🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

In case you missed it, Charlie Clark and Andrew just released some _awesome_ work that just landed into Rubeus' master branch- "Diamond Tickets"! Check out more details at semperis.com/blog/a-diamond…. Great work Charlie and Andrew!!

could not imagine it without Linux 😎

Having fun learning how to build basic blocks of malware to evade EDRs! Today was just about process injection using the less documented NTAPI Just started my journey, but a step at a time. #edr #evasion #injection #malware lnkd.in/eTyp9Z-c

Basic tip 1 for cleanup: when you inject a DLL, you must remember to correctly unload it after you're done (FreeLibraryAndExitThread to the rescue), otherwise it will stay there forever after your threads are gone. Double check if you use generated dll if…lnkd.in/ev9t2bre

Sunday mornings be like: let's start designing a simple ICS honeypot! For sure current ICS honeypots need a bit of refresh though. #ics #honeypot #cybersecurity #industrial #control #system lnkd.in/esxdRmmz

I wanted to play around with the Process Hollowing for a while. Process hollowing is a well known and neat technique to mask your malicious code behind legit processes. Although, instead of rewriting the PE image I learned how to hijack the main thread o…lnkd.in/erWYkXZn

"Push yourself. Because nobody else is going to do it for you."

Learning about another type of TLS Callback today. Using Thread Local Storage callbacks to inject code into processes allows the execution of malicious code to happen way before the main entrypoint. Debuggers do not immediately see those. TLS callback are…lnkd.in/dsDhJ9uZ

Good AWS attack path learned! To the next assignment! #aws #htb #offensive lnkd.in/dyhQ7xGC

A lot of web apps and AWS attacks, AWS Fortress has been seized! #htb #aws #penetrationtesting lnkd.in/gwU39FTd

🔥

🔥🔥

Awesomeness in the Truesec studio with STÖK ✌️ and Carlo Alberto Scola

See you at Sec-T in Stockholm this Thursday and Friday! Anyone joining?

SEC-T Red-Blue team Truesec village. Come here and try hands on hacking into an environment or threat hunt your way to find what the attackers are doing! #cybersecurity lnkd.in/d7rFuFYq

Educational Offensive Hacknight at Truesec, pizzas, meze, beers, haxx & flag the the things. Thanks to everyone that participated! 🙏

Modern IT environments offer passwordless authentication to improve security. Certificate and key-based authentication makes the user's life easier and gives the offensive side an excellent opportunity to obtain versatile credentials Hasain Alshakarti Carlo Alberto Scola at #secsummit

And just like that - 2 years long efforts of writing Initial Access and VBA macros generation framework tossed into dumpster, cause ChatGPT comes free of charge😆

Finally attending the awaited #x33fcon ! Let the fun begin. If you also are here, let's connect!

On our way back to Gdynia #x33fcon #hacker #pirates