🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Would a webinar about showcasing UAC bypasses and methodology for finding new ones be interesting for you hackers? Like, comment or RT if any interest.

Think HVCI and kCET mean the end of kernel code execution? I wrote a blogpost exploring an alternative way to execute a kernel payload! :) blog.slowerzs.net/posts/keyjumpe…

#Zer0Con2025 is getting closer, and the training sessions are going very smoothly. 👥 Nabih Benazzouz(Nabih) & Kylian Boulard De Pouqueville(Kylm), “Fuzzing Windows Userland Applications” from FuzzingLabs

vx-underground I post this exact attack vector around 5 years ago 😅 blog.syscall.party/2020/12/02/wea…

My new blog for Check Point Research - check it out! 💙 // #ProcessInjection : #WaitingThreadHijacking

Yearly blog post just dropped: Control Flow Hijacking via Data Pointers 🐸 Showcasing how to find your own in Binary Ninja, how to weaponize and write a shellcode stub etc. Hopefully people find it useful :) legacyy.xyz/defenseevasion…

I'm really happy to announce that we've just opened registration for the SAS CTF 2025 qualifying round!⛳️ This year's top 8 teams will qualify for the onsite finals to compete for a share of the $18.000 prize pool at the Security Analyst Summit conference in Khao Lak, Thailand

A quick writeup on potential security issue of Windows LNK that I reported to MSRC last month. They decided to not fix due to relying on MOTW. In the blog I included the proof of concept. All you have to do is to Right-Click and get Info Disclosure :) zeifan.my/Right-Click-LN…

ProxyBlob is alive ! We’ve open-sourced our stealthy reverse SOCKS proxy over Azure Blob Storage that can help you operate in restricted environments 🔒 🌐 github.com/quarkslab/prox… Blog post for more details right below ⬇️

Locate dll base addresses without PEB Walk: github.com/Teach2Breach/m…

Here is an optimized C++ tensor library that I’m working on. (Include General relativity package). It’s header only and can be used with python. Currently working on LLVM/Clang plugin to emit bad use patterns. All SIMDs isa are automated at compile time. github.com/at0m741/Morphe…

We retrieved every contract on Ethereum. Along the way, we found the exact date when 16,000 unique contracts were deployed (the most in one day), the EOA with the most deployed contracts (2.9M), and much more. This is how we did it.🧵 (Spoiler: It’s 69,788,231 contracts!)

🔥🔥🔥Write-up - Challenge active directory by KlemouLeZoZo ➡️ acceis.fr/write-up-barbh… #barbhack24 road to 25 💪

🔓 Big update! Chrome App-Bound Decryption v0.9 released! 🛡️ Get your Cookies, Passwords, Payments, etc., from Chrome/Edge/Brave. (User-mode, no admin) 👤 Decrypts all user profiles! 📂 Set your own output folder! ✅ Solid Microsoft Edge decryption. 📦 Auto-built x64/ARM64

Awesome!

"Le samedi c'est repos" -> Suuuure 🙃 Je sors d'une présentation de l'outil d'Auto Pentest Report -et bien plus en fait tmtc- : Milou ! ➡️ Milou / milou.sh Et... 😱 Bien qu'en early stage, ca envoie du paté !!! Quelques discussions sur les features à

Here is the second part of the Windows IPC series. As planned, I've started with RPC. The third and fourth parts will come soon. sud0ru.ghost.io/windows-inter-…

Just published a blog post exploring junk code engines used in polymorphic malware. Part one covers ETG by Z0MBiE (32-bit). Part two introduces TrashFormer, my 64-bit implementation. Both fully written in assembly. r0keb.github.io/posts/Junk-Cod…

Meow