🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

As a fan of non-obvious persistence mechanisms I had to try to collect (and categorize!) them all. It has just started, first 10 entries appeared, and more is coming each day. I am happy to share it. Enjoy, contribute, use freely - persistence-info.github.io

Zach Stein github.com/Synzack/ludus_…

sccmhunter: attacking SCCM related assets in an Active Directory domain meterpreter.org/sccmhunter-att…

Kid plays like he just got divorced and she took everything from him

Want to know about how the US's red team operates? We've just released a report for you to review a previous assessment of ours! "During SILENTSHIELD assessments, the red team first performs a no-notice, long-term simulation of nation-state cyber operations"

Day 2 of the Adversary Simulation and Capability Development class is in full swing 👌

At the following link you can find all the infos related to a C++ implant i created for sliver C2: infosec.exchange/@ale98/1130757… Thanks goes of course to Bishop Fox, Moloch, rkvl and the contributors for the awesome tool!

If you're going to watch ONE video during this Memecoin Supercycle... Watch this. 2025 will be the Year where Memecoins go Parabolic. Watch this Video to Understand Why.

Want to move laterally from C2 on an Intune admin's workstation to any Intune-enrolled device? Check out Maestro (github.com/Mayyhem/Maestro), a new(ish) tool I wrote for those situations, and this blog post to walk you through how: posts.specterops.io/maestro-9ed71d…

Pretty bold take

I’ve always thought Seatbelt was a great situational awareness tool, I created a python implementation of it. Due to the nature of how I expect it to run, it only implements the remote modules, but I hope someone finds it useful. github.com/0xthirteen/Car…

Our new whitepaper covers secure-by-design steps that CEXes can take to keep users' accounts (and funds) safe from account takeover (ATO) in 2025. (Read more 👇)

Had some friends that needed it so SCCMHunter can now use NTLM auth for LDAPS channel binding. Kerberos coming soon. github.com/garrettfoster1…

i was bored at night, so i played with the netsync attack. Meet netdumper.py, a pure TCP RPC based script to netsync machine (and gMSA!) accounts. Nothing new, mostly based on previous works by Charlie Clark, Andrew, @evi1cg et al. gist.github.com/ThePirateWhoSm… 🌻

She's started a fundraiser in his honor to help give back to the community that has supported him so much. I want to support her every way I can. Please consider sharing and/ or donating for autism research! support.researchautism.org/2025NYCMaratho…

Not sure if this has been posted elsewhere but I found it interesting TIL you can combine Dirk-jan's krbrelayx and the CredMarshalTargetInfo abuse James Forshaw discovered to abuse unconstrained delegation configured user and computer accounts 🧵

Tom (tomsteele) explores creating and hijacking Node.js DLLs with Zig in the latest blog post! buff.ly/OvPeB09

v1.4 of ADOKit is out now thanks to a new reconnaissance module from s1zz. Check it out! github.com/xforcered/ADOK…

Michael Weber gave a talk on writing malicious browser extensions at DerbyCon in 2018. Despite the age, the ideas and techniques remain useful and highly relevant to all stages of malware development. Highly recommended. Kudos to the red hat man, Weber. youtu.be/mKesEr1g4j0