🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Another long stream for AV Evasion 101 - C#. Upload on YouTube is finished as well: twitch.tv/videos/1134035… youtu.be/Q7mhtA4IadY

flutter-spy - explore, analyze, and gain valuable data & insights from reverse engineered Flutter apps #MobileSecurity by anasfik github.com/anasfik/flutte…

Annoucing GRROXY! 2 years back I had a thought that we can have *BURP* alt. by simply using #proxify to capt. traffic, #ffuf as intruder, & so on... So I created one. grroxy.com [Go+Js] Inviting you all to join me for beta testing and exploring ideas together. Thx!

🚀 Check out this repo for Jenkins security testing - "pwn_jenkins" by gquere. Strengthen your Jenkins server's defenses and ensure airtight security. Explore the GitHub repo here: github.com/gquere/pwn_jen… #Jenkins #CyberSecurity #DevOps 🔐💻

🛡️ Unleash your inner hacker! 🕵️‍♂️ Dive into the fascinating world of Active Directory with Rahmat Nurfauzi's AD-Attack-Defense repo. 💻 Strengthen your cybersecurity skills, one attack and defense at a time. Check it out: github.com/infosecn1nja/A… 🔒 #CyberSecurity #InfoSec 🚀

New blog by Clément Labro is a must read for blue and red alike: itm4n.github.io/printnightmare… Quality stuff as always. Thanks I updated my Client-Checker to evaluate the affected reg keys so you can quickly check on your own if you might be affected or not: github.com/LuemmelSec/Cli…

Reading up on CVE-2024-0204: > Using "Advanced tooling" > findstr /s "InitialAccount" .\* 💀

AnyDesk Breach 2024: Dark Web Sale of 18,317 Credentials securityonline.info/anydesk-breach…

Maldev Academy Code Search: We’re very happy to announce the creation of a new code search service that will ease the learning and maldev experience for users. The site currently has over 7000+ lines, 300+ snippets in total with new snippets being added every month. All

Did a little writeup of the CSP bypass I reported to PortSwigger. It might be interesting to anyone who saw the disclosed report and wonders if CSP bypasses are the new ripe low-hanging fruit! joaxcar.com/blog/2024/02/1…

Raunak Parmar & I wrote a blog post on an attack path discovered during the recent Cloud Pentest that allowed us to gain Command Execution on the On-Prem machines. Feel free to provide feedback if any. whiteknightlabs.com/2024/02/21/piv… #redteam #Azure #pentest #cloudsecurity

Tired of failed phishing attempts? Using the 1337est AI FAFO technology, Evilginx trained on data from thousands of successful login attempts, can now predict valid session cookies, even before the phished user starts to enter their credentials.🔥 The new era of AIshing awaits!

[Announcement] April 2024 - Month of Azure Red Teaming. 20% OFF on our Azure Red Team classes. Use Azure20OFF coupon (with Stripe). alteredsecurity.com #redteam #Pentesting #Azure

🚀I'm finally releasing GraphSpy to the public!🕵️ A powerful offensive security tool focused on making initial access and post-compromise enumeration in Microsoft Entra and M365 much more convenient during penetration tests and red team assessments! github.com/RedByte1337/Gr…

CVE-2024-1086 (Local Privilege Escalation) - While the xz backdoor was all over the place, this incredible exploit seemed to "slip" by! - This is working on most Linux kernels from 5.14 to v6.6 - Repo: github.com/Notselwyn/CVE-… - Creator: Lau

Checkout my phishing infrastructure setup guide notes, which i recently published on github. It contains tips and tricks along with some IOC removal for evilginx3.3 and GoPhish. Thanks to Kuba Gretzky for integrating Gophish with evilginx. github.com/An0nUD4Y/Evilg… #evilginx

Executing Mimikatz and bypassing memory scans from PE-sieve and Moneta using PeFluctuation from update 6.

Our public tools list is growing: maldev.com/tools

I have put together a list of publicly known IOC for impacket. Thanks to Octoberfest7 and others on the awesome research. n7wera.notion.site/Modifing-Impac…

Have you every wanted to get into Windows Kernel Exploitation but don't know where to start? I'm going be releasing a series to get you from Windows 7 (x86) to Windows 11 (x64). You can find the first tutorial here: wetw0rk.github.io/posts/0x00-int…