another approach to disable EDRs (with anti-tampering). Credit goes to sixtyvividtails for the idea🧙‍♂️ PendingFileRenameOperations and an NTFS junction, we can ask Windows to delete EDR binaries on reboot (with Admin privs) A link to a complete GitHub PoC follows in replies

Practical Use Cases of Exploiting MS Exchange in External Penetration Tests : static.ptsecurity.com/events/exch-vi… credits Arseniy Sharoglazov

MBE - Course materials for Modern Binary Exploitation by RPISEC : github.com/RPISEC/MBE

Linux Read teaming & Exploitation High -> Low Resource. Basic Stuffs [Exploit, Escalate, Persistence] * linode.com/docs/guides/li… * linode.com/docs/guides/li… * linode.com/docs/guides/li… Kernel Stuffs [Exploitation] * scoding.de/linux-kernel-e… * scoding.de/linux-kernel-e…

Attacking an EDR - Part 1 her0ness.github.io/2023-08-03-c2-…

#Red_Team_Tactics 1. BYOVD to the next level: Blind EDR with Windows Symbolic Link zerosalarium.com/2025/01/byovd%… 2. Bypassing character blocklists with unicode overflows portswigger.net/research/bypas…

Video on the Basics of SDR for Hackers rtl-sdr.com/video-on-the-b…

Automating C2 Infrastructure with Terraform, Nebula, Caddy and Cobalt Strike blog.malicious.group/automating-c2-…

Lateral Movement - Remote Desktop Protocol (RDP) #DFIR Part 1 Event Logs thedfirspot.com/post/lateral-m… Part 2 Artifacts thedfirspot.com/post/lateral-m…

Exposed DeepSeek database leaking sensitive information, including chat history : wiz.io/blog/wiz-resea… credits Nagli

Patching assembly code to change the behavior of an existing program is not uncommon in malware analysis, software reverse engineering, and broader domains of security research. meterpreter.org/patching-inter…

And another AMSI bypass with a different DLL/patch 👌 medium.com/@andreabocchet…

Ghosting AMSI: Cutting RPC to disarm AV medium.com/@andreabocchet…

Unpatched Windows LNK Vulnerability Enables Remote Execution via UNC Path, PoC Releases A researcher reveals an unpatched Windows LNK flaw that allows UNC-based remote execution and NTLM hash capture. Microsoft declined to issue a fix. securityonline.info/unpatched-wind…