Cobalt Strike doing a fork&run to take screenshots is unnecessarily OPSEC expensive, so I made a quick BOF to do it inline using WinAPI. github.com/CodeXTF2/Scree… - Cobalt Strike Beacon Object File to take screenshots using WinAPI

How would you name your malware so that the level 1 analyst waves it through? I'll start - eicar.exe - keygen.exe - Bloomberg_Excel_Addon.exe - SAP-custom-helper.exe - \SecurityTraining_Oct22\something.exe - \quarantine\inactive-sample-af232.exe

I think I did the patchless/breakpoint in process amsi bypass thingy with C# gist.github.com/susMdT/360c64c…

New blogpost by b33f | 🇺🇦✊ and I! Patch Tuesday -> Exploit Wednesday: Pwning Windows afd.sys in 24 Hours. We reverse engineer a bug + write an exploit using a cool new primitive. We also find out that it's been exploited in the wild (previously unknown). securityintelligence.com/posts/patch-tu…

Compromising an endpoint under a nose of Windows Defender ATP, by FO-Sec #redteam fo-sec.com/articles/compr…

Hidden Desktop BOF This Cobalt Strike BOF implementation was created as an alternative to TinyNuke/forks that are written in C++. github.com/WKL-Sec/Hidden… #infosec #pentesting #redteam

Making progress on adding BOFs to the Medusa Mythic python agent! 🐍 Building on Diego Capriotti's pythonmemorymodule (github.com/naksyn/PythonM…) and zimnyaa's use of it with COFFLoader (tishina.in/execution/pyth…) 🙏🏻

Christmas This #PoC creates multiple processes, where each process performs a specific task as part of the injection operation. github.com/Maldev-Academy… #cybersecurity #infosec #pentesting #redteam

Some experiments to retrieve the current username without calling whoami.exe or similar binaries. github.com/ricardojoserf/… #infosec #pentest #redteam

Happy New Year all, New module on the #havocframework store to work with Bloodhound CE. Automatically call your SharpHound.exe and upload your .json files directly from the havoc interface! #redteam #pentest #c2 github.com/p4p1/havoc-blo… p4p1.github.io/havoc-store/

🚀 Launching #BobTheSmuggler! Transforming payload delivery with HTML Smuggling. 🌐💥 ✨ Features: Embeds 7z/zip in PNG/GIF Compresses & XOR encrypts binaries Ideal for payload delivery 🔗 [GitHub Link: github.com/TheCyb3rAlpha/…] #RedTeam #CyberSecurity

A platform for building proxies to bypass network restrictions. github.com/v2fly/v2ray-co…

ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries ever having to touch storage. This is useful for red-teaming and anti-forensics purposes. github.com/anvilsecure/ul…

BobTheSmuggler: Open-source tool for undetectable payload delivery - helpnetsecurity.com/2024/02/29/bob… - Harpreet Singh GitHub #OpenSource #GitHub #CyberSecurity #netsec #PenTesting #security #InfoSecurity #ITsecurity #CyberSecurityNews #SecurityNews

🔐Speaker Release for #VULNCON 2024!🔐 We are thrilled to reveal our next speaker lineup for VULNCON 2024! Harpreet Singh ! Visit vulncon.in for more details! 🗓️Mark your calendars! 🗓️Date: June 22nd and 23rd,2024 📍Venue: National Science Seminar Complex, IISc,

DOSVisor - A hypervisor-level emulator for executing 16-bit real-mode DOS programs on Windows github.com/x86matthew/DOS…

From curious teen tinkering with an iPod to Red Team pro, Harpreet Singh’s ( Harpreet Singh ) journey shows how passion, grit, and self-learning can lead to cyber mastery! Read his inspiring story: news.cloudsek.com/2024/11/from-d… #Cybersecurity #Inspiration #RedTeam

Releasing full 2+hr video of my browser exploitation workshop from VXCON 2024: youtube.com/live/b9OhamkAY… In which I show what goes inside the mind of a skilled hacker while exploiting a highly non-trivial vulnerability in v8, from zero to exploit concept. Especially this workflow