Let's explore the intricate dance of virtual to physical memory mapping in BYOVD tooling development! 💻 In Cedric Van Bockhaven's latest blog we delve into resolving addresses using Superfetch, unlocking control over physical memory. Dive into the details now 👉 outflank.nl/blog/2023/12/1…

With his ability to stealthily get into houses, Santa is a natural red teamer, which is why he’s giving you the gift of offensive security! Register now for a free training course on Microsoft Office tradecraft, taught by Stan Hegt and Pieter Ceelen outflank.nl/free-training-…

This training was really awesome, I learnt quite a few new tricks that still work on MS Office! thank you Stan Hegt and Pieter Ceelen I might have a few ideas to improve oletools 😎

The PowerShell mafia is back! We are giving a Tech Deep Dive session right now where we look at new OST tools to leverage PowerShell for local and remote code execution. PowerShell is not dead for red teams! Available for #OST customers. More info at outflank.nl/ost

I will be at GISEC GLOBAL in Dubai on April 23rd+24th to represent Outflank and our parent company Fortra. If you want a private demo of our toolkit for red teams Outflank Security Tooling (OST) and Cobalt Strike then drop me a line or visit our booth at Hall 6/C75.

Initial access to the max! We just released a new OST tool, using our research and full weaponisation of an obscure file format. This file format allows shellcode loading with just a double click and is under less MotW scrutiny than most other popular initial access vectors. 💪

Want to see this new initial access tool in action? Register for next week's demo on May 30. We'll show this tool, together with other tools and features of Outflank Security Tooling. register.gotowebinar.com/register/29489…

🏁 InfoSec Kart Cup 2024 is heating up! 🏎️ We already have 30 teams ready to race! Blue team defenders and red team attackers, come challenge your peers in this outdoor karting showdown. 📍 Berghem, NL 📅 June 27 Check our "special" website for details: infoseckartcup.nl

It's not *always* about Windows--macOS and Linux #EDRs need attention, too! In our latest blog, Kyle Avery explains more about the telemetry sources for these under-discussed #endpoint products> outflank.nl/blog/2024/06/0…

🔥🔥New goody dropped for Outflank Security Tooling customers: PhisherPrice PhisherPrice helps with Device Code Flow abuse without sending codes/QRs via email. Easy to setup and host a phishing website, easy to receive auth tokens. Just as you like it.

Thanks for the good work on part 1 Joe Desimone Samir Elastic. Here's our part 2 on #GrimResource. ♥️

New Blog Alert! 🚨 Introducing Early Cascade Injection, a stealthy process injection technique that targets Windows process creation, avoids cross-process APCs, and evades top-tier EDRs. Learn how it combines Early Bird APC Injection & EDR-Preloading: outflank.nl/blog/2024/10/1…

Excellent group of red teamers: ✅ Fantastic talks line up: ✅ Awesome badge: ✅ #RedTreat

🚀 We're hiring a DevOps/Cloud Engineer at Outflank! Join us to build and manage complex Azure environments that deliver our OST toolkit. Skills: Kubernetes (AKS), GitOps, IaC, Tekton, Python💻 It's NOT an offensive role! Based in NL or a time zone-friendly region? Let's chat!

Yes! We're doing the Infosec Kart Cup again! 🏎️🤘 Mark June 19 in your calendars, and reserve your spot now at infoseckartcup.nl! The 2024 edition was sold out.

Here's our new blog on hiding your implant in VTL1, where even an EDR's kernel sensor can't see it.🧑‍🦯 Post includes full operational details. Plus our OST offering has been updated with a Cobalt Strike sleep mask exploiting secure enclaves. Full read ➡️ outflank.nl/blog/2025/06/1…

BOFs are powerful, but error-prone! We dropped a post and new BOF linting tool to catch bugs early, and to prevent crashing implants. This will speed up your Beacon Object File dev workflow. If you're building custom C2 payloads, it's a must-read. 🔍 📖 outflank.nl/blog/2025/06/3…

Have you always wanted to roll out your own offensive monitoring network? See how Async BOFs enable automatic notifications for when users log in, useful applications (such as password vaults) are started, or the user tries to log off/shut down. outflank.nl/blog/2025/07/1…

The Outflank and Cobalt Strike researchers will be hosting 15 minute technical lightning talks at our BlackHat USA booth. ⚡️ There's some really good content in there that you don't want to miss. 📍Booth #4422 (Fortra) 🕒 See attached schedule. Limited spots, so come early!

Black Hat Bonus: Learn more about Kyle Avery 's research on training self-hosted LLMs to generate evasive malware and creation of a 7B parameter model that generates evasive Cobalt Strike shellcode loaders able to bypass Microsoft Defender for Endpoint. ow.ly/1EUf50WBI5e