🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Happy to be speaking at BlackHat MEA arsenal and briefings 🙏🏼 - 15 Nov 14.30: Arsenal, Backstab - 17 Nov 15.20: Briefing, Detection Engineering and some cool and challenging attack demos - 17 Nov 17.30: Arsenal, Backstab blackhatmea.com/speaker/yasser… خلونا نشوفكم 🙇🏻‍♂️💕 #BHMEA22

خلونا نشوفكم 😉❤️

The Network Exploit tool from Nabuware seems quite robust, I like its features and believe that soon it will be the go-to for NPT and post-exp alike, well done Barakat Soror! متابع تحديثات Nabuware وماشاء الله باين إنها أداة 🔥أنصح المهتمين باختبار الاختراق بالتواصل معهم

Short blog post on Scheduled Tasks COM handler abuse, enjoy! blog.yaxser.io/posts/task-sch…

Cobalt Strike offers great flexibility for its users, making it sometimes tricky to detect. This short blog looks at detecting the behaviour of cobalt’s fork&run by correlating events that are harder to control from an attacker perspective: blog.yaxser.io/blue/detecting… Enjoy 🙇🏻‍♂️🙏🏼

Windows #sandbox can provide a safe environment to run a backdoor and offensive tools. This is useful to evade detection and minimize any traces or tracks left behind. I posted a blog and discussed how you could abuse windows sandbox to evade detection. faisal-5.gitbook.io/faisal/blogs/u…

Detecting failed RDP logins on modern servers can sometimes be tricky because the logon type in 4625 is 3 due to NLA. One approach to tackle this is to correlate the IP in 4625 with the IP shown in RemoteDesktopServices-RdpCoreTS:131 This is a nice read: purerds.org/remote-desktop…

"He was a dreamer, a thinker, a speculative philosopher... or, as his wife would have it, an idiot." - Douglas Adams

ان شاء الله، انا والصديق ياسر Yasser بنقدم كورسنا RESILIENT SOC OPERATIONS في بلاك هات السنه هذه في الرياض الكورس مفيد للمهتمين بـ Detection Engineering و Adversary Simulation تفاصيل الكورس في الرابط 👇 blackhatmea.com/trainings-list…

This is a great effort and very useful, especially for teams that are starting to develop their detection capabilities

New blog post is now published on Securify blog 💃🏻 BOF Encryptor will encrypt the Cobalt Strike beacon and its configuration during BOF execution to evade memory scanners that are triggered on suspicious BOF functionality securify.nl/blog/bofryptor…

🤩 We are excited to announce our participation at the most attended #tech_event, #LEAP_2024 in Riyadh, Saudi Arabia  Meet us at Hall 3 C162 and Challenge Your Defenses And Experince Next-Level Breach Attack Simulation #leap #leap2024 #riyadh #AI #Innovation #cybersecurity #Thawd

من الاشياء الجميله الي كانت بـ ليب Thawd | ذَود والتعرف على الحلول المقدمه من ذود. شركة واعده ونتمنى لهم التوفيق 🤍 * الي يبي بيانات التواصل معهم يتواصل عن طريق الخاص.

في حال انك ما شفت شيء رهيب اليوم، تعال اوريك وريد. وريد عبارة عن Command & Control (C2) من تطوير المبدع Faisal والحلو بالموضوع ان C2 بالكامل over DNS 👏 github.com/Faisal-P27/WAR…

I'm thrilled to announce the release of WAREED DNS C2, specifically designed for DNS, ensuring enhanced stability and efficiency. WAREED is faster and more reliable compared to traditional DNS C2 frameworks. It's been an incredible learning journey.

اليوم اطلقت وريد اول DNS C2 يعمل بكفاءة عالية بإستخدام DNS Protocol, حاولت اتحاشى اغلب المشاكل اللي شفتها في C2 الثانية واللي وده يأخذ نظره, جربوه وعطوني رأيكم release: github.com/Faisal-P27/WAR… demo: youtube.com/watch?v=4wim6W…

السلام عليكم، مقاله سريعه عن HTML Smuggling blog.0x4.xyz/bypassing-wind…

للناس المهتمة بالـuse case development محمد ماشاء الله صاحب خبرة ومتمكن في مجاله وبيكون بإذن الله لقاء جميل ومفيد 👍🏽

لكل شخص حاب يفهم ⚙️Windows Service سواء كنت خبير أو مبتدئ، أنصحك تتابع الفيديو 🔥