dylan in the US there is no formal standard for red team or purple team. everyone gets to do whatever the client wants. some companies hire great teams to do good work, others don’t get so lucky. without a TIBER equivalent, there is nothing to stop me from selling a pentest (or worse,

"most tools would have given up" "A master class on path traversal exploitation" "the vulnerable endpoint permitted local file access via the file:// scheme" "/photo/proxy?url=file:///etc/passwd" ... 🤣🤣🤣 The marketing is the most impressive thing here.

Been in San Diego for one day and my happiness rating has already increased +12. Something about the sunshine and the ocean breeze.

Move in is moving… time to take out more boxes

OMG, just met John Hammond

Stopped by the def con merch area

Im honored to have won two of three categories of the John Hammond lookalike competition at my first #defcon33 ! (i am the one in the middle) The Grant Smith📡 was only able to win one category which clearly makes me the more john-y

laffin_sec 🤝 Brady McLaughlin 𝚕𝚒𝚗𝚝𝚒𝚕𝚎 TracketPacer Grifter That's Grant Smith📡. EZ

Many of you do not know the trauma of having to write out Java on paper for the comp sci AP exam and it shows

💣 We caught Y Combinator–backed Gecko Security stealing two of our CVEs, one on ollama , one on Gradio. They copied our PoCs, claimed CVE IDs, and even back-dated their blog posts. Here’s the full story 👇

New EvadeX Release Tonight! This includes multiple new features and execution techniques along with a new C# obfuscater to assist in your post exploration needs.

honestly certs mean nothing compared to being able to speak to your technical skill in an interview. certs get you the job when you dont know shit. it gets your chance. after that, just be able to speak to your craft and never think about certs again

I spent years bypassing security tools as a red teamer. So I built the product to catch me. Launching Nov. 10th.

We design EvadeX and our evasion templates to be resilient, not a long, drawn out process of chaining a bunch of steps together to hopefully work on your end. CONT. BELOW

A little shocked and awstruck that we are even on the radar of this multi-billion dollar company, but shows we are doing something right.

drawn-out setups. 💻 This offer is available only to verified members or red teams at legitimate companies based in NATO countries or Australia. Verification is required before a license is issued. Reach out today: info(@)phantomsec.tools

🎄 It’s time! The 2025 SANS Holiday Hack Challenge is officially OPEN! Something’s off in the neighborhood… disappearing items, strange sightings, a chill in the air. ❄️ Can you uncover what’s really going on? Play now 👉 sans.org/u/1D01 #HolidayHackChallenge