Bilal (@0xcc00) Twitter Tweets • TwiCopy

Gate.io

5 hours ago

🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

thumb_up_off_alt34

chat_bubble_outline39

repeat6

shareShare

Suppressed News.

@suppressednws

2 years ago

He left from Israel prison with broken arms and fingers, with a broken soul. She left Gaza with a pet. Do you guys understand the difference?

thumb_up_off_alt110,110K

chat_bubble_outline6,6K

repeat49,49K

shareShare

Bilal

@0xcc00

2 years ago

Inducing PhishyFish ><(((º>....... A quick 2FA phishing framework github.com/0xb11a1/phishy…

thumb_up_off_alt1

chat_bubble_outline0

repeat0

shareShare

Wizard_bisan1

@wizardbisan

a year ago

thumb_up_off_alt31,31K

chat_bubble_outline165

repeat25,25K

shareShare

Bilal

@0xcc00

a year ago

Today i was recognized by Fortinet for finding a High severity vulnerability CVE-2024-21760 in the FortiSOAR product

thumb_up_off_alt1

chat_bubble_outline0

repeat0

shareShare

Bilal

@0xcc00

a year ago

Wrote a quick sliver C2 extension to implement UAC bypassing via cmstp. You can check it out here: github.com/0xb11a1/sliver…

thumb_up_off_alt19

chat_bubble_outline0

repeat8

shareShare

You've gained Domain Admin privileges, but an EDR is blocking your attempts to dump the entire domain's hashes. In this article, I'll share a technique I used to bypass this obstacle. medium.com/@0xcc00/bypass…

thumb_up_off_alt224

chat_bubble_outline3

repeat68

shareShare

Bilal

@0xcc00

a year ago

My article has been added to vx-underground 🔥

thumb_up_off_alt3

chat_bubble_outline0

repeat0

shareShare

AJ+

@ajplus

10 months ago

Israel got away with violating international law in Gaza. Now it’s following the same playbook in Lebanon.

thumb_up_off_alt1,1K

chat_bubble_outline61

repeat989

shareShare

Swissky

@pentest_swissky

9 months ago

Bypassing EDR NTDS.dit protection using BlueTeam tools - Bilal medium.com/@0xcc00/bypass…

thumb_up_off_alt272

chat_bubble_outline2

repeat94

shareShare

Bilal

@0xcc00

7 months ago

New quick article, Hiding behind the library line - Go malware development It's about exploring a technique of hiding your malicious code inside Go libraries to mislead analysts and reverse engineers. link: medium.com/@0xcc00/hiding…

thumb_up_off_alt17

chat_bubble_outline2

repeat6

shareShare

vx-underground

@vxunderground

3 months ago

Drama++ The United States government is using a fork of Signal called "TM SGNL". TM SGNL is (likely) produced by an Israeli firm (Smarsh) which is (or related to in some capacity) the Israel Defense Forces' Intelligence unit. Although these claims are based on self-described

thumb_up_off_alt1,1K

chat_bubble_outline26

repeat200

shareShare

Bilal

@0xcc00

a month ago

The new AI tool from google (Gemini-cli) performs impressively well. Here, I made it perform a simple internal penetration test by having it control a C2 beacon (Sliver) through an MCP server, and gave it access to Netexec and Hashcat I may write a blog about it if I continue it

thumb_up_off_alt4

chat_bubble_outline0

repeat1

shareShare

Bilal

@0xcc00

13 days ago

I've been playing with MCP, Releasing AdaptixC2_mcp a PoC that exposes Adaptix-C2 APIs to gemini-cli, enabling it to control a beacon and to simulate a threat actor behavior. Code: github.com/0xb11a1/Adapti…