🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Outflank blog: Attacking Visual Studio for Initial Access. The post shows how viewing source code can lead to compromise of a dev's workstation. A journey into COM, type libraries and the inner workings of VS. Plus practical examples for red team ops. outflank.nl/blog/2023/03/2…

CVE-2023-25543 fixes an LPE in Dell Power Manager. This vulnerability allowed local privesc from user to SYSTEM. ⚡️ It was discovered and reported by Outlfanker Cedric Van Bockhaven as part of his R&D. dell.com/support/kbdoc/…

Published a new Outflank blog post together with Dima! "So you think you can block Macros?" A journey into new MS Office macro abuse patterns and bypasses for typical enterprise VBA macro settings. Read why signing macros is sometimes a bad idea... outflank.nl/blog/2023/04/2…

In the same vein, if you receive a weird email attachment that starts with MZ, it's probably an EXE file. Rename it to .EXE and double click it to see what happens.

Vandaag zijn we officieel begonnen met de CTC Cyberbootcamp 2023! Met 27 van de beste Nederlandse cybersecuritytalenten zijn we een week op locatie om allerlei interessante workshops te volgen!

Today I am pleased to announce the release of a code analyser I’ve been working in my free time - wSAST (wsast.co.uk) wSAST aims to make code analysis easier for application security consultants by providing tools to graph relationships, find paths between functions,

Dank dat je bij ons was: voormalig journaalanker en boegbeeld van de nieuwsdienst Martine Tanghe is overleden vrtnws.be/p.w7KJOnbMJ?t=… #vrtnws

Excited to finally publish research which in the background I have been working on for several years!😃 Introducing Living Off the FOREIGN Land (#LOFL), using a Windows VM over SOCKS as offensive platform✨ 📖 blog.bitsadmin.com/living-off-the… 🏝 lofl-project.github.io More info ⬇️

3 years ago, me, Stan Hegt and Marc Smeets set about creating our own con, built by red teamers for red teamers. Today it finally happened and it was 🔥 #redtreat23 MDSec Outflank

Truly an honor to be amidst such brilliant minds and passionate red teamers. 🔥 And those stroopwafels are simply the cherry on top! 🍒 Together with Tijme Gommers and Roy Reinders 🥳

We are thrilled to publish SOAPHound: a custom-developed data collector tool to enumerate Active Directory environments via the ADWS-protocol. Enjoy! falconforce.nl/soaphound-tool…

It's not *always* about Windows--macOS and Linux #EDRs need attention, too! In our latest blog, Kyle Avery explains more about the telemetry sources for these under-discussed #endpoint products> outflank.nl/blog/2024/06/0…

Great times at ⁦TROOPERS Conference⁩ with ⁦Dirk-jan⁩ ⁦Dr. Nestori Syynimaa⁩ ⁦Cedric Van Bockhaven⁩ ⁦Jonas Bülow Knudsen⁩ ⁦Max Grim⁩

Who’s the real #GrimResource? Spoiler: It’s us! 😏 Here's our latest blog on using MSC files for initial access: outflank.nl/blog/2024/08/1… Fun fact: Elastic’s post on this technique came from a sample caught by a blue team, originally used by a red team through our OST offering.

Cedric Van Bockhaven rocking the stage on Sikkerhetsfestivalen day 2!

I am excited to share that I have graduated for my master's degree in Cybersecurity from the Radboud University🎓. I completed my thesis "Endpoint Detection & Response Evasion during Windows Process Creation" with a 9/10!

New Blog Alert! 🚨 Introducing Early Cascade Injection, a stealthy process injection technique that targets Windows process creation, avoids cross-process APCs, and evades top-tier EDRs. Learn how it combines Early Bird APC Injection & EDR-Preloading: outflank.nl/blog/2024/10/1…

🚀 We're hiring a DevOps/Cloud Engineer at Outflank! Join us to build and manage complex Azure environments that deliver our OST toolkit. Skills: Kubernetes (AKS), GitOps, IaC, Tekton, Python💻 It's NOT an offensive role! Based in NL or a time zone-friendly region? Let's chat!

My first blog with FalconForce Official! Check it out if you want to learn a few things about Azure DevOps.

Awesome work by Lance, clear write-up on the issue, the solution, a PR to ROADtools and more tradecraft!